White Logo

Privacy Policy

At Chasing Illusions Studio, we are deeply committed to protecting your privacy and ensuring the security of your personal information. As a leading provider of 3D rendering, animation, and visualization services based in India and serving clients globally—including the UK, USA, and UAE—we understand the importance of trust in every partnership. This Privacy Policy explains how we collect, use, disclose, and safeguard your data when you visit our website (www.chasingillusions.com), engage with our services, or communicate with us.

This policy complies with the Information Technology Act, 2000 (India), the Digital Personal Data Protection Act, 2023 (DPDP Act), the General Data Protection Regulation (GDPR) for EU/UK data subjects, and other applicable international privacy standards. By using our services, you consent to the practices described below.

1. Information We Collect

We collect information in three primary ways:

a) Information You Provide Directly

When you request a quote, book a consultation, upload project files, or contact us, we may collect:

  • Personal Identifiers: Name, job title, company name, email address, phone number, postal address

  • Project Data: CAD files, sketches, reference images, technical specifications

  • Payment Information: Billing details (processed via secure third-party gateways; we do not store full card data)

  • Communication Records: Emails, chat logs, call recordings (with consent)

b) Information Collected Automatically

When you visit our website, we use cookies and analytics tools to collect:

  • Device & Browser Data: IP address, browser type, operating system, device identifiers

  • Usage Data: Pages visited, time spent, click patterns, referral source

  • Location Data: Approximate location derived from IP (country/city level only)

c) Information from Third Parties

We may receive data from:

  • Business Partners: Referrals from architecture firms, marketing agencies

  • Public Sources: Company websites, LinkedIn profiles (for B2B outreach)

2. How We Use Your Information

We use your data solely to deliver exceptional service and improve your experience:

Purpose

Legal Basis (GDPR/DPDP)

Provide 3D rendering & animation services

Contract fulfillment

Respond to inquiries and send quotes

Legitimate interest

Process payments and issue invoices

Contract fulfillment

Send project updates and deliverables

Contract fulfillment

Improve website functionality and user experience

Legitimate interest

Conduct internal analytics and reporting

Legitimate interest

Send marketing communications (newsletters, case studies)

Consent (opt-in required)

Comply with legal obligations (tax, audit, anti-fraud)

Legal obligation

We never sell your data.
We never use your project files for marketing without explicit permission.

3. Data Sharing and Disclosure

We share your information only when necessary and under strict confidentiality:

a) Service Providers (Processors)

Provider

Purpose

Location

Safeguards

Google Workspace

Email, file storage

Global (EU/US)

GDPR-compliant DPA

AWS / Microsoft Azure

Cloud rendering & backup

India, EU, US

ISO 27001, SOC 2

Stripe / Razorpay

Payment processing

US / India

PCI DSS Level 1

Zoho CRM

Client management

India

DPDP-compliant

b) Legal and Compliance

We may disclose data if required by law, such as:

  • Responding to court orders or government requests

  • Enforcing our Terms of Service

  • Protecting rights, property, or safety

c) Business Transfers

In the event of a merger, acquisition, or sale of assets, your data may be transferred with notice and consent where required.

4. Data Security

Your trust is our foundation. We implement enterprise-grade security:

  • Encryption:

    • TLS 1.3 for data in transit

    • AES-256 encryption for data at rest

  • Access Control:

    • Role-based access (need-to-know only)

    • Two-factor authentication (2FA) for all staff

  • Infrastructure:

    • ISO 27001-certified data centers

    • Regular penetration testing

    • Automated backups with 30-day retention

  • Employee Training:

    • Annual data protection and phishing awareness

    • Signed NDAs for all team members

  • Incident Response:

    • 24/7 monitoring

    • Breach notification within 72 hours (GDPR) / 6 hours (DPDP)

5. Data Retention

We keep your data only as long as necessary:

Data Type

Retention Period

Project files (CAD, renders)

7 years (or until client requests deletion)

Contracts & invoices

7 years (Indian tax law)

Marketing subscribers

Until unsubscribe

Website logs

90 days

Deleted accounts

30 days (anonymized after)

You may request deletion at any time (see Section 8).

6. Your Rights Under Global Privacy Laws

You have full control over your data:

Right

How to Exercise

Access – Get a copy of your data

Email request

Rectification – Correct inaccurate data

Contact support

Erasure – Delete your data (“Right to be Forgotten”)

Submit deletion form

Restriction – Limit processing

Written request

Portability – Receive data in machine-readable format

Email request

Objection – Stop marketing or profiling

Unsubscribe link

Withdraw Consent – Revoke permission

One-click in emails

For EU/UK Residents (GDPR): Contact our EU Representative at [email protected]
For Indian Residents (DPDP): File a grievance via [email protected]

We respond within 30 days (GDPR) or 7 days (DPDP).

7. Cookies and Tracking

We use cookies to enhance your experience:

Type

Purpose

Duration

Essential

Login, form submission

Session

Analytics (Google Analytics)

Traffic insights

14 months

Marketing (Meta Pixel)

Retargeting (with consent)

180 days

You can manage preferences via our Cookie Consent Banner or browser settings.

8. Children’s Privacy

Our services are not directed to individuals under 18. We do not knowingly collect data from children. If discovered, we delete it immediately.

9. International Data Transfers

As an Indian company serving global clients, we transfer data across borders. We ensure protection via:

  • Standard Contractual Clauses (SCCs)

  • Binding Corporate Rules (BCRs) for intra-group transfers

  • Adequacy decisions (e.g., India–EU framework under negotiation)

10. Third-Party Links

Our website may link to external sites (e.g., Clutch, LinkedIn). We are not responsible for their privacy practices. Review their policies separately.

11. Changes to This Policy

We may update this policy to reflect legal or service changes. Significant updates will be:

  • Highlighted on homepage

  • Emailed to active clients

  • Posted with revised “Last Updated” date

Continued use after changes constitutes acceptance.

12. Contact Us

Data Protection Officer (DPO):
Attn: Privacy Team
Chasing Illusions Studio
Mumbai, Maharashtra, India

Email: [email protected]
Phone: +919910911696
WhatsApp: wa.me/919910911696
Address:
Chasing Illusions Studio
Andheri East, Mumbai – 400059
Maharashtra, India

Grievance Officer (India – DPDP Act):
Name: Mr. Rohan Sharma
Email: [email protected]

EU Representative (GDPR Art. 27):
Name: DataRep
Email: [email protected]
Website: www.datarep.com

We Value Your Trust

Your project is your vision—and your data is your asset. At Chasing Illusions Studio, we treat both with the highest care, transparency, and respect.

Thank you for trusting us to bring your ideas to life—securely.