Privacy Policy

Last Updated: September 11, 2025

 

Welcome to Sahil Chatterjee (“Company,” “we,” “our,” or “us”).

We value your trust and are committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you visit our website www.sahilchatterjee.com or use our services, including content marketing, filmmaking, and social media marketing.

 

Our goal is to be as clear and transparent as possible about our data practices, while ensuring that we meet our legal obligations under applicable privacy regulations, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other relevant laws depending on where you live.

 

By using our website or engaging with us, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with the terms described here, please do not use this website or our services.

This policy will inform you about:

 

• What information do we collect

• Why and how we process it

• When we share it and with whom

• Your legal rights over your personal data

• How long do we keep your data

• How we protect your information

 

We encourage you to read this document in full so you can make informed decisions about the information you share with us, and to understand the choices and rights you have regarding your personal data.

 

Summary of Key Points

​

This summary gives you a quick snapshot of our privacy practices.

​

For full details, please read the complete Privacy Policy below.

​

• Information We Collect: We collect personal information you provide (such as your name, email, phone number, and any project details), as well as technical and usage information automatically (such as your IP address, browser type, and pages visited).

• Purpose of Collection: We use your information to deliver our services (content marketing, filmmaking, social media marketing), respond to your inquiries, improve our website, conduct analytics, and — if you consent — send you marketing updates.

• Legal Compliance: We process your data in accordance with applicable privacy laws, including GDPR, CCPA, and others as required, using bases such as your consent, contract performance, legal obligations, and our legitimate interests.

• Sharing of Information: We do not sell your personal data. We may share it only with trusted service providers, partners essential for our operations, or authorities when legally required.

• Cookies & Tracking: We use cookies and other technologies to improve site functionality, analyze performance, and tailor our marketing efforts.

• Data Retention: We keep your personal information for as long as necessary to fulfill our purposes or comply with the law, then securely delete or anonymize it.

• Your Rights: Depending on your location, you may have rights to access, update, delete, or restrict the use of your personal information, as well as to opt out of marketing communications.

• Minors: Our services are not directed at individuals under 16 years old, and we do not knowingly collect their data.

• Updates to the Policy: We may make changes to this Privacy Policy, and any revisions will be posted here with a new “Effective Date.”

• Contact: You can reach us for any privacy-related inquiries at hello@sahilchatterjee.com.

​​

​

Table of Contents

​

1. WHAT INFORMATION DO WE COLLECT?

2. HOW DO WE PROCESS YOUR INFORMATION?

3. WHAT LEGAL BASES DO WE RELY ON TO PROCESS YOUR PERSONAL INFORMATION?

4. WHEN AND WITH WHOM DO WE SHARE YOUR PERSONAL INFORMATION?

5. WHAT IS OUR STANCE ON THIRD-PARTY WEBSITES?

6. DO WE USE COOKIES AND OTHER TRACKING TECHNOLOGIES?

7. HOW DO WE HANDLE YOUR SOCIAL LOGINS?

8. HOW LONG DO WE KEEP YOUR INFORMATION?

9. HOW DO WE KEEP YOUR INFORMATION SAFE?

10. DO WE COLLECT INFORMATION FROM MINORS?

11. WHAT ARE YOUR PRIVACY RIGHTS?

12. CONTROLS FOR DO-NOT-TRACK FEATURES

13. DO CALIFORNIA RESIDENTS HAVE SPECIFIC PRIVACY RIGHTS?

14. DO VIRGINIA RESIDENTS HAVE SPECIFIC PRIVACY RIGHTS?

15. DO WE MAKE UPDATES TO THIS NOTICE?

16. HOW CAN YOU CONTACT US ABOUT THIS NOTICE?

17. HOW CAN YOU REVIEW, UPDATE, OR DELETE THE DATA WE COLLECT FROM YOU?

18. DATA TRANSFERS OUTSIDE HOME JURISDICTION

19. AUTOMATED DECISION-MAKING AND PROFILING

20. SENSITIVE PERSONAL INFORMATION

21. LINKS TO OTHER SERVICES/EMBEDDED CONTENT

22. DATA BREACH RESPONSIBILITY AND NOTIFICATION

23. CHILDREN’S DATA REGULATIONS IN DIFFERENT JURISDICTIONS

24. INTERNATIONAL USER CONSIDERATIONS

25. RETENTION OF ANONYMIZED AND AGGREGATED DATA

26. THIRD-PARTY DATA PROCESSING AGREEMENTS

​​

​

1. WHAT INFORMATION DO WE COLLECT?

​

We collect both personal information (information that can identify you) and non-personal information (information that does not directly identify you), depending on how you interact with us.

​​

A. Information You Provide to Us Directly

When you contact us, request a quote, subscribe to updates, or use our services, you may provide:

 

• Identifying information: full name, business name, job title/role.

• Contact details: email address, phone number, mailing/billing address.

• Project information: service requirements, creative briefs, feedback, and files you upload.

• Account details: if applicable, username, password (stored securely in encrypted form).

• Payment information: billing address, payment method details (processed by secure payment gateways; we do not store full credit card numbers).

​​

B. Information Collected Automatically

When you visit sahilchatterjee.com, certain information is collected automatically:

 

• Device & technical information: IP address, browser type, operating system, device type, preferred language, screen resolution.

• Usage data: pages you view, time spent, clicks, navigation paths, referring URLs.

• Log data: server logs, error logs, and interaction data for security and analytics.

• Cookies & tracking data: small data files stored on your browser to remember preferences, measure engagement, and personalize experiences.

​​

C. Information from Third Parties

We may receive information about you from:

• Service providers: e.g., web hosting, analytics services, social media platforms where you interact with us.

• Public sources: e.g., your publicly available professional profile, if relevant to potential collaboration.

• Partners & affiliates: e.g., referral data from partner campaigns.

​​

D. Sensitive Personal Information

We do not generally request or require sensitive personal information (such as government ID numbers, health data, or biometric data). If you voluntarily choose to share such information, we will handle it with additional safeguards.

​

Important Notes:

• Providing certain personal information is optional, but it may be necessary to use some features or receive our services.

• We will always clearly state when information is required versus optional.

• We only collect what is necessary for the purposes described in this Privacy Policy.

​​

​

2. HOW DO WE PROCESS YOUR INFORMATION?

 

We process your personal information for purposes that are legitimate, lawful, and directly related to delivering and improving our services. The exact ways we process your information depend on how you interact with us and which services you use.

​​

A. Service Delivery & Business Operations

We use your information to:

• Respond to inquiries, service requests, or quotations you submit through our website or other channels.

• Plan, execute, and deliver our services (content marketing, filmmaking, and social media marketing projects).

• Communicate with you about project timelines, revisions, and approvals.

• Process payments and send invoices or receipts.

​

B. Communication

We may process your information to:

• Respond to your emails, messages, or form submissions.

• Provide customer support and solve any service-related issues.

• Send important service updates, policy changes, or account-related notices.

 

C. Personalization & User Experience

We process your data to:

• Tailor our website content and services to your preferences.

• Improve navigation, load times, and functionality on sahilchatterjee.com.

• Remember your settings and preferences via cookies (if accepted).

​

D. Marketing & Promotions 

(Only with Your Consent or Where Permitted by Law)

We may:

• Send newsletters, special offers, or updates about our services.

• Use cookies and tracking pixels to show relevant ads on platforms like Google or social media.

• Measure the performance of marketing campaigns and adjust strategies accordingly.

• (You can opt out of marketing communications any time — see “Your Privacy Rights” section.)

 

E. Analytics & Performance Monitoring

We use analytics tools (e.g., Google Analytics) to:

• Understand how people use our site and which services attract the most interest.

• Identify usability issues to improve your experience.

• Monitor overall performance and detect any errors or potential issues.

 

F. Security, Risk Management, & Legal Compliance

We may process your data to:

• Detect, prevent, and address fraud, unauthorized access, and cyber threats.

• Maintain the security and integrity of our website and IT systems.

• Comply with applicable laws, regulations, tax requirements, and legal processes.

​

Key Point: We do not process your personal data for unrelated purposes without your consent. If we ever need to use it for a new reason not covered in this policy, we’ll get your permission first (where required by law).

​​

​

3. WHAT LEGAL BASES DO WE RELY ON TO PROCESS YOUR PERSONAL INFORMATION?

 

We only process your personal information when we have a valid legal basis to do so. These bases depend on the context and how you interact with our website and services.

If you are located in the European Economic Area (EEA), the United Kingdom (UK), or Switzerland, the General Data Protection Regulation (GDPR) requires us to explain the lawful grounds we rely on:

​​

A. Consent

We may process your information when you have given us explicit permission to do so.

Examples:

• Subscribing to our newsletter.

• Allowing us to use cookies for analytics or marketing purposes.

• Agreeing to receive promotional messages.

You can withdraw your consent at any time by contacting us or adjusting your cookie/communication preferences.

 

B. Performance of a Contract

We process your data when it is necessary to fulfill a contract with you, or to take steps before entering into one.

Examples:

• You hire us for a content marketing project, and we need your business details to create and deliver it.

• Processing payments for filmmaking or social media marketing services.

• Sending invoices and project deliverables.

 

C. Legitimate Interests

We may process your data when it is reasonably necessary for our legitimate business purposes, provided it does not override your rights and freedoms.

Examples:

• Improving our website’s performance and user experience.

• Analyzing service usage to make better business decisions.

• Preventing fraud, securing our IT systems, and protecting against misuse.

• Direct marketing to existing clients (unless you opt out).

 

D. Legal Obligations

We may process your data when it is required for us to comply with laws, regulations, or legal processes.

Examples:

• Maintaining proper business and tax records.

• Responding to valid requests from courts or government authorities.

• Complying with data protection regulations.

 

E. Vital Interests

We may process your information when it is necessary to protect your vital interests or those of another person.

(This would be rare — for example, in extraordinary circumstances related to security or safety.)

​

 

Important Note: If you are outside the EEA/UK, we will still process your information only if we have a valid justification, such as your consent, contractual need, or legitimate interest.

​​

​

4. WHEN AND WITH WHOM DO WE SHARE YOUR PERSONAL INFORMATION?

 

We respect your privacy and will never sell your personal data. However, in some cases, we may need to share your information with trusted third parties in order to provide our services, comply with the law, or improve your experience.

 

We only share information where it is necessary, lawful, and proportionate, and we require all third‑party processors to handle your data securely.

 

A. Service Providers & Business Partners

We may share information with companies that help us run our website, deliver services, or manage business operations. These may include:

 

• Web hosting providers (for running sahilchatterjee.com).

• Analytics platforms (e.g., Google Analytics, Meta Pixel) to track site performance and visitor behavior.

• Payment processors (if applicable) who securely handle billing and transactions.

• Email service providers (for newsletters, communication, or transactional emails).

• Freelance collaborators or subcontractors (for specific parts of marketing or filmmaking projects).

 

B. Business Transfers

If we undergo a merger, acquisition, restructuring, sale of assets, or similar transaction, your information may be transferred as part of the business assets. Any such transfer will be done in compliance with privacy laws, and we will notify you if applicable.

 

C. Legal & Regulatory Requirements

We may disclose your information:

• To comply with applicable laws, regulations, or legal processes.

• In response to lawful requests by public authorities (e.g., court orders, government agencies).

• To enforce our agreements, policies, or terms of service.

• To detect, prevent, or address fraud, security, or technical issues.

 

D. With Your Consent

We will share your personal information with third parties for specific purposes only where you have explicitly consented.

Examples:

• Featuring your name/testimonial on our website.

• Sharing details with influencers or partners, if required as part of a campaign.

 

E. Aggregated or De‑Identified Data

We may share non‑personal, aggregated, or anonymized information (that does not identify you directly) with partners, advertisers, or analytics services for business insights and reporting.

 

Important Note: All third parties we work with are under confidentiality and data protection obligations, and they may not use your data for purposes other than those we authorize.

​​

​

5. WHAT IS OUR STANCE ON THIRD‑PARTY WEBSITES?

 

Our website (sahilchatterjee.com) may contain links to third‑party websites, platforms, or services that are not operated or controlled by us. These may include:

 

• Partner or collaborator websites

• Social media platforms

• Industry resources, external blogs, or articles we reference

• Third‑party tools or embedded content

 

While we may provide these links for your convenience or as part of our marketing, please note the following:

​

A. Independent Privacy Practices

• Once you leave our website and visit a third‑party site, your interactions are governed by that site’s own Privacy Policy and Terms of Service.

• We are not responsible for the privacy practices, policies, or content of third‑party websites, even if accessed via links from our platform.

 

 

B. User Responsibility

• We encourage you to carefully review the privacy policies of any external websites you visit before sharing personal information with them.

• If you engage with third‑party widgets or social login options (for example, logging in using social media accounts), your information may also be collected directly by the external provider.

 

 

C. No Guarantee or Endorsement

• A link to a third‑party site does not mean we endorse, sponsor, or are officially affiliated with that party or its practices.

• We do not make any representations about the accuracy, reliability, or data safety measures of third‑party platforms.

 

 

Key Point: We recommend exercising caution and reading the privacy notices of any external service before providing personal information.

​​

​

6. DO WE USE COOKIES AND OTHER TRACKING TECHNOLOGIES?

 

Yes. Like most websites, sahilchatterjee.com uses cookies and similar tracking technologies (such as pixels, tags, and scripts) to improve user experience, analyze website performance, and support our marketing efforts.

 

A. What Are Cookies?

Cookies are small text files placed on your device’s browser to help websites recognize you and remember your preferences. Some cookies are essential for our website to function, while others are optional and used for analytics or marketing.

 

B. Types of Cookies We Use

 

1. Essential / Strictly Necessary Cookies

   • Required for the core functionality of our website.

   • Examples: security cookies, session cookies that keep you logged in.

   • Without these, certain features may not work properly.

2. Functional Cookies

   • Help remember your preferences and settings.

   • Example: remembering language or region selections.

3. Analytics / Performance Cookies

   • Allow us to monitor website traffic, usage patterns, and performance.

   • Example: Google Analytics cookies that track page visits, bounce rates, and time on site.

   • Helps us understand how visitors interact with our content marketing and service pages.

4. Advertising & Marketing Cookies

   • Track your browsing behavior to deliver more relevant ads and measure campaign performance.

   • Examples: Facebook Pixel or Google Ads remarketing cookies.

   • Used only with your consent where required by law.

 

C. Other Tracking Technologies

In addition to cookies, we may also use:

• Web Beacons / Pixels – tiny graphic tags that help track engagement, such as whether an email has been opened.

• Local Storage / Session Storage – browser-based technologies that store data for site functionality.

 

D. How Long Do Cookies Last?

• Session cookies expire when you close your browser.

• Persistent cookies remain until they expire or are deleted from your device manually.

 

E. Your Choices & Controls

You have control over cookies and tracking technologies:

• Browser Controls: Most browsers allow you to block or delete cookies in their settings.

• Opt-Out Tools: You can opt out of Google Analytics tracking by installing the Google Analytics Opt-out Browser Add-on.

• Consent Banners: In regions where required (e.g., EU/UK), we display a cookie banner giving you the choice to accept, reject, or customize cookies.

• Advertising Preferences: You can manage personalized ad settings via Google Ads or Facebook Ads settings.

 

Important Note: Disabling certain cookies may affect the functionality of our website and limit your user experience.

​​

​

7. HOW DO WE HANDLE YOUR SOCIAL LOGINS?

 

Our website may give you the option to register or log in using your social media account details (such as Google, Facebook, or LinkedIn). If you choose to do so, we will receive certain profile information from your social media provider.

​​

A. Information We Receive

The information we receive may vary depending on the provider, but typically includes:

• Your name

• Email address

• Profile picture

• Username or handle

• Public profile information (such as company or job title if it’s set publicly)

In some cases, you can choose what information you allow the provider to share with us through your account settings on that platform.

 

B. How We Use This Information

We use social login information to:

• Create and manage your account on our website.

• Authenticate your identity quickly and securely.

• Personalize your experience (e.g., pre-filling forms, showing your display name).

We do not post to your social media account without your explicit permission.

 

 

C. Your Responsibility

• Please remember that we only receive information that you choose to make public or authorize the third‑party provider to share.

• We are not responsible for how your social media provider handles or uses your personal data. We encourage you to read the privacy policies of those providers to understand their practices.

 

D. Revoking Access

If at any time you decide you no longer want to use a social login to access our site, you can:

• Disconnect it in your social media account settings; and/or

• Contact us directly to request deletion of any linked information.

 

 

Key Point: Logging in through a social account is always optional, and you can continue using our services without linking your social profiles, if you prefer.

​​

​

8. HOW LONG DO WE KEEP YOUR INFORMATION?

 

We will only keep your personal information for as long as it is necessary for the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

​

A. Service-Related Data

• Client records & project files: Retained for the duration of your project and then securely archived for up to 3 years (to allow for revisions, references, or repeat collaborations).

• Contracts, invoices & payment records: Retained for up to 7 years as required by tax and accounting laws in India and other applicable jurisdictions.

 

B. Communication Data

• Inquiries via email or contact forms: Retained for up to 12 months from the last contact, unless you become our client (in which case it may be stored with client records).

• Marketing communications: Retained until you unsubscribe or withdraw consent. Once unsubscribed, we will stop sending marketing materials, but may keep a minimal record to honor your preference.

 

C. Website & Analytics Data

• Cookies: Duration depends on type — session cookies (end when the browser is closed), persistent cookies (stored until they expire or are deleted manually).

• Analytics logs: Retained for up to 26 months (Google Analytics default) to measure performance trends.

 

D. Legal or Regulatory Obligations

In some cases, we may need to keep data longer if:

• Required by law (e.g., financial, tax, compliance requirements).

• Necessary for legal claims, disputes, or investigations.

 

E. Secure Deletion

When the retention period ends, we will:

• Anonymize the data (so that it can no longer identify you); or

• Securely delete/destroy it from our systems.

 

Key Point: We keep your data only for as long as necessary and never longer than needed for the purpose we collected it.

​​

​

9. HOW DO WE KEEP YOUR INFORMATION SAFE?

 

We are committed to protecting your personal information and have implemented appropriate technical, administrative, and organizational measures to safeguard it from unauthorized access, alteration, disclosure, or destruction.

​

A. Technical Safeguards

• SSL encryption: All data transmitted between your browser and our website is protected using Secure Socket Layer (SSL) encryption (HTTPS).

• Data encryption: Sensitive information, such as passwords, is stored in encrypted form.

• Firewalls & intrusion monitoring: Our hosting environment uses firewalls and intrusion detection to mitigate cyber threats.

​

B. Administrative Safeguards

• Access control: Personal information is only accessible to authorized team members who require it for business purposes (e.g., client communication, project delivery).

• Confidentiality agreements: Contractors, partners, or service providers handling data must agree to strict confidentiality and data protection terms.

• Training & awareness: Our team is made aware of privacy and data security responsibilities.

​

C. Physical Safeguards

• Device protection: Computers and storage devices used for project files are protected with secure passwords and, where available, disk encryption.

• Backups: Secure backups are maintained to protect critical project and client data against accidental loss.

 

 

D. Risk Management & Monitoring

• We regularly update and patch software to reduce vulnerabilities.

• We use monitoring tools to identify and block suspicious activity on our systems.

​

E. Important Considerations

While we do everything possible to protect your data, no system or method of electronic transmission can ever be 100% secure. For this reason:

• We cannot guarantee the absolute security of information transmitted to or stored on our website.

• Users are responsible for keeping any account credentials (like passwords) secure and not sharing them with others.

 

Key Point: Your data is protected with industry‑best safeguards, but as with all digital systems, security also depends on shared responsibility between us and you.

​​

​

10. DO WE COLLECT INFORMATION FROM MINORS?

 

We do not knowingly collect, solicit, or process personal information from children under the age of 16 (or a higher age threshold where required by local law, such as 18 in some jurisdictions).

Our website and services are intended for use by business professionals, entrepreneurs, and organizations, not by minors.

​

A. If You Are Under 16

• Please do not attempt to register or submit information through our website.

• If we discover that we have collected information from a child under this age without verified parental consent, we will delete it immediately.

​​

B. For Parents & Guardians

• If you believe your child has provided personal information to us, please contact us immediately.

• We will take steps to promptly delete that information from our systems.

​

C. Why This Matters

This clause helps us comply with:

• COPPA (Children’s Online Privacy Protection Act – U.S.)

• GDPR (Europe’s privacy law, which sets special conditions for data about minors)

• Local child privacy laws, where applicable

 

Key Point:

Our services are designed for adults and professionals. We do not knowingly engage with minors, and their data will never be kept or used by us.

​​

​

11. WHAT ARE YOUR PRIVACY RIGHTS?

 

Depending on where you live, you may have certain rights under applicable privacy and data protection laws. We respect your rights and provide the tools necessary for you to exercise control over your personal information.

​

A. Your General Rights (Applicable to All Users)

 

All users of our website and services may:

• Access & know what personal information we hold about you.

• Update or correct your information if it is inaccurate or incomplete.

• Delete your personal data (subject to legal and contractual limitations).

• Restrict the way we process your data in certain circumstances.

• Object to certain types of processing (such as direct marketing).

• Withdraw consent at any time (where processing is based on your consent).

• Opt out of marketing communications by clicking “unsubscribe” in our emails or contacting us directly.

 

B. Rights Under the GDPR/UK Data Protection Laws

If you are located in the EEA, UK, or Switzerland, you specifically have the following rights:

• Right of access – Get a copy of the personal data we hold about you.

• Right to rectification – Correct inaccurate or incomplete information.

• Right to erasure – Request deletion of your data (“the right to be forgotten”).

• Right to restrict processing – Temporarily limit how we use your data.

• Right to data portability – Request your data in a portable electronic format.

• Right to object – Object to the processing of your data, especially direct marketing.

• Right to lodge a complaint – File a complaint with your local supervisory authority if you are dissatisfied with how we handle your data.

 

C. Rights Under the CCPA/CPRA (California Residents)

If you are a resident of California (USA), you have the following rights:

• Right to know what categories and specific pieces of personal information we collect and how we use/share it.

• Right to delete personal information we hold (with some legal exceptions).

• Right to opt-out of the “sale” or “sharing” of personal information (we do not sell data, but we provide this disclosure for compliance).

• Right to non-discrimination – You will not face discrimination for exercising your privacy rights.

 

 

D. Rights Under the VCDPA (Virginia Residents)

If you are a resident of Virginia (USA), you have similar rights to GDPR users, including:

• Right to access, correct, delete, and obtain a copy of your personal data.

• Right to opt out of targeted advertising or profiling.

​

E. How to Exercise Your Rights

You can exercise your privacy rights by contacting us at: hello@sahilchatterjee.com.

We may ask for verification of your identity before fulfilling requests to protect your data.

 

Key Point: Your privacy rights depend on your location, but, as a standard, we honor requests from all users to access, correct, delete, or restrict their personal data wherever possible.

​​

​

12. CONTROLS FOR DO‑NOT‑TRACK FEATURES

​

Most web browsers, mobile operating systems, and apps include a Do‑Not‑Track (“DNT”) feature or setting that can be activated to signal your privacy preference, specifically, that you do not want your online browsing activities to be monitored and collected.

At this time, no uniform technology standard has been finalized for recognizing and implementing DNT signals. For this reason:

• Our website does not currently respond to DNT browser signals or any other automated mechanism that communicates your choice not to be tracked online.

• However, we do respect your choices regarding cookies and tracking technologies. You may control cookies through your browser settings, consent banners (where applicable), or other privacy tools (see our Cookies & Tracking section above).

 

Key Point: Although we do not respond to DNT signals, you can still limit tracking by:

• Adjusting your browser’s privacy settings.

• Using opt‑out tools such as the Google Analytics Opt‑Out browser add‑on.

• Rejecting non‑essential cookies via our website’s cookie consent options (in applicable regions).

​​

​

13. DO CALIFORNIA RESIDENTS HAVE SPECIFIC PRIVACY RIGHTS?

​

Yes. If you are a California resident, you are granted certain rights regarding your personal information under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA).

 

A. Right to Know

You have the right to request details about the categories and specific pieces of personal information we have collected about you, including:

• The categories of personal information collected

• The categories of sources from which the information was collected

• The purpose of collecting or sharing the information

• The categories of third parties with whom we disclose information

• The specific pieces of personal data we hold about you

 

B. Right to Delete

You have the right to request that we delete any personal information we collected about you, subject to certain legal and business exceptions (such as compliance with tax, accounting, or security requirements).

 

C. Right to Correct

You may request that we correct inaccurate personal information we hold about you.

 

D. Right to Opt Out of Data Sharing/Selling

We do not sell your personal information. However, California law requires us to disclose that you have the right to opt out of the “sale” or “sharing” of your personal data if it ever occurs in the future.

 

E. Right to Limit Use of Sensitive Personal Information

If we collect any “sensitive personal information” as defined by California law (such as geolocation, government IDs, or biometric data), you have the right to limit its use and disclosure. We do not currently collect such sensitive categories from users.

 

F. Right to Non‑Discrimination

We will never discriminate against you for exercising your CCPA/CPRA rights. This means:

• No denial of services

• No different prices, rates, or quality

• No retaliation of any kind

 

G. Exercising Your California Rights

If you are a California resident and want to exercise any of the rights listed above, you can contact us at: hello@sahilchatterjee.com.

We may need to verify your identity before fulfilling your request.

 

Key Point: If you live in California, you have expanded privacy rights under CCPA/CPRA, and we honor all valid requests in line with the law.

​​

​

14. DO VIRGINIA RESIDENTS HAVE SPECIFIC PRIVACY RIGHTS?

​

Yes. If you are a resident of Virginia (USA), you are entitled to certain rights under the Virginia Consumer Data Protection Act (VCDPA) with respect to your personal information.

​​

A. Your Rights Under the VCDPA

As a Virginia resident, you have the right to:

1. Access – Obtain confirmation of whether we are processing your personal data and access to that data.

2. Correct – Request correction of inaccurate or incomplete personal data.

3. Delete – Request deletion of personal data you have provided or that we collected about you.

4. Portability – Obtain a copy of your personal data in a portable and usable format (where technically feasible).

5. Opt Out – Decline the processing of your personal data for:

   • Targeted advertising

   • Sale of personal data (we do not sell data)

   • Profiling in furtherance of decisions that produce legal or significant effects

​​

B. Exercising Your Rights

You may exercise your rights by contacting us at: hello@sahilchatterjee.com

​​

C. Appeals Process

If we deny your request:

• You have the right to appeal our decision within a reasonable time frame (usually 45 days).

• If your appeal is denied, you can submit a complaint to the Virginia Attorney General’s Office.

​​

D. Exceptions

Please note that some personal data may be exempt from these rights, for example:

• If it must be retained for legal, accounting, or security purposes.

• If it is anonymized or used strictly for internal business operations.

​​

Key Point: Virginia residents have GDPR‑style privacy rights under the VCDPA. We honor all verified requests to access, correct, or delete data, as well as opt‑out rights related to advertising and profiling.

​​

​

15. DO WE MAKE UPDATES TO THIS NOTICE?

 

Yes. We may update this Privacy Policy from time to time in order to:

• Reflect changes in our services or business practices.

• Stay compliant with new legal, regulatory, or technical requirements.

• Provide more clarity and transparency in how we handle your information.

​​

A. How We Notify You of Changes

• Posting the updated version: Any updates will be published on this page with a new “Last Updated” date at the top of the policy.

• Direct notification (if significant changes are made): If we make major changes that affect how we process your data, we may also notify you by:

  • Sending an email (if you’ve shared your address with us).

  • Posting a notice on our website homepage.

​​

B. Effective Date

• The updated Privacy Policy will be effective immediately once posted, unless otherwise stated.

• Continued use of our website or services after changes means that you accept the revised terms.

​​

Key Point: We will always be transparent about changes. We recommend checking this Privacy Policy periodically so you stay informed about how we protect your data.

​​​

​

16. HOW CAN YOU CONTACT US ABOUT THIS NOTICE?

 

If you have questions, concerns, or requests regarding this Privacy Policy or our handling of your personal information, you can contact us using the details below: hello@sahilchatterjee.com

​​

For EU/UK Residents (GDPR-specific)

If you are located in the European Economic Area (EEA) or the UK, you also have the right to lodge a complaint with your local data protection authority if you believe we are not handling your data lawfully.

​​

For California Residents

If you are a California resident and would like to exercise your rights under the CCPA/CPRA, you can also contact us via the details above with the subject line “California Privacy Request.”

​​

Key Point: We are committed to being transparent and responsive. Feel free to reach out any time for data access, updates, opt-outs, or privacy-related concerns.

​​​

​

17. HOW CAN YOU REVIEW, UPDATE, OR DELETE THE DATA WE COLLECT FROM YOU?

​

You have the right to review, update, or request deletion of the personal data that we collect from you.

​​

A. How to Make a Request

You can email us at hello@sahilchatterjee.com

When submitting your request, please provide:

• Enough information for us to identify you (such as your name, email address, or project details).

• A clear statement of which rights you want to exercise (access, correction, deletion, etc.).

​

B. What We Will Do

• We will acknowledge your request within the timeframe required by law (usually within 30–45 days, depending on jurisdiction).

• We may need to verify your identity for security reasons before fulfilling the request.

• If we cannot comply for legal or regulatory reasons, we will explain why.

​

C. Options Available

You can:

• Access your data – Get a copy of the personal data we hold about you.

• Update/Correct your data – Request corrections to any inaccurate or incomplete personal details.

• Delete your data – Ask us to erase your personal data, unless we need to retain it for legal, contractual, or security obligations.

• Restrict or object – Limit or stop certain uses of your data (e.g., marketing).

• Withdraw consent – If processing is based on consent, you can withdraw it at any time without affecting the lawfulness of prior processing.

​​

D. Automated Tools (Where Available)

In some regions and under applicable laws, you may also use digital self‑service tools (such as unsubscribe links, account dashboards, or cookie banners) to directly manage your information.

​​

Key Point: You are always in control of your personal information. Simply reach out to us, and we will ensure your request is handled lawfully, fairly, and promptly.

​​

​

18. DATA TRANSFERS OUTSIDE HOME JURISDICTION

 

Depending on where you access our website or use our services, your personal information may be transferred to, stored, and processed in countries other than your country of residence.

For example, as Sahil Chatterjee operates primarily from India but serves clients globally, data may be transferred between India, the European Economic Area (EEA), the United States, and other locations where our service providers are based.​

 

A. Safeguards on International Data Transfers

We take all necessary steps to ensure that your personal data remains protected when it is transferred internationally, including but not limited to:

• Using Standard Contractual Clauses (SCCs) approved by the European Commission for transferring data from the EEA to countries without an adequacy decision.

• Ensuring that recipients of your data adhere to equivalent data protection standards.

• Implementing technical and organizational measures such as encryption and confidentiality agreements.

​

B. Legal Compliance

These transfers are made in compliance with applicable data protection laws, including the EU’s General Data Protection Regulation (GDPR), the UK Data Protection Act, the California Consumer Privacy Act (CCPA), and other relevant regulations.

​

C. Your Rights

Where applicable (especially for EEA residents), you have the right to request additional information on the safeguards used or to object to specific data transfers if you believe your privacy is at risk. You may contact us to discuss your concerns.

​​

Key Point: International data transfers are carefully controlled and safeguarded to ensure your privacy rights are respected, no matter where you are located.

​​

​

19. AUTOMATED DECISION-MAKING AND PROFILING

 

We do not use any automated decision-making processes, including profiling, that have a legal or similarly significant effect on you.

​​

A. What is Automated Decision-Making?

Automated decision-making refers to decisions made by technology or algorithms without human intervention, which may impact your rights or significantly affect you (e.g., credit scoring, eligibility assessment).

​

B. Use of Profiling

Profiling involves analyzing personal data to predict behaviors, preferences, or to make automated decisions.

 

 

C. Our Practices

• We may use automated systems for basic personalization and improving user experience (such as recommending related content or optimizing marketing campaigns), but these actions do not have significant legal or material effects on you.

• We do not perform profiling that results in legally binding decisions or decisions that similarly significantly affect individuals.

​

D. Your Rights

Where applicable under laws such as GDPR, you have the right to:

• Request meaningful information about the logic involved in any automated decision-making.

• Object to processing based on automated decision-making in certain cases.

​

If you have concerns about the automated processing of your data, please contact us for more information.

​

Key Point: You will always have human oversight when your data is used, and automated processes are used only to enhance service quality without adverse impacts on you.

​​

​

20. SENSITIVE PERSONAL INFORMATION

 

We generally do not collect or process sensitive personal information (also known as special category data), which may include data related to:

• Racial or ethnic origin

• Political opinions

• Religious or philosophical beliefs

• Trade union membership

• Genetic or biometric data

• Health information

• Sexual orientation or sex life

​

A. Handling Sensitive Data

If, in the course of providing our services, we obtain sensitive personal data, we will:

• Only process it with your explicit consent or as permitted by law.

• Apply additional safeguards to protect this data.

• Limit access strictly to authorized personnel.

 

B. Purpose of Processing Sensitive Information

We only collect sensitive personal information if it is genuinely necessary for delivering a specific service or fulfilling a legal obligation, and only with your informed consent.

 

C. Your Rights

You have the right to:

• Be informed about the collection and processing of sensitive data.

• Withdraw consent to the processing of sensitive personal information at any time (without affecting the lawfulness of prior processing).

 

Key Point: We respect the sensitivity of certain types of personal information and minimize their use to only what is explicitly needed and permitted.

​​

​

21. LINKS TO OTHER SERVICES/EMBEDDED CONTENT

 

Our website (sahilchatterjee.com) may contain links to third-party websites and services or embed content from external sources for your convenience and enhanced user experience. Examples include embedded videos, social media feeds, or other interactive content.

 

A. Third-Party Links

• When you click on links that direct you to third-party websites, you leave our site and enter the realm of their privacy practices.

• We do not control or endorse these websites and are not responsible for their content, security measures, or privacy policies.

• We encourage you to read the privacy policies of any sites you visit through these links before providing personal information.

​

B. Embedded Content

• Embedded content such as videos, images, or social media feeds (for example, YouTube, Instagram, LinkedIn) can collect data about you, such as your IP address or browsing behavior.

• These third-party services may set cookies or collect data through their own tracking technologies.

• This embedded content is subject to the respective third-party provider’s privacy policy and terms of use, not ours.

 

C. Your Responsibility

• You should be aware of these third-party practices and adjust your privacy settings accordingly on those platforms.

• We do not have access to or control over data collected by embedded services.

 

Key Point:

Always review and understand the privacy policies of external websites and services accessed through our platform to make informed decisions about your personal data.

​

Key Point: The responsibility for data breach detection and notification primarily lies with Wix as our hosting provider; however, we remain committed to transparency and will inform you of any issues we become aware of that affect your personal data.

​​

​

22. DATA BREACH RESPONSIBILITY AND NOTIFICATION

 

Our website is hosted on the Wix platform, which is responsible for the technical security and infrastructure of the site, including managing and responding to any potential data breaches at the platform level.

 

A. Wix’s Role

• Wix implements industry-standard security measures and controls to protect their infrastructure and the data stored on or transmitted through their platform.

• In the unlikely event of a data breach affecting Wix’s systems, Wix is responsible for notifying its customers, including us, as well as any regulatory authorities, as required by law.

 

B. Our Role

• While we manage your personal data collected through our website and services, the technical security and breach management of the website itself is controlled by Wix.

• Should we become aware of any data breach impacting your personal information collected by us, we will promptly notify you and cooperate fully with Wix and relevant authorities to address the issue.

 

C. What You Can Do

• For more details about Wix’s security practices and breach response, please review their Privacy Policy and Terms of Service available on the Wix website.

• We recommend that you also take appropriate steps to protect your personal data, such as using strong passwords and being cautious with sharing sensitive information online.

 

Key Point: The responsibility for data breach detection and notification primarily lies with Wix as our hosting provider; however, we remain committed to transparency and will inform you of any issues we become aware of that affect your personal data.

​​

​

23. CHILDREN’S DATA REGULATIONS IN DIFFERENT JURISDICTIONS

 

We recognize the importance of protecting children’s privacy and comply with applicable laws regarding the collection and processing of personal information from minors in various regions where we operate or have users.

​

A. United States (COPPA Compliance)

• Under the Children’s Online Privacy Protection Act (COPPA), we do not knowingly collect or solicit personal information from children under the age of 13 without verifiable parental consent.

• If we discover that we have inadvertently collected personal data from a child under 13 without parental consent, we will promptly delete such information.

​

B. European Union (GDPR Compliance)

• For residents of the European Economic Area (EEA), parental consent is required to process the personal data of children under the age of 16 (or a lower age set by the member state, with a minimum of 13).

• We do not knowingly collect personal data from children without such consent.

 

 

C. Other Jurisdictions

• We are committed to respecting local laws regarding children’s privacy in any jurisdiction where we have users, and we apply appropriate safeguards accordingly.

​

D. Responsibility of Parents and Guardians

• We encourage parents and guardians to monitor their children’s online activities and to help enforce compliance with these policies.

• If you believe your child has provided personal information to us without parental consent, please contact us immediately.

​

Key Point: Our service is intended primarily for adults, and we take all necessary steps to prevent the unauthorized collection of data from minors in any jurisdiction.
 

​

24. INTERNATIONAL USER CONSIDERATIONS

 

Our website and services are available globally and may be accessed by users from many different countries. Because data protection laws vary around the world, we want to clarify how this Privacy Policy applies internationally.

​

A. Global Application

• This Privacy Policy applies to all users regardless of their location. By using our website or services, you consent to the collection, transfer, processing, and storage of your personal information consistent with this policy.

• We strive to comply with applicable data protection laws in all jurisdictions where we operate or have users, including GDPR (EU/EEA), CCPA/CPRA (California, USA), VCDPA (Virginia, USA), and others.

​

B. Responsibility and Compliance

• If you are located outside of India, the data we collect from you may be transferred to and processed in India or other countries where our service providers or partners operate.

• We take appropriate safeguards to ensure your data is protected in compliance with applicable laws when transferred internationally (see Point 18: Data Transfers Outside Home Jurisdiction).

​

C. Local Laws

• While we aim for comprehensive protection, local laws may impose additional rights or obligations regarding your personal information.

• You are responsible for complying with local laws applicable to you, and you may have additional rights beyond those described in this policy.

​

D. Contact Us

• If you have questions about how your personal data is handled in your country or require information regarding your jurisdiction, please contact us using the details provided in this Privacy Policy.

​

Key Point: Wherever you are, your privacy is important to us, and we are committed to protecting your personal data in line with global standards and local requirements.

​​

​

25. RETENTION OF ANONYMIZED AND AGGREGATED DATA

 

In addition to personal data, we may collect and process anonymized or aggregated data from our website and services. Anonymized data is data that has been processed so that it no longer identifies you or any individual personally.

​​

A. Use of Anonymized and Aggregated Data

• We use anonymized and aggregated data for various purposes such as analyzing overall website usage trends, improving service quality, marketing analysis, and business reporting.

• This data helps us understand user behavior without identifying any specific individual.

​

B. Retention Period

• Unlike personal data, anonymized and aggregated data is retained indefinitely as it does not contain personally identifiable information and does not pose a privacy risk.

• We regularly review our data to ensure that anonymization remains effective and complies with privacy standards.

​

C. Your Rights

• Since anonymized and aggregated data cannot be used to identify you personally, it is not subject to the privacy rights that apply to personal data under laws such as GDPR or CCPA.

​

Key Point:

Anonymized and aggregated data is retained without limitation and used solely to improve our services and understand usage patterns, with no impact on your personal privacy.

​​

​

26. THIRD-PARTY DATA PROCESSING AGREEMENTS

 

We engage trusted third-party service providers to assist in delivering our services, such as hosting, analytics, payment processing, and marketing.

 

A. Ensuring Data Protection

• We require all third-party processors to enter into data processing agreements or contracts that:

  • Comply with applicable data protection laws, including GDPR and CCPA.

  • Specify the purposes and scope of data processing.

  • Require the implementation of appropriate technical and organizational security measures.

  • Prohibit further sharing or unauthorized use of your data.

 

B. Our Commitment

• We carefully select third parties based on their reputation, security practices, and compliance standards.

• We continuously monitor and review our relationships with such providers to ensure ongoing protection of your personal data.

 

C. Your Rights

• You have the right to request information about the categories of processors with whom your data is shared.

• For any questions or concerns about our third-party data processors, please contact us.

 

Key Point: All third parties acting on our behalf are contractually bound to protect your data and to use it only for the purposes we specify.

 

​

Conclusion

 

At sahilchatterjee.com, protecting your privacy and personal information is a top priority. We are committed to handling your data responsibly, transparently, and in compliance with global privacy standards.

​

This Privacy Policy may be updated from time to time to reflect changes in our practices, services, or legal requirements. We encourage you to review this policy periodically to stay informed about how we protect your information.

If you have a personal profile with us, you can review and update your information at any time by accessing your account here: https://www.sahilchatterjee.com/account/my-account.

​

Should you have any questions, concerns, or requests related to your privacy or your personal data, please feel free to contact us directly via email at hello@sahilchatterjee.com.

​

Thank you for trusting us with your information and for engaging with our services.