DPDP Act Compliance
Effective date: 16 July 2026 · Last updated: 16 July 2026 · Version 2
Last updated: 14 July 2026 · Version 2
StayLocal is operated by Spacelinkers Infotech Private Limited (CIN: U72900UP2020PTC129695) — the Data Fiduciary under the Digital Personal Data Protection Act, 2023. This page is the practical map of your rights and our obligations; the full detail lives in the Privacy Policy.
Consent, the way the Act intends it
- Free, specific, informed, unconditional and unambiguous, with clear affirmative action (§6): account creation requires separately ticking Terms and Privacy Policy checkboxes — pre-ticked boxes are never used.
- Granular: marketing communications (email/SMS/WhatsApp/push) and each non-essential cookie category carry their own opt-in.
- Provable: every consent event is recorded append-only with the exact policy version shown, timestamp, IP address and device — inspectable by our staff for dispute resolution and producible as evidence.
- As easy to withdraw as to give (§6(4)): one-click toggles at /privacy/manage and /privacy/cookies.
Your rights and the exact tool for each
| Right | Where | Timeline |
|---|---|---|
| Access / copy of your data (§11) | /privacy/manage → Download my data | Instant (JSON download) |
| Correction & completion (§12) | Profile self-edit at /account; correction request for anything else | ≤ 15 days |
| Erasure (§12) | /privacy/manage → Delete my account | Reviewed & executed, usually ≤ 2 working days |
| Withdraw consent (§6) | Marketing/cookies: instant toggles. Terms/Privacy: via account deletion | Instant / as above |
| Grievance redressal (§13) | Grievance Redressal Policy → Grievance Officer | Ack 24h · resolve ≤ 15 days |
| Nomination (§14) | Written request to the Grievance Officer | ≤ 15 days |
What deletion actually does: identifying fields (name, email, phone, photos) are scrubbed and sign-in is disabled immediately on execution; your listings are taken offline; records we must keep by law — invoices (7 years, Companies Act 2013 / Income-tax Act 1961) and security audit trails — are retained in minimised, access-restricted form per the Data Retention Policy.
Your duties as a Data Principal (§15)
Do not impersonate others, suppress material information, or file false grievances; furnish only authentic information when exercising correction/erasure rights.
Data Fiduciary & Grievance Officer
Spacelinkers Infotech Private Limited, 3rd Floor, A-83, Sector 63, Block A, Noida, Uttar Pradesh, 201301, India. Grievance Officer — Designation: Data Protection & HR Compliance Officer · Email: info@spacelinkers.com.
If unsatisfied with our resolution, you may complain to the Data Protection Board of India under §13(3).
Breach notification
Personal-data breaches are notified to the Data Protection Board of India and to affected Data Principals as required by §8(6), without unreasonable delay.
Version 2 · Effective 16 July 2026 · Questions about this policy? See the Grievance Redressal Policy or contact us.