Privacy Policy

Who We Are

This Privacy Policy describes how Pandiri Digital Marketing Pvt Ltd (operating as DMAT, "we", "us", or "our") collects, uses, and protects your personal information when you visit our website services.dmat.in or use our digital marketing and AI training services.

We are a digital marketing agency and AI training academy based in Hyderabad, Telangana, India, founded by Anil Kumar Pandiri. We operate 100% online and serve clients across India and globally.

Information We Collect

We collect information you provide directly, information collected automatically, and information from third parties.

Information You Provide

• Contact details: Name, email, phone number, company name when you fill forms, request audits, or message us on WhatsApp
• Business information: Industry, business goals, marketing budget, current ad accounts when discussing service engagements
• Payment information: Processed via secure payment gateways (Razorpay, etc.) — we don't store your card details directly
• Account access: For service delivery, we may receive read or partner access to your Google Ads, Meta Business Manager, LinkedIn Campaign Manager, or Snapchat Ads Manager
• Communications: Messages, emails, support requests, and any content you share with us

Information Collected Automatically

• Device & browser data: IP address, browser type, operating system, screen size, referring URL
• Usage data: Pages visited, time spent, click patterns, scroll depth on services.dmat.in
• Analytics: Aggregated and anonymized via Google Analytics 4 (GA4) and similar tools
• Cookies: See our Cookies section below for details

Information from Third Parties

• Advertising platforms: Performance data from Meta, Google, LinkedIn, Snapchat when managing your campaigns
• Public sources: LinkedIn profiles, company websites for prospecting and outreach (B2B context only)

How We Use Your Information

We use your information for specific, legitimate business purposes:

• Service delivery: Building and managing your ad campaigns, websites, SEO projects, and AI automations
• Communication: Responding to inquiries, sending service updates, sharing reports and deliverables
• Account management: Processing payments, generating invoices, maintaining client records
• Marketing (with consent): Sending newsletters, case studies, service offers — you can unsubscribe anytime
• Website improvement: Analyzing traffic patterns to improve user experience on services.dmat.in
• Legal compliance: Meeting tax, accounting, and regulatory requirements under Indian law
• Fraud prevention: Detecting and preventing unauthorized access or misuse of our services

Legal Basis for Processing (DPDP Act 2023)

Under India's Digital Personal Data Protection Act 2023 (DPDP Act), we process your personal data based on:

• Your consent: When you fill forms, subscribe to our newsletter, or agree to our service terms
• Contractual necessity: When processing is required to deliver services you've engaged us for
• Legal obligations: When required by Indian law (e.g., GST records, tax filings)
• Legitimate interests: For business operations like fraud prevention, security, and service improvement

You have the right to withdraw consent at any time by contacting us at contact@dmat.in.

Sharing & Third Parties

We never sell your personal data. We share information only in these limited situations:

Service Providers

• Payment processors: Razorpay, PayU for secure transaction processing
• Hosting providers: Hostinger, Cloudflare for website infrastructure
• Email & communication: Google Workspace, FluentCRM for client communication
• Analytics: Google Analytics 4, Microsoft Clarity for website analytics
• Advertising platforms: Meta, Google, LinkedIn, Snapchat for managing your campaigns
• CRM & project tools: Notion, Slack for project management

Legal Requirements

We may disclose information when required by Indian law, court orders, or to protect our legal rights, prevent fraud, or ensure user safety.

Business Transfers

In case of a merger, acquisition, or asset sale, your information may be transferred — you'll be notified beforehand and given choices about your data.

Cookies & Tracking Technologies

We use cookies and similar technologies to improve your experience on services.dmat.in:

• Essential cookies: Required for website functionality (cannot be disabled)
• Analytics cookies: Google Analytics 4 to understand how visitors use our site
• Marketing cookies: Meta Pixel, Google Ads tag, LinkedIn Insight Tag for advertising
• Preference cookies: Remember your settings and preferences

You can control cookies through your browser settings. Disabling cookies may affect website functionality.

Data Retention

We retain your information only as long as needed:

• Active clients: Throughout your engagement plus 3 years after for legal and tax purposes
• Inquiries (non-clients): Up to 12 months for follow-up purposes
• Marketing subscribers: Until you unsubscribe
• Tax records: 8 years as per Indian Income Tax Act requirements
• Analytics data: Anonymized and retained as per Google Analytics retention settings (typically 14 months)

Your Rights Under DPDP Act 2023

As an Indian resident, you have the following rights:

• Right to access: Request a copy of personal data we hold about you
• Right to correction: Update inaccurate or incomplete information
• Right to erasure: Request deletion of your data (subject to legal retention requirements)
• Right to withdraw consent: Stop processing based on your consent at any time
• Right to grievance redressal: Lodge complaints with our Data Protection Officer
• Right to nominate: Designate someone to exercise rights on your behalf

To exercise any of these rights, email contact@dmat.in. We respond within 30 days.

Data Security

We implement industry-standard security measures to protect your data:

• Encryption: SSL/TLS for data in transit, encrypted storage for sensitive data
• Access controls: Role-based access, multi-factor authentication for team members
• Regular audits: Security reviews of our infrastructure and processes
• Trusted vendors: Working only with reputable service providers (Hostinger, Google, Cloudflare, etc.)
• Incident response: Procedures to detect, contain, and notify in case of breaches

While we take reasonable precautions, no system is 100% secure. We'll notify affected users in case of a data breach as required by Indian law.

International Data Transfers

Your data may be processed outside India by our service providers (e.g., Google servers in the US, Meta servers globally). We ensure these transfers comply with:

• India's DPDP Act 2023 requirements
• Standard Contractual Clauses (SCCs) where applicable
• Service provider compliance certifications (SOC 2, ISO 27001, etc.)

Children's Privacy

Our services are not intended for users under 18. We do not knowingly collect personal data from minors. If you believe we've collected information from a minor, contact us immediately at contact@dmat.in and we'll delete it.

Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be notified via:

• Email to registered users (where we have your email)
• Prominent notice on services.dmat.in
• Updated "Last modified" date at the top of this page

Continued use of our services after changes constitutes acceptance of the updated policy.