Skip to main content

Lets Do Digital

Legal & Compliance · DPDP Act 2023

Your data, your rules.

This is how Lets Do Digital collects, uses, stores, and protects your personal information — explained in plain language, not legalese. Compliant with India’s Digital Personal Data Protection Act, 2023 (DPDP Act), the IT Act 2000, and global privacy best practices.

Effective DateMay 26, 2026
Last UpdatedJune 2, 2026
Version2.1
Governing LawIndia
i

In short: We collect only what we need to serve you better. We never sell your data. We never spam. You can ask us to delete your data anytime — and we will, within 30 days. If you have any questions, just call +91 8052969537 or email support@letsdodigital.in.

01 / Introduction

Who we are and what this policy covers.

Welcome to Lets Do Digital — a performance-first digital marketing agency based in Prayagraj, Uttar Pradesh, India. We are committed to protecting the personal information of every individual who visits our website at https://letsdodigital.in/, fills out our contact forms, subscribes to our communications, or engages with our services in any way.

This Privacy Policy describes our practices regarding the collection, use, disclosure, and protection of your personal data when you interact with us. It applies to all visitors, prospective clients, existing clients, and anyone whose data we process in the course of our business.

By using our website or sharing your information with us, you confirm that you have read, understood, and consented to the practices described in this Privacy Policy. If you do not agree with any part of this policy, please do not use our website or share your personal information with us.

This policy is governed by and complies with:

  • Digital Personal Data Protection Act, 2023 (DPDP Act) — India’s primary data protection legislation
  • Information Technology Act, 2000 and the IT (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011
  • Applicable consumer protection laws of India
  • Best practices aligned with global standards including GDPR (for international visitors)
02 / What We Collect

The information we actually need.

We believe in collecting only what is necessary to serve you well. Here is exactly what we may collect and why:

A. Information you provide voluntarily

When you fill out our contact form, subscribe to our newsletter, request a free audit, or communicate with us via email, WhatsApp, or phone, you may share:

  • Identity data: Full name, business name, designation
  • Contact data: Email address, phone number, WhatsApp number, postal address
  • Business data: Industry type, city/location, business size, marketing goals, current digital presence
  • Communication data: Messages you send us, files or documents you share, audit information you provide
  • Marketing preferences: Newsletter subscriptions, content interests, communication frequency preferences

B. Information collected automatically

When you visit our website, we may automatically collect certain technical information through cookies and similar technologies:

  • Device data: Browser type, operating system, device type (mobile/desktop/tablet)
  • Usage data: Pages visited, time spent on pages, click patterns, referring website
  • Location data: Approximate geographic location based on IP address (city-level, not precise)
  • Analytics data: Aggregated information via Google Analytics, Search Console, and similar tools

C. Information from third parties

If you reach us through a referral, social media platform (Instagram, LinkedIn, Facebook), or partner channel, we may receive your name, profile information, and contact details from those sources — only what they share with us based on your privacy settings on those platforms.

⚠ What We Do Not Collect

We do not collect sensitive personal data such as your government IDs (Aadhaar, PAN, passport), financial account numbers, medical records, biometric data, or sexual orientation — unless explicitly required for a specific service you have requested, and only after obtaining your separate, informed consent.

↑ Back to top
03 / How We Use It

The why behind every piece of data we hold.

Under the DPDP Act, 2023, we process your personal data only for specified, lawful purposes and only with your informed consent. Here are the legitimate purposes for which we use your information:

  • Service delivery: To respond to your inquiries, schedule consultations, deliver the digital marketing services you have engaged us for, and provide ongoing support
  • Communication: To send you proposals, audit reports, project updates, and important service-related communications
  • Marketing (with your consent): To send you newsletters, blog updates, case studies, and offers about our services — only if you have opted in. You can unsubscribe anytime.
  • Improvement: To analyse website usage patterns and improve our services, content, and user experience
  • Legal compliance: To comply with applicable Indian laws, tax obligations (GST), and respond to legitimate requests from law enforcement or regulatory authorities
  • Security: To protect our website, prevent fraud, detect unauthorised access, and maintain the integrity of our systems
  • Business operations: For invoicing, payment processing (via third-party providers), record-keeping, and internal administration

We will never use your personal data for purposes that are not disclosed in this policy without first obtaining your fresh consent.

↑ Back to top
04 / Sharing & Disclosure

Who we share your data with — and who we do not.

We do not sell, rent, or trade your personal information to anyone. We share your data only in the limited circumstances described below:

A. Trusted service providers

We use carefully selected third-party service providers to help us operate our business. These include:

  • Hosting and infrastructure: Our website hosting provider stores website data securely
  • Analytics tools: Google Analytics, Google Search Console for understanding website performance
  • Email and communication: Email service providers for sending newsletters and transactional emails
  • Payment processors: For client billing — we do not store credit card or banking details ourselves
  • Marketing platforms: Tools like CRM systems, advertising platforms (only when running client campaigns)

All these providers are contractually obligated to maintain confidentiality and use your data only to perform the specific services we have engaged them for.

B. Legal requirements

We may disclose your personal information if required to do so by Indian law, court order, or in response to a valid government or law enforcement request — for example, in compliance with the Income Tax Act, GST regulations, or judicial proceedings.

C. Business transfers

If Lets Do Digital is involved in a merger, acquisition, or sale of assets, your personal data may be transferred as part of that transaction. We will notify you in advance and ensure your rights under this policy remain protected.

D. With your explicit consent

In any other situation requiring data sharing, we will request your explicit consent before proceeding.

★ Our Firm Commitment

We will never sell your personal data to advertisers, data brokers, or any third party for profit. Your information is not a product — it is a trust you have placed in us, and we honour that.

↑ Back to top
05 / Your Rights

Your rights as a Data Principal under the DPDP Act, 2023.

India’s Digital Personal Data Protection Act, 2023 grants you significant rights over your personal data. As a Data Principal (the term the Act uses for the individual whose data is being processed), you have the following rights:

01

Right to Access

You can request a summary of the personal data we hold about you and how we are processing it.

02

Right to Correction

You can ask us to correct any inaccurate, outdated, or incomplete personal data we hold about you.

03

Right to Erasure

You can request that we delete your personal data — subject to legal retention obligations.

04

Right to Withdraw Consent

You can withdraw consent for any data processing activity at any time, with future effect.

05

Right to Nominate

You can nominate another individual to exercise your rights on your behalf in case of death or incapacity.

06

Right to Grievance Redressal

You can raise a complaint with us, and if unresolved, with the Data Protection Board of India.

To exercise any of these rights, please email us at support@letsdodigital.in with the subject line “DPDP Rights Request”. We will respond to your request within 30 days, as required by law.

↑ Back to top
06 / Data Security

How we protect your information.

We take data security seriously and implement reasonable technical and organisational security practices in accordance with the IT (Reasonable Security Practices) Rules, 2011 and the DPDP Act, 2023. Our security measures include:

  • Encryption: Sensitive data is transmitted over secure (HTTPS) connections with SSL/TLS encryption
  • Access controls: Only authorised team members have access to personal data, and only on a need-to-know basis
  • Storage: Data is stored on secured servers with regular backups and recovery procedures
  • Vendor due diligence: All third-party service providers we work with are vetted for their security practices
  • Regular reviews: Our security practices are reviewed and updated periodically
  • Breach response: In the unlikely event of a personal data breach, we will notify affected individuals and the Data Protection Board of India in accordance with the law

While we use industry-standard practices, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security but we commit to making every reasonable effort to protect your information.

↑ Back to top
07 / Data Retention

How long we keep your data.

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by applicable laws. Specifically:

  • Inquiry data (contact form, free audit requests): Up to 24 months from the date of inquiry, unless you become a client
  • Client data: For the duration of the engagement plus 7 years thereafter (as required under the Income Tax Act and Companies Act)
  • Newsletter subscribers: Until you unsubscribe, after which data is removed from active mailing lists within 30 days
  • Website analytics: Aggregated and anonymised data may be retained indefinitely; identifiable data follows the retention rules of our analytics providers (typically 14–26 months for Google Analytics)
  • Financial records: 7 years from the end of the financial year, as mandated by Indian tax laws

After the applicable retention period, we will securely delete or anonymise your personal data so that it can no longer be associated with you.

↑ Back to top
08 / Cookies & Tracking

How we use cookies.

Our website uses cookies and similar tracking technologies to improve your browsing experience and analyse website performance. Cookies are small text files stored on your device by your browser.

Types of cookies we use

  • Essential cookies: Required for the website to function properly — you cannot opt out of these
  • Analytics cookies: Help us understand how visitors use our website (Google Analytics, Search Console)
  • Functional cookies: Remember your preferences (e.g., form data, language settings)
  • Marketing cookies: Used by Google Ads, Meta Pixel, or similar platforms when you have given consent to receive targeted advertising

You can control or disable cookies through your browser settings. However, disabling certain cookies may affect website functionality. By continuing to use our website without changing your cookie settings, you are consenting to our use of cookies as described above.

↑ Back to top
09 / Children’s Data

Special protection for minors.

Our services are intended for business owners, entrepreneurs, and individuals aged 18 years and above. We do not knowingly collect personal data from children under the age of 18.

If you are a parent or guardian and you believe your child has provided us with personal information without your consent, please contact us immediately at support@letsdodigital.in. We will take steps to delete such information from our systems within a reasonable timeframe.

For data of minors that may be processed inadvertently, we follow the DPDP Act’s requirement to obtain verifiable parental consent and prohibit targeted advertising directed at children.

↑ Back to top
10 / International Users

For visitors outside India.

Lets Do Digital is based in India, and our servers and operations are primarily located in India. If you are accessing our website or services from outside India (including the European Union, United Kingdom, United States, or any other country), please be aware that your personal data may be transferred to and processed in India.

By using our website or sharing your information with us, you consent to this transfer and processing, subject to the protections described in this Privacy Policy. We apply the standards of the DPDP Act, 2023 and align with GDPR best practices to ensure your data receives strong protection regardless of where you are located.

↑ Back to top
11 / Policy Updates

When this policy changes.

We may update this Privacy Policy from time to time to reflect changes in our practices, applicable laws, or the services we offer. When we make material changes, we will:

  • Update the “Last Updated” date at the top of this policy
  • Notify existing clients and newsletter subscribers via email at least 15 days before the changes take effect
  • For significant changes affecting how we process your data, we will seek your renewed consent where required by law

Your continued use of our website and services after the effective date of the updated policy constitutes your acceptance of the revised terms. We recommend reviewing this policy periodically to stay informed about how we protect your information.

↑ Back to top
12 / Grievance Officer

Raising a concern.

In accordance with the IT (Intermediary Guidelines) Rules, 2021 and the DPDP Act, 2023, we have appointed a Grievance Officer to address any concerns or complaints related to data privacy and security.

★ Grievance Officer Details

Name: Zeeshan Ahsan Naqvi

Designation: Founder & Grievance Officer

Email: support@letsdodigital.in

Phone: +91 8052969537

Address: 37D/5D Gaus Nagar, GTB Nagar, Kareli, Prayagraj, Uttar Pradesh 211016, India

Response Time: Within 30 days of receiving your written complaint

If you are not satisfied with our response, you have the right to escalate your complaint to the Data Protection Board of India (once operational under the DPDP Act, 2023) or the appropriate authority under the IT Act, 2000.

↑ Back to top

Questions about your data?

We are here to help. Reach out through any of these channels and we will respond within 2 business hours during weekdays.

Lets Do Digital — Voice Assistant