1. Introduction

Iridian Surfaces & Finishes (“Company,” “we,” “our,” or “us”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website https://iridian.in (the “Website”).

This policy is designed to comply with:

• The General Data Protection Regulation (EU) 2016/679 (“GDPR”)
  
  
• The California Consumer Privacy Act (“CCPA”) and other applicable US state privacy laws
  
  
• Applicable Indian data protection laws
  
  

If you do not agree with this policy, please do not use our Website.

2. Information We Collect

We may collect the following types of information:

A. Personal Information You Provide

• Full name
  
  
• Email address
  
  
• Phone number
  
  
• Company name
  
  
• Project details or inquiry information
  
  
• Billing or transaction details (if applicable)
  
  

B. Automatically Collected Information

When you visit our Website, we may automatically collect:

• IP address
  
  
• Browser type and version
  
  
• Device information
  
  
• Pages visited
  
  
• Time and date of visit
  
  
• Referring URLs
  
  
• Cookies and tracking technologies
  
  

C. Marketing & Communication Data

• Preferences in receiving marketing communications
  
  
• Interactions with emails or advertisements
  
  

3. How We Use Your Information

We process your data for the following purposes:

• To respond to inquiries and provide quotations
  
  
• To deliver products or services
  
  
• To manage customer relationships
  
  
• To improve Website functionality and user experience
  
  
• To send marketing communications (with consent where required)
  
  
• To comply with legal obligations
  
  
• To prevent fraud and ensure website security
  
  

4. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA), we rely on the following legal bases:

• Consent – For marketing communications and cookies
  
  
• Contractual Necessity – To provide requested services
  
  
• Legitimate Interests – Website improvement, fraud prevention, and business operations
  
  
• Legal Obligation – Compliance with applicable laws
  
  

5. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to:

• Improve Website performance
  
  
• Analyze traffic
  
  
• Personalize content
  
  
• Deliver targeted advertising (if applicable)
  
  

You can manage cookie preferences via your browser settings. If required under GDPR, a cookie consent banner will be provided.

6. Sharing of Information

We do not sell personal data.

We may share information with:

• Website hosting providers
  
  
• CRM and email marketing platforms
  
  
• Analytics providers (e.g., Google Analytics)
  
  
• Payment processors (if applicable)
  
  
• Legal authorities when required by law
  
  

All third parties are contractually obligated to protect your information.

7. International Data Transfers

If you are located in the EU, your data may be transferred outside the EEA. When this occurs, we ensure appropriate safeguards such as:

• Standard Contractual Clauses (SCCs)
  
  
• Data Processing Agreements
  
  
• Transfers to countries with adequacy decisions
  
  

8. Data Retention

We retain personal data only for as long as necessary to:

• Fulfill the purposes outlined in this policy
  
  
• Comply with legal obligations
  
  
• Resolve disputes
  
  
• Enforce agreements
  
  

When data is no longer required, it will be securely deleted or anonymized.

9. Your Rights (GDPR – EU Residents)

If you are in the EU, you have the right to:

• Access your personal data
  
  
• Rectify inaccurate data
  
  
• Erase your data (“Right to be Forgotten”)
  
  
• Restrict processing
  
  
• Data portability
  
  
• Object to processing
  
  
• Withdraw consent at any time
  
  

To exercise these rights, contact us at: [Insert Email Address]

10. Your Rights (US Residents – Including California)

Depending on your state, you may have the right to:

• Know what personal data we collect
  
  
• Request deletion of personal data
  
  
• Correct inaccurate personal data
  
  
• Opt-out of sale or sharing of personal data (we do not sell data)
  
  
• Non-discrimination for exercising privacy rights
  
  

To submit a request, email: [Insert Email Address]

11. Data Security

We implement reasonable administrative, technical, and physical safeguards to protect your personal data. However, no internet transmission is completely secure.

12. Children’s Privacy

Our Website is not intended for children under 13 years of age. We do not knowingly collect personal data from children.

13. Third-Party Links

Our Website may contain links to third-party websites. We are not responsible for the privacy practices of those websites.

14. Updates to This Privacy Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated Effective Date.