Privacy Policy - MR BRANDING

Last Updated: June 20, 2026

Effective Date: June 20, 2026

1. Introduction & Data Fiduciary

This Privacy Policy describes how Sankalp Enterprises, operating as MR BRANDING ("Company", "we", "us"), collects, uses, stores, and protects personal data.

Registered Address: Delhi, 110041, India

Website: https://mrbranding.pro

We are committed to protecting your privacy in compliance with the Digital Personal Data Protection Act, 2023 (DPDP Act) of India and Meta's WhatsApp Business Policy.

2. Services We Provide

MR BRANDING is a Technology Service Provider offering a SaaS platform including:

  • CRM & Digital Marketing: Lead management and WhatsApp Business API communication

  • ERP, HR, Inventory, Logistics: Business management solutions

  • Industry Support: Solutions for SMBs including insurance advisors, healthcare, education, retail, real estate, and printing services

Important: We do not sell products directly to end consumers. Our clients are businesses who use our platform to communicate with their own customers.

3. Personal Data We Collect

We collect data only when provided by our business clients or when you interact with our website:

Data TypePurposeLegal BasisName, WhatsApp Number, EmailSend transactional updates, invoices, policy renewals, appointment remindersConsent & Contract PerformanceBusiness Name, GST NumberClient onboarding, billing, KYCLegal ObligationMessage Content & Chat HistoryProvide WhatsApp chatbot auto-replies, maintain conversation recordsConsent & Legitimate InterestIP Address, Browser Data, CookiesWebsite analytics, security, improve user experienceLegitimate Interest

We DO NOT collect: Aadhaar number, PAN, biometric data, financial passwords, or health records unless explicitly required by law with separate consent.

4. How We Use Personal Data

Your data is used only for:

  • Transactional Messages: Order confirmations, shipping updates, payment receipts, policy renewal reminders sent via WhatsApp API

  • Marketing Messages: Promotional offers sent ONLY to users who have provided explicit opt-in consent, using Meta-approved templates

  • Customer Support: 24x7 chatbot and human agent responses via WhatsApp

  • Service Improvement: Analytics to improve our CRM/ERP platform performance

  • Legal Compliance: Tax records, audit trails as required by Indian law

We strictly prohibit unsolicited messaging. No promotional WhatsApp messages are sent without prior opt-in.

5. Data Storage, Security & Processors

  • Storage Location: All personal data is stored on Hostinger VPS servers physically located in Mumbai, India.

  • Encryption: Data encrypted in transit using TLS 1.3 and at rest using AES-256 encryption.

  • Data Processor: Hostinger International Ltd. acts as our cloud hosting Data Processor under a Data Processing Agreement.

  • Access Control: Only authorized employees with 2FA can access production data. All access is logged.

  • Retention Period: Active customer data retained while account is active. After account closure, data deleted within 90 days unless legal retention required.

6. Data Sharing & Disclosure

We DO NOT sell, rent, or trade personal data. We share data only with:

  • Meta Platforms Inc.: When sending messages via WhatsApp Business API, message content and phone numbers are processed by Meta as per Meta's Data Policy.

  • Hostinger: For cloud hosting and server infrastructure in Mumbai.

  • Legal Authorities: If required by court order, law enforcement, or to comply with DPDP Act 2023.

Our clients who use our platform are independent Data Fiduciaries responsible for their own customer data and consent management.

7. Your Rights Under DPDP Act 2023

You have the right to:

  • Access: Request a copy of your personal data we hold

  • Correction: Request correction of inaccurate or incomplete data

  • Erasure: Request deletion of your data - see our Data Deletion Page

  • Grievance Redressal: File complaint with our Data Protection Officer

  • Nominate: Nominate another person to exercise rights in case of death/incapacity

To exercise these rights, email: privacy@mrbranding.pro. We will respond within 30 days.

8. Cookies & Tracking Technologies

We use essential cookies for website functionality and analytics cookies to understand usage. You can disable cookies in browser settings, but some features may not work.

We do not use cookies for cross-site tracking or advertising profiling.

9. Children's Privacy

Our services are not intended for individuals under 18 years. We do not knowingly collect data from minors. If you believe a child has provided data, contact us for immediate deletion.

10. WhatsApp Business Specific Disclosure

When you interact with our clients via WhatsApp:

  • Your WhatsApp number and messages are processed by Meta Platforms Inc.

  • Meta may use data as per their Privacy Policy: https://www.whatsapp.com/legal/privacy-policy

  • Opting out: Reply STOP to any WhatsApp message to stop marketing communications

11. Data Breach Notification

In case of personal data breach, we will notify affected users and the Data Protection Board of India within 72 hours as required by DPDP Act 2023.

12. Changes to This Policy

We may update this Privacy Policy. Material changes will be notified via email or website notice 30 days before effective date. Continued use after changes means acceptance.

13. Data Protection Officer & Contact

Data Protection Officer (DPO): Sanjeev Rajput

Email: privacy@mrbranding.pro

Grievance Email: privacy@mrbranding.pro

Address: Sankalp Enterprises, Delhi, 110041, India

Response Time: We acknowledge grievances within 24 hours and resolve within 15 days as per IT Rules 2021.

14. Consent Withdrawal

You may withdraw consent for marketing communications at any time by:

  • Replying STOP on WhatsApp

  • Emailing privacy@mrbranding.pro with subject "Withdraw Consent"

  • Using unsubscribe link in emails

Withdrawal will not affect processing done before withdrawal.

By using MR BRANDING services, you consent to data processing as described in this Privacy Policy.