This Privacy Policy describes how Mumbai Web Services, operated by Neel Networks ("we", "us", or "the Company"), collects, uses, stores, and protects personal data obtained through this website and through our professional service engagements. By using this website or engaging our services, you consent to the practices described in this policy.
Who We Are
Mumbai Web Services is a professional web design, development, and digital marketing services brand operated by Neel Networks, registered and operating from:
Neel Networks
A-104, Bhoomi Utsav, M.G. Road
Kandivali West, Mumbai – 400067
Maharashtra, India
admin@neelnetworks.com · 9136694505
We act as the data controller in respect of personal data collected through this website and service interactions. If you have any questions about how your data is handled, please contact us using the details above.
Data We Collect
We collect personal data only to the extent necessary to provide our services and communicate effectively with prospective and active clients. The categories of data we may collect include:
| Category | Specific Data Points | Source |
|---|---|---|
| Identity Data | Full name, business name, job title | Contact forms, direct communication |
| Contact Data | Email address, phone number, WhatsApp number, mailing address | Contact forms, enquiry messages |
| Project Data | Project briefs, requirements, business descriptions, budget range | Contact forms, proposals, direct email |
| Communication Data | Email correspondence, WhatsApp messages, call records | Direct communication |
| Technical Data | IP address, browser type, device type, pages visited, time on site | Website analytics tools (cookies) |
| Financial Data | Invoice and payment records (not card or bank details) | Payment transactions |
We do not collect or store sensitive personal data such as Aadhaar numbers, PAN numbers, passwords, biometric data, or payment card details. Card and bank transactions are processed directly through third-party payment providers (Razorpay) and are not stored on our systems.
How We Collect Your Data
We collect personal data through the following means:
- Contact and enquiry forms: When you submit a form on this website requesting a quote, consultation, or information, we collect the details you provide.
- WhatsApp and direct communication: When you contact us via WhatsApp, email, or phone, we retain records of those communications to manage our relationship and project delivery.
- Website analytics: When you visit this website, automated tools (such as Google Analytics) may collect technical data including your IP address, device type, browser, and browsing behaviour on our site. This data is collected using cookies.
- Project onboarding: During the course of a service engagement, you may share additional information — login credentials, brand assets, business data — necessary for project delivery. This is handled in strict confidence.
- Referrals and networking: Occasionally, your contact details may be shared with us by a mutual contact or referral. We will inform you of this at the first point of direct contact.
How We Use Your Data
We use personal data only for the purposes for which it was collected or for compatible purposes you would reasonably expect. Specifically, we use your data to:
- Respond to enquiries, provide quotations, and discuss project requirements
- Deliver contracted services — web design, development, marketing, and support
- Manage the client relationship throughout and after a project engagement
- Issue invoices, process payments, and maintain financial records as required by law
- Send service-related updates, project status communications, and post-project support
- Improve our website and service offerings based on aggregated analytics data
- Comply with applicable legal, regulatory, and tax obligations
We do not use your personal data to send unsolicited marketing emails, sell or rent your data to third parties, or use it for automated decision-making that has a significant effect on you.
Legal Basis for Processing
Under India's Digital Personal Data Protection Act, 2023 (DPDP Act) and applicable data protection principles, we process your personal data on the following lawful bases:
| Processing Activity | Legal Basis |
|---|---|
| Responding to enquiries and providing quotations | Consent (form submission); Legitimate interest |
| Delivering contracted services | Contractual necessity |
| Issuing invoices and maintaining financial records | Legal obligation (GST compliance, accounting law) |
| Website analytics and performance monitoring | Legitimate interest; Consent (cookies) |
| Post-project support and relationship management | Legitimate interest; Contractual necessity |
Data Sharing & Disclosure
We do not sell, rent, or trade your personal data. We share data only in the following limited circumstances:
- Within our team: Project data is shared with the specific team members working on your project — developers, designers, account managers — on a need-to-know basis. All team members are bound by confidentiality obligations.
- Payment processors: When you make a payment, transaction data is processed by Razorpay (or another provider specified at the time of transaction). We do not receive or store card or bank account details. Razorpay's own privacy policy governs how they handle transaction data.
- Cloud service providers: We use third-party cloud tools for project management, email communication, and file storage (e.g., Google Workspace). These providers process data on our behalf under appropriate data processing terms.
- Legal and regulatory requirements: We may disclose data where required by law, court order, or the lawful request of a government authority.
- Business transfer: In the event of a merger, acquisition, or transfer of business assets, personal data may be transferred as part of that transaction, subject to equivalent privacy protections.
We do not transfer personal data outside India unless necessary for a specific service (e.g., cloud hosting or API services). Where international transfers occur, we ensure appropriate safeguards are in place.
Cookies & Website Tracking
7.1 What Are Cookies?
Cookies are small text files placed on your device when you visit a website. They help websites function correctly, remember preferences, and collect analytics data about how visitors use the site.
7.2 Cookies We Use
| Cookie Type | Purpose | Examples |
|---|---|---|
| Essential | Required for the website to function. Cannot be disabled. | Session management, security tokens |
| Analytics | Track visitor behaviour to help us improve the website. No personally identifiable information is stored. | Google Analytics (_ga, _gid) |
| Preference | Remember settings or choices you have made on the site. | Language, form state |
7.3 Managing Cookies
You can control and manage cookies through your browser settings. Most browsers allow you to refuse all cookies, accept only certain types, or delete cookies already stored on your device. Disabling non-essential cookies will not prevent you from using this website, but it may affect how certain features function.
7.4 Google Analytics
We use Google Analytics to understand how visitors use our website. Google Analytics collects anonymised data on pages visited, session duration, device type, and referral source. This data is aggregated and does not identify individual users. You can opt out of Google Analytics tracking by installing the Google Analytics Opt-out Browser Add-on.
Data Retention
We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by applicable law. Our standard retention periods are:
| Data Category | Retention Period |
|---|---|
| Enquiry and pre-sales communication | 2 years from last contact, or until you request deletion |
| Active client project data and correspondence | Duration of project + 3 years |
| Invoices and financial records | 7 years (as required by Indian accounting and tax law) |
| Website analytics data | 26 months (Google Analytics default) |
| Support and maintenance records | Duration of engagement + 2 years |
At the end of the applicable retention period, personal data is securely deleted or anonymised. You may request early deletion of your data — see Section 10 for your rights.
Data Security
We take the security of your personal data seriously and implement appropriate technical and organisational measures to protect it against unauthorised access, loss, alteration, or disclosure. Our security measures include:
- SSL/TLS encryption for all data transmitted between your browser and our website
- Access controls — only authorised personnel with a legitimate need can access client data
- Secure cloud infrastructure with reputable providers (Google Workspace, AWS)
- Regular security practices including strong password policies and two-factor authentication on internal systems
- Confidentiality obligations applied to all team members handling client data
While we take all reasonable precautions, no method of internet transmission or electronic storage is completely secure. We cannot guarantee absolute security, but we commit to notifying you promptly in the event of a data breach that may affect your personal data, in accordance with applicable law.
Your Rights
Under India's Digital Personal Data Protection Act, 2023 (DPDP Act), you have the following rights in respect of your personal data:
- Right to access: You have the right to request a summary of the personal data we hold about you and how it is being used.
- Right to correction: You have the right to request that inaccurate or incomplete personal data be corrected.
- Right to erasure: You may request that we delete your personal data where there is no longer a lawful basis for us to retain it, subject to our legal obligations (e.g., financial record retention requirements).
- Right to withdraw consent: Where processing is based on your consent, you may withdraw that consent at any time. Withdrawal does not affect the lawfulness of processing carried out prior to withdrawal.
- Right to grievance redressal: You have the right to raise a complaint or grievance with us if you believe your data rights have not been respected. We will acknowledge and respond to complaints within a reasonable timeframe.
How to Exercise Your Rights
To exercise any of the above rights, please contact us in writing at admin@neelnetworks.com with the subject line "Data Rights Request". We will respond within 30 days of receiving a verifiable request. We may need to verify your identity before processing the request.
Third-Party Links
This website may contain links to third-party websites, social media platforms, and external resources. These links are provided for your convenience and information only. We have no control over the content, privacy practices, or security of third-party websites and accept no responsibility for them.
We encourage you to review the privacy policies of any third-party website you visit before providing any personal information. The presence of a link on our website does not constitute an endorsement of that website or its practices.
Children's Privacy
Our services are directed at businesses and adult individuals. This website is not intended for use by anyone under the age of 18, and we do not knowingly collect personal data from minors.
If you believe that a child under 18 has submitted personal data to us, please contact us immediately at admin@neelnetworks.com and we will take prompt steps to delete that information.
Updates to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, applicable law, or the services we offer. When material changes are made, the updated policy will be published on this page with a revised "Last Updated" date.
Where changes are significant, we will notify active clients directly by email. We encourage you to review this page periodically. Continued use of this website or our services following the posting of an updated policy constitutes acceptance of those changes.
Contact Us
For any questions, concerns, or requests related to this Privacy Policy or the handling of your personal data, please contact us:
Mumbai Web Services — Neel Networks
We aim to respond to all privacy-related queries within 5 business days. For data rights requests, we will respond within 30 days as required by law.
This Privacy Policy was last updated on 10 April 2025.