Privacy Policy
Tamvada & Associates — Advocates and Solicitors | Last Updated: April 2026
Table of Contents
- Identity of the Data Fiduciary
- Personal Data We Collect
- Purpose and Legal Basis for Processing
- Consent and Its Management
- Sharing of Personal Data
- Retention of Personal Data
- Security Safeguards
- Your Rights as a Data Principal
- Children's Data
- Cookies and Tracking Technologies
- Cross-Border Data Transfers
- Grievance Officer
- Updates to This Policy
- Contact Us
1. Identity of the Data Fiduciary
For the purposes of the DPDP Act 2023, Tamvada & Associates (also referred to as "we," "us," or "our") is the Data Fiduciary in respect of all personal data collected through this Website and in connection with our legal services.
Registered Office: Y-24, Concorde Silicon Valley, Neeladri Road, Electronic City Phase 1, Bengaluru – 560100, Karnataka, India.
Contact: info@tamvada.in | +91 7338 164422
2. Personal Data We Collect
We collect the following categories of personal data:
| Category | Data Collected | Source |
|---|---|---|
| Identity Data | Full name | Provided by you |
| Contact Data | Email address, mobile number | Provided by you |
| Enquiry Data | Legal matter description, practice area of interest | Provided by you |
| Technical Data | IP address, browser type, device information, pages visited | Automatically collected via cookies |
| Newsletter Data | Email address, consent record | Provided by you |
We do not collect sensitive personal data as defined under the DPDP Act 2023, including data relating to health, financial information, biometrics, caste, religion, or sexual orientation, through this Website.
3. Purpose and Legal Basis for Processing
We process your personal data only for the following specified purposes:
| Purpose | Legal Basis (DPDP Act) |
|---|---|
| Responding to your legal enquiries and contact form submissions | Consent / Legitimate use |
| Sending The Tamvada Brief newsletter and legal updates | Consent |
| Delivering the Startup Legal Toolkit and other free resources | Consent |
| Operating and improving the Website | Legitimate use |
| Complying with legal obligations under Indian law | Legal obligation |
We will not process your personal data for any purpose other than those specified above without first obtaining your consent.
4. Consent and Its Management
Under the DPDP Act 2023, you have the right to give, manage, review, and withdraw consent for the processing of your personal data.
Giving Consent
Consent is obtained at the point of data collection — through our contact form, newsletter signup, or resource download forms. Consent is free, specific, informed, unconditional, and unambiguous, as required under Section 6 of the DPDP Act.
Withdrawing Consent
You may withdraw your consent at any time by contacting us at info@tamvada.in. Withdrawal of consent will not affect the lawfulness of processing carried out prior to withdrawal. Upon withdrawal, we will cease processing within a reasonable time and delete your data, subject to any legal retention obligations.
Cookie Consent
You may manage your cookie preferences at any time using our Consent Preferences tool available on this Website.
5. Sharing of Personal Data
We do not sell your personal data to third parties. We may share your data only in the following circumstances:
- Service Providers: With Mailer Lite (for newsletter delivery) and other trusted technology service providers who process data on our behalf under contractual obligations of confidentiality
- Legal Obligations: Where required by law, court order, or direction of a competent authority under Indian law
- Professional Obligations: As required under the Advocates Act, 1961 and Bar Council of India Rules in connection with client matters
All data processors engaged by us are contractually bound to process your data only as directed by us and to maintain appropriate security standards.
6. Retention of Personal Data
We retain personal data only for as long as necessary for the purposes for which it was collected, or as required by applicable law.
| Data Type | Retention Period |
|---|---|
| Contact / enquiry data | 3 years from the date of last contact |
| Newsletter subscriber data | Until consent is withdrawn |
| Client engagement data | As required under professional rules (minimum 7 years) |
| Technical / log data | 90 days |
Upon expiry of the retention period, data will be securely deleted or anonymised in accordance with the DPDP Act 2023.
7. Security Safeguards
We implement appropriate technical and organisational security measures to protect your personal data against unauthorised access, disclosure, alteration, or destruction, including:
- SSL/TLS encryption for data transmission
- Access controls limiting data access to authorised personnel only
- Regular security assessments of our systems
- Contractual data security obligations on all third-party processors
In the event of a personal data breach affecting your rights and interests, we will notify the Data Protection Board of India and, where required, you as the Data Principal, in accordance with the timelines prescribed under the DPDP Rules 2025.
8. Your Rights as a Data Principal
Under the DPDP Act 2023, you have the following rights:
- Right to Access: To obtain a summary of your personal data being processed and the processing activities undertaken
- Right to Correction: To correct inaccurate or misleading personal data
- Right to Erasure: To have your personal data erased, subject to legal retention obligations
- Right to Grievance Redressal: To have grievances addressed in a timely manner
- Right to Nominate: To nominate an individual to exercise your rights in the event of death or incapacity
- Right to Withdraw Consent: As described in Section 4 above
To exercise any of these rights, please submit a Data Subject Access Request using our DSAR form or contact our Grievance Officer at info@tamvada.in. We will respond within the timeframe prescribed under the DPDP Act.
9. Children's Data
This Website is not directed at children under the age of 18. We do not knowingly collect personal data from children. If we become aware that we have inadvertently collected personal data from a child without verifiable parental consent, we will take immediate steps to delete such data in accordance with Section 9 of the DPDP Act 2023.
10. Cookies and Tracking Technologies
We use cookies and similar technologies to operate this Website and understand how it is used. These include:
- Strictly Necessary Cookies: Essential for the Website to function. No consent is required.
- Analytics Cookies: Help us understand how visitors interact with the Website (e.g., Google Analytics). These are activated only with your consent.
- Marketing Cookies: Used to track visitors across websites for marketing purposes. These are activated only with your consent.
You can manage your cookie preferences at any time through our Consent Preferences tool. For more information, see our Cookie Policy.
11. Cross-Border Data Transfers
Your personal data may be processed by our service providers outside India (for example, Mailer Lite, which operates servers in the European Union). Where we transfer your data internationally, we ensure that appropriate safeguards are in place in accordance with Section 16 of the DPDP Act 2023 and any applicable Government of India notifications regarding permitted data transfer destinations.
12. Grievance Officer
In accordance with the DPDP Act 2023 and the IT Act 2000, we have designated a Grievance Officer to address any complaints or concerns regarding the processing of your personal data.
Tamvada & Associates
Y-24, Concorde Silicon Valley, Neeladri Road, Electronic City Phase 1, Bengaluru – 560100
Email: info@tamvada.in
Phone: +91 7338 164422
Complaints will be acknowledged within 48 hours and resolved within 30 days of receipt.
If your grievance is not resolved to your satisfaction, you may approach the Data Protection Board of India once constituted, or any other competent authority under applicable law.
13. Updates to This Policy
We may update this Privacy Policy periodically to reflect changes in our practices, technology, or applicable law. The "Last Updated" date at the top of this page indicates when the policy was last revised. We encourage you to review this policy regularly. Where changes are material, we will notify you by email or through a prominent notice on this Website.
14. Contact Us
Electronic City Phase 1, Bengaluru – 560100
Karnataka, India
Email: info@tamvada.in
Phone: +91 7338 164422