Privacy Policy
We are committed to protecting your personal data and being transparent about how we use it. This policy explains what we collect, why we collect it, and your rights as a user.
We don't sell your data
Your personal information is never sold to third parties.
You control your inbox
Unsubscribe from marketing emails at any time.
Right to erasure
Request deletion of your personal data at any time.
Cookies with consent
Non-essential cookies require your approval before use.
Table of Contents
1 Who We Are
This Privacy Policy applies to Cherry Enterprises, accessible at https://cherryvend.com. We are a retailer of tea & coffee vending machines, water dispensers, and beverage premix products, serving homes, offices, and enterprises across India.
Registered Address: Plot No. 5-35/1, Shanti Nagar Colony, Deepthisri Nagar, Miyapur, Hyderabad, Telangana – 500049, India.
Cherry Enterprises is the Data Fiduciary for personal data collected through this website, as defined under the Digital Personal Data Protection Act, 2023 (DPDP Act) of India.
2 Data We Collect
2.1 Data you provide directly
- Account registration: Name, email address, phone number, and password (stored encrypted).
- Orders & purchases: Billing address, shipping address, and order history.
- Enquiries & demo bookings: Name, company name, contact number, email, city, and enquiry details.
- Dealer applications: Business details, GST number, and location.
- Customer support: Communications, service requests, and warranty registrations.
2.2 Data collected automatically
- Device & browser: IP address, browser type, operating system, and device type.
- Usage data: Pages visited, time spent, links clicked, and referring URLs.
- Cookies & tracking pixels: As described in Section 6 below.
2.3 Data from third parties
- Payment status confirmations from our payment gateway (we do not store full card details).
- Publicly available business information if you enquire as a corporate entity.
We do not collect sensitive personal data such as Aadhaar numbers, financial account details, biometrics, or health information.
3 How We Use Your Data
| Purpose | Data Used |
|---|---|
| Process and fulfil your orders | Name, address, phone, email, order details |
| Create and manage your account | Name, email, phone number |
| Send order confirmations and shipping updates | Email, phone number |
| Respond to enquiries, demos, and support requests | Name, email, phone, message content |
| Process payments securely | Billing details (via our payment gateway) |
| Send marketing communications (with consent) | Email, phone number |
| Improve our website and services | Usage data, device data, cookies |
| Comply with legal obligations | As required by applicable law |
| Prevent fraud and ensure security | IP address, usage patterns |
4 Legal Basis for Processing
Under the Digital Personal Data Protection Act, 2023, we process your personal data on the following bases:
- Consent: For marketing emails, SMS, and non-essential cookies. You may withdraw consent at any time.
- Contractual necessity: To fulfil orders, process payments, and provide after-sales support.
- Legitimate interest: To improve our website, prevent fraud, and ensure network security.
- Legal obligation: To comply with GST, consumer protection laws, and other applicable Indian regulations.
5 Sharing Your Data
We do not sell your personal data. We share data only in the following circumstances:
5.1 Service providers (Data Processors)
- Payment gateways — for processing transactions securely.
- Logistics partners — for order fulfilment and delivery.
- Email & SMS providers — for transactional and marketing communications.
- Google (Analytics & Tag Manager) — for website analytics.
- Cloud hosting & infrastructure — for secure storage and website operation.
5.2 Legal requirements
We may disclose your data to law enforcement or regulatory authorities if required by law, court order, or to protect our legal rights.
5.3 Business transfers
In the event of a merger or acquisition, your data may be transferred to the acquiring entity, subject to the same privacy protections.
We never share your personal data with advertisers or data brokers for their own commercial use.
6 Cookies & Tracking Technologies
| Cookie Type | Purpose | Consent Required? |
|---|---|---|
| Essential | Login sessions, shopping cart, security | No — required for the site to function |
| Analytics | Google Analytics — understanding visitor behaviour | Yes — opt-in required |
| Marketing | Google Ads remarketing, social media pixels | Yes — opt-in required |
| Preferences | Remembering your language or location settings | Yes — opt-in required |
You may clear cookies through your browser settings, although this may affect site functionality.
7 Data Retention
- Account data: For the duration of your account, plus 3 years after closure.
- Order & transaction records: 7 years (as required by GST and tax regulations).
- Marketing consent records: Until you withdraw consent.
- Support communications: 2 years from the date of last interaction.
- Website usage data (analytics): 26 months (Google Analytics default).
After the applicable retention period, data is securely deleted or anonymised.
8 Your Rights
Under the DPDP Act 2023 and applicable law, you have the following rights:
- Right to access: Request a copy of the personal data we hold about you.
- Right to correction: Ask us to correct inaccurate or incomplete data.
- Right to erasure: Request deletion of your personal data, subject to legal retention obligations.
- Right to withdraw consent: Withdraw consent for marketing or non-essential cookies at any time.
- Right to grievance redressal: Raise a complaint with our designated Grievance Officer.
- Right to nominate: Nominate another person to exercise rights on your behalf.
To exercise any of these rights, email us at support@cherryvend.com with the subject line "Data Request – [Your Name]". We will respond within 30 days.
If unsatisfied with our response, you may raise a complaint with India's Data Protection Board once established under the DPDP Act.
9 Where Your Data Is Stored
Cherry Enterprises operates solely within India. All personal data we collect is stored and processed on servers located in India. We do not transfer your personal data outside of India.
Our website may use third-party services (such as Google Analytics) that may process anonymised usage data on servers outside India. These services do not receive your name, contact details, or order information.
10 Children's Privacy
Our website and services are intended for adults and businesses. We do not knowingly collect personal data from individuals under the age of 18.
If you believe a minor has submitted personal data to us, please contact us immediately at support@cherryvend.com and we will delete it promptly.
11 Security
We implement appropriate technical and organisational measures to protect your personal data, including:
- SSL/TLS encryption for all data in transit.
- Encrypted storage of passwords using industry-standard hashing.
- Access controls — only authorised personnel can access personal data.
- Secure payment processing — we do not store card numbers.
- Regular security assessments of our systems and infrastructure.
In the event of a data breach, we will notify you and the relevant authorities as required by the DPDP Act within the prescribed timelines.
12 Changes to This Policy
We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last Updated" date and display a notice on our homepage for 30 days. Continued use of our website after changes are posted constitutes acceptance of the updated policy.
📬 Contact Our Grievance Officer
If you have any questions, concerns, or requests related to this Privacy Policy or your personal data, please reach out to us: