Privacy Policy

Last Updated: 20 December, 2025
Effective From: 20 December, 2025

1. Introduction

Coratia Technologies Pvt. Ltd. (hereinafter referred to as “Coratia”, “we”, “us”, or “our”) values your privacy and is committed to protecting your personal data in compliance with the Digital Personal Data Protection Act, 2023 (“DPDP Act”), Digital Personal Data Protection Rules, 2025 (“DPDP Rules”), the Information Technology Act, 2000, and the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 (“SPDI Rules”).

This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you visit our website, access our digital platforms, or use our products or services.

Note: Our website, products, and services are intended only for individuals who are 18 years of age or older. By accessing or using our services, you confirm that you are at least 18 years old. Coratia assumes that all users are 18 or above.

2. Information We Collect

  • Personal Information: Name, email address, phone number, postal address, organization details, or other identifiers.
  • Sensitive Personal Data or Information (SPDI): Passwords, financial details, identification numbers, or biometric data (only when strictly required and with explicit consent).
  • Technical and Usage Data: IP address, browser type, operating system, cookies, access logs, and user interaction data.
  • Communications Data: Records of correspondence, inquiries, or feedback.

Children’s Data: We do not knowingly collect personal data of children below the age of 18. If you are a parent or guardian and believe that your child has provided data to us, please contact Mr. Adarsh Pattnaik, our Grievance Redressal Officer at adarsh.pattnaik.coratia@gmail.com. We will take steps to delete such data in accordance with applicable laws (as amended from time to time).

3. Purpose of Collection and Processing

  1. To provide, operate, and enhance our products and services.
  2. To communicate with users, respond to queries, and provide technical support.
  3. For user authentication and account management.
  4. For internal record keeping, analytics, and product improvement.
  5. To comply with legal and regulatory obligations.
  6. To send marketing or promotional communications (only with prior consent).
  7. To ensure website and system security.

4. Lawful Basis and Consent

  • Coratia will collect and process your personal data only on the basis of your free, specific, informed, unconditional, and unambiguous consent, expressed through a clear affirmative action (such as clicking “I Agree”).
  • We do not use pre-ticked checkboxes or implied consent mechanisms.
  • You may withdraw your consent at any time by writing to (contact email or form link). Withdrawal of consent will not affect the legality of processing carried out prior to such withdrawal.
  • If you provide personal data on behalf of another individual, you confirm that you have obtained their valid consent.

5. Data Sharing and Disclosure

We do not sell, trade, or rent personal data. Data may be shared only with:

  • Authorized employees, consultants, and service providers who require access for legitimate business purposes and are bound by confidentiality obligations.
  • Third-party vendors or partners providing IT, hosting, analytics, or customer management services under appropriate data protection agreements.
  • Regulatory or governmental authorities when required to comply with legal obligations.
  • Successors or assigns in case of merger, acquisition, or reorganization, subject to assurances of equivalent data protection.

If personal data is transferred outside India, such transfer will comply with the DPDP Act and only to jurisdictions with adequate data protection safeguards.

6. Data Retention

We retain personal data for a period of 3 (three) years, for the purpose for which it was collected, or as required by applicable laws (as amended from time to time).
Upon expiry of the retention period, data is securely deleted, anonymized, or archived.

7. Data Security

We employ reasonable security practices and procedures as required under Rule 8 of the SPDI Rules, including:

  • Data encryption and secure server infrastructure.
  • Access controls and role-based authorizations.
  • Firewalls, antivirus protection, and periodic audits.
  • Confidentiality and data protection obligations for employees.

While we strive for the highest standards, no online transmission or storage system is fully secure, and we cannot guarantee absolute protection.

8. Your Rights

As a Data Principal under the DPDP Act, you have the following rights:

  1. Right to Access: Request details of your personal data held by us.
  2. Right to Correction and Erasure: Request correction of inaccurate data or deletion of data, subject to legal obligations.
  3. Right to Nominate: Nominate a representative to act on your behalf.
  4. Right to Withdraw Consent: Withdraw consent to processing at any time.
  5. Right to Grievance Redressal: Lodge a complaint if you believe your data has been mishandled.

We will respond to such requests within reasonable timeframes as prescribed by applicable law (as amended from time to time).

9. Grievance Redressal

Coratia has appointed the following representative to address any concerns or grievances related to data privacy:

Mr. Adarsh Pattnaik
Grievance Redressal Officer
Coratia Technologies Pvt. Ltd.
Email: adarsh.pattnaik.coratia@gmail.com
Phone: +91 8984762268
Registered Office: Room-TI-324, FTBI, NIT Rourkela, Odisha
PIN-769018

If you are not satisfied with the resolution provided, you may escalate the complaint to the Data Protection Board of India as per the DPDP Act.

10. Website Practices and Consent Mechanism

  • The Coratia website will provide opt-in consent options only, ensuring no pre-ticked boxes or implied acceptance.
  • Users will have to take a clear affirmative action to indicate consent before submitting any personal data.
  • Separate consent will be obtained where required for marketing or promotional communications.

11. Updates to This Policy

We may periodically revise this Privacy Policy to reflect updates in our practices, technology, or legal obligations. The updated version will be published on our website with the revised effective date.

12. Contact Us

For general inquiries, requests, or complaints related to data privacy, please contact:

Coratia Technologies Pvt. Ltd.
Email: contact@coratia.com
Website: www.coratia.com
Registered Office: Room-TI-324, FTBI, NIT Rourkela, Odisha
PIN–769018