Talk to an Expert.

Privacy Policy

Last Updated: October 26, 2025
Effective From: October 26, 2025

1. Information We Collect

At SwapnilKankute.in, your trust is our highest priority. We believe that transparency is the foundation of digital ethics, and we want you to clearly understand what data we collect, how we collect it, and why it is collected. This section explains in detail the categories of data we may gather from visitors, subscribers, partners, or users who interact with our digital ecosystem — including our associated projects and sub-brands such as Pixinate, VisaMines, XpertHospitality, Super Brain India, Sambhajinagarkar, and others operated by Swapnil Kankute.

Our data collection process strictly follows the principles of lawfulness, fairness, purpose limitation, and data minimization under the General Data Protection Regulation (GDPR) of the European Union, the California Consumer Privacy Act (CCPA) in the U.S., and the Digital Personal Data Protection Act (DPDP) of India.

A. Types of Information We Collect

We collect information that falls into the following main categories:

1. Personal Information (Provided Voluntarily)

This refers to data that can be used to personally identify you. We collect such information only when you voluntarily provide it through:

  • Contact forms or inquiry submissions: Name, email address, phone number, or message content.

  • Newsletter or subscription forms: Email address and name for sending updates, insights, or offers.

  • Course enrollment or registration: If applicable, basic details required for authentication and communication.

  • Event participation or surveys: Information you submit when engaging in feedback or online campaigns.

We never collect sensitive data such as passwords, financial details, or identity numbers unless explicitly required for a specific legal or transactional purpose (which will be clearly mentioned at the time of collection).

2. Technical and Device Information

When you visit our website, certain information is automatically collected through analytics tools and cookies. This helps us ensure site security, functionality, and performance optimization. Examples include:

  • IP address (anonymized in accordance with GDPR)

  • Browser type and version

  • Operating system and device model

  • Referring/exit pages and clickstream data

  • Date, time, and duration of visits

  • Geolocation (approximate region/country), when permitted by your browser or device

This data helps us identify traffic patterns, troubleshoot performance issues, and enhance the user experience for all visitors.

3. Usage and Behavioral Data

We also collect non-identifiable data about how visitors interact with our pages and content. This includes:

  • Pages viewed and time spent on each section

  • Clicks, scrolls, and navigation flow

  • Downloaded files or shared links

  • Interactions with embedded videos or forms

  • Engagement with blog posts, comments, or newsletters

These insights are critical for improving content relevance, UX design, and marketing strategies, ensuring that you always find valuable and engaging information on our platform.

4. Cookies and Tracking Technologies

Our website uses cookies and similar tracking mechanisms to improve usability and analytics. Cookies are small text files stored on your device that help us recognize returning visitors and remember preferences.

Types of cookies used include:

  • Essential cookies: Necessary for website functionality and navigation.

  • Performance cookies: Measure site usage and visitor behavior.

  • Analytical cookies: Collect aggregated statistics through tools like Google Analytics 4 (GA4), Microsoft Clarity, and Meta Pixel.

  • Advertising cookies: Used (in limited scope) to measure ad performance across platforms.

You can control or disable cookies anytime through your browser settings without losing access to most parts of our website.

B. Sources of Data Collection

We collect data through several legitimate sources, ensuring complete transparency and user consent wherever applicable:

  1. Direct interactions: When you fill out forms, subscribe, or contact us directly.

  2. Automated technologies: When you browse our site or engage with our content (via cookies, scripts, and analytics tools).

  3. Third-party integrations: Through services such as Google, Meta, and Microsoft used for analytics and marketing optimization.

  4. Internal project systems: Data may be analyzed across our own projects (like Pixinate, XpertHospitality, etc.) but always for internal research and performance improvement only.

We do not purchase, rent, or scrape personal information from external sources or databases.

C. Purpose of Data Collection

Our data collection serves multiple lawful and legitimate business purposes, including:

  • Website optimization: Understanding user behavior to enhance navigation, design, and content quality.

  • Marketing and analytics: Evaluating performance of digital campaigns to improve targeting and reach.

  • User communication: Responding to your queries, feedback, and information requests promptly.

  • Personalization: Showing content or recommendations relevant to your interests.

  • Security and fraud prevention: Monitoring site activity to protect against malicious activity or unauthorized access.

  • Compliance: Maintaining records as required by local or international data protection regulations.

Each purpose aligns with the “lawful basis of processing” defined under GDPR and DPDP — either through consent, legitimate interest, or contractual necessity.

D. Data Minimization and Retention

We adhere to the principle of data minimization, which means we collect only the data necessary to achieve our stated purposes.
We do not keep personal data indefinitely. Retention periods depend on:

  • Legal or regulatory requirements

  • The type of data collected

  • The purpose for which it was collected

For instance:

  • Contact or inquiry data: Retained for up to 12 months after the last interaction.

  • Analytics and behavioral data: Stored in aggregated, anonymized form for up to 24 months.

  • Newsletter or subscription data: Retained until you unsubscribe or withdraw consent.

Once data is no longer required, it is securely deleted, anonymized, or archived in compliance with international privacy standards.

E. How We Protect Your Information

Your data security is a top priority. We implement administrative, technical, and physical safeguards to protect your information from unauthorized access, misuse, or loss. Measures include:

  • Secure SSL/TLS encryption across all website connections

  • Restricted data access based on role and necessity

  • Regular audits and security assessments

  • Use of trusted third-party platforms that comply with global privacy frameworks

We also ensure that all analytics tools (e.g., GA4, Microsoft Clarity) are configured to anonymize IP addresses and restrict access to raw data.

F. Our Policy on Data Sharing

We want to be completely clear — we do not sell or commercially distribute user data.
However, we may share limited anonymized or aggregated data under the following lawful conditions:

  • Service providers: Trusted partners who assist in analytics, hosting, or maintenance (bound by confidentiality agreements).

  • Legal compliance: When required by law, court order, or government authority.

  • Internal use: Within our own brand network (Pixinate, XpertHospitality, VisaMines, etc.) purely for performance, reporting, or innovation — not for external sale or advertising.

All such data handling is governed by data processing agreements (DPAs) in line with GDPR and DPDP mandates.

G. International Data Transfers

Since our tools (like Google Analytics, Meta, and Microsoft services) operate globally, some information may be processed or stored outside India or your country of residence.
In such cases, we ensure that:

  • Transfers occur only to countries or organizations that maintain adequate data protection standards, as recognized by GDPR or DPDP.

  • Standard Contractual Clauses (SCCs) or similar legal safeguards are applied where applicable.

This ensures your information receives the same level of protection regardless of where it is processed.

H. Your Consent and Control

By using our website, you consent to the collection and processing of your data as outlined here.
You can exercise control through:

  • Adjusting cookie preferences.

  • Requesting a copy, correction, or deletion of your data.

  • Withdrawing consent at any time by emailing privacy@swapnilkankute.in.

We honor all legitimate requests in accordance with GDPR, CCPA, and India’s DPDP Act timelines and guidelines.

At SwapnilKankute.in, we respect your right to privacy. The information we collect helps us create a secure, efficient, and valuable digital experience — without compromising your trust.
Every piece of data is handled with integrity, transparency, and accountability.

If you ever have concerns about how your data is used, you can reach out anytime, and we’ll ensure your rights are protected.

2. Tools and Technologies Used

At SwapnilKankute.in, we use a variety of trusted digital tools, analytics platforms, and tracking technologies to understand visitor behavior, improve performance, and enhance your experience. These tools help us gather insights ethically while complying with global privacy laws such as the General Data Protection Regulation (GDPR – EU), California Consumer Privacy Act (CCPA – USA), and the Digital Personal Data Protection Act (DPDP – India).

We do not use these tools for any unlawful profiling or data resale. All information gathered is processed only for legitimate, internal purposes such as analytics, optimization, or improving user experience.

A. Purpose of Using Digital Tools

The use of analytics and marketing tools is vital for maintaining a data-driven, user-focused digital ecosystem. We rely on them to:

  • Monitor how visitors interact with our website

  • Measure content performance and user engagement

  • Detect usability issues or navigation errors

  • Improve content strategy, site layout, and load speed

  • Measure the success of our campaigns and initiatives

  • Identify trends across our internal projects such as Pixinate, VisaMines, XpertHospitality, and Super Brain India

Each of these tools operates under strict data protection controls and anonymization standards wherever possible.

B. Tools We Use and How They Work

1. Google Analytics 4 (GA4)

GA4 is one of the primary analytics tools we use to understand how visitors interact with our content.
It helps us track:

  • User demographics and geolocation (on an aggregated basis)

  • Session duration, bounce rates, and engagement metrics

  • Pages visited, events triggered, and traffic sources

Privacy Features in GA4:

  • IP addresses are anonymized by default, meaning we never see or store your exact location.

  • Data retention settings are limited to 14–26 months, as per Google’s default privacy configuration.

  • We do not enable personalized advertising features such as remarketing through GA4.

You can opt-out of GA4 tracking at any time by using the Google Analytics Opt-Out Browser Add-On.

2. Google Search Console (GSC)

We use GSC to monitor our website’s search performance in Google.
This includes:

  • Search queries that bring visitors to our site

  • Click-through rates (CTR) and impressions

  • Indexing status and site health metrics

Important: GSC does not collect personally identifiable information (PII).
It functions entirely within Google’s infrastructure and provides aggregated, anonymized insights.

3. Microsoft Clarity

Microsoft Clarity helps us improve the user experience by providing visual behavior analytics such as:

  • Heatmaps: Understand which sections of a page receive the most attention

  • Session recordings: Analyze how users scroll or click on elements (without capturing personal text or data)

  • Engagement metrics: Time on page, scroll depth, and rage clicks

Privacy Features:

  • Sensitive form fields and input boxes are automatically masked (Clarity cannot read what users type).

  • All session data is pseudonymized — it cannot be traced to an individual.

  • Data is used only for internal performance improvement.

You can read more about Microsoft’s privacy policies here: https://clarity.microsoft.com/terms

4. Meta Pixel (Facebook Pixel)

Meta Pixel is used to understand how visitors interact with our Meta (Facebook and Instagram) advertisements.
It enables us to:

  • Measure the effectiveness of marketing campaigns

  • Track conversions (such as form submissions or clicks)

  • Build aggregated audiences for ad optimization

Privacy Measures:

  • We do not use Meta Pixel to identify individual users or collect sensitive personal data.

  • Data is processed under Meta’s Data Processing Terms in compliance with GDPR and CCPA.

  • Visitors may manage or revoke ad preferences anytime through their Facebook Ads Settings.

Learn more: https://www.facebook.com/about/privacy

5. Email and Marketing Automation Tools

When you subscribe to our newsletter or updates, your email address is securely stored through an email marketing platform (such as ConvertKit, MailerLite, or Sendinblue – depending on campaign type).
These tools help us:

  • Send educational updates, news, or marketing insights

  • Track email open rates and link clicks (aggregated data only)

  • Manage unsubscribes automatically as per GDPR and CAN-SPAM regulations

All subscriber data remains under confidential ownership and is never shared with external companies for promotional purposes.

6. Website Security and Performance Tools

To ensure the highest level of protection and uptime, we also use:

  • SSL Encryption (HTTPS) for secure browsing

  • Firewall and spam filters to prevent unauthorized access or malicious attacks

  • Content Delivery Networks (CDNs) such as Cloudflare (if applicable) for fast global delivery

  • Backup and monitoring systems to safeguard against data loss

These tools operate automatically and do not collect any personal data beyond what is necessary for security and system diagnostics.

C. Data Collected Through These Tools

Depending on the platform, the following data types may be collected:

  • Anonymized IP address

  • Browser and device type

  • Operating system and version

  • Pages visited and session duration

  • Source of traffic (organic, referral, social, etc.)

  • User interactions like clicks, scrolls, or form engagement

  • Aggregated demographic and interest data (where available)

Note: None of these tools allow us to identify individual visitors unless they voluntarily share personal information through forms or subscriptions.

D. Legal Basis for Processing

Under GDPR and India’s DPDP Act, we rely on the following lawful bases to process data from these tools:

  • Consent: When you accept cookies or analytics tracking.

  • Legitimate Interest: For site performance, security, and aggregated analytics.

  • Contractual Necessity: If you request services or information that require limited data usage.

We ensure consent is obtained before any non-essential cookies or analytics tools begin collecting information.

E. Cookie and Tracking Technology Overview

Each tool mentioned above uses cookies, scripts, or tracking pixels that operate within your browser.
These small files store anonymous identifiers to recognize your visit and measure activity.

You can control or delete cookies anytime through your browser settings. Disabling certain cookies may limit website functionality, but essential features will remain unaffected.

We maintain a separate Cookie Policy that lists the types, names, and duration of cookies used across all tools for transparency.

F. Third-Party Data Handling and Transfers

All tools we use operate under data processing agreements (DPAs), ensuring compliance with privacy laws.
This means:

  • Data is stored in secure, encrypted servers by the service providers.

  • Cross-border data transfers occur only under approved mechanisms such as Standard Contractual Clauses (SCCs) or adequacy decisions recognized by GDPR.

  • Service providers cannot access or use data for their independent marketing or analytics.

For example:

  • Google’s data centers adhere to the EU-US Data Privacy Framework.

  • Microsoft Clarity follows ISO/IEC 27018 standards.

  • Meta Platforms comply with binding corporate rules (BCRs) for international data transfers.

G. Data Retention Period

We keep analytics and tracking data only for as long as necessary:

  • Google Analytics & Clarity: up to 26 months

  • Meta Pixel & GSC: typically 90–180 days depending on tool configuration

  • Email engagement metrics: until you unsubscribe or request deletion

After these periods, data is either deleted automatically or aggregated for trend analysis without personal identifiers.

H. How You Can Manage or Opt-Out

We respect your right to privacy and give you complete control over your data. You can:

  1. Reject non-essential cookies via our cookie banner.

  2. Use browser privacy settings to block tracking scripts.

  3. Opt-out of advertising tracking via platforms such as:

  4. Contact us directly at privacy@swapnilkankute.in to request data deletion or anonymization.

Your experience will remain functional even if you opt out of analytics tracking.

I. Commitment to Transparency

All tools used on our website have been carefully selected based on:

  • Security credentials and data protection standards

  • Global recognition and compliance reputation

  • Transparency in how they collect and store information

We routinely review tool performance and compliance to ensure ongoing privacy assurance. If any new third-party tool is introduced, this policy will be updated accordingly.

J. Internal Use and No Data Sale Guarantee

Finally, all insights derived from these tools are used internally across Swapnil Kankute’s owned platforms — for research, education, or process improvement only.
We do not sell, rent, or share identifiable data with any advertisers, brokers, or external companies.
Our mission is to build trust through transparency and uphold the highest ethical standards in data handling.

Summary

Purpose Tool Used Data Type Retention Privacy Compliance
Website Analytics Google Analytics 4 Usage, device, traffic 26 months GDPR, DPDP
SEO Insights Google Search Console Search queries, impressions 16 months GDPR
UX Behavior Microsoft Clarity Heatmaps, scrolls, clicks 12 months GDPR, DPDP
Ad Performance Meta Pixel Conversion events 90 days GDPR, CCPA
Email Communication Marketing Tools Email, name Until unsubscribe GDPR, CAN-SPAM
Security SSL, Firewall, CDN IP (anonymized) Real-time GDPR

By combining these technologies responsibly, SwapnilKankute.in ensures data-driven excellence while respecting your right to privacy and control.

3. How We Use Your Information

At SwapnilKankute.in, we believe that every piece of data entrusted to us carries responsibility. Our goal is not just compliance but ethical data stewardship — using information only to create value, improve experience, and build genuine trust.

This section explains in detail how and why we use the data collected from visitors, subscribers, and clients, consistent with major privacy laws such as the GDPR (EU), CCPA (USA), and DPDP Act (India).

We follow the core principles of lawful, fair, and transparent processing, ensuring that your data is used only for legitimate and clearly defined purposes.

A. The Purpose Behind Data Usage

We collect information primarily to improve the quality, functionality, and relevance of our website and related services. Specifically, we use data to:

  1. Enhance User Experience:
    Analyze visitor behavior, content engagement, and preferences to improve navigation, design, and accessibility.

  2. Improve Website Performance:
    Detect and fix technical issues, optimize loading times, and enhance responsiveness across devices.

  3. Understand Audience Interests:
    Identify the types of content, services, or educational materials that attract user interest to plan future updates.

  4. Communicate Effectively:
    Respond to contact form submissions, feedback, or queries with accurate and personalized support.

  5. Marketing and Advertising Analytics:
    Measure the effectiveness of our own promotional campaigns (never for third-party advertising).

  6. Security and Fraud Prevention:
    Monitor and prevent unauthorized access, spam activity, or technical abuse.

  7. Compliance and Legal Obligations:
    Fulfill legal, contractual, or regulatory requirements, including maintaining opt-in records and consent logs.

Every use of data aligns with one or more lawful bases of processing as defined under GDPR and India’s DPDP Act.

B. Lawful Basis for Processing Your Data

Depending on how you interact with our website, your data may be processed under one of the following legal bases:

Purpose Legal Basis
Analytics, performance improvement Legitimate Interest
Newsletter subscription or communication Consent
Inquiry or contact form Contractual Necessity
Security and fraud monitoring Legitimate Interest
Legal compliance and record-keeping Legal Obligation

We never process your data without a lawful purpose or consent, and you can withdraw consent at any time by contacting us.

C. How Different Types of Information Are Used

1. Personal Information

When you voluntarily share personal information (such as your name, email, or contact number), we use it only for the specific reason you provided it.
Examples include:

  • Responding to queries or feedback submitted via contact forms

  • Sending updates, reports, or newsletters when you subscribe

  • Providing educational or professional resources

  • Managing your participation in online campaigns or surveys

We do not use your personal information for unsolicited promotions or share it with external advertisers.

2. Technical and Device Information

Automatically collected technical data (like IP address, browser type, or operating system) helps us:

  • Ensure website compatibility across devices

  • Detect potential security issues or unauthorized access

  • Optimize performance through analytics tools

  • Track and analyze traffic sources to improve content strategy

All technical information is aggregated and anonymized before analysis, ensuring it cannot be used to personally identify any visitor.

3. Usage and Behavioral Data

We analyze usage patterns — such as time on page, clicks, or scroll behavior — to make our site more intuitive and engaging.
This data helps us:

  • Identify popular topics and pages

  • Improve content layout, readability, and design

  • Test new features and design elements

  • Enhance overall website experience for future visitors

These analytics insights are aggregated, meaning they represent group behavior, not individual tracking.

4. Cookies and Tracking Technologies

Cookies allow us to deliver a seamless browsing experience by remembering preferences and login sessions.
We use them to:

  • Recognize returning users

  • Maintain session continuity

  • Track aggregate performance data through analytics tools

  • Ensure that pages load efficiently and consistently

You can manage or disable cookies through your browser settings, though doing so may impact certain functionalities.

5. Communication Data

If you contact us via email or forms, we may retain your communication to:

  • Respond to your questions or requests

  • Provide customer or technical support

  • Record feedback for quality improvement

  • Maintain communication logs for compliance

We treat all correspondence as confidential and delete records once they are no longer required.

6. Analytical and Statistical Use

Tools such as Google Analytics 4 (GA4), Microsoft Clarity, and Meta Pixel help us gain insight into user engagement and site performance.
Data from these tools allows us to:

  • Understand how users interact with our pages

  • Evaluate which marketing campaigns drive engagement

  • Measure conversion rates and form completions

  • Plan future improvements based on behavioral data

All these tools collect only pseudonymized or anonymized data — no personally identifiable information (PII) is recorded without explicit consent.

D. Internal Research and Development

Data may also be used for internal research, learning, and innovation within Swapnil Kankute’s brand ecosystem.
For example:

  • Comparing traffic performance across our projects (Pixinate, VisaMines, Super Brain India, etc.)

  • Identifying emerging content trends for educational use

  • Enhancing digital marketing strategies through analytics insights

This data usage remains fully internal, non-commercial, and compliant with applicable privacy laws.

E. Marketing, Retargeting, and Remarketing (Ethical Use)

We may use limited anonymized data for internal campaign optimization — not for cross-site behavioral advertising.
This means:

  • We analyze which campaigns drive the most engagement.

  • We retarget visitors (if applicable) who previously interacted with our content, only within our own projects (never sold to third parties).

  • You can always opt out of marketing tracking via cookie controls or ad preferences.

We strictly avoid practices like data brokerage, user profiling, or cross-platform retargeting that violate user privacy.

F. Data Aggregation and Anonymization

Whenever possible, data is aggregated or anonymized before use.
For example:

  • Instead of analyzing “User A visited Page X,” we review “100 users viewed Page X today.”

  • Instead of tracking a unique IP, we evaluate regional engagement (e.g., “40% visitors from India”).

This ensures privacy while allowing meaningful insights into user trends and website performance.

G. How Long We Use and Store Data

We retain and use information only for as long as necessary to fulfill its intended purpose.

Example retention periods:

  • Analytics and behavioral data: Up to 26 months (Google default)

  • Contact or inquiry data: Up to 12 months

  • Subscription or communication data: Until you unsubscribe or request deletion

  • Security logs: Up to 6 months for threat detection

After these periods, data is either deleted or anonymized securely.

H. Data Sharing and Disclosure

We may share limited information under specific conditions:

  1. With Trusted Service Providers
    Vendors like Google, Meta, and Microsoft who help us run analytics or communication systems may access anonymized data. These providers are bound by strict data processing agreements (DPAs) ensuring compliance with GDPR and DPDP.

  2. For Legal or Security Purposes
    If required by law, court order, or regulatory authority, we may share data to protect our rights or comply with obligations.

  3. Within Internal Projects
    Data insights may be shared across Swapnil Kankute’s own platforms for operational purposes — but never with external advertisers, brokers, or agencies.

We never engage in data trading, selling, or monetization.

I. How We Ensure Fair and Transparent Use

We follow a transparent data management process that includes:

  • Displaying a clear cookie banner for consent.

  • Providing easy access to our Privacy Policy and updates.

  • Allowing users to view, modify, or delete their data.

  • Regularly reviewing our compliance with international data laws.

Transparency, accountability, and consent are central to every data use decision we make.

J. Your Control Over How Data Is Used

You always retain control over your information. You may:

  • Access a copy of your personal data.

  • Request corrections if any data is inaccurate.

  • Withdraw consent for analytics or communications.

  • Request deletion or anonymization of your data.

  • Object to processing for specific purposes.

All requests can be made by contacting privacy@swapnilkankute.in, and we will respond within 30 days, in accordance with GDPR and DPDP standards.

K. International Data Usage and Transfers

Since some tools (e.g., Google, Meta, Microsoft) operate globally, your data may be processed in data centers outside India.
We ensure:

  • Transfers only occur under recognized safeguards such as Standard Contractual Clauses (SCCs).

  • All partners maintain adequate data protection levels as per GDPR and DPDP guidelines.

  • No data is transferred to any country lacking basic privacy protections.

This ensures that even if your data crosses borders, your rights remain protected.

L. Commitment to Ethical and Minimal Data Use

Our guiding philosophy is:

“Collect less, protect more, and use only what truly benefits the user.”

We avoid unnecessary data collection, and we never use personal information for automated decision-making or profiling that could impact you legally or socially.

Our practices are reviewed regularly to ensure alignment with global privacy frameworks, ensuring that every data point serves a clear, positive purpose.

At SwapnilKankute.in, data is used not as a commodity but as a tool to create better digital experiences.
Every use is justified, ethical, and protected by multiple layers of legal compliance and human integrity.

By continuing to engage with our site, you help us improve — and we commit to safeguarding your trust with the utmost transparency and care.

4. Data Protection and Legal Compliance

At SwapnilKankute.in, we take your privacy and data security seriously. Protecting your information is not just a legal requirement but a fundamental part of our brand’s commitment to transparency, ethics, and trust. Our approach to data protection is guided by leading global frameworks such as the General Data Protection Regulation (GDPR – European Union), California Consumer Privacy Act (CCPA – USA), Digital Personal Data Protection Act (DPDP – India, 2023), and similar international standards that promote lawful, fair, and transparent handling of data.

We ensure that every data point collected through our website, forms, tools, and tracking systems (such as Google Analytics 4, Meta Pixel, Microsoft Clarity, and others) is processed in compliance with these global data protection laws.

4.1 Global Commitment to Privacy Laws

Our policies are designed to comply with the major privacy frameworks across multiple jurisdictions.
Here’s how we align with each key regulation:

A. GDPR (General Data Protection Regulation – European Union)

Under the GDPR, individuals located in the EU or EEA are entitled to comprehensive rights regarding their personal data. We ensure the following principles are always upheld:

  1. Lawfulness, Fairness, and Transparency:
    Data is collected only for legitimate purposes and with clear user consent. You are informed about how, why, and where your information is used.

  2. Purpose Limitation:
    Data is used only for the reasons stated at the time of collection—such as analytics, personalization, or communication—and never beyond those purposes.

  3. Data Minimization:
    We collect only the minimum amount of data required to achieve our legitimate business goals.

  4. Accuracy and Integrity:
    We make reasonable efforts to ensure that the information we store is accurate and up to date.

  5. Storage Limitation:
    Personal data is kept only as long as necessary and is securely deleted once the intended purpose is fulfilled.

  6. Accountability and Security:
    We maintain detailed internal policies, employ access control systems, and periodically review security measures to protect against data misuse or unauthorized access.

Under GDPR, you also have rights to access, rectify, erase, restrict, and transfer your personal data, along with the right to object to automated processing.

B. CCPA (California Consumer Privacy Act – United States)

For users visiting our website from California, we comply with the CCPA, which grants specific rights to California residents regarding their personal information.

Under the CCPA:

  • You have the right to know what categories of data are being collected, used, or disclosed.

  • You can request that we delete personal information collected about you.

  • You have the right to opt-out of the sale or sharing of your personal information.

🛡️ Important: SwapnilKankute.in does not sell or rent personal data to any company. Any data processing or sharing is limited to internal project analytics or service enhancement under direct control of Swapnil Kankute and associated entities.

We honor “Do Not Track” (DNT) signals and other privacy preferences configured in your browser or device settings.

C. DPDP (Digital Personal Data Protection Act – India, 2023)

As an India-based platform, we comply with the Digital Personal Data Protection (DPDP) Act, 2023, which emphasizes data responsibility, consent, and accountability.

Our compliance with DPDP includes:

  • Collecting only necessary information for legitimate business functions.

  • Storing and processing personal data securely within India or in countries that maintain equivalent protection standards.

  • Implementing consent-based data usage where users are informed and empowered to withdraw permission at any time.

  • Adhering to “Data Fiduciary” obligations, ensuring that your information is handled with care, fairness, and purpose limitation.

We ensure that every third-party integration (like GA4, Meta, or Clarity) is vetted for compliance under the DPDP framework.

D. Other Global Standards

In addition to GDPR, CCPA, and DPDP, we align with privacy norms from other regions, including:

  • LGPD (Lei Geral de Proteção de Dados) – Brazil

  • PIPEDA (Personal Information Protection and Electronic Documents Act) – Canada

  • Privacy Act – Australia

  • PDPA (Personal Data Protection Act) – Singapore and Malaysia

This ensures that our platform is respectful of international users and their regional data privacy rights.

4.2 Data Security Measures

To prevent unauthorized access, alteration, or loss of data, we implement a combination of technical, administrative, and organizational measures, including:

  • Secure HTTPS encryption across all pages.

  • Multi-factor authentication for backend and cloud systems.

  • Regular audits and penetration testing of our web assets.

  • Strict internal access control and employee confidentiality policies.

  • Data anonymization for analytics and research.

  • Secure data deletion protocols for expired or unnecessary records.

Our team periodically reviews and updates these measures to stay ahead of emerging cybersecurity threats.

4.3 International Data Transfers

We may transfer data across countries for hosting, analytics, or backup purposes. Whenever such transfers occur, they are conducted under legal safeguards such as Standard Contractual Clauses (SCCs) or other approved mechanisms that ensure your personal information remains protected to the same standards as in your home country.

All third-party vendors and cloud providers we work with are required to maintain equivalent or stronger privacy and security standards.

4.4 User Consent and Control

We prioritize user consent as a foundation for data collection and processing. Before using cookies or analytics tools, we display clear consent banners or notifications. You can manage your preferences or revoke consent at any time by adjusting your browser settings or contacting us directly.

We also maintain transparent logs of when consent was granted or withdrawn to ensure traceability and compliance.

4.5 Data Breach Response Plan

In the unlikely event of a data breach, we have a defined Incident Response Policy that includes:

  1. Immediate investigation and containment.

  2. Notification to affected users and relevant authorities (where required by law).

  3. A full post-incident review to prevent recurrence.

  4. Documentation and reporting for transparency.

4.6 Accountability and Governance

We follow a governance framework based on “Privacy by Design” and “Privacy by Default.”
Our internal operations are structured to ensure data protection principles are integrated at every stage — from design and content creation to marketing and analytics.

Swapnil Kankute, as the Data Protection Officer (DPO) for SwapnilKankute.in, oversees all compliance-related matters. You can reach out at privacy@swapnilkankute.in for any request or concern related to your data.

4.7 Summary of Compliance

Regulation Region Rights Covered Compliance Measures
GDPR European Union Access, Erasure, Restriction, Portability Consent, Encryption, SCCs
CCPA USA (California) Know, Delete, Opt-Out No sale of data, Transparency
DPDP India Consent, Correction, Deletion Data Fiduciary compliance
LGPD Brazil Access, Rectification, Deletion User control and reporting
PIPEDA Canada Accountability, Accuracy Secure data handling
PDPA Singapore/Malaysia Consent, Notification Local data retention compliance

4.8 Ongoing Commitment

Data protection is not a one-time process but a continuous journey.
We regularly review our systems, third-party tools, and marketing practices to ensure they remain compliant with evolving privacy standards worldwide.

By using our website, you acknowledge that you have read, understood, and agreed to our data protection practices described in this section.

5. Your Rights

At SwapnilKankute.in, we believe every user should have full control over their personal data. Whether you’re visiting from India, Europe, the United States, or any other region, your privacy rights are respected and protected under the most recognized international data protection laws.

This section outlines the rights you have over your personal data, how you can exercise them, and how we ensure your requests are handled fairly, transparently, and promptly.

5.1 Overview of User Rights

We recognize and respect the following rights across major data protection frameworks such as:

  • GDPR (General Data Protection Regulation) – applicable for EU/EEA users

  • CCPA (California Consumer Privacy Act) – applicable for California, USA residents

  • DPDP (Digital Personal Data Protection Act, 2023) – applicable for users in India

  • LGPD (Brazil), PIPEDA (Canada), and PDPA (Singapore, Malaysia) – similar frameworks recognized globally

Each of these regulations grants individuals specific powers to access, control, and manage how their data is collected and processed.

5.2 Your Key Rights

Below are the rights you are entitled to, regardless of your location (with certain jurisdictional variations):

1. Right to Access

You have the right to know:

  • What personal data we collect about you.

  • How it is used and for what purpose.

  • Who it may be shared with (if anyone).

  • How long we retain it.

You can request a data access report by writing to privacy@swapnilkankute.in, and we will respond within the legally required period (typically within 30 days).

2. Right to Rectification

If you believe any of the information we hold about you is inaccurate or incomplete, you can request corrections.
We will verify and update the record promptly to ensure accuracy.

Example: If your name, email, or contact information changes, you may contact us anytime to have your records updated across our internal systems.

3. Right to Erasure (“Right to Be Forgotten”)

You may request that we delete your personal data under certain circumstances, such as:

  • When it’s no longer necessary for the purpose it was collected.

  • When you withdraw consent.

  • When the processing was unlawful.

Upon validation, we’ll remove or anonymize your information securely from our active systems, except where retention is required by law (for example, tax or regulatory purposes).

4. Right to Restrict Processing

You may ask us to limit how we use your data in cases where:

  • You contest the accuracy of data.

  • The processing is unlawful, but you prefer restriction over deletion.

  • You’ve objected to processing, and verification is pending.

During restriction, your data will be stored but not actively processed, ensuring that your privacy preferences are respected.

5. Right to Data Portability

You can request your personal data in a structured, commonly used, and machine-readable format (e.g., CSV, JSON).
You can also ask us to transfer your data directly to another service provider, where technically feasible.

This gives you flexibility and control over your digital footprint.

6. Right to Object

You have the right to object to:

  • Direct marketing communications.

  • Profiling or automated decision-making.

  • Data processing based on legitimate interests.

Once you object, we will cease such activities unless we can demonstrate overriding legitimate grounds that justify continued processing.

7. Right to Withdraw Consent

If you have previously given consent for data collection (e.g., newsletter signup, contact form, or analytics), you can withdraw it at any time.

Withdrawal will not affect the legality of prior processing but will stop any further data use under that consent basis.

You can manage or revoke consent directly by:

  • Adjusting cookie preferences in your browser.

  • Clicking the “unsubscribe” link in emails.

  • Writing to privacy@swapnilkankute.in.

8. Right to Lodge a Complaint

If you believe your data protection rights have been violated, you can contact us directly for resolution.
You may also escalate the issue to the relevant data protection authority in your region:

  • EU/EEA Users: Local Data Protection Authority under GDPR

  • India: Data Protection Board under DPDP Act (2023)

  • USA: California Privacy Protection Agency (for CCPA)

We encourage users to contact us first so we can resolve concerns quickly and fairly.

5.3 India-Specific Rights under the DPDP Act (2023)

For users located in India, your data rights are protected under the Digital Personal Data Protection Act (DPDP), 2023.
Under this law, you are recognized as a Data Principal, and Swapnil Kankute (and related brands) act as a Data Fiduciary.

Your rights under the DPDP Act include:

  1. Right to Access Information: Understand how your data is processed.

  2. Right to Correction and Erasure: Modify or delete data as needed.

  3. Right to Nominate: Designate another individual to exercise your rights in case of incapacity or death.

  4. Right to Grievance Redressal: Lodge complaints and expect prompt responses.

We respond to all Indian user requests in compliance with DPDP standards within a maximum of 30 working days.

5.4 How to Exercise Your Rights

We make it simple to exercise your rights. You can reach us via:

Email: privacy@swapnilkankute.in
Subject Line: “Data Rights Request – [Your Full Name]”
Required Information:

  • Your full name and contact details.

  • The right(s) you wish to exercise.

  • Proof of identity (if required to verify authenticity).

Once your request is received:

  • You’ll receive an acknowledgment within 7 working days.

  • We’ll process your request within 30 days, or sooner when possible.

  • If your request involves data held by third-party tools (like GA4 or Meta), we’ll assist in forwarding your request to the respective processors.

5.5 Automated Decision-Making and Profiling

We do not engage in automated decisions that produce significant effects on individuals.
While tools like GA4 or Meta Pixel may analyze behavior for optimization, this data is anonymized and aggregated.
No user is profiled for personal targeting or discrimination.

If at any time we introduce automated decision-making (for example, AI-driven personalization), we will clearly notify users and offer an opt-out option.

5.6 Transparency in Communication

All communications regarding your rights are:

  • Free of charge (unless requests are excessive or repetitive).

  • Clear and easy to understand, avoiding technical jargon.

  • Documented, ensuring accountability and traceability for compliance purposes.

We maintain a record of all data rights requests and their resolutions as part of our internal audit process.

5.7 Non-Discrimination Policy

Exercising your privacy rights will never result in any discrimination.
We will not deny access, charge different prices, reduce functionality, or provide inferior service simply because you exercised your data protection rights.

5.8 Cross-Border Considerations

Users from outside India have equal rights as per their respective jurisdictions.
We follow Standard Contractual Clauses (SCCs) and adequate safeguard measures for any international data transfer.

Your data will always receive an equivalent level of protection regardless of where it’s processed or stored.

5.9 Special Rights for Minors

We do not intentionally collect data from children under 13 years of age.
If we become aware that personal data has been collected from a minor without parental consent, we will take immediate steps to delete such data.

Parents or guardians may contact privacy@swapnilkankute.in to request removal of a child’s information.

5.10 Commitment to Continuous Improvement

Data protection is not static — it evolves as laws, technologies, and user expectations change.
We continually refine our internal processes, employee training, and automation systems to ensure that your rights are always respected and enforced in practice, not just in policy.

Our goal is to empower every visitor, student, and professional engaging with SwapnilKankute.in to feel safe, informed, and in control of their personal information.

5.11 Summary

User Right Description Applicable Law How to Exercise
Access View data we hold about you GDPR, CCPA, DPDP Email request
Rectification Correct inaccurate data All Email request
Erasure Delete your data GDPR, DPDP Email or written request
Restrict Processing Pause data use GDPR Contact form
Data Portability Transfer your data GDPR Structured export
Object Stop marketing/profiling GDPR, CCPA Opt-out
Withdraw Consent Revoke data use permission All Cookie settings or email
Lodge Complaint Raise data concerns All Contact DPO

By using SwapnilKankute.in, you acknowledge that you understand and accept these user rights.
We remain dedicated to making your data experience secure, transparent, and empowering — reflecting our core value of ethical digital transformation.

6. Data Retention

At SwapnilKankute.in, we understand that retaining your data responsibly is as important as collecting it transparently. Our data retention policy is designed to ensure that personal information is stored only for as long as necessary — for legitimate business, analytical, legal, or operational reasons — and securely deleted or anonymized once its purpose is fulfilled.

This section details how long we retain different types of data, the reasons behind retention, and the mechanisms we use to ensure lawful, safe, and ethical data lifecycle management.

6.1 Purpose of Data Retention

We retain data to serve specific, pre-defined purposes, such as:

  1. Service Delivery and Support
    To provide ongoing access to resources, respond to inquiries, and maintain a personalized experience for visitors and users.

  2. Performance Analytics
    To evaluate traffic patterns, optimize website usability, and measure marketing performance through tools like GA4, Microsoft Clarity, and Meta Pixel.

  3. Legal and Regulatory Compliance
    To comply with obligations such as tax, audit, consumer protection, or data protection laws (for example, GDPR’s Article 5(1)(e) and DPDP’s Section 8).

  4. Internal Business Operations
    To enhance platform functionality, improve marketing automation, and manage security or fraud detection systems.

We strictly prohibit indefinite data retention. Every dataset has a clear retention period, defined according to purpose, sensitivity, and legal requirements.

6.2 Data Retention Principles

Our data retention practices are guided by key international privacy principles:

  • Purpose Limitation: Data is not kept longer than necessary for the stated purpose.

  • Storage Minimization: Only essential records are stored.

  • Security by Design: Data is stored in secure servers with encryption, limited access, and backup policies.

  • Accountability: Every retention activity is traceable and subject to periodic audit.

These principles ensure that retention is not arbitrary but governed by structured, lawful logic.

6.3 Categories of Data and Retention Periods

Below is an overview of the main categories of information we collect and how long each is typically retained:

Data Type Examples Retention Duration Purpose / Legal Basis
Personal Identifiers Name, email, contact number (via forms) Up to 3 years from last interaction Communication, inquiries, user support
Technical Data IP address, device info, browser details 12–24 months Analytics, performance optimization
Cookies and Analytics Data User behavior, page views, sessions 6–18 months GA4, Clarity, Meta tracking (aggregated)
Marketing and Campaign Data Newsletter subscriptions, ad tracking Until unsubscribe or 24 months max Consent-based marketing and optimization
Account or Transactional Data (if applicable) Purchase records, course enrollments 5–7 years Legal, tax, and auditing compliance
Security and Log Data Server logs, access history 90–180 days Security, troubleshooting, fraud detection
Backup Archives Encrypted copies of site data Up to 12 months Disaster recovery and system integrity

Each retention duration is periodically reviewed to ensure alignment with the latest data protection regulations and operational requirements.

6.4 Data Deletion and Anonymization

Once the retention period expires, your data is handled in one of the following ways:

  1. Permanent Deletion:
    Data is securely deleted using methods that prevent recovery, such as digital shredding and overwrite mechanisms.

  2. Anonymization:
    Personal identifiers are removed, and data is converted into anonymous statistical datasets used for trend analysis and research.

  3. Pseudonymization:
    Where complete deletion is not possible (due to legal obligations), data is pseudonymized — stored separately from identifying information to minimize risk.

We ensure that all deletion and anonymization processes comply with ISO/IEC 27001 security standards and are performed on verified systems only.

6.5 Legal and Regulatory Obligations

Certain laws require data to be retained for specific periods.
For example:

  • GDPR Article 5(1)(e): Data should not be kept longer than necessary, except for public interest or legal obligations.

  • CCPA (California): Retention must align with disclosed collection purposes.

  • DPDP Act (India): Mandates purpose-driven retention with user rights to deletion and correction.

Hence, some information (like tax or legal transaction records) may be kept beyond normal operational timelines to meet compliance requirements. Once those obligations end, data is promptly deleted or anonymized.

6.6 Retention of Consent Records

Consent plays a crucial role in privacy compliance. We maintain detailed logs of:

  • When and how users granted consent (e.g., cookie banners, form submissions).

  • What permissions were provided (e.g., analytics tracking, marketing emails).

  • When consent was withdrawn.

These records are stored securely for up to 5 years from the date of consent withdrawal, solely for compliance verification in case of audits or disputes.

6.7 Third-Party Data Retention

Certain data collected via third-party platforms may be retained according to their individual policies. For example:

  • Google Analytics 4: 14–26 months (configurable data retention setting).

  • Microsoft Clarity: Session and heatmap data retained up to 12 months.

  • Meta Pixel: Ad interaction data retained as per Meta’s privacy framework.

  • Google Search Console: Aggregate performance data retained indefinitely (non-personal).

We review and configure these tools to maintain minimum necessary retention while ensuring analytical usefulness.

6.8 Data Retention for Internal Projects

As stated earlier, SwapnilKankute.in and its affiliated ventures (like Pixinate, XpertHospitality, VisaMines, Super Brain India, etc.) may analyze anonymized data internally to improve service quality and user engagement.

Such data is retained in aggregated form only, without storing or referencing any individual’s personal identifiers.
This ensures continuous innovation while maintaining 100% privacy integrity.

6.9 Backup and Disaster Recovery Policy

Our servers and cloud platforms are periodically backed up to ensure continuity in case of system failure or cyber incidents.

  • Backups are encrypted, restricted, and auto-deleted after the retention period (maximum 12 months).

  • Backups are used only for recovery purposes and are never mined for analytics or shared externally.

All backup retention systems are aligned with GDPR’s “integrity and confidentiality” principles and India’s DPDP “reasonable security safeguards” requirement.

6.10 User-Initiated Deletion Requests

As a user, you have the right to request deletion of your personal data at any time.
Upon receiving a valid deletion request:

  1. We confirm your identity for security verification.

  2. Data is permanently deleted from active systems within 30 working days.

  3. If data exists in backups, it is automatically removed during the next scheduled backup cycle.

  4. A confirmation email is sent once the process is complete.

We log all deletion requests and confirmations to maintain compliance transparency.

6.11 Automated Retention Management

We employ automation to manage data retention more efficiently:

  • Tagging systems in GA4 automatically expire data after set intervals.

  • Scripts purge expired form entries and logs.

  • Policy-based triggers in cloud servers delete old backups automatically.

This automation ensures data is managed continuously and consistently without manual errors.

6.12 Retention for Research and Analytics

Some anonymized, aggregated datasets (such as traffic patterns or campaign results) may be retained indefinitely for research, benchmarking, or educational use.
These datasets contain no personally identifiable information (PII) and are purely statistical in nature.

Example:
Analyzing overall user engagement on digital marketing tutorials to identify content improvements — without identifying individual users.

6.13 Auditing and Review Process

We conduct annual reviews of our data retention schedules and compliance with laws like GDPR, CCPA, and DPDP.
This includes:

  • Verifying data stored across internal and external systems.

  • Deleting obsolete or duplicate data.

  • Reviewing vendor compliance.

  • Updating retention timelines when regulations evolve.

A detailed Data Retention Register is maintained internally to document this process.

6.14 Security During Retention

While data is retained, it is safeguarded through:

  • Encryption (AES-256 standard).

  • Firewalls and intrusion detection systems.

  • Regular access log audits.

  • Multi-factor authentication for admin-level access.

  • Restricted access on a “need-to-know” basis.

This ensures that retained data, even if stored for legitimate reasons, remains private, confidential, and tamper-proof.

6.15 End-of-Life Data Handling

When the retention period ends:

  1. A review identifies expired data.

  2. The data is deleted or anonymized using certified methods.

  3. A deletion certificate is recorded in the system logs.

This ensures the full data lifecycle — from collection to destruction — adheres to lawful and ethical standards.

6.16 Summary Table

Category Retention Period Disposal Method Notes
Personal Info 3 years Secure deletion User can request earlier removal
Analytics Data 14–26 months Auto-expiry (GA4) Aggregated before deletion
Cookies 6–18 months Browser-level User-controlled
Consent Records 5 years Manual purge Legal audit trail
Backups 12 months Auto-delete Encrypted
Transactional Data 7 years Secure archive Required by law

6.17 Our Commitment

Data retention at SwapnilKankute.in is built on three promises:

  1. Transparency: You’ll always know how long your data is stored.

  2. Accountability: Every piece of data has a defined purpose and expiry.

  3. Security: Retained data is protected with industry-standard safeguards until responsibly deleted.

We see data retention not as an obligation — but as an extension of our digital ethics and trust philosophy.

7. Cookies Policy

At SwapnilKankute.in, we use cookies and similar tracking technologies to enhance your browsing experience, analyze user behavior, and deliver relevant content. This section explains what cookies are, how we use them, your rights to control them, and how they align with global privacy regulations such as the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and Digital Personal Data Protection Act (DPDP – India).

We are transparent about our use of cookies — we never use them to sell or misuse your data. Every cookie serves a legitimate purpose: improving website functionality, user experience, and internal analytics.

7.1 What Are Cookies?

Cookies are small text files stored on your device (computer, tablet, or smartphone) when you visit a website. They allow the website to recognize your device, remember your preferences, and provide you with a more personalized experience on repeat visits.

Cookies do not give us access to your device or personal files. Instead, they store limited technical data to help us understand how users interact with our site.

Examples of information cookies may store include:

  • Your browser type and version

  • IP address (anonymized where possible)

  • Pages visited and time spent

  • Language preferences

  • Referring websites or campaign sources

  • Login session data (for secure access areas)

7.2 Types of Cookies We Use

To provide clarity and compliance, we categorize cookies used on SwapnilKankute.in as follows:

A. Strictly Necessary Cookies

These cookies are essential for website operation and cannot be disabled. They ensure basic functionalities like page navigation, secure logins, and form submissions.
Example: Session cookies that maintain your login state.

B. Performance and Analytics Cookies

Used to analyze visitor behavior and improve performance. We use Google Analytics 4 (GA4), Microsoft Clarity, and similar tools for understanding user interaction patterns.
All collected data is anonymized and used only for internal optimization.

Example tools:

  • _ga, _gid (Google Analytics)

  • _clck, _clsk (Microsoft Clarity session tracking)

C. Functional Cookies

These cookies remember your preferences (such as language, region, or theme) to deliver a consistent experience across sessions.
Example: Remembering your cookie preferences or last-visited page.

D. Marketing and Retargeting Cookies

We use limited marketing cookies (like Meta Pixel) to measure ad performance and show relevant campaigns to users who have shown interest in our content.
However, we do not sell or share data with external advertisers; it’s strictly for internal marketing insights.

Example:

  • _fbp (Meta/Facebook Pixel) for conversion tracking

E. Third-Party Cookies

Some cookies are set by external platforms that we integrate with — such as YouTube (for embedded videos) or LinkedIn (for campaign tracking).
These providers have their own privacy and cookie policies, and we ensure their compliance with GDPR and other frameworks.

7.3 How Cookies Are Used

We use cookies to:

  1. Ensure Website Functionality: Keep our website operational, secure, and user-friendly.

  2. Improve User Experience: Customize content and layout based on your preferences.

  3. Measure and Optimize Performance: Use analytics data to refine content, design, and user flows.

  4. Marketing Optimization: Track campaign success and prevent showing irrelevant ads.

  5. Security and Fraud Prevention: Detect and prevent malicious or unusual activity.

Each of these uses aligns with a specific lawful basis under GDPR — typically “legitimate interest” or “user consent.”

7.4 Cookie Consent and Control

We respect your right to privacy and choice. When you first visit SwapnilKankute.in, a cookie consent banner appears, giving you the option to:

  • Accept all cookies

  • Reject non-essential cookies

  • Customize preferences

You can manage or withdraw consent at any time by:

  • Clicking the “Cookie Settings” link in our website footer

  • Adjusting your browser’s privacy settings

  • Clearing existing cookies from your browser

We maintain a record of consent status (accept/reject) to demonstrate compliance under GDPR and DPDP standards.

7.5 Managing Cookies via Browser Settings

You can control cookie behavior directly from your browser.
Here’s how to manage them on popular browsers:

  • Google Chrome: Settings → Privacy and Security → Cookies and other site data

  • Mozilla Firefox: Preferences → Privacy & Security → Cookies and Site Data

  • Microsoft Edge: Settings → Site permissions → Cookies and site data

  • Safari (Mac/iOS): Preferences → Privacy → Manage Website Data

Blocking cookies may affect the functionality of certain site features, but you’ll still have access to most content and information.

7.6 Third-Party Tracking and Analytics

We use third-party analytics and insight tools, all of which comply with international privacy standards:

Tool Provider Purpose Data Retention Compliance
Google Analytics 4 Google LLC Website analytics 14 months (default) GDPR, CCPA
Microsoft Clarity Microsoft User session heatmaps & behavior 12 months GDPR, DPDP
Meta Pixel Meta Platforms Conversion tracking & optimization Custom (within Meta policy) GDPR, CCPA
Google Search Console Google SEO performance analysis Aggregated data only GDPR
Cloudflare / Hosting logs Server provider Security & CDN optimization 90 days GDPR, DPDP

All third-party tools operate under data processing agreements ensuring compliance, limited retention, and anonymized identifiers wherever applicable.

7.7 Legal Basis for Using Cookies

Our use of cookies is grounded in the following legal bases under international law:

  • Consent: When you accept analytics or marketing cookies voluntarily.

  • Legitimate Interest: For essential and security-related cookies needed to operate the website.

  • Performance of Contract: For registered users accessing account-based services.

We maintain transparency by detailing each category’s purpose and data flow within our internal cookie inventory.

7.8 Do Not Track (DNT) and Global Privacy Control (GPC)

Our systems recognize and respect Do Not Track (DNT) and Global Privacy Control (GPC) signals sent from browsers where supported.
When such signals are detected, all non-essential cookies and marketing tags are automatically disabled to ensure compliance with CCPA and GDPR guidelines.

7.9 Updates to Our Cookie Policy

We may periodically update this Cookie Policy to reflect:

  • New cookie types introduced by tools or features

  • Regulatory changes (GDPR, DPDP, CCPA updates)

  • Enhancements in transparency or user control

Whenever changes are made, the updated version will include a “Last Updated” date, and if significant, users will be notified via banner or email (where applicable).

7.10 Transparency Summary

Cookie Category Purpose Storage Duration User Control
Necessary Core website functionality Session only Not configurable
Analytics Traffic insights & improvements 12–14 months Opt-in/Opt-out
Functional Save preferences 6–12 months Opt-in
Marketing Campaign measurement 3–6 months Opt-in
Third-Party Embedded media/tracking Varies Manage via browser

By continuing to use SwapnilKankute.in, you acknowledge that you have read and understood this Cookies Policy. You also agree to our transparent use of cookies for analytics, personalization, and website optimization in line with global privacy best practices.

We remain committed to ensuring your data is used responsibly and with full respect for your privacy preferences.

8. Third-Party Links

At SwapnilKankute.in, our website may contain links to external websites, resources, and platforms. While we aim to provide valuable content, we do not control the privacy practices or data collection methods of these third-party sites. This section outlines how we handle such links, your rights, and the precautions we take to ensure your online safety and compliance with global data protection regulations.

8.1 Understanding Third-Party Links

Third-party links are hyperlinks that redirect users from SwapnilKankute.in to another website, portal, or platform. Examples include:

  • References to external blogs, articles, or resources

  • Embedded videos or content from platforms like YouTube or Vimeo

  • Affiliate links or sponsored content

  • Integrated social media feeds (Facebook, LinkedIn, Instagram)

These links are provided solely for user convenience and additional information.

8.2 No Control Over External Websites

While we carefully select links and affiliates based on relevance and credibility, we do not control:

  • How third-party websites collect, store, or process your personal data

  • Their cookie policies, tracking mechanisms, or analytics tools

  • Their compliance with international privacy laws such as GDPR, CCPA, DPDP, or local regulations

Once you leave our website via a third-party link, SwapnilKankute.in cannot guarantee data privacy or security. We encourage users to read the linked website’s Privacy Policy before interacting or submitting any personal information.

8.3 Types of Third-Party Links on Our Website

A. Affiliate and Sponsored Links

We may include affiliate links to recommended tools, products, or services. While we may earn a commission for referred sales, we never share your personal data with these affiliates without explicit consent.

All affiliate links on SwapnilKankute.in comply with:

  • GDPR: Users must consent to any data sharing for marketing or tracking purposes

  • CCPA: California residents have the right to opt-out of sharing personal information with affiliates

  • DPDP: Indian users’ data is never sold or shared without consent

B. Embedded Media

Content from external platforms may include embedded videos, audio, or interactive tools. Examples:

  • YouTube videos embedded in blog posts

  • LinkedIn posts embedded on a page

  • Interactive survey or quiz widgets

Embedded media may track user interaction, set cookies, or collect analytics. We advise reviewing the external platform’s cookie and privacy policies to understand how your information is used.

C. Partner and Resource Links

We sometimes link to trusted industry partners, tools, or resources relevant to marketing, digital education, or entrepreneurship. These links provide additional learning opportunities but operate independently of SwapnilKankute.in.

8.4 Responsibility Disclaimer

When you access third-party websites via our links:

  1. You acknowledge that SwapnilKankute.in is not responsible for privacy breaches, data misuse, or legal violations by those websites.

  2. We recommend reviewing their privacy policies, terms of service, and cookie notices.

  3. Any transactions, data submissions, or interactions on third-party sites are solely between you and the external provider.

We cannot and do not guarantee that external websites maintain the same level of security or follow the same compliance standards as our platform.

8.5 Data Sharing with Third Parties

We may share limited information with third-party platforms only in specific, controlled circumstances:

  • For analytics tracking (e.g., GA4, Microsoft Clarity)

  • For marketing and ad optimization (e.g., Meta Pixel)

  • For affiliate conversions (anonymous or pseudonymized data, where consent is provided)

Important: We do not sell, rent, or trade your personal data with third parties. All data shared is strictly for service enhancement or legitimate business purposes, in compliance with GDPR, CCPA, and DPDP laws.

8.6 How to Protect Your Privacy with Third-Party Links

To maintain control over your personal data while browsing external sites:

  1. Check Privacy Policies: Always read the external site’s privacy notice before providing personal information.

  2. Manage Cookies: Adjust cookie settings via your browser or the external site’s options.

  3. Use Ad Blockers or Privacy Tools: These can limit tracking from third-party analytics or ads.

  4. Exercise Your Rights: If you’re in the EU, California, or India, use GDPR, CCPA, or DPDP rights to restrict how third-party platforms handle your data.

  5. Be Cautious with Transactions: Avoid sharing sensitive information on platforms you do not trust fully.

By following these practices, users can navigate linked websites securely and responsibly.

8.7 Compliance with International Privacy Laws

A. GDPR (European Union)

If you access our website from the EU, third-party links are subject to the same principles of transparency and consent. We ensure that:

  • Users are notified when external cookies or trackers may be set

  • Consent is obtained for any marketing or analytics transfer to third parties

  • User rights (access, deletion, objection) can be exercised with both our platform and, where applicable, the external provider

B. CCPA (California, USA)

California residents have the right to:

  • Opt-out of the sale or sharing of personal data with third parties

  • Request disclosure of information shared with external affiliates

  • Access and delete personal information retained by third-party platforms, where applicable

C. DPDP (India, 2023)

For Indian users, data shared with external tools or websites is controlled under the DPDP Act:

  • Consent is required before sharing identifiable data

  • Users can request deletion or correction of personal information shared externally

  • We maintain accountability logs to document lawful data sharing

8.8 Embedded Content and Tracking

Some third-party content embedded on our site may set cookies, including:

  • Video embeds (YouTube, Vimeo)

  • Social media widgets (Facebook, LinkedIn, Instagram)

  • Interactive forms (Typeform, Google Forms)

These embedded items may collect data such as IP addresses, device information, and interaction history. We strive to:

  • Only embed reputable providers

  • Inform users through this policy about potential tracking

  • Advise users to review external providers’ privacy notices

8.9 Security Measures for Third-Party Links

While we cannot control third-party platforms directly, we implement safeguards including:

  • Careful vendor selection: Ensuring external partners comply with GDPR, CCPA, and DPDP

  • Limited data sharing: Only sharing what is necessary for functionality or analytics

  • Encrypted data transfer: Using secure HTTPS links to minimize risk during redirection

  • Regular audits: Reviewing embedded services and affiliates for compliance and reliability

These measures reduce risks associated with external websites while maintaining transparency.

8.10 Limitation of Liability

By clicking on third-party links:

  • You acknowledge that SwapnilKankute.in is not responsible for external website content, policies, or practices

  • We disclaim liability for any loss, damage, or unauthorized data use resulting from interaction with external websites

  • Users engage with third-party platforms at their own discretion

8.11 Transparency and Accountability

We maintain a Third-Party Link Register documenting:

  • All embedded platforms, widgets, or affiliates

  • Purpose of integration (analytics, marketing, reference)

  • Privacy and data handling practices

  • Consent mechanisms used

This register ensures traceability and compliance with international laws, audits, and user requests.

8.12 Updates to Third-Party Links Policy

We may periodically update this section to:

  • Reflect new external partnerships or affiliate programs

  • Update embedded tools or platforms

  • Align with evolving privacy regulations (GDPR, CCPA, DPDP, and others)

Users will be informed via the Last Updated date on this page, and critical changes may trigger a consent banner or notification.

8.13 Summary Table

Type of Third-Party Link Purpose Data Shared User Control
Affiliate Links Referral tracking & conversion Limited/pseudonymized Opt-out via preference or browser
Embedded Media Videos, forms, interactive content Device info, session data Opt-out via browser settings
Social Media Widgets Engagement, sharing Public interaction Control via platform settings
Partner Resources External learning or reference Minimal, anonymized Review external privacy policy

8.14 Key Takeaways for Users

  1. Check External Policies: Each third-party link may have its own privacy rules.

  2. Limit Data Sharing: Avoid providing personal information unless necessary.

  3. Exercise Your Rights: Use GDPR, CCPA, or DPDP provisions to manage data shared with third parties.

  4. Stay Secure: Use HTTPS, privacy settings, and trusted devices while interacting with external sites.

9. Children’s Privacy

At SwapnilKankute.in, we take the privacy and safety of children very seriously. Our website, educational platforms, and digital content are intended for general audiences, and we are committed to protecting children’s personal data in accordance with international laws, including:

  • Children’s Online Privacy Protection Act (COPPA) – United States

  • General Data Protection Regulation (GDPR, Article 8) – European Union

  • California Consumer Privacy Act (CCPA/CPRA) – United States, California

  • Digital Personal Data Protection Act (DPDP, 2023) – India

  • Other global child protection regulations

This section explains how we collect, process, and protect data from children, along with the rights and responsibilities of parents or guardians.

9.1 Age Restrictions

Our website and services are not intended for children under the age of 13 (or applicable age in your jurisdiction). We do not knowingly collect personal information from children without parental consent.

Key points:

  • Users under 13 (or jurisdictional equivalent) should not submit personal information.

  • If a child under the required age submits personal data, we request parental verification before collection or processing.

  • In the event we inadvertently collect such information, it is promptly deleted.

9.2 Types of Information Collected from Children

In some cases, children may access educational content, quizzes, or interactive learning tools. We may collect limited data strictly for educational purposes, including:

  • Non-identifiable technical information: Device type, browser, session duration

  • Anonymous quiz results or progress tracking: For internal educational improvement

  • Parental contact information: When required for consent verification or account setup

We do not collect sensitive personal identifiers from children unless explicit parental consent is provided.

9.3 Parental Consent and Verification

Parents or legal guardians have the right to control how children’s personal information is handled:

  1. Consent Required: Before collecting data from a child under 13 (or local age), we require verifiable parental consent.

  2. Consent Methods: This may include email verification, signed consent forms, or parental approval via secure channels.

  3. Withdraw Consent: Parents can withdraw consent at any time by contacting privacy@swapnilkankute.in. Upon verification, all data collected from the child will be deleted promptly.

We maintain records of parental consent for accountability and legal compliance.

9.4 Children’s Rights under International Laws

A. GDPR (EU/EEA)

  • Children under 16 (or lower age set by member states, minimum 13) require parental consent for data processing.

  • Parents can request access, correction, or deletion of their child’s data.

  • Data must be used only for the purpose explicitly consented to.

B. COPPA (USA)

  • Parents can review, delete, or refuse the collection of their child’s data.

  • We provide tools to opt-out of data collection and ensure any collected information is removed upon request.

C. CCPA (California)

  • California residents under 16 have the right to opt-in or opt-out of marketing communications.

  • Parents can exercise their children’s privacy rights where applicable.

D. DPDP (India)

  • Children are considered “Data Principals” with parental authority in managing personal data.

  • Parents can request access, correction, or deletion of children’s personal information, and we comply within the statutory timelines.

9.5 How We Protect Children’s Data

Protecting children’s personal information is a top priority. We implement robust security measures, including:

  • Encryption: All data is encrypted in transit and at rest.

  • Limited access: Only authorized staff can access child-related data.

  • Regular audits: Internal reviews ensure compliance with privacy laws.

  • Anonymization: When possible, we use anonymized identifiers for learning analytics.

These measures minimize the risk of unauthorized access, disclosure, or misuse of children’s data.

9.6 Children’s Use of Cookies and Tracking

We limit cookies and tracking technologies for children’s interactions:

  • Essential cookies only for session management and platform functionality

  • No marketing or behavioral tracking is applied to children without parental consent

  • Anonymous analytics may be used to monitor platform performance for learning purposes

Parents can control or disable cookies via browser settings, ensuring children’s activities remain private.

9.7 Educational Tools and Third-Party Services

We may use third-party educational tools, such as video platforms, interactive quizzes, or learning management systems. While we strive to select child-safe providers:

  • We ensure data processing agreements are in place with third-party services

  • Children’s personal data is shared only when consent is verified

  • Aggregated, anonymized data may be used for educational insights, not individual tracking

Parents should review third-party privacy policies when children interact with embedded services.

9.8 How Parents Can Exercise Rights

Parents or guardians can take the following actions to manage their child’s personal information:

  1. Request Access: Understand what personal data we hold about their child.

  2. Request Correction: Update inaccurate or incomplete data.

  3. Request Deletion: Permanently remove personal information collected from the child.

  4. Withdraw Consent: Revoke permission for data collection or use.

  5. Restrict Processing: Limit how data is used for analytics or internal research.

Requests can be made via:

📧 Email: privacy@swapnilkankute.in
Subject: “Children’s Data Request – [Child Name]”

We verify parental identity to ensure requests are legitimate before taking action.

9.9 Safety and Security Practices for Children’s Accounts

For registered accounts or interactive educational platforms:

  • Strong passwords are required for account creation

  • Multi-factor authentication is recommended for parental access

  • Access logs are maintained to monitor suspicious activity

  • We never share children’s personal data with third-party marketers or advertisers

These steps ensure a secure digital learning environment.

9.10 Data Retention for Children

Data collected from children is retained only as long as necessary to provide services or meet legal obligations.

  • Non-identifiable or anonymized data may be kept longer for educational research.

  • Personally identifiable information (PII) is deleted promptly upon request or withdrawal of consent.

  • All retention aligns with GDPR, COPPA, CCPA, and DPDP regulations.

9.11 Monitoring and Review

We regularly review children’s privacy practices:

  • Annual audits ensure compliance with international laws

  • Periodic updates to our systems and tools maintain security standards

  • New features or third-party integrations are evaluated for child safety before deployment

This proactive approach demonstrates our commitment to ongoing child protection.

9.12 Summary of Children’s Privacy Practices

Practice Description
Age Restriction Under 13 (or local age) cannot submit personal data without consent
Parental Consent Required before collecting identifiable data
Limited Data Collection Only essential data for education or platform functionality
No Marketing Targeting Children’s data is never used for advertising without consent
Security Measures Encryption, restricted access, audits, anonymization
Data Rights Parents can access, correct, delete, withdraw consent
Retention Personal data deleted promptly; anonymized data may be retained

9.13 Key Takeaways for Parents

  1. Children under 13 should not provide personal information without parental approval.

  2. Parents control what data is collected, how it is used, and can request deletion at any time.

  3. Third-party embedded tools follow child-safe agreements, but parents are encouraged to review external policies.

  4. Security measures ensure that children’s data is protected, anonymized, and monitored consistently.

 

By using SwapnilKankute.in, parents and guardians acknowledge that they understand our children’s privacy practices and agree to the responsible, lawful, and ethical handling of children’s personal information.

10. Updates to This Policy

At SwapnilKankute.in, protecting your personal information is a continuous commitment. Privacy laws, technology, and business operations evolve over time, which may require updates to our Privacy Policy. This section explains how we manage, communicate, and implement changes to ensure transparency, legal compliance, and trustworthiness.

10.1 Purpose of Policy Updates

Our Privacy Policy may be updated for several reasons, including but not limited to:

  1. Regulatory Compliance:
    Adapting to changes in privacy and data protection laws, including GDPR (EU), CCPA (California, USA), DPDP (India), COPPA (US), and other global regulations.

  2. Technological Advancements:
    Updating data processing methods, analytics tools, and security measures, such as GA4, Microsoft Clarity, Meta Pixel, or new website integrations.

  3. Operational Changes:
    Introducing new services, features, or partnerships that may involve data collection, processing, or storage.

  4. Improving Transparency:
    Clarifying how data is collected, used, and retained to ensure users are fully informed about their rights and our practices.

  5. Security Enhancements:
    Updating processes to prevent data breaches, misuse, or unauthorized access while maintaining compliance with global privacy standards.

10.2 Frequency of Policy Reviews

We review our Privacy Policy regularly to ensure it reflects current practices and legal obligations:

  • Annual Comprehensive Review: A detailed audit of all data processing activities, third-party integrations, and retention practices.

  • Ad-Hoc Updates: When new laws, technologies, or services require immediate adjustments.

  • User Feedback Consideration: Incorporating concerns or requests from users about data handling or privacy matters.

These reviews ensure that the Privacy Policy remains accurate, relevant, and legally compliant.

10.3 Notification of Changes

When the Privacy Policy is updated, SwapnilKankute.in follows transparent communication practices:

  1. Policy Update Date:
    Each update includes a “Last Updated” date at the top of the Privacy Policy page to indicate the most recent revision.

  2. Banner Notifications:
    For major changes affecting data collection, consent, or user rights, a banner may appear on the website to notify users of the update.

  3. Email Notification:
    Registered users or subscribers may receive an email highlighting significant updates, ensuring they are aware of new practices or choices.

  4. Detailed Change Log:
    A summary of key changes may be included at the end of the policy, outlining what was added, modified, or removed.

10.4 User Responsibility

Users are responsible for:

  • Reviewing the Privacy Policy periodically to stay informed about updates.

  • Adjusting consent settings or preferences if they do not agree with changes.

  • Contacting SwapnilKankute.in if clarification or action is required regarding data handling.

Continued use of the website after a policy update constitutes acceptance of the revised terms.

10.5 Minor vs. Major Updates

A. Minor Updates

  • Non-critical clarifications

  • Formatting or grammar improvements

  • Updates that do not materially affect data usage or user rights

For minor updates, notification may be limited to the “Last Updated” date.

B. Major Updates

  • Introduction of new data collection tools or tracking mechanisms

  • Changes in data sharing, retention, or processing practices

  • Significant legal compliance updates (GDPR, CCPA, DPDP, COPPA)

Major updates require active user notification, including banners, emails, or prompts to review and consent.

10.6 User Consent After Updates

In accordance with GDPR and DPDP:

  • If changes materially alter how personal data is collected or used, users may be required to re-consent.

  • Users who do not agree with the new terms can exercise their rights, including opting out, requesting deletion, or discontinuing use of services.

Under CCPA, California residents retain the right to opt-out of data sales or sharing even after updates. While SwapnilKankute.in does not sell personal data, we ensure compliance with the law for transparency and record-keeping.

10.7 Impact of Policy Updates on Previously Collected Data

Existing data collected prior to updates will be handled as follows:

  1. Continued Compliance: Existing data continues to be managed under the original policy until retention expires or users request changes.

  2. Alignment with New Policy: If new regulations or tools affect data previously collected, we may update records, anonymize information, or notify affected users.

  3. Data Deletion or Correction: Users can request deletion or correction of previously collected data to align with new policy practices.

This approach ensures that historical data remains secure and compliant with evolving laws.

10.8 How We Document Updates

SwapnilKankute.in maintains a comprehensive record of Privacy Policy revisions:

  • Version Control: Each update is logged with a version number and date.

  • Change Description: Detailed notes on additions, removals, and modifications.

  • Audit Trail: Internal documentation to demonstrate compliance during audits or regulatory reviews.

This record-keeping ensures accountability and demonstrates adherence to GDPR, CCPA, DPDP, and other global privacy frameworks.

10.9 Examples of Recent Updates

To illustrate, recent updates to our Privacy Policy may include:

  • Integration of GA4 and Microsoft Clarity: Adding sections on data collection, analytics retention, and consent management.

  • Introduction of Meta Pixel Tracking: Clarifying marketing cookies and internal use for ad optimization.

  • Children’s Privacy Enhancements: Updating parental consent processes and data handling for under-13 users.

  • International Law Alignment: Adding DPDP compliance details for Indian users and expanding CCPA rights for California residents.

These examples show our commitment to continuous improvement and regulatory alignment.

10.10 Ensuring Transparency and Trust

We aim to make all updates understandable and accessible:

  • Clear headings and structured layout for easy reading

  • Plain language explanations, avoiding legal jargon

  • Examples and summaries to help users comprehend implications

  • Easy-to-find “Last Updated” date and contact information for inquiries

Our goal is to build trust by keeping users informed about their personal data and privacy rights.

10.11 User Action Upon Updates

Users are encouraged to:

  1. Review Changes: Understand what data practices have been modified.

  2. Adjust Preferences: Update cookie settings or marketing preferences if needed.

  3. Exercise Rights: Contact us for access, correction, deletion, or data portability requests.

  4. Opt-Out if Needed: Discontinue use of the site or services if they do not agree with updates.

This ensures that users retain control over their personal information in a dynamic digital environment.

10.12 Contacting Us About Updates

For questions, concerns, or clarifications regarding Privacy Policy updates:

🌐 Website: https://swapnilkankute.in
📍 Location: Ahmedabad, India

We respond promptly to all inquiries and guide users on exercising their privacy rights.

10.13 Summary Table

Aspect Description
Purpose Ensure compliance, transparency, and trust
Frequency Annual reviews + ad-hoc updates
Notification Last Updated date, banners, emails (major changes)
Minor vs Major Minor: formatting/clarifications; Major: legal or data changes
User Action Review, adjust preferences, re-consent if needed
Historical Data Managed under original policy until retention ends
Documentation Version control, audit trail, internal compliance logs

10.14 Key Takeaways

  1. Privacy policies evolve to reflect new laws, technology, and business practices.

  2. Users should periodically review the Privacy Policy to stay informed.

  3. Major updates may require active re-consent or adjustments to user preferences.

  4. We maintain transparency through notifications, versioning, and clear communication.

  5. All updates are made with the user’s privacy, security, and rights as the top priority.

 

By continuing to use SwapnilKankute.in, you acknowledge that you have read, understood, and accepted the terms of the updated Privacy Policy. Our commitment remains to inform, protect, and empower users, ensuring that your personal data is handled responsibly in line with GDPR, CCPA, DPDP, and global best practices.

Certified digital marketer with a decade of experience. Specializing in delivering profit-driving solutions through strategic digital marketing techniques. 

Follow Me On

Facebook-f Twitter Instagram Youtube Linkedin

SWAP ©2012- 2030 

DMCA - Swapnil Kankute
copyscape- Swapnil Kankute

Proven Digital Marketing Tips Straight to Your Inbox

Get access to exclusive tips, strategies and case studies that I don’t share anywhere else

You have been successfully Subscribed! Ops! Something went wrong, please try again.
No, thank you I don't want to save

Ready To Take Your Business To
The Next Level?

Partner with Swapnil Kankute and unlock its full potential.

No Thanks i don't want to save