Ashish Dungdung

Consultant, Developer

Page

Privacy Policy

Version: 3.0 (Unified Global Compliance Edition) Effective Date: February 10, 2026 Last Updated: March 5, 2026 1. Introduction and Scope Welcome to ashishdungdung.com (hereinafter referred to as the “Website” or…

Ashish

Version: 3.0 (Unified Global Compliance Edition) Effective Date: February 10, 2026 Last Updated: March 5, 2026

1. Introduction and Scope

Welcome to ashishdungdung.com (hereinafter referred to as the “Website” or “Site”). The Website is owned by Ashish Dungdung and operated by Ash Digital Services (“Company,” “we,” “us,” or “our”).

We recognize that your privacy is a fundamental right. This Privacy Policy is a legally binding document that outlines how we collect, process, retain, and share your personal data. It has been drafted to strictly comply with the following legal frameworks:

  • India: The Digital Personal Data Protection Act, 2023 (DPDP Act) and Information Technology Act, 2000.
  • European Union / UK: The General Data Protection Regulation (GDPR) and UK-GDPR.
  • United States: The California Privacy Rights Act (CPRA/CCPA), Colorado Privacy Act (CPA), Connecticut Data Privacy Act (CTDPA), and other emerging state laws (Delaware, Iowa, Montana, Nebraska, Nevada, New Hampshire, New Jersey).
  • Global: Canada (PIPEDA), Brazil (LGPD), and Australia (Privacy Act 1988).

2. Identity of the Data Fiduciary

For the purposes of data protection laws, the entity responsible for your data (the Data Fiduciary or Data Controller) is:

  • Entity: Ash Digital Services
  • Owner: Ashish Dungdung
  • Registered Office: Rourkela, Odisha, India
  • Contact Email: [email protected]
  • Grievance Officer: Ashish Dungdung

3. Comprehensive Data Collection

We collect data through voluntary submission and automated digital scripts. This includes:

3.1. Information You Voluntarily Provide

  • Identity Data: First name, last name, username, and social media handles.
  • Contact Data: Email address, phone number, billing address, and shipping address.
  • Transaction Data: Details about payments made via PayPal, Stripe, or Razorpay, and records of products or courses purchased.
  • Profile Data: Your password (encrypted), purchase history, feedback, survey responses, and HubSpot/Active Campaign CRM interactions.
  • Communication Data: Data shared via LiveChat, WhatsApp, or Calendly bookings.

3.2. Information Collected Automatically (Usage Data)

When you interact with our Site, we automatically collect specific technical data via scripts:

  • Device Data: IP address, browser type and version, time zone setting, operating system, and platform.
  • Usage Data: Clickstream data, page response times, download errors, and page interaction (scrolling, clicks, and mouse-overs) tracked by Hotjar and Microsoft Clarity.
  • Embedded Content Data: Interaction logs from YouTube, Vimeo, VideoPress, Dailymotion, SoundCloud, Twitch, and Spotify.

4. Purpose and Legal Basis for Processing

We process your personal data under the following legal frameworks:

  • Performance of Contract: To process and deliver orders, courses, and services.
  • Legitimate Interest: For fraud detection, site security, and troubleshooting via Google reCAPTCHA.
  • Consent: To deliver relevant website content and advertisements. We use Google Consent Mode V2 and TCF 2.0+ to ensure your consent is granularly managed and respected.
  • Legal Compliance: To maintain records for Indian Tax Laws and other global regulatory requirements.

5. Advertising, Retargeting & Third-Party Tracking

We use sophisticated third-party tools to analyze traffic and serve personalized advertisements.

  • Google Ecosystem: We use Google Analytics 4, Google Signals, Google AdSense, and Google Ads. We utilize Google Tag Manager and Matomo for precise tracking management.
  • Social & Search Ads: We utilize the Meta (Facebook/Instagram) Pixel, Microsoft Ads, and LinkedIn Insight Tags for remarketing and conversion tracking.
  • Scripts & Sharing: We use AddThis, AddToAny, and ShareThis for social engagement.
  • Opt-Out: You may opt-out of personalized advertising via our Consent Management Platform (CMP) or through Google/Meta Ad Settings.

6. Sharing of Personal Data & Infrastructure

We do not sell your personal data. We share your data only with specific “Data Processors” essential for our operations:

  • Cloud Hosting: AWS (Amazon Web Services), UpCloud, and IONOS.
  • CRM & Email: HubSpot, Active Campaign, Mailchimp, and ConvertKit.
  • Media & Fonts: Google Fonts, Adobe Fonts, and various video/audio embeds.
  • Navigation: Google Maps and OpenStreetMaps.
  • Payments: Stripe, Razorpay, and PayPal.

7. Content Delivery Networks (CDNs)

We use CDNs including Cloudflare, AWS CloudFront, and BunnyCDN to deliver content faster and protect against DDoS attacks.

  • Processing: When you visit our Site, your request is routed through a global network of “Edge Nodes.”
  • Data Processed: These nodes process your IP address and technical device data to serve images/scripts efficiently. This is based on our Legitimate Interest in security and performance.

8. International Data Transfers

Due to the global nature of our infrastructure (AWS, UpCloud, CDNs), your data may be processed in multiple jurisdictions including the United States, Europe (Germany/UK), and Singapore.

  • For Indian Users: You acknowledge that your data may be transferred outside India. We ensure such transfers comply with the DPDP Act, 2023.
  • For European Users: We utilize Standard Contractual Clauses (SCCs) to ensure your rights are protected during trans-Atlantic or global transfers.

9. Data Security and Breach Notification

We have implemented enterprise-grade security (SSL encryption, WAF firewalls via Cloudflare) to prevent unauthorized access.

  • Breach Notification: In the event of a data breach that poses a risk to your rights, we will notify you and the relevant Data Protection Board (DPB) in India or the relevant supervisory authority in the EU/US within the legal timeframes (typically 72 hours).

10. Data Retention

We retain data only as long as necessary:

  • Tax & Legal Records: 8 Years (as required by Indian Income Tax and GST Laws).
  • Marketing Data: Retained until you unsubscribe or request erasure.
  • WordPress Comments: Comment data and metadata are retained indefinitely to recognize and approve follow-up comments.

11. Strict Policy on Children (Parental Contract)

Commercial services and courses on this Site are intended for adults (18+). If a minor accesses this Site:

  • The minor is deemed to be acting under the supervision of a Parent or Legal Guardian.
  • The legal contract is formed between Ash Digital Services and the Parent/Guardian.
  • The Parent/Guardian provides “Verifiable Parental Consent” for any data processing involving the minor.

12. Your Legal Rights

Depending on your jurisdiction, you have the following rights:

  • Access & Correction: Request a copy of your data or fix inaccuracies.
  • Erasure (Right to be Forgotten): Request data deletion.
  • Opt-Out (US States): Residents of CA, CO, CT, DE, IA, MT, NE, NV, NH, and NJ may opt-out of the “sale or sharing” of personal data for behavioral advertising via our GPC-enabled footer.
  • Right to Nominate (India): Nominate an individual to handle your data rights in the event of death or incapacity.

13. Governing Law and Jurisdiction

This Privacy Policy shall be governed by and construed in accordance with the laws of India. Any disputes arising out of this policy or your use of the Website shall be subject to the exclusive jurisdiction of the courts located in Rourkela, Odisha, India.

14. Contact and Grievance Officer

In accordance with the DPDP Act, 2023, the contact details for our Grievance Officer are:

  • Name: Ashish Dungdung
  • Designation: Grievance Officer / Data Protection Officer
  • Email: [email protected]
  • Physical Address: [Your Registered Office Address in Rourkela, Odisha]