banner

Privacy Policy

Last Updated 06 January, 2026

shape shape shape

IJA Customer Application Privacy Policy

1. Introduction

This Privacy Policy ("Policy") outlines in detail how IJA Private Limited and its affiliates (collectively, "Company," "we," "us," or "our") collect, use, disclose, store, protect, and dispose of your personal information when you access, download, install, register on, browse, or otherwise use the IJA Customer Mobile Application (including all versions for iOS and Android devices), the IJA website, associated web portals, APIs, and any related systems, features, or services (collectively, the "Platform"). This Policy applies to all individuals or entities ("User," "Customer," or "you") who interact with the Platform, whether as registered users, guests, or through any integrated features.

Our commitment to privacy is rooted in transparency, security, and compliance with applicable data protection laws, including but not limited to the Digital Personal Data Protection Act, 2023 (DPDP Act), the Information Technology Act, 2000 (as amended), the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and other relevant Indian regulations. We process your data responsibly to provide a seamless e-commerce experience for bathware, sanitaryware, and allied products, while respecting your rights and choices.

By accessing or using the Platform, you explicitly consent to the collection, processing, and sharing of your information as described herein. If you do not agree with any aspect of this Policy, you must immediately stop using the Platform and delete any installed applications. This Policy forms an integral part of the IJA Customer Application Terms and Conditions and should be read in conjunction with them.

We reserve the right to modify this Policy at any time to reflect changes in our practices, legal requirements, or technological advancements. Updates will be posted on the Platform with a revised "Last Updated" date. We may notify you of significant changes via email, in-app notifications, or other means. Your continued use of the Platform after such changes constitutes your acceptance of the revised Policy. We encourage you to review this Policy regularly to stay informed about how we handle your data.

Last Updated: January 06, 2026

2. Information We Collect

To operate the Platform effectively and provide personalized services, we collect various types of information. We categorize this data to ensure clarity and minimize collection to what is necessary. The specific data collected depends on your interactions with the Platform (e.g., browsing vs. ordering). Below is a comprehensive breakdown:

Personal Information: Identifiable data provided voluntarily by you, which may include

  • Contact details: Full name, email address, mobile number, and postal address (including PIN code, city, state) for account creation, order processing, and communications.
  • Demographic information: Date of birth, gender, or preferences (e.g., product interests) to personalize recommendations.
  • Identification details: Government-issued IDs (e.g., PAN for tax invoices, Aadhaar for KYC if mandated by law) in limited cases, such as high-value transactions or regulatory compliance.
  • Payment-related information: Billing address and transaction history (note: full card details, CVV, or bank account numbers are not stored by us; they are handled securely by third-party gateways).

Sensitive Personal Data: We generally do not collect sensitive data (e.g., financial data beyond what's necessary, health information, biometric data, or religious beliefs). If required for specific features (e.g., accessibility accommodations), we will seek your explicit consent and handle it with heightened security.

Device and Technical Information: Automatically collected to ensure Platform functionality and security

  • Hardware details: Device type, model, manufacturer, operating system version, unique device identifiers (e.g., UDID, IMEI), and browser type/version.
  • Network data: IP address, mobile carrier, connection type (e.g., Wi-Fi or cellular), and MAC address.
  • Location data: Approximate location (derived from IP) for general analytics or precise location (via GPS, with your explicit permission) for features like nearest dealer locator or personalized delivery estimates.

Usage and Behavioral Data: Insights into how you interact with the Platform:

  • Activity logs: Pages viewed, search queries, time spent on sections, clicks on products, cart additions/abandonments, and feature usage (e.g., product comparisons, wishlist additions).
  • Performance metrics: App crashes, load times, and error reports to improve stability.
  • Referral data: How you arrived at the Platform (e.g., via search engine, ad, or link).

Transaction and Service Data: Related to your commercial activities:

  • Order details: Products selected, quantities, prices, discounts applied, delivery addresses, and tracking numbers.
  • Support interactions: Warranty registrations (including product serial numbers), service requests, complaints, feedback forms, and chat/email histories.
  • Payment logs: Transaction IDs, status (success/failure), and refund details.

Communication and Marketing Data: From your engagements:

  • Subscription preferences: Opt-ins for newsletters, promotional SMS/emails, or push notifications.
  • Survey responses: Feedback on products, services, or user experience.

Third-Party and Aggregated Data: Obtained from external sources:

  • Integrated services: Data from social media logins (e.g., Google or Facebook, with consent) such as profile name and email.
  • Analytics partners: Aggregated insights from tools like Google Analytics or Firebase for trend analysis.
  • Public sources: Verification data from credit bureaus or public databases if needed for fraud prevention.

We do not collect data from children under 13 without verifiable parental consent. For users aged 13-18, we require guardian approval where applicable.

3. How We Collect Information

Data collection occurs through multiple channels to ensure a smooth user experience. We use industry-standard methods with transparency:

Direct Collection: When you voluntarily provide information, such as during:

  • Account registration or profile updates.
  • Order placement, payment processing, or form submissions (e.g., contact us or feedback).
  • Warranty registrations or service ticket creations.

Automated Collection: Via technologies embedded in the Platform:

  • Cookies and similar trackers: Essential cookies for session management, functional cookies for preferences (e.g., language), performance cookies for analytics, and targeting cookies for personalized ads. You can manage these via device settings or our cookie banner.
  • Web beacons, pixels, and SDKs: To track email opens, ad impressions, or app interactions.
  • Log files: Server-side recording of access requests.

Device Permissions: With your consent, we access:

  • Camera/microphone for features like AR product previews or voice search.
  • Storage for downloading catalogues or invoices.
  • Notifications for order updates.

Third-Party Collection: From partners:

  • Payment gateways (e.g., Razorpay, Paytm) share transaction confirmations.
  • Logistics providers (e.g., Delhivery) provide delivery status.
  • Analytics tools (e.g., Google Analytics) aggregate anonymized usage data.

We collect only the minimum data required and inform you via pop-ups or notices when seeking permissions.

4. How We Use Your Information

Your data enables us to deliver high-quality services while balancing our legitimate interests. Uses are based on legal grounds like consent, contract performance, legal obligations, or legitimate interests (e.g., fraud prevention). Detailed purposes include:

Core Operations:
  • Processing and fulfilling orders, including inventory checks, invoicing, and logistics coordination.
  • Managing accounts: Verification, password resets, and profile maintenance.
Personalization and Enhancement
  • Recommending products based on browsing history or past purchases (e.g., suggesting matching bathware sets).
  • Customizing content: Tailored search results, promotions, or app interfaces.
Customer Support and Communications:
  • Responding to queries, resolving disputes, and processing refunds/returns.
  • Sending transactional notifications (e.g., order confirmations, delivery alerts) and marketing materials (with opt-in consent).
Analytics and Research:
  • Analyzing trends (e.g., popular products by region) using anonymized data to improve inventory and features.
  • Conducting A/B testing or user surveys for Platform optimization.
Security and Compliance:
  • Detecting fraud (e.g., unusual login patterns) and preventing misuse.
  • Complying with audits, tax reporting, or legal inquiries.
Marketing and Advertising:
  • Delivering targeted ads or offers via email/SMS/push, based on interests.
  • Sharing anonymized data with advertisers for audience insights.

We do not use automated decision-making that significantly affects you without human oversight or your consent.

5. Sharing and Disclosure of Information

We share data judiciously, with contractual safeguards to protect privacy:

Internal Sharing: Within our affiliates for unified operations.

Service Providers: With vetted third parties (e.g., cloud hosts like AWS, CRM tools like Salesforce) bound by data processing agreements.

Business Ecosystem: Limited details with dealers/influencers for order facilitation (e.g., delivery address).

Legal and Regulatory: To authorities for compliance (e.g., GST audits) or in response to subpoenas.

Business Transactions: During mergers/acquisitions, with data protected.

With Your Consent: For integrations or referrals.

No data is sold or rented. International transfers (if to servers outside India) use approved mechanisms like binding corporate rules.

6. Data Security

We employ robust measures to safeguard data:

Technical: Encryption (AES-256 at rest, TLS 1.3 in transit), multi-factor authentication, intrusion detection.

Administrative: Access restricted to need-to-know, regular training, incident response plans.

Physical: Secure data centers with 24/7 monitoring.

Breach Response: Notification within 72 hours as per DPDP Act, with remedial actions.

While we strive for security, absolute protection cannot be guaranteed.

7. Data Retention

Retention periods are minimized:

Active data: While account is open, plus 6 months post-closure.

Transaction records: 7-10 years for legal/tax purposes.

Anonymized data: Indefinitely for research.

Deletion requests are honored promptly, except for legal holds.

8. Your Rights and Choices

You have extensive rights under DPDP Act:

Access, correction, erasure, portability, objection, and consent withdrawal.

Opt-out of marketing via unsubscribe links or app settings.

Cookie management through browser tools.

Exercise rights by contacting the DPO.

9. Cookies and Tracking Technologies

We use cookies for essential functions, analytics, and ads. Categories: strictly necessary, performance, functional, targeting. Third-party cookies (e.g., from Google) are managed separately. Consent is obtained via banners; withdrawal possible anytime.

10. Third-Party Links and Services

Links to external sites are not governed by this Policy. Review their terms.

11. Children's Privacy

No data collection from under-13s without parental consent. For 13-18, additional safeguards apply.

12. International Data Transfers

Data may be stored/processed outside India with equivalent protections.

13. Contact Us

For inquiries, rights exercises, or complaints:

Data Protection Officer: Parth Shekhar Sati

Email: contactforhelp@ijaworld.com

Phone: 8130940691

Address: Flat No. 135, Plot No. 30, Rohit Apartment, Sec 10, Dwarka Sec-6, South West Delhi, New Delhi, Delhi, India - 110075

Grievance Officer (per IT Rules): Parth Shekhar Sati (same details). We aim to respond within 30 days.

14. Miscellaneous

Governing Law: Indian laws, jurisdiction in Delhi courts.

Severability: Invalid clauses do not void the Policy.

Entire Agreement: Supersedes prior versions.

By using the Platform, you confirm your understanding and agreement.

shape shape shape

IJA Business Application Privacy Policy

1. Introduction

This Privacy Policy ("Policy") outlines in detail how IJA Private Limited and its affiliates (collectively, "Company," "we," "us," or "our") collect, use, disclose, store, protect, and dispose of your personal information when you access, download, install, register on, browse, or otherwise use the IJA Business Mobile Application (including all versions for iOS and Android devices), associated web portals, APIs, and any related systems, features, or services (collectively, the "Platform"). This Policy applies to all dealers, influencers, partners, or other commercial entities ("Business User," "User," or "you") who interact with the Platform, whether during onboarding, facilitation activities, or any integrated features.

Our commitment to privacy is rooted in transparency, security, and compliance with applicable data protection laws, including but not limited to the Digital Personal Data Protection Act, 2023 (DPDP Act), the Information Technology Act, 2000 (as amended), the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and other relevant Indian regulations. We process your data responsibly to facilitate commercial activities such as product referrals, order initiations, incentive management, and ecosystem coordination within the bathware and sanitaryware industry, while respecting your rights and choices.

By accessing or using the Platform, you explicitly consent to the collection, processing, and sharing of your information as described herein. If you do not agree with any aspect of this Policy, you must immediately stop using the Platform and delete any installed applications. This Policy forms an integral part of the IJA Business Application Terms and Conditions and should be read in conjunction with them.

We reserve the right to modify this Policy at any time to reflect changes in our practices, legal requirements, or technological advancements. Updates will be posted on the Platform with a revised "Last Updated" date. We may notify you of significant changes via email, in-app notifications, or other means. Your continued use of the Platform after such changes constitutes your acceptance of the revised Policy. We encourage you to review this Policy regularly to stay informed about how we handle your data.

Last Updated: January 06, 2026

2. Information We Collect

To operate the Platform effectively and support business facilitation, we collect various types of information. We categorize this data to ensure clarity and minimize collection to what is necessary. The specific data collected depends on your interactions with the Platform (e.g., onboarding vs. order facilitation). Below is a comprehensive breakdown:

Personal Information: Identifiable data provided voluntarily by you, which may include:

  • Contact details: Full name, email address, mobile number, and business address (including PIN code, city, state) for account creation, communications, and verifications.
  • Demographic and professional information: Date of birth, gender, business type (e.g., dealer or influencer), role, and preferences to tailor incentives and features.
  • Identification details: Government-issued IDs (e.g., PAN, Aadhaar, GST registration number) for KYC, onboarding, tax compliance, and incentive payouts.
  • Payment-related information: Bank account details (e.g., IFSC, account number) for processing incentives or commissions (note: sensitive banking data is handled securely and not stored long-term).

Sensitive Personal Data: We may collect limited sensitive data (e.g., financial account details for payouts) with explicit consent and heightened security. We avoid collecting unrelated sensitive information (e.g., health data, religious beliefs).

Device and Technical Information: Automatically collected to ensure Platform functionality and security:

  • Hardware details: Device type, model, manufacturer, operating system version, unique device identifiers (e.g., UDID, IMEI), and browser type/version.
  • Network data: IP address, mobile carrier, connection type (e.g., Wi-Fi or cellular), and MAC address.
  • Location data: Approximate location (derived from IP) for general analytics or precise location (via GPS, with your explicit permission) for features like scheduling store visits or regional performance tracking.

Usage and Behavioral Data: Insights into how you interact with the Platform:

  • Activity logs: Pages viewed, search queries, time spent on sections, clicks on products or leads, referral generations, and feature usage (e.g., QR code scans, incentive trackers).
  • Performance metrics: App crashes, load times, and error reports to improve stability.
  • Referral data: How leads or orders are initiated (e.g., via influencer mapping or dealer scheduling).

Transaction and Business Data: Related to your commercial activities

  • Order facilitation details: Leads generated, orders placed on behalf of customers, QR scans, influencer mappings, delivery confirmations, and incentive calculations.
  • Compliance records: KYC documents, audit trails, and performance reports (e.g., sales volumes, referral success rates).
  • Incentive logs: Payout histories, adjustments, disputes, and tax deductions (e.g., TDS).

Communication and Marketing Data: From your engagements:

  • Subscription preferences: Opt-ins for business updates, incentive alerts, or promotional communications.
  • Survey responses: Feedback on Platform features, incentives, or ecosystem improvements.

Third-Party and Aggregated Data: Obtained from external sources:

  • Integrated services: Data from linked business tools or social media (with consent) such as profile details.
  • Analytics partners: Aggregated insights from tools like Google Analytics for trend analysis.
  • Verification sources: Data from credit bureaus, public business registries, or KYC providers for onboarding audits.

We do not collect data from individuals under 18 in a business capacity without verifiable authorization.

3. How We Collect Information

Data collection occurs through multiple channels to ensure a smooth business experience. We use industry-standard methods with transparency:

Direct Collection: When you voluntarily provide information, such as during:

  • Onboarding or profile updates (e.g., submitting KYC documents).
  • Order facilitation, incentive claims, or form submissions (e.g., lead generation or support tickets).
  • Audits or verifications initiated by us.

Automated Collection: Via technologies embedded in the Platform:

  • Cookies and similar trackers: Essential cookies for session management, functional cookies for preferences (e.g., dashboard views), performance cookies for analytics, and targeting cookies for business insights. You can manage these via device settings or our cookie banner.
  • Web beacons, pixels, and SDKs: To track interactions like referral opens or incentive views.
  • Log files: Server-side recording of access requests.

Device Permissions: With your consent, we access:

  • Camera for QR code scanning during order mapping.
  • Storage for downloading reports or catalogues.
  • Notifications for incentive updates or audit alerts.

Third-Party Collection: From partners:

  • Payment processors (e.g., for incentive transfers) share confirmation details.
  • Analytics tools (e.g., Firebase) aggregate anonymized usage data.
  • KYC providers verify submitted documents.

We collect only the minimum data required and inform you via pop-ups or notices when seeking permissions.

4. How We Use Your Information

Your data enables us to deliver efficient business services while balancing our legitimate interests. Uses are based on legal grounds like consent, contract performance, legal obligations, or legitimate interests (e.g., audit rights). Detailed purposes include:

Core Operations:
  • Onboarding and verification: Processing KYC for access and compliance.
  • Facilitation activities: Managing leads, order placements, influencer mappings, and dealer scheduling.
Personalization and Enhancement:
  • Customizing dashboards: Based on business type (e.g., dealer vs. influencer) for relevant tools and incentives.
  • Recommending opportunities: Suggesting products or regions based on performance history.
Business Support and Communications:
  • Handling incentives: Calculations, payouts, adjustments, and dispute resolutions.
  • Sending transactional notifications (e.g., order confirmations, payout alerts) and business updates (with opt-in consent).
Analytics and Research:
  • Analyzing performance (e.g., referral success by user) using anonymized data to refine incentive structures.
  • Conducting audits or trend analysis for ecosystem improvements.
Security and Compliance:
  • Detecting fraud (e.g., manipulated referrals) and preventing misuse.
  • Complying with audits, tax reporting (e.g., TDS), or legal inquiries.
Marketing and Advertising:
  • Delivering targeted business offers or training via email/SMS/push, based on activity.
  • Sharing anonymized data with partners for industry insights.

We do not use automated decision-making that significantly affects you without human oversight or your consent.

5. Sharing and Disclosure of Information

We share data judiciously, with contractual safeguards to protect privacy:

Internal Sharing: Within our affiliates for unified operations.

Service Providers: With vetted third parties (e.g., cloud hosts like AWS, payment processors) bound by data processing agreements.

Business Ecosystem: Limited details with customers or other users for facilitation (e.g., referral mappings).

Legal and Regulatory: To authorities for compliance (e.g., tax audits) or in response to subpoenas.

Business Transactions: During mergers/acquisitions, with data protected.

With Your Consent: For integrations or collaborations.

No data is sold or rented. International transfers (if to servers outside India) use approved mechanisms like binding corporate rules.

6. Data Security

We employ robust measures to safeguard data:

Technical: Encryption (AES-256 at rest, TLS 1.3 in transit), multi-factor authentication, intrusion detection.

Administrative: Access restricted to need-to-know, regular training, incident response plans.

Physical: Secure data centers with 24/7 monitoring.

Breach Response: Notification within 72 hours as per DPDP Act, with remedial actions.

While we strive for security, absolute protection cannot be guaranteed.

7. Data Retention

Retention periods are minimized:

  • Active data: While account is active, plus 6 months post-termination.
  • Transaction records: 7-10 years for legal/tax purposes.
  • Anonymized data: Indefinitely for research.

Deletion requests are honored promptly, except for legal holds.

8. Your Rights and Choices

You have extensive rights under DPDP Act:

  • Access, correction, erasure, portability, objection, and consent withdrawal.
  • Opt-out of marketing via unsubscribe links or app settings.
  • Cookie management through browser tools.

Exercise rights by contacting the DPO.

9. Cookies and Tracking Technologies

We use cookies for essential functions, analytics, and ads. Categories: strictly necessary, performance, functional, targeting. Third-party cookies (e.g., from Google) are managed separately. Consent is obtained via banners; withdrawal possible anytime.

10. Third-Party Links and Services

Links to external sites are not governed by this Policy. Review their terms.

11. Children's Privacy

The Platform is not intended for individuals under 18. We do not knowingly collect data from them.

12. International Data Transfers

Data may be stored/processed outside India with equivalent protections.

13. Contact Us

For inquiries, rights exercises, or complaints:

  • Data Protection Officer: Parth Shekhar Sati
  • Email: contactforhelp@ijaworld.com
  • Phone: 8130940691
  • Address: Flat No. 135, Plot No. 30, Rohit Apartment, Sec 10, Dwarka Sec-6, South West Delhi, New Delhi, Delhi, India - 110075

Grievance Officer (per IT Rules): Parth Shekhar Sati (same details). We aim to respond within 30 days.

14. Miscellaneous

  • Governing Law: Indian laws, jurisdiction in Delhi courts.
  • Severability: Invalid clauses do not void the Policy.
  • Entire Agreement: Supersedes prior versions.

By using the Platform, you confirm your understanding and agreement.