Skip to main content
Stones Gallery
WHATSAPP

Privacy Policy

Last updated: November 9, 2025

Stones Gallery (operated by Dish Impex LLP) is committed to protecting your privacy and ensuring the security of your personal information.

1. Information We Collect

1.1 Personal Information

When you interact with Stones Gallery, we may collect the following personal information:

  • Contact Details: Name, email address, phone number, WhatsApp number, mailing address
  • Project Information: Property location, project type (residential/commercial), stone requirements, budget range
  • Business Information: Company name, GST number (for B2B clients), architect/builder credentials
  • Payment Information: Billing address, transaction details (processed securely through payment gateways)
  • Communication Records: Email correspondence, WhatsApp messages, phone call notes, site visit requests

1.2 Automatically Collected Information

  • Usage Data: IP address, browser type, device information, pages visited, time spent on site
  • Cookies & Tracking: Session cookies, analytics cookies (Google Analytics), marketing pixels
  • Location Data: Approximate location based on IP address (for localized content and shipping estimates)

2. How We Use Your Information

We use your personal information for the following purposes:

  • Order Processing: Fulfill stone orders, custom sculpture requests, and installation services
  • Communication: Respond to inquiries, provide quotations, send order updates, and project consultations
  • Service Improvement: Analyze site usage to enhance user experience and optimize our offerings
  • Marketing: Send promotional emails, WhatsApp updates, and newsletters (with your consent; opt-out anytime)
  • Legal Compliance: Meet tax, accounting, and regulatory requirements under Indian law
  • Security: Prevent fraud, unauthorized access, and protect our systems

3. Legal Basis for Processing (GDPR Compliance)

For users in the European Economic Area (EEA), we process personal data based on:

  • Contractual Necessity: To fulfill orders and provide services you've requested
  • Legitimate Interests: To improve our services, prevent fraud, and communicate about products
  • Consent: For marketing communications (which you can withdraw anytime)
  • Legal Obligation: To comply with tax, accounting, and regulatory requirements

4. How We Share Your Information

We do NOT sell or rent your personal information to third parties. We may share your data with:

  • Service Providers: Logistics partners (for delivery), payment gateways (Razorpay, PayU), installation contractors
  • Business Partners: Architects, interior designers (only with your explicit consent for project collaboration)
  • Legal Authorities: When required by law, court order, or to protect our legal rights
  • Analytics Providers: Google Analytics (anonymized data for website performance insights)

All third parties are contractually bound to protect your data and use it only for specified purposes.

5. Data Security Measures

We implement industry-standard security measures to protect your personal information:

  • Encryption: SSL/TLS encryption for data transmission (HTTPS)
  • Secure Storage: Encrypted databases with restricted access controls
  • Payment Security: PCI-DSS compliant payment gateways (we do not store credit card details)
  • Access Controls: Role-based access, two-factor authentication for admin systems
  • Regular Audits: Periodic security assessments and vulnerability testing

However, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security but take all reasonable precautions.

6. Data Retention Period

We retain your personal information for as long as necessary to:

  • Active Accounts: Duration of customer relationship + 3 years for warranty/service records
  • Transactional Data: 7 years (as required by Indian tax and accounting laws)
  • Marketing Communications: Until you unsubscribe or request deletion
  • Website Analytics: 26 months (Google Analytics default retention)

After retention periods expire, we securely delete or anonymize your data.

7. Your Privacy Rights

You have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you
  • Rectification: Correct inaccurate or incomplete information
  • Erasure ("Right to be Forgotten"): Request deletion of your data (subject to legal retention requirements)
  • Data Portability: Receive your data in a structured, machine-readable format
  • Objection: Object to processing based on legitimate interests or for marketing purposes
  • Restriction: Request restriction of processing in certain circumstances
  • Withdraw Consent: Opt-out of marketing emails, WhatsApp messages, or other consented communications

To exercise your rights, email us at dishimpex@gmail.com or WhatsApp +91 90356 64747. We will respond within 30 days.

8. Cookies & Tracking Technologies

We use cookies to enhance your browsing experience:

  • Essential Cookies: Required for site functionality (cannot be disabled)
  • Analytics Cookies: Google Analytics to understand site usage and improve performance
  • Marketing Cookies: Facebook Pixel, Google Ads (for retargeting campaigns)
  • Preference Cookies: Remember your language, location, and display preferences

You can manage cookie preferences through your browser settings. Note that disabling certain cookies may affect site functionality.

9. Children's Privacy

Our services are intended for adults (18+ years). We do not knowingly collect personal information from children under 18. If you believe a child has provided us with personal data, please contact us immediately, and we will delete it.

10. International Data Transfers

Your information is primarily stored on servers in India. For international clients (USA, UK, UAE, etc.), we may transfer data to facilitate services. We ensure adequate safeguards (Standard Contractual Clauses, Privacy Shield frameworks) are in place for such transfers.

11. Third-Party Websites

Our website may contain links to third-party websites (e.g., social media, payment gateways). We are not responsible for their privacy practices. Please review their privacy policies before providing personal information.

12. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. The "Last Updated" date at the top will indicate when the most recent changes were made. We encourage you to review this page regularly. Material changes will be notified via email or prominent site notice.

13. Contact Information

For privacy-related questions, concerns, or to exercise your rights:

Stones Gallery (Dish Impex LLP)

Email: dishimpex@gmail.com

WhatsApp: +91 90356 64747

Address (North India): Near Kurkure Factory, Mokhampura Choraha, Jaipur-Kishangarh-Ajmer NH, Jaipur, Rajasthan - 302013

Address (South India): Pillaikothur Village, Konerpalli Post, Krishnagiri District, Tamil Nadu - 635115

GDPR Compliance for EEA Users

If you are located in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR). You may lodge a complaint with your local data protection authority if you believe your rights have been violated. We are committed to resolving any concerns directly.

Compliance with Indian Data Protection Laws

Stones Gallery complies with the Information Technology Act, 2000 (IT Act) and the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011. We implement reasonable security practices to protect sensitive personal data.

Questions About Privacy?

We're here to address your concerns and protect your data rights.

Contact Privacy Team