Privacy Policy

Ezeefit Modular Furniture Private Limited (operating as "Ezeefit Office Systems", hereinafter "Ezeefit", "we", "us" or "our") is committed to protecting the privacy of users who access this website, request a quote, subscribe to the newsletter, or otherwise engage with our services. This Privacy Policy explains what personal information we collect, how we use it, with whom we share it, how long we retain it, and the rights you have under applicable law.

This Policy is published pursuant to the requirements of the Digital Personal Data Protection Act, 2023 (DPDP Act, India), the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and — where applicable to visitors from the European Economic Area — the General Data Protection Regulation (GDPR, EU 2016/679).

By using this website or submitting any information through any contact form, you confirm that you have read, understood and agreed to the terms of this Privacy Policy.

For the purpose of the DPDP Act 2023, the Data Fiduciary is:

• Legal entity: Ezeefit Modular Furniture Private Limited
• Brand: Ezeefit Office Systems
• GSTIN: 27AADCE6117G1ZT
• Registered office: A-611-612, Crystal Plaza Premises, New Link Road, Andheri West, Mumbai 400053, Maharashtra, India
• Manufacturing facility: Bhiwandi, Thane district, Maharashtra, India
• Privacy contact (Grievance Officer): eos@ezeefitofficesystems.in

We collect personal information only where you knowingly provide it to us, or where it is automatically collected through standard web technologies. Specifically:

3.1 Information you provide directly

• Contact details — name, company name, designation, email address, phone number — submitted via our enquiry forms, quote requests, newsletter signup or project consultation requests.
• Project information — office address, seat count, project scope, timeline, budget range and similar details you share while requesting a CAD layout, BOM or quote.
• Account credentials — if you register for the Client Portal, your email address and a hashed password.
• Correspondence — the content of emails, WhatsApp messages, contact form submissions and any other communication you send us.

3.2 Information collected automatically

• Device & browser information — IP address, browser type and version, operating system, device identifiers, screen resolution.
• Usage data — pages visited, time spent on each page, click paths, referring URL, search queries used to reach our site.
• Cookies & similar technologies — see Section 6 (Cookies and Tracking Technologies) below.

3.3 Information we do NOT collect

We do not knowingly collect:

• Sensitive personal data such as health records, biometric data, financial account numbers, racial/ethnic origin, religious beliefs, sexual orientation or political opinions.
• Information from children under the age of 18 (Section 10).
• Payment card information directly on this website (any payment, if applicable, is processed by authorised third-party payment processors).

We use the information collected exclusively for the following legitimate business purposes:

• Service delivery — responding to quote requests, preparing CAD layouts, BOMs and project proposals, coordinating site visits, scheduling manufacturing and installation.
• Customer communication — sending project updates, invoices, delivery schedules, installation confirmations and warranty notifications.
• Marketing communication — sending occasional newsletters, product launches and industry insights, only where you have explicitly opted in. You can unsubscribe at any time.
• Website optimisation — analysing aggregate usage patterns to improve site performance, navigation and content relevance.
• Legal & regulatory compliance — meeting our obligations under GST, Companies Act, tax authorities, and responding to lawful requests from regulatory bodies.
• Fraud prevention & security — detecting and preventing unauthorised access, abuse of forms, and protecting against malicious activity.

We do not use your personal information for automated decision-making or profiling that produces legal or significant effects on you.

We process your personal information on one or more of the following legal bases:

• Consent — where you have explicitly agreed (e.g., newsletter signup).
• Contract performance — where processing is necessary to perform a contract with you (e.g., delivering a project you have commissioned).
• Legitimate business interest — for purposes such as responding to enquiries you initiate, internal business operations and security.
• Legal obligation — where required to comply with applicable Indian law, including the DPDP Act 2023 and tax statutes.

Our website uses cookies and similar tracking technologies to operate the site and to understand how visitors use it. The categories are:

6.1 Strictly necessary cookies

Required for the website to function — including session management for the Client Portal, form security tokens and load balancing. These cannot be disabled.

6.2 Analytics cookies

We use Google Analytics 4 to understand aggregate visitor behaviour — which pages are popular, how visitors arrive at the site, and where they spend time. Google Analytics anonymises IP addresses by default. You can opt out of Google Analytics tracking by installing the official Google Analytics Opt-out Browser Add-on at tools.google.com/dlpage/gaoptout.

6.3 Advertising cookies

If you have visited our website from a Google Ads or other paid campaign, the corresponding ad-platform tag (such as Google Ads conversion tracking) may set cookies to measure campaign performance. These cookies are not used to build cross-site behavioural advertising profiles.

6.4 Managing cookies

You can control cookies through your browser settings — most browsers allow you to refuse, accept or delete cookies. Note that disabling strictly-necessary cookies may break parts of the website (such as the Client Portal login).

We do not sell, rent or trade your personal information. We share it only with the following categories of recipients, strictly for the purposes described:

• Service providers (Data Processors) — hosting providers, email delivery services (such as Resend), analytics providers (Google Analytics), CRM and project management tools — strictly to operate the website and process your enquiry. All processors are contractually bound to confidentiality and data-protection obligations.
• Installation and logistics partners — where a site visit, delivery or installation requires it, we share the project address and on-site contact name/phone with the assigned project team.
• Professional advisers — auditors, lawyers, accountants and bankers, where required for legitimate business operations.
• Government and regulatory authorities — when compelled by lawful order, summons or statutory request (GST, income tax, courts, law enforcement).
• Successor entities — in the event of a merger, acquisition, restructuring or sale of business assets, your information may transfer to the successor entity, subject to the same protections set out in this Policy.

We do NOT share your personal information with advertising networks, data brokers, or any third party for their independent marketing purposes.

• Quote enquiries that do not convert — retained for up to 24 months to allow re-engagement, then deleted.
• Project records (executed projects) — retained for 7 years from project closure, in line with Indian Companies Act and Income Tax Act requirements.
• Client Portal accounts — retained while the account is active; deleted within 12 months of account inactivity (you may request immediate deletion at any time).
• Newsletter subscribers — retained until you unsubscribe.
• Website analytics — aggregated, anonymised data retained indefinitely; visitor-level data deleted after 26 months (Google Analytics default).

We implement reasonable and appropriate technical and organisational security measures consistent with the IT Rules 2011 and industry best practice, including:

• HTTPS / TLS encryption for all data transmitted between your browser and our servers.
• Password hashing using industry-standard one-way functions for any Client Portal credentials.
• Role-based access control — internal staff access to customer data is limited to personnel who require it for their role.
• Regular security audits, vulnerability assessments and dependency updates.
• Daily encrypted backups, with restricted access.

Despite these measures, no internet transmission or electronic storage is 100% secure. We cannot guarantee absolute security of information transmitted to us. In the event of a personal data breach that is likely to result in a high risk to your rights and freedoms, we will notify you and the relevant Data Protection Board as required under the DPDP Act 2023.

Our services are intended for businesses and adult professionals. We do not knowingly collect personal information from children under the age of 18. If you believe a child has provided us with personal information, please contact eos@ezeefitofficesystems.in and we will promptly delete it.

You have the following rights with respect to your personal information:

• Right to access — request a copy of the personal information we hold about you.
• Right to correction — request rectification of inaccurate or incomplete information.
• Right to erasure — request deletion of your personal information, subject to legal retention obligations.
• Right to withdraw consent — where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.
• Right to grievance redressal — file a complaint with our Grievance Officer (details in Section 14).
• Right to data portability (where applicable) — request a structured, commonly used and machine-readable copy of your data.
• Right to object to direct marketing — you may unsubscribe from marketing communications at any time using the link in any marketing email, or by writing to eos@ezeefitofficesystems.in.

To exercise any of these rights, please email eos@ezeefitofficesystems.in with your request. We will respond within 30 days, except where the law allows a longer period. We may need to verify your identity before fulfilling certain requests.

Our website may contain links to third-party websites (such as social media platforms, partner directories, or news articles featuring our work). We are not responsible for the privacy practices or content of these third-party sites. We encourage you to read the privacy policy of any third-party site you visit.

Some of our service providers (such as Google Analytics, Resend, and hosting infrastructure) may store or process personal information in countries outside India, including in the United States and the European Economic Area. Where such transfers occur, we rely on:

• Standard Contractual Clauses or equivalent legal mechanisms approved by the relevant authority,
• Service providers certified under recognised data-protection frameworks where applicable, and
• Contractual safeguards requiring the recipient to maintain protection standards no less than those described in this Policy.

If you have any questions, concerns, or grievances about this Privacy Policy or how we handle your personal information, please contact our Grievance Officer:

Ezeefit Modular Furniture Private Limited is the owner of copyright in the entire content on this website. No material from this site may be copied, modified, reproduced, republished, uploaded, transmitted, posted or distributed in any form without prior written permission from Ezeefit. Any use of the content of this website for a purpose which is not consistent with fair use provisions of copyright law is prohibited and may amount to infringement of copyright.

Trademarks, logos, and labels displayed on this website are trademarks or registered trademarks of Ezeefit or its group or its affiliates unless otherwise specified. These trademarks may not be used in any manner without prior written consent from Ezeefit. Any unauthorised use may amount to infringement and violation of trademark and other applicable laws and could result in criminal and/or civil penalties.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements or other factors. When we make a material change, we will revise the "Last updated" date at the top of this Policy and, where appropriate, notify you by email or via a prominent notice on the website.

We encourage you to review this Policy periodically. Continued use of the website after a revised Policy is published constitutes acceptance of the revised terms.

This Privacy Policy is governed by the laws of the Republic of India. Any disputes arising out of or in connection with this Policy shall be subject to the exclusive jurisdiction of the courts at Mumbai, Maharashtra.