Compliance & User AgreementPrivacy Policy

Policy Disclaimer

Effective Date: 01 January 2025

This Privacy Policy governs the collection, use, disclosure, storage, and protection of personal data on www.abhishekkshetty.com, operated and maintained by Abhishek K Shetty, a sole proprietorship Chartered Accountant, practicing under Indian jurisdiction.

Your privacy is of paramount importance to me. This Policy outlines how I manage your personal information in accordance with the Digital Personal Data Protection Act, 2023, Information Technology Act, 2000, and allied rules and standards.

 

1. Purpose and Commitment

This Privacy Policy explains how I, Abhishek K Shetty, a practicing Chartered Accountant, collect, process, use, and protect your personal data in the course of my professional services and website interactions.
I am fully committed to :
  • Maintaining the confidentiality and security of all personal information;

 

  • Complying with the Digital Personal Data Protection (DPDP) Act, 2023, IT (Reasonable Security Practices) Rules, 2011, and other applicable Indian laws;

 

  • Offering transparency, user rights, and ethical handling of data in both digital and offline environments.

2. Who This Policy Covers

This policy applies to :
  • Individuals who visit my website;

 

  • Clients and prospective clients;

 

  • Individuals engaging with me via forms, emails, or calls;

 

  • Job seekers or interns applying through the site;

 

  • Anyone whose personal data is provided during consultations or advisory services.

3. What is ‘Personal Data’?

Under Indian law, Personal Data includes any information that can directly or indirectly identify you, such as :
  • Name, email address, phone number

 

  • Financial identifiers (PAN, Aadhaar, GSTIN, account numbers)

 

  • IP address and geolocation

 

  • Uploaded documents (bank statements, IT returns, identity proofs)

 

  • Cookies, device IDs, and browser metadata

4. Categories of Data Collected

a. Information You Provide Directly
  • Contact details: name, phone, email, city

 

  • Business profile: company name, GST details, type of services needed

 

  • Uploaded documents: for tax, accounting, advisory, audit, and compliance

 

  • Job-related documents: resumes, degrees, references

b. Information Collected Automatically
  • IP address, location (approximate)

 

  • Pages visited and interaction logs

 

  • Device type, browser version

 

  • Cookies and trackers (see Cookies section)

c. Sensitive Personal Data (only where required)
  • Aadhaar card (masked if not required)

 

  • Bank account details

 

  • Digital signature (if used for filings)

 

  • Income tax filings and login credentials (only with consent for representation)

5. Legal Grounds for Data Processing

All personal data is processed under one or more lawful bases :
  • Consent: For newsletters, form submissions, or marketing

 

  • Legal Obligation: As required under ICAI, Income Tax Act, Companies Act, etc.

 

  • Contractual Need: For service engagement, representation, or certification

 

  • Legitimate Interest: For professional record-keeping, audit trails, legal defense

You will always be informed of the basis before sensitive data is processed.

6. Use of Data

Your personal data is used to :
  • Respond to queries and offer personalized consultation

 

  • Deliver services like tax filing, auditing, certifications, and business structuring

 

  • Maintain professional logs and regulatory records

 

  • Comply with statutory requirements (e.g., audit trail retention)

 

  • Send important updates, deadlines, and compliance notices

 

  • Improve website functionality and visitor experience

No marketing emails will be sent without explicit consent.

7. Use of Cookies and Tracking

Cookies help me :
  • Understand website usage trends

 

  • Secure sessions and forms

 

  • Improve site responsiveness

You may choose to accept or decline cookies via browser settings. Essential cookies (used for security and functionality) are automatically enabled.

8. Third-Party Disclosures

I do not sell, trade, or monetize your data. Limited, secure sharing is made only :
  • With government or statutory authorities on legal demand

 

  • With professional advisors (e.g., CAs, CSs, legal counsel) for authorized cases

 

  • With secure hosting/cloud service providers (compliant with Indian data laws)

 

  • With regulators during audits (Income Tax, GST, ICAI)

All vendors and third parties are under strict confidentiality obligations.

9. Data Storage & Security

Your data is stored :
  • On secure servers hosted within India (unless otherwise noted)

 

  • In encrypted formats wherever applicable (files, emails)

 

  • With role-based access control, audit logs, and strong authentication

Website data is protected with HTTPS encryption, anti-malware scanning, and regular security assessments.

In case of a data breach, you will be informed within the timeframe prescribed by Indian law.

10. Retention of Personal Data

Once no longer needed, data is securely deleted or anonymized.
  • General client records: retained for a minimum of 8 years, as per ICAI guidelines

 

  • Financial/tax documents: retained for up to 8 years (or longer if under litigation)

 

  • Contact queries: retained for 6–12 months

 

  • Job applications: retained for 1 year unless specified otherwise

11. Your Rights Under Indian Law

As a data principal, you have the right to :
  • Access: Get a copy of your data on record

 

  • Correction: Request correction of incorrect or outdated information

 

  • Deletion: Ask for deletion of data no longer needed (except where legally retained)

 

  • Portability: Request transfer of data (where applicable)

 

  • Withdrawal of Consent: Revoke consent-based processing

 

  • Nominate: Assign a nominee in case of incapacity (under DPDP 2023)

 

  • Redressal: Raise a complaint with me or escalate to the Data Protection Board

Requests can be submitted via email to contact@abhishekkshetty.com.

Identity verification may be required

12. Minor’s Data

This website and services are not intended for individuals under the age of 18. I do not knowingly collect personal data from minors. If such data is discovered, it will be deleted immediately.

13. Cross-Border Data Transfer

If any data is stored or processed on foreign servers (e.g., through cloud-based accounting tools), it is ensured that :
  • The service provider adheres to recognized security standards (ISO 27001, SOC 2)

 

  • Data transfers comply with Indian law and necessary safeguards

Policy Updates

This Privacy Policy may be updated:

Effective Date: 01 January 2025
  • To reflect changes in technology, law, or service scope

  • When significant legal interpretations affect data rights

You are encouraged to check this page periodically. Major changes will be communicated prominently on the website.

Other Policies

If unresolved, you may lodge a complaint with the Data Protection Board of India, as per the DPDP Act.

Contact

MAIN OFFICE
Bengaluru
E-MAIL
contact@abhishekkshetty.com
TELEPHONE
+91
WORKING HOURS
Mon-Sat : 10am – 6pm

FOR CONSULTATION

Disclaimer :  The information provided on this website is for general guidance only and does not constitute professional advice.

Copyright © Abhishek K Shetty, 2030 | All Rights Reserved