Privacy Policy

Effective Date: 06 September 2025
Entity: Brats Bharat Foundation (CIN: U85500UP2025NPL226908)
Website: https://bratsbharatfoundation.org

Brats Bharat Foundation (“we”, “us”, “our”) is the data controller of personal data processed through this website. We are committed to protecting your privacy and handling your information lawfully, fairly, and transparently.

If you do not agree with this Policy, please discontinue use of our website.

1) Scope

This Policy covers personal data collected through our website, donation forms, membership/volunteer forms, event registrations, contact channels, and newsletters. It does not cover third-party websites we link to.

2) What We Collect

A. Information you provide directly

• Identification: name, salutation, date of birth (if provided), postal address, country/state, organization.

• Contact: email address, phone/WhatsApp number.

• Transactional: donation amount, order details (if merchandise/services are offered), billing address, GST details (if provided).

• Preferences & consents: newsletter opt-ins, communication preferences.

• Any other information you submit in forms, surveys, or emails.

B. Information collected automatically (“Device Information”)

• Browser, IP address, device identifiers, OS, referral URLs, pages viewed, timestamps, session data, and cookie identifiers.

• Basic analytics and performance data to secure and improve our services.

C. Payment information

• Processed securely by third-party payment gateways. We do not store full card/bank details on our servers.

D. Cookies & similar technologies

• Functional cookies (essential), analytics cookies, and embedded third-party components (e.g., video, maps, payment).

• You can control non-essential cookies via your browser or consent tools. Essential cookies are required for core functions.

3) Legal Bases / Why We Process Your Data

We process data to:

• Perform a contract / fulfill a request: issue receipts, process donations/orders, provide event access, respond to queries.

• Legitimate interests: improve site performance and security, prevent fraud/abuse, measure impact, and send limited service updates.

• Consent: send newsletters/marketing where you opt in; use non-essential cookies.

• Legal compliance: tax, audit, CSR/80G, and regulatory requirements.

4) How We Use the Data

• To create and manage donor/member/volunteer records and issue receipts/acknowledgements (incl. 80G where applicable).

• To communicate updates about projects, impact reports, and opportunities to support or volunteer (where permitted).

• To provide and improve our website, user experience, security, and analytics.

• To comply with applicable laws and respond to lawful requests.

5) Sharing & Disclosures

We do not sell your personal data. We may share limited data with:

• Service providers / processors: payment gateways, email/SMS providers, cloud hosting, analytics, form and CRM tools—bound by confidentiality and data-processing terms.

• Authorities: when required by law, court order, or to protect rights, safety, or investigate fraud.

• Auditors/Advisors: for compliance, accounting, and certification purposes.

6) International Transfers

Your data may be processed outside India by vetted providers. We use reasonable safeguards (contractual and technical) to protect such transfers. EEA users: transfers rely on appropriate safeguards consistent with GDPR requirements.

7) Retention

We retain personal data only as long as necessary for the purposes above, including legal, tax, and audit requirements. Retention periods vary by record type (e.g., donation records are typically retained for statutory timelines).

8) Security

We use administrative, technical, and physical safeguards (encryption in transit, access controls, least-privilege practices). However, no method of transmission or storage is 100% secure.

9) Your Rights

Under Indian law (DPDP Act, subject to notified rules):

• Right to access and confirmation

• Right to correction and erasure

• Right to grievance redressal and to withdraw consent (where processing is based on consent)

If you are in the EEA/UK (GDPR/UK GDPR):

• Right to be informed, access, rectification, erasure, restriction, portability, and objection; rights related to automated decision-making.

• You may lodge a complaint with your local data protection authority.

To exercise rights, email privacy@bratsbharatfoundation.org or info@bratsbharatfoundation.org. We may need to verify your identity before acting on your request.

10) Children’s Data

Our site and programs are intended for general audiences. Where we work with minors (e.g., education programs), we obtain parental/guardian consent as required by law.

11) Email, SMS & WhatsApp Communications

• You may opt out of newsletters or promotional messages at any time using the unsubscribe link or by emailing us.

• We may still send service or transaction-related communications (e.g., receipts, critical notices).

12) Third-Party Links & Embeds

Our website may link to other sites or include embedded components. Their privacy practices are not governed by this Policy. Review their policies before sharing data.

13) Changes to this Policy

We may update this Policy from time to time. The “Effective Date” above reflects the latest version. Material changes will be highlighted on this page.

14) Contact & Grievance Officer

Email (privacy & general): privacy@bratsbharatfoundation.org / info@bratsbharatfoundation.org
Refunds/Support: support@bratsbharatfoundation.org
Phone: +91 7817089036
Registered Office: Head Office , Mainpuri, UP-205001

Grievance Officer (India):
Name: Mekhla Mandal
Email: director2@bratsbharatfoundation.org
Response Time: We aim to acknowledge grievances within 72 hours and resolve them within 30 days.