Srithar Innovation Labs

Privacy Policy

Last updated: 1 June 2026

This policy describes how SRITHAR INNOVATION LABS LLP (Srithar Innovation Labs) handles personal data for visitors and business contacts in India, the European Economic Area, the United Kingdom, and other regions.

1. Introduction and scope

This Privacy Policy explains how SRITHAR INNOVATION LABS LLP ("Srithar", "we", "us", or "our") collects, uses, stores, and protects personal data when you visit srithar.com and related pages (the "Website"), or when you contact us or submit a request for quote (RFQ).

We process personal data in accordance with applicable laws in India, including the Digital Personal Data Protection Act, 2023 (DPDP Act) and rules made thereunder, and—where the General Data Protection Regulation (EU) 2016/679 (GDPR) applies—to meet European data protection standards for visitors and customers in the European Economic Area (EEA), United Kingdom, and Switzerland.

This policy is intended for business and professional users. It does not cover personal data processed solely in an employment or purely personal capacity unrelated to our services.

2. Who is responsible for your data

The data controller (under GDPR) and data fiduciary (under the DPDP Act) for personal data described in this policy is:

  • SRITHAR INNOVATION LABS LLP
  • Plot No 213, 1st East Cross Street, Anna Nagar, Madurai, Tamil Nadu 625020, India
  • Email: contact@srithar.com
  • GSTIN: 33AFQFS6150Q1Z7

EU representative

We do not currently maintain a separate EU representative. If you are in the EEA or UK and have questions about how we process your data, contact us at contact@srithar.com. We will respond within the timeframes required by applicable law.

3. Personal data we collect

We may collect the following categories of personal data:

  • Identity and contact details: name, company name, job role (if provided), email address, telephone number (if provided), and country.
  • Inquiry and commercial information: messages, project descriptions, product or service interests, quantities, timelines, and RFQ reference numbers.
  • Technical data: IP address, browser type, device information, and server logs generated when you access the Website.
  • Communications: records of correspondence when you email us or we reply to form submissions.

Data you provide voluntarily

You are not required to provide personal data to browse most of the Website. Fields marked as required on our Contact and RFQ forms must be completed to submit those forms.

Data we do not intentionally collect

We do not seek special categories of personal data (such as health, biometric, or political opinions) through the Website. Please do not include such information in free-text fields unless necessary for your inquiry and you have a lawful basis to share it.

4. How and why we use personal data

We use personal data for the following purposes:

  • To respond to contact requests, RFQs, and commercial inquiries.
  • To provide information about our products, OEM services, and engineering capabilities.
  • To prepare quotations, proposals, and—if you engage us—contracts and project delivery.
  • To operate, secure, and improve the Website (including troubleshooting and abuse prevention).
  • To comply with legal, tax, and regulatory obligations applicable in India and, where relevant, export or trade compliance.
  • To establish, exercise, or defend legal claims, where necessary.

Legal bases (EEA / UK — GDPR)

Where GDPR applies, we rely on one or more of the following legal bases:

  • Contract and pre-contract steps: to respond to your inquiry or take steps at your request before entering a contract.
  • Legitimate interests: to operate our business, communicate with prospects and customers, and secure our Website, balanced against your rights (you may object as described below).
  • Legal obligation: where processing is necessary to comply with applicable law.
  • Consent: where we ask for your consent (for example, non-essential cookies if we enable them in future). You may withdraw consent at any time.

Processing under Indian law (DPDP Act)

Under the DPDP Act, we process personal data for lawful purposes connected with our business operations, including providing requested services and communications you initiate. Where consent is required, we will obtain it in a clear and specific manner. You may withdraw consent subject to contractual and legal limits.

5. Cookies and similar technologies

The Website is designed primarily as an informational and inquiry platform. We do not currently use third-party advertising or behavioural analytics cookies.

Our hosting and infrastructure providers may set strictly necessary cookies or store similar technical identifiers required for security, load balancing, or session integrity.

If we introduce optional analytics or marketing cookies in future, we will update this policy and—where required—request your consent before those cookies are placed (including via a cookie banner for EEA/UK visitors).

You can control cookies through your browser settings. Blocking necessary cookies may affect how the Website functions.

6. Sharing personal data

We do not sell your personal data. We may share personal data with:

  • Service providers who assist us under contract, such as email delivery (e.g. Zoho Mail or comparable providers), website hosting, and IT support—only to perform services on our instructions.
  • Professional advisers (lawyers, accountants) where confidential and necessary.
  • Authorities, regulators, or courts when required by law or to protect rights and safety.
  • A successor entity in connection with a merger, acquisition, or asset transfer, subject to appropriate safeguards.

7. International transfers

Srithar is established in India. If you access the Website from the EEA, UK, or other regions, your personal data may be transferred to and processed in India and in countries where our service providers operate (which may include the United States).

Where GDPR requires safeguards for transfers outside the EEA/UK, we implement appropriate measures such as the European Commission’s Standard Contractual Clauses, UK International Data Transfer Agreement addendum, or other mechanisms recognised under applicable law, together with supplementary measures where appropriate.

You may request further information about transfer safeguards by contacting contact@srithar.com.

8. How long we keep personal data

We retain personal data only as long as necessary for the purposes described in this policy, including:

  • Inquiry and RFQ records: typically up to three (3) years after the last meaningful contact, unless a longer period is needed for active negotiations, contracts, or legal claims.
  • Contract and project records: for the duration of the relationship and thereafter as required by Indian tax, commercial, and limitation laws (often up to eight (8) years or longer where mandated).
  • Server logs: generally up to twelve (12) months, unless needed for security investigations.

Deletion

When data is no longer required, we delete or anonymise it in accordance with our retention practices and applicable law.

9. Security

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, alteration, disclosure, or destruction. No method of transmission over the Internet is completely secure; we cannot guarantee absolute security.

If you believe your interaction with us is no longer secure, please notify us promptly at contact@srithar.com.

10. Your rights in India (DPDP Act)

Subject to the DPDP Act and applicable exceptions, data principals in India may have the right to:

  • Obtain information about personal data we process about you.
  • Request correction or updating of inaccurate or incomplete personal data.
  • Request erasure of personal data when retention is no longer necessary or consent is withdrawn (subject to legal exceptions).
  • Nominate another individual to exercise rights on your behalf in certain circumstances, as permitted by law.
  • Seek grievance redressal through our process below, and escalate to the Data Protection Board of India when applicable.

To exercise these rights, email contact@srithar.com with sufficient detail to verify your identity. We may request additional information to prevent fraudulent requests. We aim to respond within timelines prescribed under Indian law.

11. Your rights in the EEA and UK (GDPR)

If GDPR applies to our processing of your personal data, you may have the right to:

  • Access a copy of your personal data.
  • Rectify inaccurate personal data.
  • Erase personal data in certain circumstances ("right to be forgotten").
  • Restrict processing in certain circumstances.
  • Data portability for data you provided, where processing is based on consent or contract and carried out by automated means.
  • Object to processing based on legitimate interests (including profiling tied to those interests).
  • Withdraw consent at any time, without affecting lawfulness of processing before withdrawal.
  • Lodge a complaint with a supervisory authority in your country of residence, workplace, or place of alleged infringement.

To exercise GDPR rights, contact contact@srithar.com. We will respond within one month, extendable by two further months where requests are complex, as permitted by GDPR.

EEA supervisory authorities are listed at https://edpb.europa.eu/about-edpb/about-edpb/members_en. UK residents may contact the Information Commissioner’s Office (ICO) at https://ico.org.uk.

12. Children

The Website and our B2B services are not directed at children under 18 (or the age of majority in your jurisdiction, if higher). We do not knowingly collect personal data from children. If you believe we have collected a child’s data, contact us and we will take steps to delete it.

13. Automated decision-making

We do not use automated decision-making or profiling that produces legal or similarly significant effects concerning individuals solely through the Website forms described in this policy.

14. Changes to this policy

We may update this Privacy Policy from time to time. The "Last updated" date at the top of this page indicates the latest revision. Material changes will be posted on the Website. Where required by law, we will seek renewed consent or provide additional notice.

15. Contact and grievances

For privacy questions, rights requests, or grievances under Indian law:

  • Email: contact@srithar.com (subject line: Privacy Request)
  • Postal: SRITHAR INNOVATION LABS LLP, Plot No 213, 1st East Cross Street, Anna Nagar, Madurai, Tamil Nadu 625020, India

We will acknowledge grievances and endeavour to resolve them within a reasonable period. If you are unsatisfied with our response and Indian law applies, you may refer the matter to the Data Protection Board of India when that body’s grievance mechanisms are operational for your complaint type.

This policy is provided for transparency and does not replace advice from qualified legal counsel. We recommend review by your legal adviser before relying on it for regulatory filings.

See also our Terms & Conditions.