LAB TESTEDAYUSH CERTIFIEDMADE IN INDIAFREE SHIPPING ABOVE ₹2,00030-DAY GUARANTEECOD AVAILABLE
LAB TESTEDAYUSH CERTIFIEDMADE IN INDIAFREE SHIPPING ABOVE ₹2,00030-DAY GUARANTEECOD AVAILABLE
NATTY ALPHA

Legal

Privacy Policy

We take your privacy seriously. This policy explains exactly what data we collect, why we collect it, and how you can control it.

Last updated: 6 May 2026

1. Who We Are

Natty Alpha is a product line of Being Vedic Pvt. Ltd. ("Being Vedic", "we", "us", "our"), a company incorporated in India with its manufacturing unit in Haridwar, Uttarakhand and its marketing office at Sector 56, Gurugram, Haryana 122011.

This Privacy Policy applies to the website nattyalpha.com and any associated mobile or digital touchpoints (collectively, the "Service"). By accessing or using the Service, you acknowledge that you have read and understood this policy.

2. Information We Collect

Information you provide directly

  • Phone number — collected at account creation for OTP-based authentication. We do not store your phone number alongside any social-media identifier.
  • Full name and email address — collected at checkout or from your account profile. Email is optional but required for order confirmation emails.
  • Delivery address — collected at checkout to fulfil your order. We never share your address with third parties for marketing.
  • Payment information — we do NOT store your card numbers, UPI IDs, or bank account details. All payments are processed through Razorpay, a PCI-DSS Level 1 compliant payment gateway.

Information we collect automatically

  • Device and browser data — IP address, browser type, operating system, referring URLs, and pages visited. Used for analytics, fraud prevention, and improving our Service.
  • Cookies — we use essential cookies for authentication and cart functionality, and optional analytics cookies (Google Analytics 4) for aggregate usage insights. You can disable analytics cookies through your browser settings.

3. How We Use Your Information

We use your information for the following purposes only:

  • To create and maintain your account
  • To process and fulfil your orders
  • To send order-related communications (confirmations, shipping updates, delivery feedback)
  • To respond to your inquiries and support requests
  • To prevent fraud and ensure the security of our Service
  • To comply with legal obligations under Indian law

We do not sell your personal information to third parties. We do not use your data for behavioural advertising.

4. Lawful Basis (DPDP Act 2023)

Under the Digital Personal Data Protection Act, 2023 (DPDP Act), we process your personal information based on the following grounds:

  • Consent — you have provided explicit consent for processing your phone number and email address
  • Contractual necessity — processing is necessary to fulfil your order (address, payment processing)
  • Legal obligation — we may retain certain data to comply with tax, regulatory, and legal requirements

5. Data Retention

We retain your personal data for as long as your account is active or as needed to provide the Service. After account deletion or 3 years of inactivity, we anonymise or delete personal data. Order records are retained for 7 years to comply with tax regulations.

6. Your Rights (DPDP Act 2023)

As a data principal under the DPDP Act, you have the right to:

  • Access — request a copy of the personal data we hold about you
  • Correction — correct any inaccurate or incomplete personal data
  • Erasure — request deletion of your personal data, subject to legal retention requirements
  • Grievance redressal — lodge a complaint with our Grievance Officer (see Section 10)

To exercise any of these rights, contact us at support@nattyalpha.com. We will respond within 30 days.

7. Data Sharing and Third-Party Processors

We share your data only with trusted service providers who are contractually bound to protect your information:

  • Supabase — database and authentication (hosted on AWS, ap-south-1 region)
  • Razorpay — payment processing
  • MSG91 — OTP and SMS delivery
  • Resend — transactional email delivery
  • Shipping carriers — Delhivery, XpressBees, India Post (order fulfilment only)
  • Google Analytics 4 — anonymised, aggregate analytics (optional cookie)

All data is stored and processed within India. We do not transfer personal data outside India.

8. Data Security

We implement industry-standard security measures including encryption in transit (TLS 1.3), encrypted database storage, and access controls. Despite these measures, no system is 100% secure. We encourage you to use strong, unique passwords and enable available security features.

9. Children's Privacy

Our Service is intended for adults 18 and older. We do not knowingly collect information from children under 18. If you believe a child has provided us with personal data, please contact us immediately.

10. Grievance Officer

Under the DPDP Act 2023, we have appointed a Grievance Officer to address your concerns:

[INSERT GRIEVANCE OFFICER NAME]
Email: support@nattyalpha.com
Response time: within 30 days of receipt

If you are not satisfied with our response, you may lodge a complaint with the Data Protection Board of India.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be notified via email or a prominent notice on our website. The "Last Updated" date at the top of this page reflects the most recent revision.

Have questions? Contact our team — we respond within one business day.