Legal

Privacy
Policy.

Effective date: 1 June 2026 · Pavitra Rishta, Kolkata

Who we are

Design My Biodata is a service of Pavitra Rishta, a partnership firm registered in Kolkata, West Bengal, India (“we”, “us”, “our”). We operate the website designmybiodata.com.

We act as a Data Fiduciary under the Digital Personal Data Protection Act, 2023 (“DPDP Act”) and comply with the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 (“SPDI Rules”).

Data we collect

Account data

  • Name and email address
  • Phone number (used for OTP sign-in)
  • Google account name, email, and profile picture (only if you choose Google sign-in)

Bio data content

  • Personal details: full name, date of birth, height, religion, caste, mother tongue, complexion, native place
  • Family details: father's and mother's occupation, siblings
  • Education and career details
  • Lifestyle information
  • Partner preferences (hidden by default; only stored if you choose to fill them)
  • Contact details you add to your bio data

Photos

  • Up to 6 photos you upload for inclusion in your bio data (max 5 MB each)

Usage data

  • Pages visited, features used, device type, and browser — collected anonymously via PostHog analytics

Why we collect it

DataPurposeLegal basis (DPDP Act)
Account dataCreate and maintain your account; send OTP or transactional emailsConsent
Bio data contentGenerate your matrimonial bio data PDFConsent
PhotosInclude in your PDF bio dataConsent
Usage dataUnderstand product usage and improve the serviceLegitimate use / Consent

How long we keep it

  • Guest users (not signed in): All data is automatically deleted after 7 days
  • Registered users: Retained until you request deletion or delete your account
  • After a deletion request: Purged from all systems within 30 days
  • Analytics data: Anonymised — not linked to your identity; retained for service improvement

Who we share it with

We do not sell your personal data. We share it only with the service providers below, who process it on our behalf under data processing agreements.

ProviderPurposeLocation
SupabaseDatabase, authentication, file storageEU (AWS)
VercelWebsite hosting and global deliveryGlobal CDN
PostHogAnonymous product analyticsEU
GoogleGoogle OAuth sign-in (only if used)Global
Google WorkspaceTransactional email (contact form confirmations, OTP)Global

Sensitive personal data

Under the SPDI Rules, 2011, certain data you may enter — such as religion, caste, and health-related information — qualifies as Sensitive Personal Data or Information (SPDI). We collect this only because it is standard content in Indian matrimonial bio data documents. It is never shared with third parties beyond the service providers listed above and is never used for advertising or profiling.

Your rights under the DPDP Act

  • Access: Know what personal data we hold about you
  • Correction: Correct inaccurate or incomplete data
  • Erasure: Request deletion of your personal data (right to be forgotten)
  • Grievance redressal: Raise a complaint with our Grievance Officer
  • Withdraw consent: Withdraw consent for processing at any time (this will require us to delete your data)

To exercise any of these rights, email us at hello@designmybiodata.com with the subject “Data Rights Request”. We will acknowledge within 72 hours and resolve within 30 days.

Grievance Officer

As required under the SPDI Rules, 2011 and the DPDP Act, 2023:

  • Name: Saket Kejriwal
  • Organisation: Pavitra Rishta
  • Email: hello@designmybiodata.com
  • Address: Kolkata, West Bengal, India

Complaints will be acknowledged within 72 hours and resolved within 30 days.

Children's data

Our service is intended for persons aged 18 and above. We do not knowingly collect personal data from minors. If you believe a minor has submitted data to us, please contact hello@designmybiodata.com and we will delete it promptly.

Security

We implement reasonable technical and organisational security measures including encrypted data transmission (TLS), access controls, and secure cloud storage via Supabase. No method of transmission over the internet is 100% secure; we cannot guarantee absolute security.

Changes to this policy

We may update this policy from time to time. We will notify registered users by email of any material changes at least 7 days before they take effect. The “Effective date” at the top of this page will always reflect the latest version.

Contact us

For any privacy-related questions: hello@designmybiodata.com