Legal
Your data,
respected.
How PixerPrint collects, uses, and protects your information.
This Privacy Policy explains how PixerPrint ("we", "us", "our") collects, uses, stores, shares, and protects personal data when you visit our website, create an account, upload artwork, place orders, communicate with our support team, or otherwise interact with our custom print-on-demand services. Last updated: July 2026. By using PixerPrint, you acknowledge that you have read and understood this policy. We process personal data in accordance with applicable Indian law, including the Digital Personal Data Protection Act, 2023 ("DPDP Act"), the Information Technology Act, 2000 and rules framed thereunder (including the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011), and other relevant regulations governing electronic commerce, taxation, and consumer protection in India.
Who we are and how to contact us
PixerPrint operates an online custom print e-commerce platform serving individual customers, startups, agencies, and corporate buyers across India. We offer made-to-order printing for business cards, marketing materials, stickers, labels, packaging, and related products, with proof-before-print workflows, GST-compliant invoicing, and nationwide delivery. For privacy-related questions, data subject requests, or complaints, contact us at hello@pixerprint.com. We have designated a Grievance Officer to address concerns relating to the processing of personal data under applicable law. The Grievance Officer can be reached at hello@pixerprint.com with the subject line "Privacy Grievance". We will acknowledge grievances promptly and endeavour to resolve them within the timelines prescribed under applicable regulations.
Scope of this policy
This policy applies to personal data collected through our website, customer account portal, checkout flows, support ticket system, email and SMS communications, marketing subscriptions, and any other channels operated by PixerPrint. It covers both business-to-consumer (B2C) and business-to-business (B2B) interactions where individuals provide personal data on behalf of themselves or their organisations. This policy does not apply to third-party websites, payment gateways, courier partners, or analytics providers that may be linked from our platform; those entities maintain their own privacy practices, though we describe our relationship with key service providers below. If you access PixerPrint on behalf of a company, you represent that you have authority to provide personal data and to bind that organisation to this policy where relevant.
Personal data we collect
We collect personal data that you provide directly, data generated through your use of our services, and limited data from third parties where necessary to fulfil orders and comply with law. The categories of data depend on how you interact with PixerPrint.
- Identity and contact information: full name, email address, mobile number, billing name, and delivery contact details.
- Account credentials: login email, hashed password, account preferences, saved addresses, and saved product configurations.
- Order and transaction data: order numbers, product selections, quantities, finishes, pricing, GST details, GSTIN (where provided), payment status, payment reference identifiers, invoice records, and delivery instructions.
- Artwork and content files: designs, logos, images, text, and other materials you upload for print production, along with associated metadata such as file names and upload timestamps.
- Communications: support tickets, emails, chat transcripts, proof approval records, feedback, and survey responses.
- Technical and usage data: IP address, browser type, device identifiers, operating system, referring URLs, pages viewed, session duration, and interaction events collected through cookies and similar technologies as described in our Cookie Policy.
- Marketing preferences: newsletter subscription status, campaign engagement, and consent records for promotional communications.
- Corporate account data: company name, GSTIN, purchase order references, authorised user details, and billing arrangements for B2B programmes.
Lawful basis and purpose of processing
Under the DPDP Act and related frameworks, we process personal data only for legitimate purposes and with an appropriate legal basis. For most processing activities relating to order fulfilment, we rely on performance of a contract — namely, the agreement formed when you place and we accept an order. Where we send transactional communications such as proof notifications, dispatch updates, and invoice delivery, processing is necessary to perform our contract with you. We process data to comply with legal obligations, including GST record-keeping, tax audit requirements, and responses to lawful requests from authorities. Where we use data to improve our website, conduct analytics, or send marketing communications, we rely on your consent or our legitimate interests, balanced against your rights. You may withdraw marketing consent at any time without affecting the lawfulness of processing before withdrawal.
- Order processing: validating artwork, generating proofs, managing production, dispatching shipments, and issuing tax invoices.
- Customer support: responding to enquiries, resolving defects, managing cancellations, and handling returns or reprints.
- Account management: maintaining your profile, order history, saved setups, and authentication security.
- Payment facilitation: transmitting necessary details to payment processors to authorise and reconcile transactions.
- Logistics coordination: sharing delivery name, address, phone number, and package details with courier partners.
- Legal and regulatory compliance: maintaining records required under GST law, responding to disputes, and cooperating with law enforcement where legally required.
- Fraud prevention and platform security: detecting suspicious activity, protecting accounts, and maintaining system integrity.
- Service improvement: analysing aggregated usage patterns to enhance product configurators, checkout experience, and support quality.
- Marketing: sending promotional emails, product updates, and offers where you have opted in or where permitted by law.
Sensitive personal data and special categories
PixerPrint is not designed to collect sensitive personal data as defined under Indian law, such as passwords stored in plain text, financial account numbers beyond what payment gateways process, biometric data, health information, or details about racial or ethnic origin, political opinions, or religious beliefs. We do not intentionally collect such data. If you embed personal photographs, identification documents, or other sensitive content within artwork uploaded for printing, you do so at your own discretion and represent that you have lawful authority to use and share that content. We process uploaded artwork solely to fulfil your print order and retain it according to our retention schedule. Please do not upload content you are not authorised to reproduce.
Children's data
PixerPrint services are intended for individuals who are at least eighteen (18) years of age, or who use the platform under the supervision and consent of a parent or legal guardian. We do not knowingly collect personal data from children without appropriate verifiable consent where required by law. If you believe a child has provided personal data to us without proper authorisation, contact hello@pixerprint.com and we will take reasonable steps to delete such information from our active systems, subject to legal retention requirements. Parents and guardians are responsible for monitoring minors' use of the platform and ensuring uploaded content complies with our Acceptable Use Policy.
How we collect data
We collect personal data through multiple channels throughout your relationship with PixerPrint. When you register an account, we collect contact details and credentials. During checkout, we collect billing and delivery information, GSTIN if applicable, and order specifications. When you upload artwork, our systems store files and associated order metadata. When you approve a proof, we record your approval timestamp and the version approved. Support interactions through tickets or email are logged in our customer relationship systems. Automatically, our servers and analytics tools collect technical data when you browse our website. We may also receive limited data from payment gateways (transaction status), courier partners (delivery outcomes), and fraud prevention services to complete and secure your order.
Cookies and similar technologies
We use cookies, local storage, pixels, and similar technologies to operate our website, remember preferences, analyse traffic, and — with your consent — support marketing activities. Essential cookies are necessary for core functions such as session management, cart persistence, and security. Non-essential cookies, including certain analytics and advertising technologies, are used only where permitted by your cookie preferences. For detailed information about cookie categories, retention, third-party tools, and how to manage consent, please refer to our Cookie Policy, which forms part of our overall approach to data protection.
Sharing personal data with third parties
We do not sell your personal data. We share personal data with trusted third parties only where necessary to operate our business, fulfil orders, comply with law, or with your direction. All service providers are required to process data in accordance with contractual confidentiality and security obligations appropriate to the nature of the services they provide.
- Payment processors: we share transaction amounts, order references, and limited contact details with PCI-DSS compliant payment gateways to process card, UPI, net banking, and wallet payments. We do not store full card numbers on our servers.
- Courier and logistics partners: we share recipient name, delivery address, phone number, package weight and dimensions, and tracking identifiers so shipments can be picked up, transported, and delivered across India.
- Cloud hosting and infrastructure providers: personal data and artwork files are stored on secure servers located in India or jurisdictions approved under applicable cross-border transfer requirements.
- Email and SMS providers: we use communication platforms to send order confirmations, proof links, dispatch notifications, and — where consented — marketing messages.
- Analytics and performance tools: aggregated or pseudonymised usage data may be processed by analytics providers to help us understand site performance and user journeys.
- Professional advisers: lawyers, accountants, and auditors may access data where necessary for compliance, tax filings, dispute resolution, or corporate governance.
- Law enforcement and regulators: we may disclose data when required by court order, statutory notice, or other lawful authority under Indian law.
Cross-border data transfers
PixerPrint primarily stores and processes personal data within India. Where we or our subprocessors transfer personal data outside India — for example, to cloud infrastructure, email delivery networks, or analytics platforms with international operations — we ensure appropriate safeguards consistent with the DPDP Act and applicable rules. Such safeguards may include contractual clauses requiring equivalent protection, transfers to jurisdictions permitted by the Central Government, or your explicit consent where required. You may contact us for further information about the countries to which your data may be transferred and the protections applied. We monitor regulatory developments relating to cross-border transfers and update our practices as required.
Data retention
We retain personal data only for as long as necessary to fulfil the purposes described in this policy, unless a longer retention period is required or permitted by law. Retention periods vary by data category and legal obligations.
- Order and invoice records: retained for at least the period required under GST and income tax law, typically a minimum of six to eight years from the end of the relevant financial year, unless a longer period applies to ongoing disputes or audits.
- Artwork files: retained for the duration of order fulfilment and for a reasonable period thereafter to support reorders, reprints, and quality investigations; you may request deletion after order completion subject to legal holds.
- Account information: retained while your account is active and for a limited period after closure to handle residual obligations, disputes, or fraud prevention.
- Support communications: retained for the period needed to resolve issues and demonstrate customer service history, generally up to three years unless litigation requires longer retention.
- Marketing consent records: retained for the duration of the subscription plus a reasonable period to demonstrate compliance with consent requirements.
- Server logs and security records: retained for a limited period appropriate to cybersecurity monitoring, typically between thirty and ninety days unless investigation requires extension.
Data security
We implement reasonable technical and organisational security measures designed to protect personal data against unauthorised access, alteration, disclosure, destruction, or loss. These measures include encrypted connections (TLS/SSL) for data in transit, access controls limiting employee access to data on a need-to-know basis, secure password hashing for account credentials, regular backups, firewall protections, and monitoring for suspicious activity. Artwork files and order data are stored on access-controlled infrastructure. While we strive to protect your information, no method of transmission over the internet or electronic storage is completely secure. You are responsible for maintaining the confidentiality of your account credentials and for ensuring that devices used to access PixerPrint are adequately secured. Notify us immediately at hello@pixerprint.com if you suspect unauthorised access to your account.
Personal data breach notification
In the event of a personal data breach that is likely to affect your rights or interests, we will take prompt action to contain the incident, assess its scope and impact, and notify the Data Protection Board of India and affected Data Principals as required under the DPDP Act and applicable rules. Notification will be provided without undue delay and will include, to the extent known, a description of the nature of the breach, the categories and approximate number of individuals affected, likely consequences, and measures taken or proposed to address the breach and mitigate harm. We maintain internal incident response procedures and cooperate with regulators and law enforcement as necessary. If you believe your data has been compromised through PixerPrint, contact us immediately so we can investigate.
Your rights under the DPDP Act
As a Data Principal under the DPDP Act, you have rights regarding your personal data, subject to applicable exceptions for legal compliance, contractual necessity, and legitimate business needs. We are committed to facilitating the exercise of these rights in a transparent and timely manner.
- Right to access: you may request confirmation of whether we process your personal data and obtain a summary of the categories of data held and the purposes of processing.
- Right to correction: you may request correction of inaccurate or incomplete personal data through your account settings or by contacting support.
- Right to erasure: you may request deletion of personal data that is no longer necessary for the purposes for which it was collected, subject to legal retention obligations such as tax and invoice records.
- Right to grievance redressal: you may raise a complaint with our Grievance Officer regarding our processing activities.
- Right to nominate: you may nominate another individual to exercise your rights in the event of your death or incapacity, in accordance with DPDP Act requirements.
- Right to withdraw consent: where processing is based on consent, including marketing communications, you may withdraw consent at any time through unsubscribe links or by contacting us.
To exercise your rights, email hello@pixerprint.com with sufficient information to verify your identity and specify the request. We will respond within the timeframe prescribed under applicable law. We may need to retain certain data despite an erasure request where required for legal compliance, dispute resolution, or enforcement of our agreements.
Marketing communications and consent
We may send promotional emails, product announcements, seasonal offers, and print inspiration content to individuals who have opted in during account registration, checkout, newsletter signup, or other consent capture points. Marketing messages include an unsubscribe mechanism in compliance with applicable law. Transactional communications — including proof approvals, payment receipts, dispatch alerts, and account security notices — are not marketing messages and will be sent as necessary to perform our services even if you opt out of promotional email. We do not share your contact details with third parties for their independent marketing without your explicit consent. SMS or WhatsApp promotional messages, where used, are sent only with appropriate consent and opt-out options.
Automated decision-making
PixerPrint does not make decisions based solely on automated processing that produce legal or similarly significant effects on you. We may use automated tools for fraud scoring, address validation, artwork preflight checks, and product recommendations, but consequential decisions — such as order acceptance, refund approvals, and account suspension — involve human review. If our practices change, we will update this policy and inform you as required by law.
Third-party links
Our website may contain links to third-party websites, design tools, font providers, or social media platforms. We are not responsible for the privacy practices of those external sites. We encourage you to review the privacy policies of any third-party services you access through or alongside PixerPrint. Payment processing occurs on pages or modules operated by our payment partners, who handle card and banking data under their own compliance frameworks.
Changes to this policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or business operations. Material changes will be communicated through prominent notice on our website or by email where appropriate. The "Last updated" date at the top of this policy indicates when the most recent revision took effect. Continued use of PixerPrint after changes become effective constitutes acknowledgment of the updated policy, except where further consent is required by law. We encourage you to review this policy periodically.
Governing law and jurisdiction
This Privacy Policy is governed by the laws of India. Any disputes arising from or relating to the processing of personal data under this policy shall be subject to the jurisdiction of courts in India, without prejudice to your right to approach the Data Protection Board of India or other statutory remedies available under the DPDP Act. For general support unrelated to privacy rights, our standard dispute resolution procedures described in our Terms of Service may also apply where relevant.