// Data Governance v3.2
Privacy Policy_
Last updated: January 15, 2026
01. IP Logging & Diagnostics
To ensure infrastructure security and mitigate malicious activity (DDoS, Brute-force), we log IP addresses, session timestamps, and browser metadata. These logs are stored in encrypted volumes and are used solely for technical diagnostics and threat detection. In accordance with the Information Technology (IT) Act, these logs are permanently purged after 30 days unless required for legal investigations.
02. Subscription & Data Integrity
Newsletter subscriptions and project inquiries are archived in our Secure Internal Database and synchronized with Resend. We do not sell, trade, or leak your contact information. You may exercise your right to erasure ("Right to be Forgotten") by contacting us directly or using the unsubscribe link in mail transmissions.
03. Cookie Policy & Tracking
We use essential cookies for session management and security. Third-party analytics (Vercel Analytics) are used in a privacy-preserving manner to understand traffic patterns. We do not use cross-site tracking or advertising cookies.
04. Data Processing Locations
Our architecture leverages global edge nodes. Traffic may be processed through providers including Vercel (Global), Amazon Web Services (Mumbai/Singapore), and Cloudflare. Data residence is primarily maintained in Indian or EU-based regions depending on the service node.
05. Regulatory Compliance
We operate as a "Data Fiduciary" under the Digital Personal Data Protection (DPDP) Act, 2023. For data access requests, deletion, or grievance redressal, please contact our Data Protection Node: support@avrxt.in.