Privacy Policy

Version: 1.0.0.0 Release Date: 12 April 2026

1) INTRODUCTION

This Privacy Policy (“Policy”) governs the manner in which VERA Vox Inc., together with its subsidiaries, affiliates, editorial divisions, and associated entities (collectively referred to as “VERA Vox”, “Company”, “we”, “us”, or “our”), collects, receives, records, organizes, stores, uses, processes, discloses, transfers, and safeguards Personal Data through its official website and associated web-based interfaces (collectively, the “Website”).

This Policy applies exclusively to individuals who access, browse, or interact with the Website in any capacity, including as readers, visitors, contributors, or correspondents (collectively referred to as “User”, “you”, or “your”).

For the avoidance of doubt, this Policy does not apply to Personal Data collected or processed through:

Mobile applications operated by VERA Vox;
User portals, dashboards, or account-based platforms;
Subscription systems, payment interfaces, or enterprise services;

Such platforms are governed by separate and independent privacy policies, which shall apply in their respective contexts.

By accessing or using the Website, you acknowledge that you have read, understood, and agreed to the terms of this Policy.

2) REGULATORY COMPLIANCE

VERA Vox Inc. (“VERA Vox”, “Company”, “we”, “us”, or “our”) is committed to ensuring that all processing of Personal Data is conducted in strict compliance with applicable data protection, privacy, and information security laws, regulations, and globally accepted standards.

2.1 Applicable Legal Frameworks

VERA Vox processes Personal Data in accordance with, and subject to, the provisions of:

The Digital Personal Data Protection Act, 2023 (India), including all rules, notifications, and guidelines issued thereunder;
The Information Technology Act, 2000, including the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and any amendments thereto;
Any other applicable laws, subordinate legislation, regulatory directions, or judicial pronouncements in force within the Republic of India; and
International data protection and privacy laws, standards, and best practices, to the extent applicable based on the geographic location, residency, or jurisdiction of the Data Principal.

2.2 Principle of Highest Standard Compliance

In circumstances where multiple legal or regulatory frameworks are concurrently applicable, VERA Vox shall, to the extent reasonably practicable, adopt and implement the standard that provides the highest degree of protection to Personal Data and the rights of Data Principals, provided such implementation does not conflict with mandatory legal obligations.

2.3 Lawful Basis for Processing

VERA Vox shall process Personal Data only on lawful grounds recognized under applicable law, including but not limited to:

Consent provided through clear, informed, and affirmative action by the Data Principal;
Performance of contractual obligations or pre-contractual measures requested by the Data Principal;
Compliance with legal or regulatory obligations imposed upon the Company;
Protection of vital interests of the Data Principal or another individual;
Legitimate business interests pursued by VERA Vox, provided such interests do not override the fundamental rights and freedoms of the Data Principal; and
Any other lawful basis as may be recognized under applicable legislation.

2.4 Transparency, Fairness, and Accountability

VERA Vox undertakes to process Personal Data in a manner that is:

Lawful – grounded in a valid legal basis;
Fair – not misleading, deceptive, or prejudicial to the rights of the Data Principal;
Transparent – with clear disclosures regarding the nature, purpose, and scope of processing activities; and
Accountable – with internal governance frameworks, documentation, and audit mechanisms to demonstrate compliance with applicable laws.

2.5 Purpose Limitation and Data Minimization

All Personal Data collected and processed by VERA Vox shall be:

Collected for specific, explicit, and legitimate purposes communicated at or before the time of collection;
Processed strictly in accordance with such purposes, unless otherwise permitted by law; and
Limited to what is adequate, relevant, and necessary in relation to the stated purpose of processing.

VERA Vox shall not process Personal Data in a manner that is incompatible with the original purpose of collection, except where expressly permitted under applicable law.

2.6 Sector-Specific and Journalistic Considerations

Given the nature of VERA Vox as a media, content, and information dissemination platform, certain processing activities may fall within the scope of:

Journalistic, editorial, literary, or artistic purposes; and
Public interest reporting, investigative activities, and dissemination of information.

In such cases, VERA Vox reserves the right to process Personal Data in accordance with exemptions, protections, or privileges available under applicable law, including those relating to freedom of speech and expression, subject always to reasonable safeguards and ethical standards.

2.7 Regulatory Cooperation and Enforcement

VERA Vox shall:

Cooperate with competent regulatory authorities, including but not limited to the Data Protection Board of India or any successor authority;
Maintain appropriate records of processing activities where required by law;
Implement internal grievance redressal and compliance mechanisms; and
Take necessary corrective actions, including suspension or modification of processing activities, where required to ensure compliance.

2.8 Non-Restriction Clause

Nothing contained in this Privacy Policy shall be construed to:

Restrict or limit VERA Vox’s ability to process Personal Data where such processing is mandated by law;
Prevent VERA Vox from complying with lawful requests, orders, or directions issued by courts, law enforcement agencies, or regulatory bodies; or
Limit the Company’s ability to process Personal Data for the establishment, exercise, or defense of legal claims, or for safeguarding its rights, property, operations, or personnel.

3) SCOPE AND LIMITATION OF APPLICATION

This Privacy Policy (“Policy”) governs the collection, use, processing, storage, disclosure, and protection of Personal Data by VERA Vox Inc. (“VERA Vox”, “Company”, “we”, “us”, or “our”) strictly in relation to interactions conducted through its official website(s) (the “Website”).

3.1 Scope of Application

This Policy applies exclusively to Personal Data that is:

Collected directly or indirectly through the Website; and
Processed by or on behalf of VERA Vox in its capacity as a Data Fiduciary (or equivalent role under applicable law).

Without limitation, this includes Personal Data collected through the following interactions:

(a) Website Access and Browsing
Information collected through user interaction with the Website, including navigation behavior, device information, IP address, browser type, session data, and other technical identifiers collected through cookies or similar tracking technologies.

(b) User-Initiated Communications
Personal Data voluntarily provided by users when contacting VERA Vox through the Website, including but not limited to:

Contact forms;
Email communications;
Inquiry submissions;
Feedback, complaints, or support requests.

(c) Voluntary Subscriptions and Engagements
Information submitted by users for the purpose of receiving communications or engaging with VERA Vox services, including:

Newsletter subscriptions;
Alerts, updates, or notifications;
Event registrations or participation;
Surveys, polls, or promotional engagements.

(d) User-Generated Content and Public Contributions
Any information, content, or materials voluntarily submitted, uploaded, or published by users on publicly accessible sections of the Website, including but not limited to:

Comments;
Media submissions;
Contributions to forums, discussions, or editorial initiatives (where enabled).

For the avoidance of doubt, such user-generated content may include Personal Data and shall be deemed to have been disclosed voluntarily by the user.

3.2 Territorial and Functional Limitation

This Policy is limited in its application to Website-based interactions only and does not extend to:

Any mobile applications, web portals, enterprise systems, or software platforms operated by VERA Vox, which may be governed by separate and independent privacy policies;
Offline data collection activities, including but not limited to in-person interactions, contractual engagements, or business operations not conducted through the Website;
Data processing activities undertaken by VERA Vox in its capacity as a Data Processor on behalf of clients, partners, or third parties, which shall be governed by separate contractual agreements.

3.3 Third-Party Platforms and External Services

The Website may contain links, integrations, or references to third-party websites, platforms, applications, or services (“Third-Party Services”), including but not limited to:

Social media platforms;
Video hosting platforms;
Advertising networks;
Analytics providers;
Embedded content services.

VERA Vox expressly disclaims any responsibility or liability for the privacy practices, data handling procedures, or content of such Third-Party Services.

Where a user accesses or interacts with any Third-Party Service, whether through hyperlinks, embedded functionalities, or otherwise:

Such interaction shall be governed exclusively by the privacy policies and terms of the respective third party;
VERA Vox shall have no control over the collection, processing, storage, or disclosure of Personal Data by such third parties; and
Users acknowledge and accept that any Personal Data shared with such third parties is done at their own risk.

Users are strongly advised to review the applicable privacy policies of all Third-Party Services prior to engaging with them.

3.4 External Distribution and Syndication of Content

VERA Vox content may be distributed, syndicated, or made accessible through external platforms, including but not limited to:

Social media channels (e.g., X (formerly Twitter), Facebook, LinkedIn, YouTube);
Content aggregation platforms;
Partner websites or media networks.

This Policy does not apply to Personal Data collected or processed by such external platforms independently of the Website, even where such data relates to VERA Vox content.

VERA Vox shall not be responsible for:

Data collection practices of such platforms;
User interactions occurring outside the Website; or
Any subsequent use, profiling, or tracking conducted by such platforms.

3.5 Third-Party Processing Outside Control

VERA Vox may engage third-party service providers (“Processors”) for the limited purpose of supporting Website functionality, including but not limited to:

Hosting services;
Cloud storage providers;
Analytics and performance tools;
Communication and marketing platforms.

While VERA Vox undertakes reasonable measures to ensure that such Processors adhere to applicable data protection standards through contractual safeguards, this Policy does not extend to:

Independent data processing activities carried out by such third parties beyond the scope of VERA Vox’s instructions;
Data collected directly by such third parties through their own interfaces, scripts, or technologies; or
Any processing conducted outside VERA Vox’s control or supervision.

3.6 User Responsibility and Acknowledgment

By accessing or using the Website, users acknowledge and agree that:

The scope of this Policy is limited strictly as set out herein;
VERA Vox cannot guarantee or assume responsibility for the privacy practices of third parties; and
Users bear responsibility for exercising due diligence when interacting with external services or publicly disclosing Personal Data.

4) DEFINITIONS:

For the purposes of this Privacy Policy (“Policy”), the following terms shall have the meanings ascribed to them below. These definitions shall apply uniformly throughout this Policy unless the context expressly requires otherwise. Words importing the singular shall include the plural and vice versa, and references to any gender shall include all genders.

4.1 “Applicable Law”

Shall mean all statutes, enactments, acts of legislature, ordinances, rules, regulations, guidelines, notifications, circulars, directions, judicial precedents, and governmental orders in force within any relevant jurisdiction, including but not limited to the Digital Personal Data Protection Act, 2023, the Information Technology Act, 2000, and any amendments or re-enactments thereof.

4.2 “Company” / “VERA Vox” / “We” / “Us” / “Our”

Shall mean VERA Vox Inc., including its affiliates, subsidiaries, divisions, successors, assigns, and any entity under common ownership or control, to the extent such entities are involved in the processing of Personal Data under this Policy.

4.3 “Personal Data”

Shall mean any information, whether true or not, and whether recorded in material form or otherwise, that relates to an identified or identifiable natural person (“Data Principal”), either directly or indirectly, including but not limited to:

Identifiers such as name, contact details, email address, phone number;
Technical identifiers such as IP address, device identifiers, browser information;
Location data;
Online identifiers and behavioral data; and
Any combination of data points that may reasonably be used to identify an individual.

For the avoidance of doubt, Personal Data shall include any information that is capable of identifying an individual when combined with other available information.

4.4 Special Categories of Personal Data (where applicable)

Shall mean such categories of Personal Data as may be classified as sensitive under Applicable Law, including but not limited to financial information, health-related data, biometric identifiers, or any other data requiring enhanced protection. VERA Vox does not intentionally collect such data through the Website unless explicitly stated.

4.5 “Processing” / “Process” / “Processed”

Shall mean any operation or set of operations performed on Personal Data, whether or not by automated means, including but not limited to:

Collection, recording, organization, structuring;
Storage, retention, or retrieval;
Adaptation, alteration, or updating;
Use, analysis, or profiling;
Disclosure by transmission, dissemination, or otherwise making available;
Alignment, restriction, erasure, or destruction.

Processing shall include both automated and manual activities undertaken in relation to Personal Data.

4.6 “User” / “You” / “Your”

Shall mean any natural person who accesses, browses, interacts with, or otherwise uses the Website, whether actively or passively, including individuals who:

Submit information through the Website;
Communicate with VERA Vox via the Website; or
Engage with any content, features, or functionalities made available through the Website.

4.7 “User-Generated Content”

Shall mean any information, data, text, images, audio, video, comments, feedback, or other materials voluntarily submitted, uploaded, published, transmitted, or otherwise made available by a User through the Website, including content posted in public or interactive areas.

User-Generated Content may contain Personal Data and, unless otherwise indicated, shall be deemed to have been voluntarily disclosed by the User for public or semi-public access. VERA Vox shall not be responsible for any use, reproduction, or dissemination of such content by third parties.

4.8 “Data Principal”

Shall mean the natural person to whom the Personal Data relates, as defined under Applicable Law.

4.9 “Data Fiduciary”

Shall mean VERA Vox, in its capacity as the entity determining the purpose and means of processing Personal Data under this Policy.

4.10 “Data Processor”

Shall mean any third party or entity that processes Personal Data on behalf of VERA Vox pursuant to contractual arrangements, and strictly in accordance with instructions provided by VERA Vox.

4.11 “Third-Party Services”

Shall mean any external websites, platforms, applications, tools, or services not owned or controlled by VERA Vox, which may be linked to, integrated with, or accessible through the Website. VERA Vox does not control and shall not be responsible for the data handling practices of such Third-Party Services.

4.12 “Cookies and Tracking Technologies”

Shall mean small data files, scripts, pixels, tags, or similar technologies stored on or accessed from a User’s device, used to collect information about user behavior, preferences, and device characteristics for functional, analytical, or marketing purposes.

4.13 “Consent”

Shall mean any freely given, specific, informed, and unambiguous indication of a User’s agreement to the processing of their Personal Data, provided through a clear affirmative action, in accordance with Applicable Law.

4.14 “Anonymized Data”

Shall mean data that has been irreversibly processed in such a manner that the individual to whom the data relates can no longer be identified, directly or indirectly, and which is therefore no longer considered Personal Data under Applicable Law.
4.15 Classification

VERA Vox acts as a Data Fiduciary under applicable data protection laws, including the Digital Personal Data Protection Act, 2023, however, in certain limited circumstances, may act as a Data Processor, in relation to Personal Data processed through the Website, and determines the purpose and means of such processing.
4.16 “Applicable Jurisdiction”

Shall mean any country, state, or territory whose laws may apply to the processing of Personal Data under this Policy, including jurisdictions where from which the Website is accessed.

4.17 Potential Classification as Significant Data Fiduciary

As of the effective date of this Policy, VERA Vox is not classified as a Significant Data Fiduciary under applicable law.

However, in the event that VERA Vox is designated as a Significant Data Fiduciary by a competent regulatory authority, whether in respect of the Website or any other digital platform operated by the Company, VERA Vox shall comply with all additional statutory obligations as may be prescribed under applicable law, including but not limited to:

Appointment of a Data Protection Officer (DPO);
Conduct of Data Protection Impact Assessments (DPIA);
Implementation of enhanced governance, audit, and risk management frameworks; and
Compliance with any additional regulatory or statutory requirements as notified.

Such obligations shall apply strictly upon formal classification and in accordance with applicable legal thresholds.

4.18 Governance Measures

VERA Vox maintains internal governance and compliance frameworks applicable across its digital properties, including the Website, which may include:

Data protection and privacy policies;
Internal risk assessment and mitigation procedures;
Access control and data handling protocols; and
Compliance monitoring and audit mechanisms.

4.19 Interpretation

In the event of any ambiguity or inconsistency in the interpretation of the terms defined herein:

Definitions provided under Applicable Law shall prevail to the extent of such inconsistency;
The interpretation most consistent with the objectives of data protection, privacy, and user rights shall be preferred; and
Headings are for convenience only and shall not affect interpretation.
This Policy shall be governed by and construed exclusively in the English language. In the event of any translation, the English version shall prevail for all legal, regulatory, and interpretative purposes.

5) ELIGIBILITY AND USER REPRESENTATIONS

By accessing, browsing, or otherwise using the Website, you (“User”, “you”, or “your”) hereby represent, warrant, and covenant that you meet the eligibility criteria set forth herein and that all representations made by you are true, accurate, complete, and not misleading at all times.

5.1 Minimum Age Requirement

You represent and warrant that:

You are at least eighteen (18) years of age, or such higher age of majority as may be prescribed under Applicable Law in your jurisdiction; and
You possess the legal capacity to enter into a binding agreement and to provide valid consent for the processing of your Personal Data.

VERA Vox does not knowingly solicit, collect, or process Personal Data from individuals below the age of eighteen (18). In the event that VERA Vox becomes aware that Personal Data of a minor has been inadvertently collected:

Such data shall be deleted or anonymized within a reasonable timeframe; and
Access to the relevant services may be restricted or terminated without prior notice.

Where processing of a minor’s data is permitted under Applicable Law subject to parental or guardian consent, VERA Vox reserves the right to require verifiable consent prior to such processing.

5.2 Legal Capacity and Authority

You represent and warrant that:

You are legally competent and authorized to agree to the terms of this Policy;
Your use of the Website does not violate any Applicable Law, contractual obligation, or fiduciary duty binding upon you; and
Where you are acting on behalf of an entity, organization, or another individual, you possess full legal authority to bind such entity or individual to this Policy.

VERA Vox shall not be liable for any unauthorized use of the Website by individuals lacking such authority.

5.3 Accuracy and Authenticity of Information

You expressly represent and warrant that:

All Personal Data and information provided by you is true, accurate, current, and complete;
You shall promptly update any information to ensure its continued accuracy; and
You shall not provide any false, misleading, fraudulent, or unlawful information.

VERA Vox shall not be responsible or liable for any loss, damage, or consequence arising from:

Inaccurate, incomplete, or outdated information provided by you; or
Reliance on such information in the course of providing services or responding to inquiries.

VERA Vox reserves the right, at its sole discretion, to:

Verify the authenticity of information provided;
Request supporting documentation; and
Suspend or restrict access where information is found to be inaccurate or misleading.

5.4 Third-Party Data and Authorization

Where you provide Personal Data relating to any third party, you represent and warrant that:

You have obtained all necessary consents, authorizations, or permissions from such third party in accordance with Applicable Law;
You are lawfully entitled to disclose such information to VERA Vox for the intended purpose; and
Such disclosure does not violate any confidentiality obligation, contractual restriction, or legal requirement.

You further agree to:

Indemnify and hold harmless VERA Vox against any claims, liabilities, damages, or losses arising from unauthorized or unlawful disclosure of third-party data; and
Ensure that such third parties are informed of this Privacy Policy, where required.

5.5 Prohibited Conduct and Misuse

You agree that you shall not:

Attempt or Misrepresent your identity or affiliation;
Attempt or Impersonate any individual or entity;
Provide data obtained through unlawful means; or
Use the Website in a manner that violates privacy, data protection, or any other Applicable Law.

Any breach of this clause may result in:

Immediate suspension or termination of access;
Reporting to relevant authorities; and/or
Initiation of civil or criminal proceedings, where applicable.

5.6 Acknowledgment of Risk and Responsibility

You acknowledge and agree that:

Submission of Personal Data through the Website is undertaken voluntarily;
You are responsible for ensuring that your use of the Website complies with Applicable Law; and
VERA Vox shall not be liable for any consequences arising from misuse of the Website or breach of the representations made herein.

5.7 Survival of Representations

The representations, warranties, and undertakings set forth in this Section shall:

Survive termination or cessation of your use of the Website; and
Continue to bind you to the extent necessary to enforce rights or address liabilities arising from your use of the Website.

6) CATEGORIES OF PERSONAL DATA COLLECTED

VERA Vox Inc. (“VERA Vox”, “Company”, “we”, “us”, or “our”) may collect, receive, generate, or otherwise process Personal Data in connection with a User’s access to and use of the Website. The nature, scope, and extent of Personal Data collected will vary depending on the manner of interaction, the services accessed, and the User’s voluntary disclosures.

For the avoidance of doubt, VERA Vox does not intentionally collect Personal Data beyond what is necessary for legitimate business, operational, journalistic, or legal purposes, and all collection shall be subject to principles of purpose limitation and data minimization.

6.1 Information Provided Directly by Users

VERA Vox may collect Personal Data that is knowingly and voluntarily provided by Users through the Website, including but not limited to:

Identity and Contact Information
Such as full name, email address, telephone number, and any other identifiers submitted through forms or communications.
Professional and Organizational Information
Including employer name, designation, affiliation, or industry details, where provided in a business or professional context.
Communication and Correspondence Data
Information contained within any inquiries, messages, feedback, complaints, or submissions addressed to VERA Vox, whether through contact forms, email, or other communication channels.
Subscription and Preference Data
Information provided when subscribing to newsletters, alerts, or other communications, including preferences, interests, and consent selections.

Such data is provided at the discretion of the User and constitutes a voluntary disclosure. VERA Vox shall not be responsible for any Personal Data disclosed beyond what is reasonably necessary for the intended interaction. VERA Vox shall not be under any obligation to independently verify the accuracy, completeness, or authenticity of Personal Data provided by Users.

6.2 Technical and Usage Data

VERA Vox may automatically collect certain technical, device-related, and usage-related information when Users access or interact with the Website. This includes, but is not limited to:

Device and System Information
Including device type, operating system, browser type and version, device identifiers, and configuration settings.
Network and Connection Information
Including Internet Protocol (IP) address, approximate geographic location (at city or regional level), internet service provider (ISP), and connection type.
Usage and Interaction Data
Including pages visited, navigation paths, clickstream data, time spent on pages, scroll behavior, interaction with content, and other engagement metrics.
Session and Log Data
Including timestamps of access, referring and exit URLs, session duration, error logs, and diagnostic data.
Cookies and Tracking Identifiers
Information collected through cookies, pixels, tags, scripts, or similar technologies used to enable functionality, analytics, personalization, and security.

Such data is typically collected automatically and may be aggregated or pseudonymized. Where such data can be linked to an identifiable individual, it shall be treated as Personal Data in accordance with this Policy.

6.3 User-Generated Content

VERA Vox may collect and process Personal Data contained within any content voluntarily submitted, uploaded, published, or transmitted by Users through the Website (“User-Generated Content”), including but not limited to:

Comments, opinions, or feedback posted on publicly accessible sections;
Editorial contributions, articles, or submissions;
Media files, including images, audio, video, or documents;
Any accompanying metadata or contextual information embedded within such content.

Users acknowledge and agree that:

User-Generated Content may be publicly accessible and viewable by other users or third parties;
Such content may be indexed by search engines and redistributed without VERA Vox’s control; and
Any Personal Data included within such content is disclosed at the User’s own risk.

VERA Vox shall not be liable for any misuse, unauthorized reproduction, or dissemination of User-Generated Content by third parties.

6.4 Publicly Available and Third-Party Information

VERA Vox may, where relevant and lawful, collect or receive Personal Data from publicly available sources or third parties, including but not limited to:

Public Sources
Information available in the public domain, including professional profiles, company websites, public records, or published content.
Social Media and Online Platforms
Information obtained through interactions with VERA Vox on social media platforms, including usernames, handles, publicly shared content, comments, mentions, or engagements.
Third-Party Referrals or Introductions
Information provided by partners, collaborators, or other third parties in the context of business communications or content-related interactions.
VERA Vox shall take reasonable steps, where practicable, to ensure that such data is obtained from lawful sources and processed in compliance with Applicable Law.

Such data shall be processed only to the extent permitted under Applicable Law and for legitimate purposes, including communication, content development, journalistic activities, or business engagement.
VERA Vox does not warrant the accuracy, completeness, or reliability of Personal Data obtained from publicly available or third-party sources.

6.5 Derived, Inferred, and Analytical Data

VERA Vox may generate or derive additional data based on the analysis of collected information, including:

User preferences, interests, and engagement patterns;
Content consumption behavior and interaction trends;
Aggregated analytics and statistical insights.

Such data may be used for improving Website functionality, enhancing user experience, editorial optimization, and internal analytics. Where such data does not directly identify an individual, it may be treated as anonymized or aggregated data. VERA Vox may combine data collected from multiple sources to create unified user profiles or analytical insights, subject to Applicable Law.

6.6 Exclusions and Sensitive Data Disclaimer

VERA Vox does not intentionally collect:

Sensitive Personal Data (unless explicitly required and disclosed);
Financial information, health data, biometric identifiers, or government-issued identification data through the Website.

Users are expressly advised not to submit sensitive or confidential information through the Website unless specifically requested through secure and authorized channels.

Any unsolicited submission of sensitive Personal Data shall be at the User’s own risk, and VERA Vox reserves the right to delete such data without notice.
Where Personal Data is anonymized or irreversibly de-identified, such data shall no longer be treated as Personal Data and may be used for analytical, statistical, or research purposes. VERA Vox shall not attempt to re-identify anonymized data except where required for lawful purposes and permitted under Applicable Law.
VERA Vox shall not be liable for residual copies of Personal Data that may persist in backup systems for a limited duration, subject to secure deletion protocols.

6.7 Principle of Data Minimization

All collection of Personal Data by VERA Vox shall be:

Limited to what is necessary for the specified purpose;
Proportionate to the nature of the interaction; and
Subject to periodic review to ensure continued relevance.

VERA Vox shall not collect excessive, irrelevant, or disproportionate data in relation to the purposes outlined in this Policy.

6.8 Categories of Personal Data Collected

Depending on the nature of interaction with the Website, VERA Vox may process the following categories:

Identity Data: Name, username, designation
Contact Data: Email address, phone number
Technical Data: IP address, browser type, device identifiers
Usage Data: Website interaction logs, session data
Communication Data: Messages, feedback, submissions
Public Data: Social media interactions or publicly available information

6.9 Purpose and Lawful Basis Mapping

VERA Vox shall process Personal Data only for specific, explicit, and lawful purposes, and in accordance with a valid legal basis under Applicable Law, including but not limited to consent, legitimate use, and legal obligation. For the purposes of this Policy, ‘Legitimate Use’ shall be interpreted in accordance with Applicable Law, including uses reasonably necessary for the operation, security, and improvement of the Website, or as otherwise permitted without explicit consent under law.

The mapping of categories of Personal Data to their respective purposes and lawful bases is set out below:

Identity and Contact Data
Purpose: Responding to inquiries, communications, and user requests
Lawful Basis: Consent and/or Legitimate Use
Technical and Usage Data
Purpose: Website functionality, analytics, performance optimization, and security
Lawful Basis: Legitimate Use and/or Consent (where required for cookies or tracking technologies)
Communication Data
Purpose: Handling requests, grievances, feedback, and correspondence
Lawful Basis: Consent and/or Legal Obligation
Publicly Available Data
Purpose: Journalistic, media, research, and editorial use
Lawful Basis: Legitimate Use and public interest considerations
All Categories of Data (where applicable)
Purpose: Compliance with legal obligations, regulatory requirements, or enforcement actions
Lawful Basis: Legal Obligation

VERA Vox shall not retain or process Personal Data beyond the period or scope necessary to fulfill the stated purposes, unless otherwise required or permitted under Applicable Law.

6.10 Automated Processing and Profiling

VERA Vox may use automated tools and analytical techniques to evaluate, analyze, or predict user preferences, behavior, and engagement patterns.

Such processing shall not result in decisions producing legal or similarly significant effects on Users without appropriate safeguards, and shall be conducted in accordance with Applicable Law.

7) PURPOSE OF PROCESSING:

VERA Vox Inc. (“VERA Vox”, “Company”, “we”, “us”, or “our”) processes Personal Data collected through the Website strictly for lawful, specific, and legitimate purposes, in accordance with Applicable Law and the principles of purpose limitation, necessity, and proportionality.

VERA Vox shall ensure that all processing activities are supported by a valid legal basis and are conducted in a manner that is fair, transparent, and consistent with the reasonable expectations of Users.

7.1 Core Operational Purposes

VERA Vox processes Personal Data for the purpose of operating, managing, and maintaining the Website, including but not limited to:

Enabling access to Website features, content, and functionalities;
Ensuring proper technical functioning, system integrity, and service availability;
Managing user sessions, authentication (where applicable), and system administration;
Diagnosing technical issues, bugs, and system failures; and
Conducting internal testing, troubleshooting, and quality assurance.

7.2 Communication and User Engagement

VERA Vox may process Personal Data to:

Respond to inquiries, requests, complaints, or feedback submitted by Users;
Communicate with Users regarding their interactions with the Website;
Provide updates, alerts, newsletters, or informational communications (subject to consent where required);
Facilitate participation in surveys, polls, events, or promotional initiatives; and
Maintain records of correspondence for administrative, legal, or evidentiary purposes.

7.3 Content Management and Editorial Functions

Given the nature of VERA Vox as a media and content platform, Personal Data may be processed for:

Reviewing, moderating, editing, publishing, or removing User-Generated Content;
Verifying the authenticity, credibility, or relevance of submitted content;
Attribution of content to authors or contributors, where applicable;
Enabling public interaction, commentary, or discussion (where features are available); and
Exercising editorial discretion in accordance with journalistic standards and internal policies.

VERA Vox reserves the right to process Personal Data in connection with journalistic, editorial, literary, or artistic purposes, including where such processing is necessary for public interest reporting or dissemination of information, subject to Applicable Law.

7.4 Analytics, Research, and Service Improvement

VERA Vox may process Personal Data to:

Monitor, analyze, and evaluate Website usage, traffic patterns, and user behavior;
Generate statistical insights, performance metrics, and aggregated reports;
Improve Website design, content, functionality, and user experience;
Develop new features, services, or offerings; and
Conduct internal research, innovation, and data-driven decision-making.

Where feasible, such processing shall be carried out using anonymized, aggregated, or pseudonymized data.

7.5 Personalization and User Experience Optimization

Subject to User consent where required, VERA Vox may process Personal Data to:

Personalize content, recommendations, and user experience;
Tailor communications based on user preferences or interests;
Maintain user-specific settings, configurations, and preferences; and
Enhance usability and accessibility of the Website.

Users retain the right to opt out of personalization features, where applicable.

7.6 Security, Fraud Prevention, and Risk Management

VERA Vox processes Personal Data for purposes of:

Ensuring the security and integrity of the Website and associated systems;
Detecting, preventing, and investigating unauthorized access, misuse, or malicious activity;
Monitoring for fraud, abuse, or violations of applicable terms and policies;
Protecting the rights, property, safety, and interests of VERA Vox, its Users, and third parties; and
Enforcing legal rights, contractual obligations, and internal policies.

7.7 Legal and Regulatory Compliance

VERA Vox may process Personal Data where necessary to:

Comply with Applicable Law, regulatory requirements, or governmental directives;
Respond to lawful requests, orders, or notices issued by courts, law enforcement agencies, or competent authorities;
Maintain records required under applicable legal or regulatory frameworks;
Establish, exercise, or defend legal claims; and
Conduct audits, investigations, or compliance reviews.

7.8 Business Administration and Operational Management

Personal Data may be processed for legitimate business purposes, including:

Internal record-keeping and documentation;
Administrative management and reporting;
Risk assessment and governance;
Business continuity planning; and
Strategic planning and organizational development.

7.9 Prohibition on Incompatible Processing

VERA Vox shall not process Personal Data for purposes that are materially different, incompatible, or unrelated to those specified in this Policy, unless:

Such processing is expressly permitted or required under Applicable Law;
Additional notice is provided to the User; and/or
Valid consent is obtained, where required.

7.10 Incidental and Ancillary Processing

VERA Vox may process Personal Data for purposes that are reasonably incidental or ancillary to the primary purposes outlined above, provided that such processing:

Is consistent with the original purpose of collection; and
Does not adversely affect the rights or interests of the User.

7.11 Limitation of Use

VERA Vox shall ensure that:

Personal Data is not retained or used beyond what is necessary for the stated purposes;
Access to Personal Data is restricted to authorized personnel on a need-to-know basis; and
Processing activities are subject to periodic review to ensure continued relevance and compliance.

7.12 Use of Processors

VERA Vox may engage third-party processors for:

Hosting and cloud services
Analytics and performance tracking
Communication and marketing tools

7.13 Contractual Controls

All processors are bound by legally enforceable agreements requiring:

Confidentiality obligations
Data protection compliance
Security safeguards
Processing only on documented instructions

7.14 Due Diligence

VERA Vox conducts reasonable due diligence to ensure that processors:

Maintain adequate security standards
Comply with applicable laws
Do not process data beyond authorized scope

7.15 Liability Limitation

While reasonable safeguards are implemented, VERA Vox shall not be liable for acts or omissions of independent processors beyond its direct control, except as required by law.

8) CONSENT AND USER CONTROL

VERA Vox Inc. (“VERA Vox”, “Company”, “we”, “us”, or “our”) processes Personal Data only where it has a valid lawful basis under applicable data protection laws, including but not limited to the Digital Personal Data Protection Act, 2023 (India) and other applicable international regulations. Where such lawful basis requires consent, VERA Vox shall obtain such consent prior to or at the time of collection of Personal Data.

8.1 Nature and Form of Consent

Consent shall be:

Free, specific, informed, unconditional, and unambiguous,
Provided through a clear affirmative action, including but not limited to ticking checkboxes, clicking acceptance buttons, submitting forms, or actively adjusting settings,
Obtained separately for distinct purposes of processing, wherever required by applicable law.

Silence, pre-ticked boxes, inactivity, or passive acceptance shall not constitute valid consent.

Where processing involves multiple purposes (including analytics, personalization, or marketing), consent shall be granular, enabling Users to selectively agree to or refuse specific categories of processing. Consent shall not be deemed to be freely given where the provision of a service is made conditional upon consent to processing that is not necessary for the performance of such service, except where otherwise permitted under Applicable Law.

8.2 Scope of Consent

Consent may be obtained for, including but not limited to:

Deployment of non-essential cookies and tracking technologies, including analytics and advertising tools;
Sending marketing communications, newsletters, alerts, or promotional materials;
Personalization of content, recommendations, and user experience;
Collection of behavioral, device, and usage data beyond what is strictly necessary for Website functionality.

Where processing is necessary for the performance of a contract, compliance with legal obligations, or legitimate business interests, consent may not be required, subject to applicable law.

8.3 Mechanisms for Granting and Managing Consent

VERA Vox provides Users with accessible and transparent mechanisms to manage their preferences, including:

Cookie consent banners and preference centers available on the Website;
Account or communication settings, where applicable;
Unsubscribe links embedded in electronic communications;
Direct communication channels, including email requests to the designated contact address.

Users may, at any time:

Modify or update their consent preferences;
Restrict certain categories of processing;
Opt out of specific communications or tracking mechanisms.

Such controls shall be easily accessible, clearly presented, and capable of being exercised without undue burden.
VERA Vox shall not employ deceptive design practices, misleading interfaces, or “dark patterns” to obtain, influence, or manipulate User consent. All consent interfaces shall be designed to ensure transparency, neutrality, and informed user choice in accordance with Applicable Law.

8.4 Withdrawal of Consent

Users have the right to withdraw their consent at any time, without affecting the lawfulness of processing carried out prior to such withdrawal.

Upon receipt of a valid withdrawal request:

VERA Vox shall cease processing Personal Data to the extent such processing is based solely on consent;
The Company shall take reasonable steps to delete, anonymize, or restrict further processing of such data, unless retention is required under applicable law or for legitimate purposes (including legal claims or compliance obligations). VERA Vox shall process and give effect to such withdrawal within a reasonable period and, where prescribed, within the timelines stipulated under Applicable Law.

Users acknowledge that withdrawal of consent may result in:

Limited access to certain features, services, or functionalities of the Website;
Discontinuation of personalized services or communications;
Inability of VERA Vox to fulfill certain requests dependent on such data.

8.5 Opt-Out of Communications

Where Users have consented to receive marketing or promotional communications, they may opt out at any time by:

Clicking the “unsubscribe” link contained in such communications;
Adjusting communication preferences via available settings; or
Submitting a request through the designated contact channels.

VERA Vox shall ensure that opt-out requests are processed within a reasonable timeframe and in accordance with applicable law.

Notwithstanding such opt-out, VERA Vox reserves the right to send non-promotional communications, including but not limited to:

Service-related notices,
Security alerts,
Legal or regulatory disclosures, and
Communications necessary to maintain an existing relationship or fulfill contractual obligations.

8.6 Record of Consent

VERA Vox maintains secure and auditable records of consent, including:

The fact that consent was given;
The date, time, and method of consent;
The specific purposes for which consent was obtained.

Such records may be retained and produced as necessary to demonstrate compliance with applicable legal and regulatory requirements.

8.7 Consent of Authorized Representatives

Where Personal Data is provided on behalf of another individual, the User represents and warrants that:

They are duly authorized to provide such data;
They have obtained all necessary consents from the relevant Data Principal; and
They have informed such individual of the contents of this Privacy Policy.

VERA Vox shall not be liable for any claims arising from unauthorized or unlawful provision of Personal Data by Users.

8.8 Consequences of Refusal to Provide Consent

Where the provision of Personal Data or consent thereto is necessary for the performance of a service, compliance with legal obligations, or operation of the Website, refusal to provide such consent or data may result in:

Inability to access certain features or functionalities;
Failure to process requests or deliver services;
Restricted or degraded user experience;
Denial of participation in specific offerings or communications.

VERA Vox shall, where required under Applicable Law, inform Users of such consequences at or prior to the point of collection.
8.9 Processing Based on Legitimate Uses / Deemed Consent

Notwithstanding the requirement of consent, VERA Vox may process Personal Data without explicit consent where such processing is permitted under Applicable Law, including but not limited to circumstances constituting “legitimate use” or “deemed consent” under the Digital Personal Data Protection Act, 2023.

Such circumstances may include, without limitation:

Compliance with legal obligations;
Prevention, detection, investigation, or prosecution of unlawful activities;
Responding to emergencies involving threat to life or safety;
Processing publicly available Personal Data;
Purposes reasonably expected by the Data Principal in the context of their interaction with the Website.

All such processing shall be undertaken in a manner that is proportionate, necessary, and consistent with the principles of data protection under Applicable Law. In the event of any conflict between this Policy and Applicable Law, the provisions of Applicable Law shall prevail to the extent of such inconsistency.

9) DISCLOSURE OF PERSONAL DATA

VERA Vox Inc. (“VERA Vox”, “Company”, “we”, “us”, or “our”) is committed to maintaining the confidentiality, integrity, and security of Personal Data. The Company does not sell, rent, trade, license, or otherwise commercially exploit Personal Data to third parties for monetary or other valuable consideration.

Disclosure of Personal Data shall occur strictly on a need-to-know basis, in accordance with applicable law, and subject to appropriate legal, contractual, and technical safeguards.

9.1 General Principles Governing Disclosure

All disclosures of Personal Data by VERA Vox shall be governed by the following principles:

Purpose Limitation: Personal Data shall be disclosed only for purposes that are lawful, specific, and consistent with those communicated at the time of collection.
Data Minimization: Only the minimum amount of Personal Data necessary for the relevant purpose shall be disclosed.
Confidentiality Obligations: Recipients of Personal Data shall be bound by contractual or statutory obligations to maintain confidentiality and ensure data protection.
Security Measures: Appropriate technical and organizational safeguards shall be implemented to prevent unauthorized access, disclosure, alteration, or misuse during and after transfer.
Accountability: VERA Vox shall take reasonable steps to ensure that all recipients process Personal Data in compliance with applicable data protection laws.

9.2 Disclosure to Service Providers and Vendors

VERA Vox may disclose Personal Data to third-party service providers, contractors, and vendors engaged to support the operation, maintenance, and improvement of the Website and associated services. These may include, but are not limited to:

Website hosting and infrastructure providers;
Cloud storage and data processing service providers;
Analytics and performance monitoring services;
Communication and email service providers;
Security, fraud detection, and compliance service providers.

Such disclosures shall be governed by written data processing agreements (DPAs) or equivalent contractual arrangements that:

Restrict processing to specified purposes;
Prohibit unauthorized use or disclosure;
Require implementation of appropriate security measures;
Mandate deletion or return of Personal Data upon completion of services;
Provide for audit rights, where appropriate.

Service providers shall act solely as data processors (or equivalent) and shall not acquire any independent rights over the Personal Data.

9.3 Disclosure within Corporate Group and Affiliates

Personal Data may be disclosed to affiliated entities, subsidiaries, parent companies, or group companies of VERA Vox for legitimate internal business purposes, including:

Administrative and operational management;
IT systems and infrastructure support;
Compliance, risk management, and internal audit functions;
Strategic planning and business development.

All such entities shall be required to adhere to standards of data protection and confidentiality equivalent to those set out in this Privacy Policy, and shall process Personal Data only to the extent necessary for such purposes.

9.4 Disclosure to Legal and Regulatory Authorities

VERA Vox may disclose Personal Data to governmental authorities, regulatory bodies, law enforcement agencies, courts, or other competent authorities where such disclosure is:

Required to comply with applicable laws, regulations, legal processes, or enforceable governmental requests;
Necessary to enforce the Company’s legal rights, contractual obligations, or policies;
Required to detect, investigate, prevent, or address fraud, security breaches, or unlawful activities;
Necessary to protect the rights, property, or safety of VERA Vox, its users, employees, or the public.

Where legally permissible, VERA Vox may take reasonable steps to:

Verify the legitimacy and scope of such requests;
Limit disclosure to what is strictly required;
Notify affected Users, unless prohibited by law or where such notification would compromise an investigation.

9.5 Disclosure in Connection with Business Transactions

In the event of a merger, acquisition, restructuring, reorganization, sale of assets, joint venture, or other business transaction, Personal Data may be disclosed to relevant third parties, including:

Prospective or actual purchasers, investors, or partners;
Professional advisors, including legal, financial, and audit firms;
Successor entities or assignees.

Such disclosures shall be subject to:

Confidentiality agreements binding the receiving parties;
Use of Personal Data solely for evaluation or execution of the transaction;
Implementation of appropriate safeguards to ensure continued protection of Personal Data.

In the event of completion of such transaction, Personal Data shall remain subject to privacy commitments consistent with this Policy, unless otherwise notified to Users and permitted by applicable law.

9.6 Disclosure with User Authorization

VERA Vox may disclose Personal Data to third parties where:

The User has provided explicit consent for such disclosure; or
The User has directed or authorized VERA Vox to share such information.

In such cases, Users acknowledge that the Company shall not be responsible for the privacy practices, policies, or actions of such third parties.

9.7 International Disclosure of Personal Data

Where Personal Data is disclosed to recipients located outside the jurisdiction of the User, such disclosure shall be conducted in accordance with:

Applicable cross-border data transfer laws;
Approved contractual safeguards (including standard contractual clauses, where applicable);
Adequacy decisions or permitted jurisdictions under relevant regulations.

VERA Vox shall take reasonable steps to ensure that such recipients provide a level of protection consistent with applicable data protection standards, although Users acknowledge that data protection laws may vary across jurisdictions.

9.8 No Sale or Profiling-Based Commercial Disclosure

For the avoidance of doubt:

VERA Vox does not engage in the sale of Personal Data;
VERA Vox does not disclose Personal Data to third parties for independent marketing or commercial exploitation;
Any sharing for analytics, advertising, or personalization purposes shall be conducted only with appropriate consent, where required by law.

9.9 Residual and Aggregated Data

VERA Vox may disclose aggregated, anonymized, or de-identified data that does not identify any individual, for purposes including analytics, research, service improvement, or reporting. Such data shall not be considered Personal Data and may be used or disclosed without restriction, subject to applicable law.

10) COOKIES AND TRACKING TECHNOLOGIES

VERA Vox Inc. (“VERA Vox”, “Company”, “we”, “us”, or “our”) uses cookies and similar tracking technologies on its Website to ensure proper functionality, enhance user experience, analyze performance, and, where applicable, deliver personalized content and communications. This section explains the nature, purpose, and control mechanisms associated with such technologies.

10.1 Definition and Scope

For the purposes of this Privacy Policy, “cookies” shall include:

Small text files placed on a User’s device (computer, mobile device, tablet, or similar) when accessing the Website;
Similar technologies, including but not limited to web beacons, pixels, tags, scripts, local storage objects, SDKs, and device identifiers, that store or access information on a User’s device.

Such technologies may be deployed by VERA Vox (“first-party cookies”) or by authorized third-party service providers (“third-party cookies”).

10.2 Categories of Cookies and Their Purposes

VERA Vox utilizes cookies categorized as follows:

(a) Strictly Necessary Cookies

These cookies are essential for the operation, security, and accessibility of the Website. They enable core functionalities such as:

Page navigation and secure access to restricted areas;
Session management and authentication;
Load balancing and system stability;
Fraud prevention and security monitoring.

Strictly necessary cookies do not require User consent, as they are indispensable for the provision of the Website.

(b) Functional Cookies

Functional cookies enhance usability and personalization by:

Remembering User preferences (such as language, region, or display settings);
Retaining user-selected configurations;
Enabling optional features and improved navigation.

These cookies may require User consent where mandated by applicable law.

These cookies collect information about how Users interact with the Website, including:

Pages visited and time spent;
Navigation patterns and click behavior;
Error logs and performance metrics.

Such data is generally aggregated and used to:

Monitor and improve Website performance;
Diagnose technical issues;
Optimize user interface and experience.

Where such cookies are not strictly necessary, they shall be deployed only upon obtaining User consent.

(d) Targeting and Advertising Cookies

Where applicable, VERA Vox and its authorized partners may use cookies to:

Deliver relevant advertisements or promotional content;
Measure effectiveness of marketing campaigns;
Track browsing behavior across websites to build user profiles.

These cookies are deployed only with explicit User consent, in compliance with applicable data protection laws.

10.3 Legal Basis for Use of Cookies

The use of cookies and tracking technologies is based on:

Legitimate interests, where such cookies are strictly necessary for Website functionality and security;
User consent, where cookies are non-essential, including analytics, personalization, and advertising cookies.

Consent shall be obtained in accordance with Section 8 (Consent and User Control) of this Privacy Policy.

10.4 Cookie Deployment and Third-Party Involvement

VERA Vox may engage third-party service providers for analytics, performance monitoring, advertising, or integration of external features (e.g., social media plugins). These third parties may:

Place cookies on the User’s device;
Collect information regarding User interactions with the Website;
Process such information in accordance with their own privacy policies.

VERA Vox does not control the operation of third-party cookies and shall not be responsible for the privacy practices of such third parties. Users are encouraged to review the respective privacy policies of these providers.

All third-party engagements are subject to contractual safeguards, ensuring that data processing is conducted in compliance with applicable data protection laws.

10.5 User Consent and Cookie Preferences

Upon first access to the Website, Users shall be presented with a cookie consent banner or preference management tool, enabling them to:

Accept all cookies;
Reject non-essential cookies;
Customize preferences by category.

Users may modify or withdraw their consent at any time through:

The cookie preference management interface available on the Website;
Browser settings; or
Other consent management tools provided by VERA Vox.

Withdrawal of consent shall not affect the lawfulness of prior processing.

10.6 Browser and Device Controls

Users may independently control or restrict cookies through their browser or device settings, including:

Blocking all or selected cookies;
Deleting previously stored cookies;
Configuring alerts for cookie placement.

However, Users acknowledge that disabling or blocking certain cookies, particularly strictly necessary cookies, may:

Impair Website functionality;
Restrict access to certain features;
Degrade user experience.

10.7 Duration and Storage of Cookies

Cookies may be classified by duration as:

Session Cookies: Temporary cookies that expire upon closing the browser;
Persistent Cookies: Cookies that remain on the User’s device for a defined period or until manually deleted.

The retention period for each cookie shall be determined based on its purpose and shall comply with principles of data minimization and storage limitation.

10.8 Data Collected Through Cookies

Information collected through cookies may include, but is not limited to:

IP address and approximate location data;
Device identifiers and browser type;
Operating system and network information;
Pages visited, links clicked, and session duration;
Referring URLs and interaction patterns.

Such data may be combined with other information collected by VERA Vox, subject to applicable law and user consent where required.

10.9 Updates to Cookie Practices

VERA Vox reserves the right to modify its use of cookies and tracking technologies at any time. Any material changes shall be:

Reflected in this Privacy Policy; and/or
Communicated to Users through appropriate notice mechanisms, including updated consent banners.

Continued use of the Website following such updates shall be subject to the revised terms, to the extent permitted by law.

11) DATA RETENTION

VERA Vox Inc. (“VERA Vox”, “Company”, “we”, “us”, or “our”) retains Personal Data strictly for the period necessary to fulfill the purposes for which such data was collected, processed, or otherwise lawfully obtained, in accordance with applicable data protection laws, including but not limited to the Digital Personal Data Protection Act, 2023 (India) and other relevant international frameworks.

Retention practices are guided by the principles of data minimization, storage limitation, and purpose limitation, ensuring that Personal Data is not retained longer than is reasonably necessary.

11.1 General Retention Principles

VERA Vox shall retain Personal Data only where:

It is necessary to fulfill the specific purpose(s) for which the data was collected;
It is required to comply with legal, regulatory, or statutory obligations;
It is necessary to establish, exercise, or defend legal claims;
It supports legitimate business interests that do not override the rights and freedoms of the User.

Retention periods shall be determined based on:

The nature, sensitivity, and volume of the Personal Data;
The potential risk of harm from unauthorized use or disclosure;
The purposes for which the data is processed;
Applicable legal, regulatory, tax, accounting, or reporting requirements.

11.2 Standard Retention Periods

Unless otherwise required by applicable law or specific contractual obligations:

Personal Data collected through Website interactions (such as inquiries, contact forms, or communications) shall be retained for the duration necessary to respond to and manage such interactions;
Thereafter, such data may be retained for a reasonable administrative period, typically not exceeding twelve (12) months from the date of last interaction, for purposes including follow-up communication, internal record-keeping, dispute resolution, and service improvement.

11.3 Extended Retention

VERA Vox reserves the right to retain Personal Data beyond standard retention periods where such retention is:

Required by applicable law, regulation, or lawful order of a competent authority;
Necessary for the establishment, exercise, or defense of legal claims, including anticipated litigation;
Required for audit, compliance, fraud prevention, or security investigations;
Necessary to enforce agreements, policies, or terms governing the use of the Website.

In such cases, retention shall be limited to the duration strictly necessary for such purposes.

11.4 Retention of Technical and Usage Data

Certain technical and usage-related data (including logs, analytics data, and system-generated metadata) may be retained for shorter or longer durations depending on operational requirements, including:

System security and monitoring;
Performance optimization and debugging;
Fraud detection and prevention.

Where such data is retained for extended periods, it shall, where feasible, be aggregated, anonymized, or de-identified to minimize privacy risks.

11.5 Anonymization and De-Identification

Where Personal Data is no longer required for identifiable processing purposes, VERA Vox may:

Anonymize such data irreversibly, such that it can no longer be associated with an identifiable individual; or
De-identify such data and retain it for legitimate purposes such as analytics, research, statistical reporting, or service improvement.

Anonymized data shall not be considered Personal Data and may be retained indefinitely, subject to applicable law.

11.6 Secure Deletion and Disposal

Upon expiry of applicable retention periods, VERA Vox shall take reasonable and appropriate steps to:

Securely delete, erase, or destroy Personal Data from its systems; or
Render such data permanently unrecoverable and unusable through appropriate technical measures.

Deletion methods may include:

Secure data wiping or overwriting;
Cryptographic erasure;
Physical destruction of storage media, where applicable.

VERA Vox shall also take reasonable steps to ensure that third-party service providers delete or return Personal Data in accordance with contractual obligations.

11.7 Backup and Archival Systems

Personal Data may persist in backup systems, archives, or disaster recovery environments for a limited period beyond primary retention timelines.

In such cases:

Access to such data shall be restricted and controlled;
Data shall not be actively processed except where necessary for restoration or legal compliance;
Such data shall be securely deleted or overwritten in accordance with standard backup lifecycle policies.

11.8 User-Initiated Deletion Requests

Where Users exercise their right to erasure or request deletion of their Personal Data:

VERA Vox shall evaluate and act upon such requests in accordance with applicable law;
Data shall be deleted unless retention is required for legal, regulatory, or legitimate business purposes;
Residual data may be retained in anonymized form or within restricted archives where deletion is not immediately feasible.

11.9 Periodic Review of Retention Practices

VERA Vox shall periodically review its data retention practices to ensure:

Continued compliance with applicable laws and regulations;
Alignment with evolving business needs and technological developments;
Minimization of unnecessary data storage.

Retention schedules and policies may be updated from time to time, and such updates shall be reflected in this Privacy Policy where material.

12) DATA SECURITY

VERA Vox Inc. (“VERA Vox”, “Company”, “we”, “us”, or “our”) implements and maintains appropriate technical, organizational, administrative, and physical safeguards designed to protect Personal Data against unauthorized or unlawful access, processing, disclosure, alteration, loss, or destruction. Such measures are adopted in accordance with applicable data protection laws, including the Digital Personal Data Protection Act, 2023 (India), and aligned, where practicable, with internationally recognized security standards and best practices.

12.1 Security Governance and Framework

VERA Vox maintains an internal framework for data protection and information security that includes:

Defined security policies, procedures, and protocols governing the handling of Personal Data;
Allocation of roles and responsibilities for data protection and cybersecurity oversight;
Periodic risk assessments and vulnerability evaluations to identify, assess, and mitigate potential threats;
Continuous monitoring and review of security controls to ensure effectiveness and compliance.

Such governance structures are subject to periodic updates in response to evolving legal requirements, technological developments, and threat landscapes.

12.2 Technical Safeguards

VERA Vox employs appropriate technical measures, which may include but are not limited to:

Encryption technologies (including encryption in transit and, where appropriate, at rest) to protect data from unauthorized interception or access;
Secure hosting environments, including firewalls, intrusion detection and prevention systems (IDS/IPS), and network segmentation;
Access control mechanisms, including role-based access control (RBAC), authentication protocols, and least-privilege principles;
Endpoint and application security controls, including malware protection, patch management, and secure coding practices;
Logging and monitoring systems to track access, detect anomalies, and support incident response;
Regular backup and recovery mechanisms to ensure data availability and integrity.

12.3 Organizational and Administrative Measures

In addition to technical safeguards, VERA Vox implements organizational controls, including:

Restricting access to Personal Data strictly to authorized personnel who require such access for legitimate business purposes;
Ensuring that employees, contractors, and service providers are bound by confidentiality obligations;
Conducting training and awareness programs to ensure adherence to data protection and security standards;
Implementing internal access management policies, including onboarding, role changes, and termination procedures to prevent unauthorized access.

12.4 Third-Party Security Assurance

Where Personal Data is processed by third-party service providers:

VERA Vox undertakes reasonable due diligence to assess the security posture of such providers;
Ensures that such providers are bound by contractual obligations requiring implementation of appropriate security measures;
Requires compliance with applicable data protection laws and industry standards;
May conduct periodic reviews or request assurances regarding ongoing compliance.

However, VERA Vox shall not be liable for security breaches attributable solely to the failure of third-party systems beyond its reasonable control, subject to applicable law.

12.5 Incident Detection, Response, and Notification

VERA Vox maintains a structured and documented incident response framework for the detection, investigation, containment, mitigation, and remediation of security incidents, including Personal Data Breaches.

For the purposes of this Policy, a “Personal Data Breach” shall mean any unauthorized access, acquisition, disclosure, alteration, loss, or destruction of Personal Data.

In the event of a suspected or confirmed Personal Data Breach, VERA Vox shall:

Promptly initiate incident response procedures to contain and mitigate the impact of the breach;
Conduct an assessment of the nature, scope, and severity of the incident, including the categories and volume of affected Personal Data;
Take appropriate remedial actions to prevent recurrence, including system remediation, access control adjustments, and security enhancements;
Maintain detailed records of the incident, including findings, actions taken, and outcomes, for audit and compliance purposes.

Where required under Applicable Law, including obligations under the Digital Personal Data Protection Act, 2023, VERA Vox shall:

Notify the competent regulatory authority, including the Data Protection Board of India, within prescribed timelines or, where no specific timeline is prescribed, as soon as reasonably practicable;
Notify affected Users where the breach is likely to result in harm, including providing:
- The nature of the breach;
- Categories of affected Personal Data;
- Likely consequences;
- Measures taken or proposed to mitigate adverse effects;

All notifications shall be made in accordance with applicable legal requirements and in a manner proportionate to the risk and impact of the breach.

12.6 Data Integrity and Availability

VERA Vox implements measures to ensure the accuracy, integrity, and availability of Personal Data, including:

Safeguards against unauthorized alteration or corruption of data;
Redundancy and backup systems to prevent data loss;
Disaster recovery and business continuity planning to ensure restoration of data and services in a timely manner.

12.7 Limitations of Security

While VERA Vox endeavors to implement robust security measures, Users acknowledge and agree that:

No method of transmission over the internet or method of electronic storage is completely secure or error-free;
The transmission of Personal Data to and from the Website is undertaken at the User’s own risk;
VERA Vox cannot guarantee absolute security of Personal Data against all forms of unauthorized access, cyberattacks, or system failures.

12.8 User Responsibilities

Users are responsible for maintaining the security of their own interactions with the Website, including:

Safeguarding any credentials, passwords, or authentication information;
Ensuring that devices used to access the Website are secure;
Promptly notifying VERA Vox of any suspected unauthorized access, security incident, or compromise of Personal Data.

12.9 Continuous Improvement

VERA Vox is committed to the continuous improvement of its data security practices and shall:

Regularly review and update security measures;
Adapt to emerging threats, vulnerabilities, and technological advancements;
Align with evolving regulatory requirements and industry standards.

13) CROSS-BORDER DATA TRANSFERS

VERA Vox Inc. (“VERA Vox”, “Company”, “we”, “us”, or “our”) operates in a global digital environment. Accordingly, Personal Data collected through the Website may be transferred to, stored in, or processed within jurisdictions outside the country in which the User is located, including jurisdictions that may have data protection laws differing from those of the User’s home jurisdiction.

13.1 Basis for Cross-Border Transfers

VERA Vox shall ensure that any cross-border transfer of Personal Data is conducted:

In compliance with the Digital Personal Data Protection Act, 2023 (India) and any other applicable data protection laws;
Pursuant to lawful mechanisms recognized under applicable regulations;
Only where such transfer is necessary for the purposes described in this Privacy Policy, including service provision, infrastructure support, analytics, security, and operational continuity.

13.2 Safeguards and Transfer Mechanisms

Where Personal Data is transferred across jurisdictions, VERA Vox shall implement appropriate safeguards, which may include:

Execution of contractual safeguards, including data transfer agreements or standard contractual clauses (or equivalent legal instruments);
Transfer to jurisdictions that are permitted or approved by competent authorities under applicable law;
Ensuring that recipients are subject to binding confidentiality and data protection obligations;
Implementation of technical and organizational security measures to protect Personal Data during transmission and processing.

13.3 Transfers to Third-Party Service Providers

VERA Vox may engage third-party service providers (including cloud service providers, hosting platforms, analytics providers, and IT infrastructure partners) that operate in multiple jurisdictions.

In such cases:

Personal Data may be processed on servers located outside the User’s jurisdiction;
VERA Vox shall conduct reasonable due diligence to ensure such providers maintain appropriate security and compliance standards;
Processing shall be governed by binding contractual agreements restricting use of Personal Data solely to specified purposes.

13.4 Government and Legal Access in Foreign Jurisdictions

Users acknowledge that Personal Data transferred to foreign jurisdictions may be:

Subject to lawful access requests by governmental authorities, courts, or regulatory bodies in those jurisdictions;
Processed under legal frameworks that may not provide the same level of protection as the User’s home jurisdiction.

VERA Vox shall take reasonable steps to ensure that such disclosures are:

Limited to what is legally required;
Subject to appropriate safeguards, where possible.

13.5 User Acknowledgment and Consent

By accessing or using the Website and providing Personal Data, the User:

Acknowledges the possibility of international data transfers;
Consents to such transfers, storage, and processing, to the extent required under applicable law;
Understands that data protection standards may vary across jurisdictions.

13.6 Data Localization and Restrictions

Where applicable law imposes restrictions on cross-border transfers or mandates data localization:

VERA Vox shall ensure compliance with such requirements;
Personal Data shall not be transferred to jurisdictions prohibited or restricted by applicable authorities;
Appropriate measures shall be implemented to ensure lawful processing within permitted jurisdictions.

13.7 Ongoing Compliance

VERA Vox shall periodically review its cross-border data transfer practices to ensure:

Continued compliance with evolving regulatory frameworks;
Adequacy of safeguards in light of technological and legal developments;
Protection of User rights and interests.

14) CHILDREN’S PRIVACY

VERA Vox recognizes the importance of protecting the privacy and safety of minors and does not knowingly collect, process, or store Personal Data of individuals below the age of eighteen (18) years through the Website.

14.1 Intended Audience and Age Restriction

The Website is intended for use by individuals who are eighteen (18) years of age or older. VERA Vox reserves the right to request proof of age or suspend access where it reasonably suspects that a User does not meet the minimum age requirement.

By accessing or using the Website, Users represent and warrant that:

They have attained the age of majority as required under applicable law; and
They are legally capable of providing valid consent to the processing of their Personal Data.

14.2 No Intentional Collection of Children’s Data

VERA Vox does not:

Intentionally solicit or collect Personal Data from minors;
Offer products or services directed specifically at children;
Engage in profiling, behavioral tracking, or targeted advertising directed at minors.

14.3 Inadvertent Collection and Remedial Action

In the event that VERA Vox becomes aware that Personal Data of a minor has been collected without appropriate authorization:

The Company shall take prompt and reasonable steps to delete such Personal Data from its systems;
Processing of such data shall be immediately ceased;
Where required, appropriate notifications shall be made in accordance with applicable law.

14.4 Parental or Guardian Responsibility

VERA Vox acknowledges that age verification mechanisms on digital platforms may rely on self-declaration and may not be fully reliable.

Accordingly:

Parents and legal guardians are responsible for monitoring and supervising the online activities of minors under their care;
If a parent or guardian becomes aware that a minor has provided Personal Data to VERA Vox without consent, they are encouraged to contact the Company immediately.

Upon receipt of such notification, VERA Vox shall:

Verify the request; and
Take appropriate steps to remove such data, subject to applicable legal obligations.

Where processing of a minor’s Personal Data is permitted under Applicable Law, such processing shall be subject to verifiable parental or guardian consent obtained through appropriate mechanisms.

14.5 Third-Party Tracking and Children

VERA Vox does not knowingly permit third-party service providers to:

Collect Personal Data from minors through the Website;
Engage in tracking, analytics, or advertising activities specifically targeting minors.

To the extent permitted under Applicable Law, VERA Vox shall not be liable for any collection or processing of Personal Data by such third-party services that occurs independently of VERA Vox’s instructions or control.

14.6 Compliance with Applicable Laws

VERA Vox shall comply with all applicable legal requirements concerning children’s data protection, including:

Restrictions on processing minors’ Personal Data;
Requirements for parental consent, where applicable;
Obligations relating to deletion and safeguarding of such data.

14.7 User Acknowledgment

By using the Website, Users acknowledge and agree that:

The Website is not intended for minors;
Any Personal Data submitted is done in compliance with this section;
VERA Vox shall not be liable for any misrepresentation of age by Users, subject to applicable law.

14.8 Regulatory Compliance and Future Obligations

VERA Vox shall, in the event of any change in Applicable Law relating to children’s data protection, implement such additional safeguards, consent mechanisms, and compliance measures as may be required, including age verification, parental consent validation, or data minimization obligations.

15) USER RIGHTS (DATA PRINCIPAL RIGHTS)

Subject to the provisions of applicable data protection laws, including the Digital Personal Data Protection Act, 2023 (“DPDPA”), and other relevant international regulations where applicable, individuals whose Personal Data is processed by VERA Vox Inc. (“User”, “Data Principal”) shall have the following legally enforceable rights:

15.1 Right to Access and Information

The User shall have the right to obtain confirmation from VERA Vox as to whether Personal Data concerning them is being processed and, where such processing is taking place, to request access to such Personal Data, including:

The categories and specific data collected
The purposes of processing
The lawful basis for such processing
The categories of recipients with whom the data has been shared
The retention period or criteria used to determine such retention

VERA Vox reserves the right to redact or withhold information where disclosure would adversely affect the rights of other individuals, compromise security measures, or violate legal obligations.

15.2 Right to Correction and Rectification

Users shall have the right to request:

Correction of inaccurate Personal Data
Completion of incomplete Personal Data
Updating of outdated or obsolete information

VERA Vox shall take reasonable steps to verify the accuracy of the request before implementing any correction and may require supporting documentation.

15.3 Right to Erasure (Right to be Forgotten)

Users may request deletion of their Personal Data where:

The data is no longer necessary for the purpose for which it was collected
Consent has been withdrawn and no other lawful basis exists
Processing is unlawful
Erasure is required to comply with a legal obligation

However, VERA Vox may retain such data where necessary for:

Compliance with applicable laws or regulatory requirements
Establishment, exercise, or defense of legal claims
Fraud prevention, security, or audit purposes

15.4 Right to Withdraw Consent

Where processing is based on consent, the User shall have the right to withdraw such consent at any time.

Upon withdrawal:

VERA Vox shall cease processing the Personal Data for the specific purpose(s) for which consent was withdrawn
Withdrawal shall not affect the lawfulness of processing carried out prior to such withdrawal
Certain services, features, or access to the Website may become limited or unavailable

15.5 Right to Restrict or Object to Processing

Where permitted by law, Users may:

Object to processing based on legitimate interests
Request restriction of processing where accuracy is contested or processing is unlawful

VERA Vox shall evaluate such requests in accordance with statutory obligations and may continue processing where overriding legitimate grounds exist.

15.6 Right to Grievance Redressal

Users shall have the right to lodge complaints or grievances regarding the processing of their Personal Data.

VERA Vox shall:

Acknowledge receipt of grievance within a reasonable timeframe
Investigate and respond in accordance with applicable law
Maintain records of such grievances for compliance purposes

If the User is not satisfied with the resolution, they may escalate the matter to the competent authority, including the Data Protection Board of India, where applicable.

15.7 Right to Nominate

Users shall have the right to nominate another individual to exercise their rights in the event of death or incapacity, subject to verification and applicable legal requirements.

15.8 Procedure for Exercising Rights

All requests relating to the above rights shall be submitted to:

Email: connect@veravoxmedia.com

VERA Vox reserves the right to:

Verify the identity of the requester through reasonable means
Refuse or delay requests that are manifestly unfounded, excessive, or repetitive
Charge a reasonable administrative fee where permitted by law

Requests shall be processed within timelines prescribed under applicable law.

16) USER-GENERATED CONTENT AND PUBLIC DISCLOSURE

16.1 Nature of Public Content

The Website may enable Users to create, submit, publish, transmit, or display content, including but not limited to:

Comments
Articles
Media submissions
Feedback or forum participation
(collectively, “User-Generated Content”)

Users expressly acknowledge and agree that any such content submitted to publicly accessible areas of the Website shall be considered non-confidential and non-proprietary, unless expressly stated otherwise.

16.2 Public Accessibility and Visibility

User-Generated Content:

May be accessible to other users of the Website and the general public
May be indexed, crawled, cached, or archived by search engines and third-party platforms
May be redistributed, quoted, or referenced by third parties beyond the control of VERA Vox

VERA Vox does not guarantee removal of such content from third-party systems once it has been publicly disseminated.

16.3 User Responsibility and Representations

By submitting User-Generated Content, the User represents and warrants that:

They possess all necessary rights, licenses, and permissions to publish such content
The content does not infringe upon any intellectual property, privacy, or legal rights of any third party
The content is not unlawful, defamatory, misleading, or harmful

The User shall remain solely responsible for the legality, accuracy, and consequences of such content.

16.4 License to VERA Vox

By submitting User-Generated Content, the User grants VERA Vox a worldwide, non-exclusive, royalty-free, transferable, sublicensable license to:

Use, reproduce, modify, adapt, publish, translate, distribute, and display such content
Use the content for operational, editorial, promotional, or commercial purposes

Such license shall continue unless and until the content is deleted, subject to legal and archival retention obligations.

16.5 Moderation and Removal Rights

VERA Vox reserves the absolute right, at its sole discretion, to:

Monitor, review, edit, or remove any User-Generated Content
Restrict or terminate User access for violations of applicable laws or platform policies
Disclose User-Generated Content where required by law or for enforcement purposes

However, VERA Vox shall not be under any obligation to monitor content proactively.

16.6 Limitation of Liability

To the fullest extent permitted by law:

VERA Vox shall not be liable for any misuse, reproduction, or unauthorized use of User-Generated Content by third parties
VERA Vox shall not be responsible for any loss, damage, or harm arising from public disclosure of such content

Users are strongly advised to exercise caution when sharing personal or sensitive information in public areas.

17) THIRD-PARTY LINKS AND EXTERNAL SERVICES

17.1 External Links and Integrations

The Website may, from time to time, contain hyperlinks, embedded content, plug-ins, APIs, or integrations that redirect Users to, or enable interaction with, third-party websites, applications, platforms, or services (“Third-Party Services”).

Such Third-Party Services may include, without limitation:

Social media platforms
Analytics providers
Advertising networks
Content hosting platforms
Communication tools and embedded media services

The inclusion of any such Third-Party Services does not imply endorsement, affiliation, or approval by VERA Vox Inc., unless expressly stated.

17.2 Independent Data Practices

Users expressly acknowledge that Third-Party Services operate independently of VERA Vox and are governed by their own:

Privacy policies
Terms of use
Data collection and processing practices

VERA Vox does not:

Control or monitor the data handling practices of such Third-Party Services
Determine how such third parties collect, use, store, or disclose Personal Data
Assume any responsibility or liability for their actions or omissions

Users are strongly advised to review the applicable privacy policies and terms of any Third-Party Services prior to engaging with them.

17.3 Data Sharing Through Third-Party Interactions

Where Users choose to interact with Third-Party Services through the Website, including by:

Clicking external links
Using social sharing features
Logging in via third-party authentication services
Accessing embedded content

such interactions may result in the direct collection or sharing of information between the User and the third party, including Personal Data.

VERA Vox shall not be responsible for any such data transfer once the User leaves the Website environment or engages directly with the Third-Party Service.

17.4 Third-Party Cookies and Tracking Technologies

Third-Party Services integrated into the Website may deploy their own cookies, pixels, tags, or similar tracking technologies.

These technologies may:

Track User activity across multiple websites
Collect behavioral and usage data
Enable targeted advertising and analytics

VERA Vox does not control such third-party tracking mechanisms and disclaims all liability arising from their use.

Users may manage such tracking through their browser settings or the respective third-party platforms.

17.5 Disclaimer of Liability

To the fullest extent permitted under applicable law:

VERA Vox shall not be liable for any loss, damage, or harm arising from access to or use of Third-Party Services
VERA Vox shall not be responsible for any unauthorized access, data breaches, or misuse of Personal Data occurring on third-party platforms
Any transactions, communications, or interactions between Users and Third-Party Services shall be solely between the User and such third party

Users access Third-Party Services entirely at their own risk.

18) POLICY UPDATES AND MODIFICATIONS

18.1 Right to Modify

VERA Vox Inc. reserves the unilateral right, at its sole discretion, to amend, revise, update, or modify this Privacy Policy at any time, without prior notice, to reflect:

Changes in applicable laws or regulatory requirements
Technological advancements
Modifications to business operations or services
Risk management or compliance considerations

18.2 Notification of Changes

Updated versions of this Privacy Policy shall be:

Published on the Website with a revised “Effective Date”
Made accessible to Users at all times

Where required by applicable law or where changes materially affect User rights, VERA Vox may, at its discretion:

Provide additional notice via email or Website notification
Seek renewed consent, where legally mandated

18.3 Acceptance of Updated Policy

Continued access to or use of the Website following the publication of an updated Privacy Policy shall constitute:

Acknowledgment of such changes
Acceptance of the revised terms

If a User does not agree with any modification to this Privacy Policy, the User must:

Immediately discontinue use of the Website
Cease submission of Personal Data

18.4 Superseding Effect

The most current version of this Privacy Policy shall supersede all prior versions and govern the processing of Personal Data from the date of its publication.

19) DATA PROCESSORS AND CONTRACTUAL SAFEGUARDS

19.1 Use of Processors
VERA Vox may engage third-party processors for:

Hosting and cloud services
Analytics and performance tracking
Communication and marketing tools

19.2 Contractual Controls
All processors are bound by legally enforceable agreements requiring:

Confidentiality obligations
Data protection compliance
Security safeguards
Processing only on documented instructions

19.3 Due Diligence
VERA Vox conducts reasonable due diligence to ensure that processors:

Maintain adequate security standards
Comply with applicable laws
Do not process data beyond authorized scope

19.4 Liability Limitation
While reasonable safeguards are implemented, VERA Vox shall not be liable for acts or omissions of independent processors beyond its direct control, except as required by law.

20) GLOBAL DATA PROTECTION COMPLIANCE

VERA Vox Inc. (“VERA Vox”, “Company”, “we”, “us”, or “our”) adopts a structured, risk-calibrated, and jurisdictionally controlled approach to legal compliance, liability allocation, and regulatory exposure in connection with the operation of the Website and the processing of Personal Data.

This Section is intended to define, limit, and allocate legal risk, establish governing legal standards, and ensure that the interpretation and enforcement of this Privacy Policy remain anchored within the framework of Applicable Law, with particular emphasis on the primacy of Indian law.

This Section shall be construed so as to afford the maximum level of legal protection permissible to VERA Vox under Applicable Law.

20.1 Applicability of Global Data Protection Frameworks

This Section shall apply exclusively and strictly to the extent that any foreign or international data protection law is mandatorily applicable to VERA Vox by operation of law, having regard to factors such as jurisdiction, territorial nexus, residency of the User, or nature of interaction with the Website.

For the avoidance of doubt:

No reference in this Privacy Policy to any foreign law, regulation, or framework shall be construed as:
- A voluntary submission to such law;
- An assumption of obligations beyond those legally required; or
- An establishment of jurisdiction, regulatory nexus, or legal presence in any foreign territory.

Any reference to international frameworks, including but not limited to:

General Data Protection Regulation (GDPR);
California Consumer Privacy Act (CCPA) / California Privacy Rights Act (CPRA);

shall be interpreted strictly as indicative of alignment with global best practices, and shall not create enforceable rights or obligations unless such laws are expressly and mandatorily applicable.

20.2 Conditional Alignment with International Standards

To the extent required under Applicable Law, and subject always to the primacy of Indian law, VERA Vox may implement data protection practices aligned with internationally recognized principles, including:

Lawfulness, fairness, and transparency;
Purpose limitation and data minimization;
Accuracy and storage limitation;
Integrity, confidentiality, and accountability.

Any rights that may arise under such international frameworks—including but not limited to rights relating to data portability, restriction of processing, or objection—shall be recognized and made available solely where such rights are legally enforceable against VERA Vox under Applicable Law.

Nothing contained herein shall be construed as granting Users rights that are not otherwise mandated under applicable statutory provisions.

20.3 Governing Law and Legal Primacy

This Privacy Policy, and all matters arising out of or relating to the collection, processing, use, disclosure, or protection of Personal Data, shall be governed by and construed in accordance with the laws of India.

Without prejudice to the generality of the foregoing:

The Digital Personal Data Protection Act, 2023 and the Information Technology Act, 2000, along with rules, regulations, and subordinate legislation thereunder, shall constitute the primary and controlling legal framework;
Any foreign law shall apply only to the limited extent of its mandatory applicability, and shall not override, dilute, or supersede Indian law except where such override is legally unavoidable;
In the event of any conflict, inconsistency, or interpretational ambiguity, the provisions shall be construed in a manner that preserves, prioritizes, and gives maximum effect to Indian law.

Nothing in this Privacy Policy shall be interpreted as extending rights, remedies, or obligations beyond those required under Indian law, except where such extension is strictly mandated.

20.4 Jurisdiction and Dispute Resolution

Subject to Applicable Law, all disputes, claims, controversies, or proceedings arising out of or in connection with this Privacy Policy, including its interpretation, validity, enforcement, or termination, shall be subject to the exclusive jurisdiction of the competent courts located in Raipur, Chhattisgarh, India.

Users expressly and irrevocably agree that:

Such courts shall have sole and exclusive jurisdiction over all disputes;
No other court, tribunal, or authority shall have jurisdiction, except where required under non-derogable provisions of Applicable Law;
Any attempt to initiate proceedings in a foreign jurisdiction may be contested, challenged, or resisted by VERA Vox to the fullest extent permissible.

20.5 Limitation of Liability

To the fullest extent permitted under Applicable Law, VERA Vox, its affiliates, directors, officers, employees, agents, and representatives shall not be liable for any:

Indirect, incidental, consequential, exemplary, special, or punitive damages;
Loss of profits, revenue, business opportunity, goodwill, or reputation;
Loss, corruption, or unauthorized access to data;
Service interruptions, system failures, or technical malfunctions;
Acts, omissions, or failures of third-party service providers, infrastructure providers, or external systems.

Without limiting the foregoing:

VERA Vox shall not be liable for any damages arising from events beyond its reasonable control, including but not limited to cyberattacks, unauthorized intrusions, force majeure events, or systemic internet failures.

The total aggregate liability of VERA Vox, whether arising in contract, tort (including negligence), strict liability, or otherwise, shall in no event exceed the amount actually paid by the User, if any, for accessing the Website.

Where the Website is provided free of charge, Users expressly acknowledge and agree that no monetary liability shall attach to VERA Vox, to the extent permitted under Applicable Law.

20.6 Indemnity

Users agree to fully indemnify, defend, and hold harmless VERA Vox and its affiliates, directors, officers, employees, agents, successors, and assigns from and against any and all:

Claims, demands, actions, or proceedings;
Liabilities, damages, losses, penalties, or fines;
Costs and expenses (including reasonable legal fees);

arising out of or in connection with:

Breach of this Privacy Policy or any Applicable Law;
Violation of rights of any third party;
Unauthorized or unlawful disclosure of Personal Data;
Submission of inaccurate, misleading, or infringing information;
Misuse of the Website or its services.

This indemnity obligation shall survive termination of use of the Website and shall remain enforceable to the fullest extent permitted by law.

20.7 Regulatory Limitation and Non-Submission

VERA Vox does not, by virtue of operating the Website, establish any physical presence, legal establishment, or regulatory nexus in any jurisdiction outside India.