Privacy Policy

We only collect personal information you choose to provide, and a limited amount of technical information required to operate the site. Specifically:

• Contact-form submissions — your name, email address, phone number, the service you are enquiring about, and any message you send us.
• Client-engagement data — once you engage us for professional services, we collect the financial, tax, and identity documents strictly necessary to deliver the engagement (e.g. PAN, GSTIN, financial statements).
• Technical information — IP address, device type, browser, referrer, and aggregate pages visited. This is processed by a privacy-respecting analytics service purely for site-performance measurement.

We do not collect biometric data, and we do not knowingly collect data from children under the age of 18.

Your data is used only for the purposes for which it was provided, or purposes reasonably connected to them:

• To respond to your enquiries and provide the professional services you request.
• To meet our statutory and regulatory obligations — including, where applicable, the Companies Act, 2013, the Income-tax Act, 1961, and the Goods and Services Tax legislation.
• To maintain engagement records as required by the Chartered Accountants Act, 1949 and ICAI standards.
• To improve site performance and content through aggregate, non-identifying analytics.

We do not use your data to make automated decisions that produce legal or similarly significant effects.

We do not sell your personal information, and we do not share it with third parties for their marketing purposes. Limited disclosure may occur in these circumstances:

• With vetted service providers that host our website, deliver email on our behalf, or provide professional tooling — each bound by confidentiality obligations.
• With regulatory authorities (ICAI, Income-tax Department, GST authorities, MCA, RBI, FIU-IND or courts) when we are required by law or the terms of a professional engagement.
• In the context of a merger, acquisition, or restructuring of the firm, subject to equivalent privacy protections.

The site uses a minimal set of first-party cookies for essential functionality (such as remembering your colour-mode preference) and a privacy-respecting analytics layer that does not use third-party advertising cookies or cross-site tracking. We do not operate any retargeting or behavioural-advertising pixels. You can clear or block cookies in your browser settings without affecting core site content.

We retain personal data only for as long as necessary for the purpose for which it was collected, or as required by law. In particular:

• Contact-form enquiries that do not convert to engagements are retained for up to twenty-four months.
• Client-engagement records are retained for a minimum of eight years, in line with Section 128 of the Companies Act, 2013 and ICAI record-retention guidance.
• Analytics data is retained in aggregate form only and is not tied to an identifiable individual.

Subject to the DPDP Act and applicable exemptions, you have the right to:

• Access a summary of personal data we hold about you.
• Correct or update inaccurate or incomplete personal data.
• Erasure of personal data, where we are not required to retain it by law or for professional engagement obligations.
• Withdraw consent for any processing that is based solely on consent.
• Grievance redressal — raise a complaint with our Grievance Officer (see below) and, if unresolved, with the Data Protection Board of India.

To exercise any of these rights, email info@pardeepjha.com from the address associated with your data.

We apply organisational and technical safeguards proportionate to the sensitivity of the data we hold, including encrypted transport (HTTPS), access controls on client-engagement systems, and periodic review of our third-party processors. No system is perfectly secure; if you believe your data may have been compromised in our care, please contact us immediately.

The website and our services are not directed to individuals under the age of 18. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will take reasonable steps to delete it.

We review this policy periodically and will update it when our practices change or when required by law. Material changes will be indicated by updating the effective date at the top of this page; where the change is significant, we will provide additional notice.