+91 97811 99743 hello@startaidea.com
Home/Privacy Policy

Privacy Policy

Last updated: June 12, 2026

At Jstart A Idea, we respect your privacy and are committed to protecting the personal data we collect from you through our website and customer portal.

1. Information We Collect

We collect information when you register an account, order services, subscribe to hosting plans, or contact our support team. This includes:

  • Account Info: Name, email address, telephone number, and password hashes.
  • Billing Details: Payment gateway transaction IDs, invoice logs, and purchase details. (We do not store complete card numbers on our servers; payments are processed securely by external gateways: Razorpay/PayU).
  • Server Data: DNS records, uploaded project files, and API deployment logs.
  • Technical Logs: Client IP addresses, login timestamps, and geolocation area details parsed for security alerts.

2. How We Use Your Data

Your data is utilized strictly for executing business operations and ensuring portal security:

  • Provisioning and maintaining your website designs and cloud hosting containers.
  • Sending system alerts, including 2-Step verification OTP codes and successful login location reports.
  • Generating professional invoices and transactional order confirmations.
  • Providing customer support and debugging server deployments.

3. Cookies and Local Storage

We utilize essential cookies and PHP session files to manage your portal access and authentication status:

  • Authentication Cookies: To keep you logged in to your customer dashboard.
  • Security Cookies: To mitigate Cross-Site Request Forgery (CSRF) and secure transactional requests.
  • You can disable cookies in your browser settings; however, doing so will prevent you from accessing the secure customer portal.

4. Security and Data Protection

We enforce rigorous security protocols. All customer password details are cryptographically hashed using standard `BCRYPT` algorithms. Sensitive connection credentials (SMTP secrets, payment gateway API keys) are secured within local databases. We implement brute-force lockout timers on login and verification forms to prevent unauthorized access.

5. Sharing of Information

We do not sell, trade, or transfer your personal data to third parties. We share data only with authorized transaction processors (Razorpay, PayU) and SMTP mail relays necessary to process billing payments and deliver system alerts.

6. Customer Rights

You have the right to request access to, correction of, or deletion of your personal account records. Contact our privacy officer at the address shown on our contact page to initiate database record queries or deletions.