Start a project
Services Work About Contact Start a project →

Legal

Privacy Policy

Last updated: 4 May 2026

Who we are

Nexvia is a sole proprietorship of Harsh Bagrecha, registered in Hyderabad, Telangana, India. We design, build, and automate websites and software for small and medium businesses. This Privacy Policy explains how we collect, use, and protect personal data when you visit nexviatech.in or work with us.

Business: Nexvia (Proprietor: Harsh Bagrecha)
GSTIN: 36ELJPB8159M1ZI
Registered address: 5-1-540, Raj Yash Electricals, Troop Bazar, Hyderabad, Telangana 500095, India
Email: bagrecha.harsh07@nexviatech.in
Phone / WhatsApp: +91 81850 89740

What data we collect

We collect only what we need to respond to enquiries and deliver our services:

  • Contact form data — name, email, WhatsApp number (optional), service interest, budget range, timeline, project description, and how you heard about us.
  • Discovery deposit data — name, email, WhatsApp number, and payment metadata (Razorpay payment ID, order ID) when you pay the ₹1,000 slot-lock deposit. We do not see or store your card / UPI / bank credentials — those go directly to Razorpay.
  • Calendar booking data — name, email, and phone (optional) when you book a discovery call via Zoho Bookings.
  • Analytics data — anonymised page views, click events, scroll depth, device type, and browser via Google Analytics 4 and Microsoft Clarity. IPs are anonymised before storage.
  • Server logs — IP address, user agent, and timestamp for security and abuse prevention. Retained 30 days.

How we use it

  • To reply to your enquiry within our stated 4-hour response window.
  • To deliver the services you've engaged us for and send transactional updates about your project.
  • To send you a one-time confirmation email and Razorpay receipt after a deposit payment.
  • To improve the website experience by understanding which pages and case studies are useful (aggregated, not individual).
  • To meet legal, tax, and accounting obligations under Indian law (GST records, invoice retention).

We do not sell, rent, or share your personal data with third parties for marketing. We do not use your data to train AI models.

Sub-processors we use

We use trusted third-party services to operate the site and deliver our services. Each acts as a sub-processor under their own privacy terms:

  • Netlify — website hosting and serverless functions (USA, GDPR-compliant).
  • Resend — transactional email delivery (USA).
  • Razorpay — payment processing for deposits (India, RBI-licensed).
  • Zoho Bookings & Zoho Meeting — meeting scheduling and video calls (India / global).
  • Zoho Mail — our business email inbox (India).
  • Google Analytics 4 — anonymised website analytics (USA).
  • Microsoft Clarity — anonymised user-experience analytics (USA).

Cookies

We use a small number of cookies and similar technologies, all functional or analytics — none for advertising or tracking across other sites. Specifically:

  • Google Analytics cookies (_ga, _ga_*) — measure aggregated site usage.
  • Microsoft Clarity cookies (_clck, _clsk) — record session heat-maps anonymously.
  • Zoho Bookings cookies — only loaded when you interact with the booking widget on the contact page.

You can disable cookies in your browser settings; the website will continue to work normally.

Data retention

  • Contact-form submissions — kept for 24 months after last contact, then deleted.
  • Project records (contracts, invoices, deliverables) — kept for 8 years to meet Indian GST and tax record obligations.
  • Payment records — kept by Razorpay per their retention policy and by us for accounting (8 years).
  • Analytics data — Google Analytics retains for 14 months; Clarity retains for 13 months.

Your rights under the DPDP Act 2023

If you are an Indian resident, the Digital Personal Data Protection Act, 2023 gives you the following rights regarding your personal data:

  • Right to access — request a copy of the data we hold on you.
  • Right to correction — ask us to correct inaccurate or outdated data.
  • Right to erasure — ask us to delete your data, subject to legal retention obligations.
  • Right to grievance redressal — raise a complaint about how we handle your data.
  • Right to nominate — designate someone to exercise these rights on your behalf in case of incapacity.

To exercise any of these rights, email bagrecha.harsh07@nexviatech.in with the subject line "DPDP request". We will respond within 30 days.

Grievance Officer

For privacy concerns or DPDP grievances, contact:

Harsh Bagrecha (Proprietor & Grievance Officer)
Email: bagrecha.harsh07@nexviatech.in
Phone: +91 81850 89740
Hours: Mon–Sat, 10 am – 7 pm IST

Children

Our services are intended for businesses and adults. We do not knowingly collect personal data from anyone under 18. If you believe we have inadvertently received such data, please contact us and we will delete it.

Security

We use industry-standard practices to protect your data: HTTPS encryption sitewide, payment data handled exclusively by PCI-DSS-compliant Razorpay (we never see card / UPI credentials), server-side secrets stored in encrypted environment variables, and least-privilege access for all third-party integrations. No system is perfectly secure, but we treat client data as if it were our own.

International transfers

Some of our sub-processors (Netlify, Resend, Google, Microsoft) operate servers outside India. Zoho operates primarily within India. By using our services you consent to your data being processed in those jurisdictions, all of which have data-protection regimes considered adequate by Indian regulators.

Changes to this policy

We may update this Privacy Policy as our services evolve or laws change. Material changes will be communicated via email to existing clients. The "Last updated" date at the top will reflect the latest revision.

Contact

Questions about this Privacy Policy? Email bagrecha.harsh07@nexviatech.in or message +91 81850 89740 on WhatsApp.