DG
0%
Dusty Group
Private Limited

Privacy Policy

Last updated: March 26, 2026

Dusty Group Private Limited (“Dusty Group,” “we,” “us,” or “our”), headquartered in Delhi, India, is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you visit our websites, use our services, or interact with us in any capacity.

This policy is designed to comply with the General Data Protection Regulation (GDPR) (EU), the California Consumer Privacy Act (CCPA) as amended by the CPRA (USA), and the Digital Personal Data Protection Act, 2023 (DPDP Act) (India).

By accessing our websites or services, you acknowledge that you have read and understood this Privacy Policy.

1. Data Controller

The data controller responsible for your personal data is:

Dusty Group Private Limited
Delhi, India
Email: support@dustyhive.com

This policy also covers data processing activities conducted by our subsidiary, DUSTYHIVE LLP (LLPIN: ACS-5589), and the CovaHive brand.

2. Information We Collect

2.1 Information You Provide

We may collect personal data that you voluntarily provide, including:

  • Name, email address, phone number, and postal address
  • Business or professional information (company name, designation)
  • Payment and billing information for sponsorships or purchases
  • Communication content when you contact us via email, phone, or forms
  • Any other information you choose to share with us

2.2 Information Collected Automatically

When you visit our websites, we may automatically collect:

  • IP address, browser type, operating system, and device information
  • Pages visited, time spent, referring URL, and clickstream data
  • Cookies and similar tracking technologies (see Section 7)
  • Approximate geolocation based on IP address

2.3 Information from Third Parties

We may receive data from analytics providers, advertising networks, social media platforms, or business partners to supplement the data we collect directly.

3. How We Use Your Information

We process your personal data for the following purposes:

  • Service delivery: To operate, maintain, and improve our websites and services
  • Communication: To respond to inquiries, send updates, newsletters, and relevant business communications
  • Transactions: To process sponsorships, purchases, and other commercial engagements
  • Analytics: To understand user behaviour, improve our offerings, and personalise experiences
  • Legal compliance: To comply with applicable laws, regulations, and legal processes
  • Security: To detect, prevent, and address fraud, abuse, or security incidents
  • Marketing: To send promotional materials where you have consented or where permitted by law (you may opt out at any time)

4. Legal Basis for Processing (GDPR — EU/EEA Users)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, our legal bases for processing your personal data are:

  • Consent: Where you have given explicit consent (e.g., subscribing to newsletters, accepting cookies)
  • Contractual necessity: Where processing is necessary for a contract with you (e.g., sponsorship agreements)
  • Legitimate interests: Where we have a legitimate business interest that is not overridden by your rights (e.g., website analytics, fraud prevention)
  • Legal obligation: Where processing is required by law

5. Your Rights

5.1 Rights Under GDPR (EU/EEA Users)

You have the right to:

  • Access your personal data and obtain a copy
  • Rectify inaccurate or incomplete data
  • Erase your data (“right to be forgotten”) in certain circumstances
  • Restrict or object to certain processing activities
  • Data portability — receive your data in a structured, machine-readable format
  • Withdraw consent at any time (without affecting prior lawful processing)
  • Lodge a complaint with your local data protection authority

5.2 Rights Under CCPA/CPRA (California Residents)

California residents have the right to:

  • Know: Request disclosure of the categories and specific pieces of personal information collected, the purposes of collection, and with whom it was shared
  • Delete: Request deletion of personal information, subject to certain exceptions
  • Opt-out of sale or sharing: We do not sell personal information. If this changes, we will provide a “Do Not Sell or Share My Personal Information” link
  • Correct: Request correction of inaccurate personal information
  • Non-discrimination: We will not discriminate against you for exercising any of your CCPA rights

To exercise these rights, contact us at support@dustyhive.com. We will verify your identity and respond within 45 days.

5.3 Rights Under DPDP Act 2023 (Indian Users)

Under India’s Digital Personal Data Protection Act, 2023, you have the right to:

  • Access a summary of your personal data and the processing activities
  • Correction and erasure of your personal data
  • Grievance redressal — submit complaints regarding data processing
  • Nominate another person to exercise your rights in the event of your death or incapacity

As a Data Fiduciary under the DPDP Act, we process personal data only for lawful purposes with your consent or as permitted by law. We will provide notice before collecting your data, specifying the purpose and manner of processing.

6. Data Sharing and Disclosure

We do not sell your personal data. We may share your information with:

  • Group entities: DUSTYHIVE LLP and CovaHive, for operational purposes under the same governance framework
  • Service providers: Third-party vendors who assist with hosting, analytics, email services, and payment processing, bound by data protection agreements
  • Legal requirements: When required by law, court order, or government request
  • Business transfers: In connection with a merger, acquisition, or sale of assets (you will be notified)
  • With your consent: For any other purpose with your explicit consent

7. Cookies and Tracking Technologies

Our websites use cookies and similar technologies to:

  • Essential cookies: Enable core functionality (session management, security)
  • Analytics cookies: Understand how visitors interact with our websites (e.g., Google Analytics)
  • Preference cookies: Remember your settings (e.g., theme preference, language)
  • Marketing cookies: Deliver relevant advertisements and measure campaign effectiveness

You can manage cookie preferences through the cookie consent banner on our website or through your browser settings. Declining non-essential cookies will not affect core website functionality.

8. International Data Transfers

As we operate worldwide, your data may be transferred to and processed in countries outside your jurisdiction. When transferring data from the EEA/UK, we rely on:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Adequacy decisions where applicable
  • Other appropriate safeguards as required by law

For transfers from India, we comply with the cross-border transfer provisions of the DPDP Act and any restrictions notified by the Central Government.

9. Data Retention

We retain personal data only as long as necessary for the purposes described in this policy, or as required by law. Specific retention periods vary by data type:

  • Account and transaction data: retained for the duration of the business relationship plus 7 years (legal/tax requirements)
  • Communication records: up to 3 years after last contact
  • Analytics data: up to 26 months
  • Cookie data: varies by cookie type (see browser settings)

After the retention period, data is securely deleted or anonymised.

10. Data Security

We implement appropriate technical and organisational measures to protect your personal data, including:

  • Encryption of data in transit (TLS/SSL) and at rest
  • Access controls and authentication mechanisms
  • Regular security assessments and monitoring
  • Employee training on data protection practices

No system is completely secure. While we take reasonable precautions, we cannot guarantee absolute security of your data.

11. Children’s Privacy

Our services are not directed at individuals under the age of 18. We do not knowingly collect personal data from minors. If you are a parent or guardian and believe your child has provided personal data to us, please contact us and we will promptly delete such information. Under the DPDP Act, processing of children’s data requires verifiable parental consent.

12. Do Not Track Signals

Some browsers transmit “Do Not Track” (DNT) signals. We currently do not respond to DNT signals, but we honour cookie preferences set through our consent banner.

13. Third-Party Links

Our websites may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies.

14. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated “Last Updated” date. For significant changes, we will provide notice through our website or via email where appropriate.

15. Grievance Officer (India)

In accordance with the DPDP Act, 2023 and the Information Technology Act, 2000, the Grievance Officer for all data-related concerns is:

Akshat Singh Mehrotra
Director, Dusty Group Private Limited
Email: grivance@dustyhive.com

Grievances will be acknowledged within 24 hours and resolved within 30 days of receipt.

16. Contact Us

For any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:

Dusty Group Private Limited
Delhi, India
Email: support@dustyhive.com

EU residents may also contact your local Data Protection Authority if you have unresolved concerns.

This policy applies to: Dusty Group Private Limited · DUSTYHIVE LLP (LLPIN: ACS-5589) · CovaHive