Reference

Understand How We Handle Your Privacy

At aristocart, we take the privacy of every account holder seriously — this page explains exactly what data we collect, why we collect it, and how you can…

Clear data collection disclosureYour rights explained simplyUPI, Paytm, PhonePe data handled securelyContact us to update or delete your dataIndia-applicable policy scope

Browse lobby Read FAQ

What This Policy Covers and Where It Applies

aristocart Service availability depends on jurisdiction. It is the user's responsibility to check local law before access.

This Privacy Policy applies to all personal data aristocart collects through aristocart.net, including data submitted when you create an account, add a payment method such as UPI, Paytm or PhonePe, or contact our support team. Access to our platform depends on local law and is available

1
where local law permits. We process your data in line with applicable data protection principles, including purpose limitation, storage minimisation and accuracy. We do not sell your personal data to third-party marketers. Data linked to your payment instruments — whether you use UPI, Paytm or PhonePe
2
— is retained only for the period required to settle transactions and meet any legal obligations imposed on us.

Service availability depends on jurisdiction. It is the user's responsibility to check local law before access.

REACH OUR PRIVACY TEAM

Contact Us About Your Personal Data

If you have a question about how we process your data, want to request a copy of your records, or need something corrected or removed, our privacy team is reachable through multiple…

Email Privacy Team Send your data request, correction notice or deletion instruction to our dedicated privacy address. Include your registered account email so we can locate your records without delay and respond directly.

Live Chat Support Open the live chat window on aristocart.net and select the privacy or account-data topic. Our agents can escalate your query to the privacy team instantly during support hours, seven days a week.

Written Request Form Use the in-account data request form under Account Settings to submit a formal subject-access or erasure request. We log the submission timestamp and begin processing as soon as your identity is verified.

HOW WE PROTECT YOUR DATA

Data Handling, Security and Retention Practices

We use a layered approach to protect the personal data you share with us — from encryption at rest and in transit, to strict internal access controls that limit who on our…

Encryption in Transit and at Rest

All data you send to aristocart.net — including payment details entered for UPI or Paytm — travels over TLS-encrypted connections. Your stored records are encrypted at rest using industry-standard algorithms so they are unreadable if storage media is ever compromised.

Cookie and Tracking Policy

We use session cookies to keep you logged in and analytics cookies to understand how pages are used. You can manage or decline non-essential cookies through the cookie preference panel, accessible from the footer of every page on our site.

Account Security Controls

Your account is protected by password hashing and optional two-factor authentication via SMS or an authenticator app. We alert you by email whenever a new device logs in, so you can act immediately if you do not recognise the session.

Data Retention Schedule

We keep your account data for as long as your account remains active and for a defined period after closure, as required by applicable law. Payment records linked to UPI, Paytm or PhonePe transactions are retained for the minimum period required for financial compliance.

Who Has Access to Your Records

Access to personal data inside aristocart is role-restricted. Only team members with a legitimate operational need — such as fraud review or support escalation — can view your records, and all access is logged and audited on a regular basis.

How to Request Changes or Deletion

Submit a correction or erasure request through the in-account form or by emailing our privacy team. We will verify your identity, confirm receipt within 48 hours and complete the action or explain any legal reason we are required to retain certain records.

Frequently Asked Questions About Your Privacy

Below are the questions we hear most often from account holders about how their data is managed on aristocart. If your question is not covered here, reach our privacy team directly through live chat or the email address listed in this policy.

We collect your name, email address, date of birth, phone number and a government-issued identity document for verification. If you add a payment method such as UPI or Paytm, we also record the payment instrument identifier associated with your account.

We store payment instrument identifiers to process deposits and withdrawals securely and to comply with financial record-keeping requirements. We do not store full card numbers or PhonePe PINs — only tokenised references provided by the payment gateway.

Yes. Submit a subject-access request through the form in Account Settings or email our privacy team. We will verify your identity and send a structured copy of your personal data within 30 days of receiving a valid request.

You can update most fields directly in Account Settings. For items that require verification — such as your legal name or identity document — contact our privacy team by email or live chat and we will process the correction after re-verification.

You may request erasure of your account and personal records. We will honour this where no legal obligation requires us to retain the data. Financial transaction records may need to be kept for a statutory period even after your account is closed.

We share data only with partners who are essential to running the platform — such as payment processors for UPI transactions, identity verification providers and fraud-detection services. We do not sell your data to advertisers or unrelated third parties.

Where we rely on your consent as the legal basis for processing, you may withdraw it at any time by contacting our privacy team. Withdrawal does not affect processing carried out before your request, and certain processing may continue on other legal bases such as contractual necessity.

Understand How We Handle Your Privacy

Contact Us About Your Personal Data

Data Handling, Security and Retention Practices

Encryption in Transit and at Rest

Cookie and Tracking Policy

Account Security Controls

Data Retention Schedule

Who Has Access to Your Records

How to Request Changes or Deletion

Frequently Asked Questions About Your Privacy

01 What personal data does aristocart collect when I open an account?

02 Why does aristocart need my payment method details like UPI or PhonePe?

03 Can I request a copy of all the data aristocart holds about me?

04 How do I ask aristocart to correct inaccurate information in my account?

05 Can I ask aristocart to delete my account and all associated data?

06 Does aristocart share my personal data with third parties?

07 How do I withdraw consent for data processing on aristocart?

Related Pages