This Privacy Policy explains how Sunny G And Co. Company Secretaries collects, uses, stores, protects, shares and manages personal information and business information received through cssunnygupta.com, enquiry forms, WhatsApp, email, phone, payment pages, document sharing, meetings and service engagements.
Data Fiduciary / Controller Details
For the purpose of applicable Indian data protection and information technology laws, Sunny G And Co. Company Secretaries is responsible for personal data processed in connection with its website and professional services. Contact: cssunnygupta@gmail.com, +91-7531099000, U 110, First Floor, Shakarpur, Delhi 110092, India. Privacy contact / grievance contact: Sunny Gupta, Privacy Contact / Grievance Officer, Email: Privacy@cssunnygupta.com, Phone: +91-7531099000.
Information We Collect
We may collect name, mobile number, email address, address, PAN, Aadhaar details where legally required, DIN/DSC details, company/LLP/firm/NGO details, incorporation documents, identity/address proofs, bank/payment references, GST/tax information, financial/business documents, authorisation documents, board/partner/member documents, trademarks/brand details, service instructions, communication records, uploaded files, payment status, IP address, device/browser details, cookies and website usage information.
Sources of Information
Information may be collected directly from you, from your authorised representative, from documents uploaded/shared by you, from email/WhatsApp/calls, from public government databases, from government portals, from payment gateways, from referral partners where permitted, or from publicly available sources needed for professional verification and service delivery.
Purpose of Processing
We use information to respond to enquiries, verify identity/authority, provide quotations, open client files, deliver professional services, prepare documents, file forms/applications, communicate status, process payments, issue invoices, maintain accounts and statutory records, comply with legal/professional obligations, prevent fraud/misuse, improve website/services, send service/compliance reminders and resolve disputes or grievances.
Consent and Lawful Use
By using the website, submitting forms, sharing documents, making payments or engaging our services, you consent to collection and use of information for the above purposes. Where processing is required by law, contract, regulatory requirement, legitimate professional purpose or government filing, information may be processed to the extent permitted by applicable law. You may withdraw consent for optional processing, but withdrawal may affect our ability to provide services or continue an active assignment.
Sensitive and Regulatory Information
Certain services may require sensitive or regulated information such as identity proofs, tax details, bank details, signatures, DSC/OTP assistance, financial statements, statutory records and confidential business documents. Such information is collected only when relevant to the service, statutory filing, verification, professional duty or legal requirement.
Sharing of Information
We do not sell, rent or trade personal data. We may share information only where necessary with government departments/portals/authorities, regulators, banks, payment gateways, courier/logistics providers, IT/hosting/email/communication vendors, professional associates, consultants, auditors, accountants, lawyers, employees/team members, law enforcement, courts/tribunals, or any person authorised by you, strictly for service delivery, compliance, payment processing, security, recordkeeping or legal obligations.
Government and Statutory Filings
For services such as company/LLP registration, ROC filing, GST, tax, trademark, NGO/Section 8, licences or regulatory compliance, information may be submitted to government portals and authorities. Once submitted, such information is handled by the respective authority/portal under its own legal framework and retention practices.
Payment Information
Payments may be processed through banks, UPI, payment gateways or other authorised payment channels. We may receive transaction reference, payment status and limited billing information. We do not intentionally store full card numbers, CVV or net-banking passwords on our website.
Cookies and Website Analytics
The website may use cookies or similar technologies for basic functionality, security, analytics, performance, lead tracking and user experience. You may disable cookies in your browser, but some features may not work properly.
Data Security
We use reasonable administrative, technical and organisational safeguards to protect information, including access control, password protection, restricted file access, secure hosting practices, antivirus/security practices, limited team access, and confidentiality obligations. However, no website, email, cloud system, WhatsApp or internet transmission can be guaranteed to be fully secure.
Data Retention
We retain information for as long as needed for service delivery, statutory/professional recordkeeping, audit, tax/accounting requirements, regulatory limitation periods, dispute resolution, fraud prevention, business records and legal obligations. Where information is no longer required, we may delete, archive, anonymise or securely restrict access according to business/legal requirements.
Your Rights
Subject to applicable law and verification, you may request access to information about your personal data, correction of inaccurate data, completion of incomplete data, deletion/erasure where legally permissible, withdrawal of consent for optional processing, grievance redressal, and nomination as permitted under applicable data protection law. Some requests may be restricted where retention or processing is required for legal, professional, contractual or statutory purposes.
Children’s Data
Our website and services are intended for business owners, professionals, entities and adult users. We do not knowingly target children. If any service involves a minor, guardian/parental/legal representative consent and proper legal authority may be required.
Data Breach and Incident Handling
If we become aware of a data breach affecting personal data, we will take reasonable steps to assess, contain and respond to the incident, and make notifications where required by applicable law.
Cross-Border Processing
Some technology, cloud, email, analytics or communication service providers may process or store data outside India, subject to applicable law and service provider safeguards. We aim to use reliable vendors and share only necessary information.
Updates to Privacy Policy
We may update this Privacy Policy from time to time. The updated version will be posted on this page with a revised date. Continued use of the website or services after publication means you acknowledge the updated policy.
Contact for Privacy Requests
For privacy requests or grievances, contact: Sunny Gupta, Email: Privacy@cssunnygupta.com, Phone: +91-7531099000, Address: U 110, First Floor, Shakarpur, Delhi 110092, India.