Who we are

Suggested text: Our website address is: https://bittersoil.com.

Comments

Suggested text: When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

Suggested text: If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Cookies

Suggested text: If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Suggested text: Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Who we share your data with

Suggested text: If you request a password reset, your IP address will be included in the reset email.

How long we retain your data

Suggested text: If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

Suggested text: If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where your data is sent

Suggested text: Visitor comments may be checked through an automated spam detection service.

 

Privacy Policy

A. INTRODUCTION & OUR COMMITMENT

A.1 WHO WE ARE

Bittersoil is India’s first conscious luxury confectionery brand, dedicated to bringing purity back to food. We create premium date-sweetened chocolates with complete transparency – no added sugar, no artificial ingredients, no preservatives. Just like our ingredients, our data practices are transparent, honest, and designed to serve you better.

A.2 OUR DATA PHILOSOPHY

At Bittersoil, we believe in conscious data practices just as we believe in conscious indulgence. We collect only what we need, use it only for your benefit, and protect it with the same care we use to craft our chocolates.

A.3 PURPOSE OF THIS POLICY

This Privacy Policy explains in simple terms:

  1. What personal information we collect and why

  2. How we use your information to serve you better

  3. Who we share it with (spoiler: almost no one)

  4. How you can control your data

  5. Your rights and how to exercise them

B. INFORMATION WE COLLECT & WHY

B.1 INFORMATION YOU GIVE US DIRECTLY

a. When You Make a Purchase

  • What We Collect: Name, delivery address, phone number, email address, payment information

  • Why We Need It:

    1. To deliver your conscious treats to your doorstep

    2. To send order confirmations and updates

    3. To process payments securely

    4. To provide customer support if needed

  • Legal Basis: Contract performance – we need this to fulfill your order

b. When You Contact Us

  • What We Collect: Your message, email address, phone number, any photos you share

  • Why We Need It:

    1. To respond to your questions about ingredients, nutrition, or products

    2. To help resolve any issues with your order

    3. To improve our products based on your feedback

  • Legal Basis: Legitimate interest in providing customer service

c. When You Subscribe to Our Newsletter

  • What We Collect: Email address, name (optional), preferences

  • Why We Need It:

    1. To share educational content about conscious eating

    2. To inform you about new products and seasonal offerings

    3. To send you special offers and ingredient insights

  • Legal Basis: Your explicit consent (you can unsubscribe anytime)

d. When You Follow Us on Social Media

  • What We May See: Public profile information, interactions with our posts

  • Why We Use It:

    1. To understand what content helps you make conscious choices

    2. To respond to your comments and questions

    3. To share user-generated content (with your permission)

  • Legal Basis: Legitimate interest in social media engagement

B.2 INFORMATION WE COLLECT AUTOMATICALLY

a. Website Usage Information

  • What We Collect:

    1. Pages visited on our website

    2. Time spent reading about ingredients

    3. Products viewed and added to cart

    4. Device type and browser information

    5. IP address and general location (city level)

  • Why We Collect It:

    1. To make our website faster and easier to use

    2. To understand which educational content is most helpful

    3. To improve your shopping experience

    4. To prevent fraud and ensure security

  • Legal Basis: Legitimate interest in website improvement and security

b. Cookies and Similar Technologies

  • Essential Cookies: Required for basic website functions like shopping cart

  • Analytics Cookies: Help us understand how you use our site

  • Marketing Cookies: Remember your preferences and show relevant content

  • Your Choice: You can manage cookie preferences in your browser settings

B.3 INFORMATION FROM THIRD PARTIES

a. Payment Processors

  • What They Share: Transaction status, payment confirmation

  • Why: To confirm your payment was successful and fulfill your order

b. Delivery Partners

  • What They Share: Delivery status, delivery confirmation

  • Why: To keep you updated on your order’s journey to you

C. HOW WE USE YOUR INFORMATION

C.1 PRIMARY USES

a. Order Fulfillment & Customer Service

  1. Processing Orders:

    • Confirming your order and payment

    • Preparing your conscious treats for delivery

    • Coordinating with delivery partners

  2. Delivery Management:

    • Ensuring your treats reach you fresh

    • Providing delivery updates and tracking

    • Handling delivery issues or delays

  3. Customer Support:

    • Answering questions about ingredients and nutrition

    • Resolving order issues or concerns

    • Providing product recommendations

b. Communication & Education

  1. Educational Content:

    • Sharing knowledge about conscious eating

    • Explaining our ingredients and their benefits

    • Teaching about the difference between artificial and natural sweeteners

  2. Product Updates:

    • Informing you about new conscious treats

    • Sharing seasonal offerings and limited editions

    • Announcing improvements to existing products

c. Legal & Security

  1. Legal Compliance:

    • Meeting FSSAI food safety requirements

    • Complying with consumer protection laws

    • Maintaining transaction records as required

  2. Security & Fraud Prevention:

    • Protecting against fraudulent transactions

    • Ensuring the security of your personal data

    • Preventing unauthorized access to accounts

C.2 SECONDARY USES (HOW DATA HELPS US SERVE YOU BETTER)

a. Product Development

  1. Understanding which ingredients and flavors you prefer

  2. Developing new conscious treats based on customer interests

  3. Improving existing products based on feedback

b. Business Operations

  1. Planning inventory to ensure product availability

  2. Improving delivery times and customer experience

  3. Analyzing trends to better serve our conscious community

D. INFORMATION SHARING & DISCLOSURE

D.1 WHO WE SHARE WITH (VERY LIMITED LIST)

a. Essential Service Providers

  1. Payment Processors:

    • Who: Razorpay, PayU, or similar secure payment gateways

    • What: Transaction details for payment processing

    • Why: To securely process your payments

    • Protection: They follow strict security standards and cannot use your data for other purposes

  2. Delivery Partners:

    • Who: Local delivery services, courier companies

    • What: Your name, address, phone number, order details

    • Why: To deliver your conscious treats

    • Protection: They can only use data for delivery purposes

  3. Technology Partners:

    • Who: Website hosting, email service providers

    • What: Technical data needed for services

    • Why: To keep our website running and communications flowing

    • Protection: Bound by strict data processing agreements

b. Legal Requirements
We may share information if required by:

  1. Court orders or legal processes

  2. Government authorities for tax or regulatory compliance

  3. Law enforcement for legitimate investigations

  4. FSSAI for food safety compliance

D.2 WHO WE DON’T SHARE WITH

We NEVER sell, rent, or trade your personal information to:

  • Marketing companies or data brokers

  • Other brands or competitors

  • Social media platforms (except what you publicly share)

  • Third-party advertisers

  • Anyone else not mentioned above

E. DATA SECURITY & PROTECTION

E.1 HOW WE PROTECT YOUR DATA

a. Technical Security

  1. Encryption: All sensitive data is encrypted during transmission and storage

  2. Secure Servers: Data stored on secure, regularly updated servers

  3. Access Controls: Only authorized personnel can access customer data

  4. Regular Security Audits: Periodic reviews to identify and fix vulnerabilities

b. Physical Security

  1. Secure facilities with restricted access

  2. Background-verified employees handling data

  3. Regular security training for all staff

  4. Secure disposal of physical documents

c. Operational Security

  1. Data Minimization: We collect only what we actually need

  2. Regular Backups: Secure backups to prevent data loss

  3. Incident Response: Plan in place for any security incidents

  4. Vendor Management: All partners must meet our security standards

E.2 YOUR ROLE IN DATA SECURITY

You can help protect your data by:

  1. Using strong passwords for your account

  2. Not sharing login credentials with others

  3. Keeping your contact information updated

  4. Reporting any suspicious activity immediately to privacy@bittersoil.com

F. YOUR RIGHTS & CHOICES

F.1 YOUR DATA RIGHTS UNDER INDIAN LAW

a. Right to Access

  • What: Request a copy of all personal data if we have about you (If you have shared – Any way)

  • How: Email privacy@bittersoil.com with “Data Access Request”

  • Timeline: We’ll respond within 5 days with your data in readable format

b. Right to Correction

  • What: Update or correct any inaccurate personal information

  • How:

    1. Log into your account and update information directly

    2. Email info@bittersoil.com with correction requests

    3. Contact on WhatsApp during business hours

c. Right to Deletion

  • What: Request deletion of your personal data

  • Limitations: We may need to keep some data for legal compliance (tax records, FSSAI requirements)

  • How: Email privacy@bittersoil.com with “Data Deletion Request”

  • Timeline: Deletion within 30 days, with confirmation email

d. Right to Data Portability

  • What: Get your data in a format you can transfer to another service

  • How: Email privacy@bittersoil.com with “Data Portability Request”

  • Format: We’ll provide data in JSON or CSV format

e. Right to Object

  • What: Object to certain uses of your data (like marketing)

  • How:

    1. Unsubscribe from emails using the link in any email

    2. Email privacy@bittersoil.com with specific objections

    3. Adjust cookie settings in your browser

F.2 COMMUNICATION PREFERENCES

a. Email Communications

  1. Educational Newsletter: Unsubscribe anytime using the link in emails

  2. Order Updates: These are essential and cannot be disabled while you have active orders

  3. Marketing Emails: Opt-out anytime without affecting your order communications

b. SMS/WhatsApp Communications

  1. Delivery Updates: Essential for order fulfillment

  2. Marketing Messages: Reply “STOP” to opt-out anytime

  3. Customer Service: Only when you contact us first

G. DATA RETENTION & DELETION

G.1 HOW LONG WE KEEP YOUR DATA

a. Transaction Data

  • How Long: 7 years after transaction

  • Why: Required by Indian tax laws and FSSAI regulations

  • What Happens: Securely archived, then permanently deleted

b. Marketing Data

  • How Long: Until you unsubscribe or request deletion

  • Why: To send you relevant educational content and offers

  • What Happens: Immediately removed from marketing lists when requested

c. Customer Service Data

  • How Long: 3 years after last interaction

  • Why: To provide consistent support and improve service

  • What Happens: Archived for reference, then permanently deleted

d. Website Analytics

  • How Long: 26 months maximum

  • Why: To understand website usage and improve user experience

  • What Happens: Automatically deleted by analytics systems

G.2 SECURE DELETION PROCESS

When we delete your data:

  1. Immediate Removal: Data removed from active systems within 30 days

  2. Secure Deletion: Multiple overwrite cycles to ensure data cannot be recovered

  3. Backup Cleanup: Data removed from backup systems within 90 days

  4. Confirmation: We’ll confirm deletion completion via email

H. INTERNATIONAL DATA TRANSFERS

H.1 DATA LOCATION

Primary Storage: Your data is primarily stored on servers located in India.

Third-Party Services: Some services (like email providers) may use international servers.

Protection Measures: All international transfers use adequate safeguards:

  1. Standard Contractual Clauses

  2. Encryption during transfer

  3. Equivalent privacy protections

H.2 YOUR CONSENT

By using our services, you consent to necessary international transfers for service provision, with appropriate safeguards in place.

I. CHILDREN’S PRIVACY

I.1 AGE RESTRICTIONS

Our Policy: Bittersoil does not knowingly collect personal information from children under 18 without parental consent.

Parental Oversight: If you’re under 18:

  1. Get parent/guardian permission before providing any information

  2. Parents can review and delete their child’s information anytime

  3. Parents can refuse further collection of their child’s information

I.2 IF YOU’RE A PARENT

Your Rights:

  1. Review information collected from your child

  2. Request deletion of your child’s information

  3. Refuse further collection of information

Contact Us: Email privacy@bittersoil.com with “Parental Rights” in subject line.

J. CHANGES TO THIS POLICY

J.1 HOW WE HANDLE UPDATES

Notification Methods:

  1. Email Notice: Sent to all customers 30 days before changes take effect

  2. Website Banner: Prominent notice on our homepage

  3. Version Updates: New version number and date at top of policy

Types of Changes:

  1. Minor Updates: Clarifications, formatting, contact information

  2. Material Changes: New data uses, sharing practices, retention periods

J.2 YOUR CHOICES WITH CHANGES

For Material Changes:

  1. Review Period: 30 days to review changes before they take effect

  2. Opt-Out Option: You can close your account if you disagree

  3. Granular Control: Object to specific changes while keeping your account

Continued Use: Using our services after the effective date means you accept the updated policy.

K. CONTACT US & COMPLAINTS

K.1 DATA PROTECTION CONTACTS

General Privacy Questions:
Specific Data Requests:

  • Data Access/Deletion

  • Data Correction:

  • Security Concerns

K.2 COMPLAINT RESOLUTION

Our Process:

  1. Acknowledgment: We’ll acknowledge your complaint within 48 hours

  2. Investigation: Thorough review of your concern within 15 days

  3. Resolution: Clear explanation and corrective action within 30 days

  4. Follow-up: Check that you’re satisfied with the resolution

L. LEGAL BASIS & COMPLIANCE

L.1 INDIAN PRIVACY LAWS

This policy complies with:

  1. Information Technology Act, 2000 and SPDI Rules 2011

  2. Digital Personal Data Protection Act, 2023 (when effective)

  3. Consumer Protection Act, 2019

  4. Food Safety and Standards Act, 2006 (FSSAI compliance)

L.2 LEGAL BASIS FOR PROCESSING

We process your data based on:

  1. Contract Performance: To fulfill orders and provide services

  2. Legal Obligations: Tax compliance, FSSAI requirements, consumer protection

  3. Legitimate Interests: Website improvement, fraud prevention, customer service

  4. Consent: Marketing communications, cookies, newsletter subscriptions

M. DEFINITIONS & GLOSSARY

M.1 KEY TERMS EXPLAINED

Personal Data: Any information that can identify you directly or indirectly.

Processing: Any operation we perform on your data – collection, storage, use, sharing, or deletion.

Data Controller: Haritkan Foods (we decide how and why your data is processed).

Data Processor: Third parties who process data on our behalf (payment processors, delivery services).

Consent: Your freely given, specific, and informed agreement to data processing.

Legitimate Interest: Our business need to process data, balanced against your privacy rights.

N. ACKNOWLEDGMENT & CONSENT

By using Bittersoil services, you acknowledge that:

  1. You have read and understood this Privacy Policy

  2. You consent to the collection and use of your information as described

  3. You understand your rights and how to exercise them

  4. You can withdraw consent for marketing communications anytime

  5. You accept necessary data processing for order fulfillment and customer service

For Questions, Concerns About This Policy:

📧 Emailprivacy@bittersoil.com
📞 WhatsApp: +91 9328374704
🏢 AddressHaritkan Food, Jodhpur gam, satellite, Ahmedabad – 380015

At Bittersoil, we’re committed to conscious data practices just as we’re committed to conscious indulgence. Your trust is precious to us, and we protect your data with the same care we use to craft our premium date-sweetened chocolates.

Log In
Log In
Shopping Cart