Wordsmith Creations

Legal & Compliance

Privacy Policy

Privacy Policy Wordsmith Creations Effective Date: 18 April 2026

Last Revised: 18 April 2026

Version: 2.0

Your privacy is not a feature. It is a foundation. Wordsmith Creations is committed to the responsible, lawful, and transparent stewardship of every data point entrusted to us. In a world of digital noise, we treat your data with the silence and security of a vault.

  1. About This Policy 1.1 Scope of Operation Wordsmith Creations ("The Agency," "we," "us," or "our") is a premium digital architecture firm operating under the laws of India. Our principal office is located in Noida, Uttar Pradesh (Delhi NCR), India. We provide specialized services including enterprise web design, AI-driven SEO, and digital authority branding to a global clientele across the US, UK, UAE, Australia, Canada, and Singapore.

1.2 Legal Frameworks This Policy is engineered to provide a unified compliance standard that satisfies the most stringent requirements of:

The Digital Personal Data Protection (DPDP) Act, 2023 (India)

The General Data Protection Regulation (EU/UK GDPR)

The California Consumer Privacy Act / CPRA (USA)

The Personal Data Protection Act (Singapore)

Where regional standards diverge, Wordsmith Creations applies the higher standard of protection to all users globally.

  1. Data Sovereignty & The DPDP Act 2023 (India) 2.1 Data Fiduciary Role Under the DPDP Act 2023, Wordsmith Creations acts as a Data Fiduciary. We acknowledge our duty to:

Process personal data only for lawful purposes for which you have provided consent.

Implement "Privacy by Design" to prevent data breaches at the architectural level.

Erase data once the specific purpose of collection has been fulfilled or consent is withdrawn.

2.2 Cross-Border Data Flows To deliver our "Midnight Opulence" infrastructure, we utilize global processors. All data transfers from India to international territories (such as Hostinger’s global server nodes) are conducted under strict Data Processing Agreements (DPAs) that ensure a "standard of protection" at least equivalent to that provided under Indian law.

  1. The Data Architecture: What We Collect We categorize the data we process into three distinct layers:

3.1 Directly Provided Data Identity Assets: Legal name, professional designation, and corporate entity name.

Communication Access: Corporate email addresses, phone numbers, and messaging identifiers.

Project Intelligence: Briefs, scope-of-work documents, and technical requirements provided via the "Get Quote" portal.

3.2 Automatically Collected Data (Technical Metadata) Infrastructure Logs: IP addresses, browser fingerprints, and operating system data.

Behavioral Analytics: Click-stream data, navigation paths, and time-on-page metrics, used solely to optimize the site's performance.

3.3 Sensitive Personal Data The Agency does not intentionally collect sensitive data (biometrics, health, or religious beliefs). If such data is provided voluntarily within a project brief, it is treated with the highest tier of encryption and security.

  1. Third-Party Ecosystem & Liability 4.1 Hostinger (Infrastructure Bridge) Our deployment is hosted on Hostinger’s global Node.js environment. While we maintain rigorous system-level security, Wordsmith Creations is not liable for data incidents originating from Hostinger’s own physical hardware or global network layer.

4.2 OpenAI (AI Processing) For clients utilizing our AI-SEO tools, data may be processed via the OpenAI API. We use prompt-level "Surgical Filtering" to prevent the transmission of PII (Personally Identifiable Information) to AI models.

  1. Exhaustive Rights of the Data Principal Regardless of your location, Wordsmith Creations recognizes your right to:

Access: Request a "Vault Summary" of all data we hold on you.

Correction: Rectify any inaccurate professional data.

Erasure: Exercise the "Right to be Forgotten" where data is no longer necessary.

Grievance: Raise concerns directly with our Legal Office.

  1. Security Posture Our "Midnight Opulence" aesthetic is backed by a Zero-Trust approach:

TLS 1.3 Encryption: All data in transit is shielded.

Prisma Singleton Security: Our database layer is architected to prevent connection leaks.

Physical Nexus: All internal data access is restricted to our Noida-based principal architects.

  1. Contact & Grievance Redressal All privacy-related inquiries, data access requests, or legal grievances must be directed to our dedicated legal portal:

Wordsmith Creations Attn: Legal & Compliance Department Noida, Uttar Pradesh, India – 201301 Email: legal@wordsmithcreations.com

We commit to acknowledging all legal inquiries within 48 business hours.

This document is the exclusive property of Wordsmith Creations and is published to satisfy the transparency requirements of the DPDP Act 2023, GDPR, and CCPA.