Privacy Policy

1. Who We Are

DataFlirt is a web data extraction and scraping service currently operated as a sole proprietorship by an individual residing in Bengaluru, Karnataka, India. We are in the process of formal business registration. Until such registration is complete, all references to "DataFlirt" refer to the individual operator.

For all privacy-related inquiries, please contact us at hello@dataflirt.com.

2. Information We Collect

We collect only the information necessary to respond to your enquiry, deliver our services, and comply with our legal obligations.

2.1 Information You Provide Directly

When you submit our contact form, you may provide:

• Full name
• Work or personal email address
• Mobile / WhatsApp number (optional)
• Company or project name (optional)
• Project details — target websites, data fields, output format, volume, budget, delivery frequency, urgency, and any other information you choose to include
• How you found us (optional)

This information is collected via Netlify Forms, a service operated by Netlify, Inc. Netlify's own privacy policy applies to data processed through their platform and can be found at netlify.com/privacy.

2.2 Information Collected Automatically

We do not use Google Analytics, advertising pixels, heatmap tools, or any first-party analytics on this Site. However, standard web server logs and Netlify's infrastructure may automatically record:

• Your IP address
• Browser type and version
• Operating system
• Referring URL
• Pages visited and timestamps

These server logs are maintained by Netlify and are governed by their privacy policy. We do not independently collect or process this data.

2.3 Communications

If you contact us by email or WhatsApp, we retain records of that correspondence including your contact details and the content of your messages, for the purpose of managing our relationship with you.

3. How We Use Your Information

We use the information we collect for the following purposes:

• To respond to your enquiry — to contact you with a project scope, quote, and timeline
• To deliver our services — to execute web scraping projects you have contracted us to perform
• To communicate with you — to send project updates, invoices, and service-related messages
• To improve our services — to understand what kinds of projects clients need, in order to improve our offering
• To comply with legal obligations — to meet requirements under applicable Indian law, including the IT Act 2000 and DPDPA 2023

We do not use your personal data for advertising, profiling, or any automated decision-making that produces legal or similarly significant effects on you.

4. Legal Basis for Processing

Under the Digital Personal Data Protection Act, 2023, we process your personal data on the following bases:

• Consent — by submitting our contact form, you voluntarily provide your personal data and consent to us using it to respond to your enquiry and deliver our services
• Contractual necessity — where you engage us for a scraping project, processing your data is necessary to perform that contract
• Legitimate use — for communicating with you about project status and our services, where such use is reasonably expected by you
• Legal obligation — where we are required to process or retain data under applicable Indian law

You may withdraw your consent at any time by writing to us at hello@dataflirt.com. Withdrawal of consent does not affect the lawfulness of processing carried out before the withdrawal.

5. Cookies & Third-Party Embeds

5.1 Cookies

We do not set any first-party cookies on this Site beyond those that Netlify may set for operational purposes (such as form submission handling). We do not use cookies for tracking, advertising, or analytics.

5.2 YouTube Video Embeds

This Site embeds videos from YouTube (operated by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA). When you interact with or play an embedded YouTube video, YouTube may set cookies on your device and collect data including your IP address, browser information, and viewing behaviour. This data is processed by Google under their own privacy policy, available at policies.google.com/privacy.

We use YouTube's standard embed URL which may load cookies when the video frame is loaded, regardless of whether you press play. If you wish to prevent YouTube cookies, you may use a browser extension that blocks third-party iframes or cookies.

DataFlirt does not receive, access, or process any data that YouTube collects through these embeds.

5.3 Netlify Forms

Our contact form is processed by Netlify, Inc. Netlify may set operational cookies or tokens as part of form processing. These are strictly functional and are not used for tracking or advertising.

6. Data Sharing & Disclosure

We do not sell, rent, or trade your personal data. We do not share your data with third parties for marketing purposes.

We may share your information only in the following limited circumstances:

• Service providers — we use Netlify (form processing and hosting) as a data processor. They are contractually required to process your data only as instructed and to maintain appropriate security measures
• Legal requirements — we may disclose your information if required to do so by law, court order, or lawful request by any governmental or regulatory authority under Indian law
• Protection of rights — we may disclose information where we believe disclosure is necessary to protect our legal rights, enforce our terms, or prevent fraud or harm
• Business transfer — in the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction, subject to equivalent privacy protections

7. Data Retention

We retain personal data collected through our contact form and project communications for a period of five (5) years from the date of collection, or from the date of last interaction with you — whichever is later.

This retention period is maintained to:

• Enable us to refer to project history in the event of a follow-up engagement
• Comply with applicable Indian tax and commercial record-keeping requirements
• Resolve any disputes that may arise in connection with past projects

After the retention period expires, we securely delete or anonymise your personal data. You may request earlier deletion by writing to us (see Section 14), subject to any overriding legal obligation to retain data.

8. Data Security

We implement reasonable technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These include:

• Use of HTTPS encryption for all data transmission
• Limiting access to personal data to only those individuals who need it to respond to your enquiry or deliver our services
• Use of Netlify's security infrastructure for form data storage

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal data, we cannot guarantee absolute security.

In the event of a personal data breach that is likely to cause harm to you, we will notify you and the relevant authorities as required under applicable Indian law.

9. Your Rights

Under the Digital Personal Data Protection Act, 2023, you have the following rights in relation to your personal data:

• Right to access — you may request a summary of the personal data we hold about you and how it is being processed
• Right to correction — you may request that we correct inaccurate or incomplete personal data
• Right to erasure — you may request that we delete your personal data, subject to our legal obligations to retain certain records
• Right to grievance redressal — you have the right to a timely and effective remedy for any violation of your rights under the DPDPA 2023
• Right to withdraw consent — you may withdraw consent to processing at any time, without affecting the lawfulness of prior processing
• Right to nominate — you may nominate another individual to exercise your rights on your behalf in the event of your death or incapacity

To exercise any of these rights, please write to us at hello@dataflirt.com. We will respond within 30 days of receiving your request. We may ask you to verify your identity before acting on your request.

10. Children's Privacy

Our Site and services are not directed at children under the age of 18. We do not knowingly collect personal data from minors. If we become aware that we have inadvertently collected personal data from a child, we will delete it promptly. If you believe we may have collected data from a minor, please contact us at hello@dataflirt.com.

11. Legality of Scraped Data — Client Responsibility

Web scraping of publicly accessible data is generally permissible under Indian law and has been affirmed as lawful in several jurisdictions (including the United States — hiQ Labs, Inc. v. LinkedIn Corp., 9th Cir. 2022). However, the legality of any specific scraping project may depend on:

• The terms of service of the target website or platform
• The nature of the data being extracted (e.g. whether it constitutes personal data under applicable law)
• The intended use of the extracted data
• The jurisdiction(s) in which the client operates and in which the target platform is hosted
• Any applicable sector-specific regulations (e.g. financial data, healthcare data)

The client bears sole responsibility for ensuring that any scraping project they commission from DataFlirt is lawful in their jurisdiction, compliant with the terms of service of the target platform, and consistent with applicable data protection laws — including but not limited to the DPDPA 2023, GDPR (where applicable), and the Computer Fraud and Abuse Act (where applicable).

DataFlirt shall not be liable for any legal claims, penalties, regulatory actions, or losses arising from a client's use of scraped data or from the client's failure to obtain necessary permissions from target platforms or data subjects.

By engaging DataFlirt's services, the client represents and warrants that their project is lawful and that they accept full legal responsibility for the data extracted on their behalf.

12. Third-Party Links

This Site may contain links to third-party websites, including those of tools, services, or companies mentioned in our blog content. These links are provided for informational purposes only. DataFlirt has no control over the privacy practices of third-party sites and is not responsible for their content or privacy policies. We encourage you to review the privacy policy of any third-party site you visit.

13. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, services, or applicable law. When we make material changes, we will update the "Last Updated" date at the top of this page.

We encourage you to review this Policy periodically. Your continued use of the Site after any changes constitutes your acceptance of the updated Policy.

14. Contact & Grievances

For any questions, concerns, or requests relating to this Privacy Policy or our data practices — including requests to access, correct, or delete your personal data — please contact us:

If you are not satisfied with our response, you may lodge a complaint with the Data Protection Board of India, once constituted under the Digital Personal Data Protection Act, 2023, or approach a court of competent jurisdiction in Bengaluru, Karnataka, India.