Apex Modular Privacy Policy
Welcome to the Privacy Policy (“Policy”) of Apex Modular (“we,” “us,” or “our”), operated by SMB Enterprises, located at 33/35, Sarang Street, Kapadia Complex, Shop No. 105, 1st Floor, Mumbai, 400003, Maharashtra, India. This Policy governs the collection, use, disclosure, and protection of personal information when you (“you,” “user”) visit our website at https://www.apexmodular.in/ (the “Site”), interact with our Facebook fan page at https://www.facebook.com/profile.php?id=61552671661007, or engage with our services for modular interior design products like kitchen shutters and wardrobes.
We are committed to protecting your privacy in compliance with applicable laws, including India’s Digital Personal Data Protection Act, 2023 (DPDP Act), the EU General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), and the California Online Privacy Protection Act (CalOPPA). For questions, contact our Data Protection Officer at smbapexmodular@gmail.com.
1. Information We Collect
We collect information to provide, improve, and personalize our services, process orders, and comply with legal obligations. Data is collected from all age groups with no special provisions for children, as our services are not directed at individuals under 13 (or 16 in some jurisdictions).
1.1 Personal Information You Provide Directly
- Contact and Account Data: Email address, first and last name, phone number, physical address, and social media handles when you submit inquiries, register an account, or contact us via forms or email.
- Payment and Order Data: Billing/shipping details, payment information (processed securely via third parties; we do not store full card details), and product preferences for modular kitchens, wardrobes, or related building materials.
- Communications Data: Information from emails, support tickets, or messages on our Facebook page.
1.2 Information Collected Automatically
- Device and Usage Data: IP address, browser type/version, device ID, operating system, pages viewed, time spent on Site, referral sources, and clickstream data.
- Tracking Technologies: Via Google Analytics (for site analytics), Facebook Pixel (for ad tracking), Google Ads and Facebook remarketing (for targeted advertising), and invisible reCAPTCHA (for spam/bot protection).
1.3 Information from Third Parties
Data from payment gateways (Razorpay, Stripe, Shopify), social media (Facebook interactions), and ad networks when you engage with our ads or links.
Note: We do not collect sensitive personal data (e.g., health, biometric) unless voluntarily provided in inquiries.
2. How We Use Your Information
We use collected data for legitimate business purposes, with legal bases varying by jurisdiction:
- Service Delivery: Process orders/payments, ship products, provide customer support, and personalize recommendations (e.g., wardrobe designs based on past views). Legal basis: Contract performance (GDPR/DPDP); necessity (CCPA/CPRA).
- Communications: Send transactional emails (order confirmations), marketing newsletters (with opt-out), and promotional offers related to interior solutions. Legal basis: Consent or legitimate interests.
- Analytics and Improvement: Analyze Site usage via Google Analytics to enhance functionality and user experience.
- Advertising and Remarketing: Display targeted ads on our Site and third-party platforms via Facebook Pixel/Google Ads; track ad performance. Legal basis: Consent (GDPR); legitimate interests/opt-out (CCPA).
- Security and Compliance: Prevent fraud with reCAPTCHA; comply with legal requests. Legal basis: Legal obligation.
- Business Operations: Aggregate data for trends in modular design market analysis.
3. Sharing and Disclosure of Information
We do not sell your personal information. Sharing is limited to:
| Recipient Category | Purpose | Safeguards |
|---|---|---|
| Service Providers (e.g., Razorpay, Stripe, Shopify for payments; Google Analytics/Facebook Pixel for tracking) | Process payments, analytics, ads, security (reCAPTCHA) | Data Processing Agreements (DPAs); Standard Contractual Clauses (SCCs) for international transfers (GDPR); security audits. |
| Ad Partners (Google Ads, Facebook Ads) | Remarketing and ad delivery | Opt-out mechanisms; limited data (e.g., hashed IDs). |
| Professional Advisors (legal, accounting) | Compliance, audits | Confidentiality agreements. |
| Legal Authorities | Court orders, fraud prevention, regulatory compliance | As required by law (e.g., DPDP, GDPR authorities). |
| Business Transfers | Mergers/acquisitions | Notification to users. |
International Transfers: Data may transfer to the US/EU via providers like Google/Facebook/Stripe. For GDPR, we use SCCs or adequacy decisions. For others, equivalent protections apply.
CCPA/CPRA Disclosures (Past 12 Months): No sales; sharing for targeted ads (categories: identifiers, usage data) with ad partners.
4. User Rights and Choices
Your rights depend on your location. Submit requests to smbapexmodular@gmail.com with verification (e.g., email match). We respond within 45 days (extendable); appeals via same email.
4.1 Global Rights
- Opt-out of marketing emails (unsubscribe links).
- Manage cookies via browser settings or our cookie banner.
- Ad preferences: Google Ads Settings; Facebook Ad Preferences; Network Advertising Initiative (NAI) or Digital Advertising Alliance (DAA) opt-out tools.
4.2 GDPR (EU/EEA/UK Users)
Rights: Access, rectification, erasure (“right to be forgotten”), restriction, portability, objection (including profiling), withdraw consent. Complaints to supervisory authority (e.g., ICO in UK).
4.3 CCPA/CPRA (California Residents)
You have the right to:
- Know (categories/sources/purposes of data collected in past 12 months).
- Delete personal information.
- Correct inaccuracies.
- Opt-out of sale/sharing (we honor “Global Privacy Control” signals; no discrimination).
- Limit sensitive data use (if applicable).
CalOPPA: California users may request our “Do Not Track” practices (we honor browser signals via opt-outs) and full information-sharing disclosures.
5. Cookies, Tracking, and Online Advertising
| Technology | Provider | Purpose | Type |
|---|---|---|---|
| Essential Cookies | Apex Modular | Site functionality (e.g., cart) | First-party, session |
| Analytics | Google Analytics | Usage trends | First/third-party, persistent |
| Advertising | Facebook Pixel, Google Ads | Remarketing, ad performance | Third-party, persistent |
| Security | reCAPTCHA | Bot protection | Third-party, persistent |
Manage via cookie banner or tools listed in Section 4.
6. Data Security and Retention
We employ administrative, technical, and physical safeguards: encryption (e.g., HTTPS, payment data), access controls, regular audits, and employee training. No system is impenetrable; report breaches promptly.
Retention: As long as needed for purposes (e.g., 7 years for financial records per Indian law), or until rights exercised/deletion requested, then securely anonymized/deleted.
7. Third-Party Links and Services
The Site links to third-party sites (e.g., payment portals, Facebook). We are not responsible for their privacy practices; review theirs before use.
8. Policy Updates and Contact
Updates post here with notice (e.g., email for registered users). Continued use post-change implies acceptance. For grievances (DPDP), contact us; we resolve within 30 days.
Contact Information
SMB Enterprises (Apex Modular)
33/35, Sarang Street, Kapadia Complex, Shop No. 105, 1st Floor
Mumbai, 400003, Maharashtra, India
Email: smbapexmodular@gmail.com
Follow us on Facebook for updates.