1. Introduction

Welcome to GreenLiving.in (“GreenLiving”, “we”, “our” or “us”). Protecting your privacy is fundamental to our commitment to deliver sustainable, technology‑enabled interior solutions. This Privacy Policy (“Policy”) explains how we collect, use, disclose and safeguard your personal information when you visit our website (the “Site”), use our associated mobile applications, interact with our social‑media pages, or engage us for Interior/corporate office fit‑out and related design services (collectively, the “Services”).

By accessing or using any part of our Services, you agree to the terms of this Policy. If you do not agree, please do not access or use our Services.

2. Scope

This Policy applies to personal information processed by GreenLiving in the context of:

Visitors and users of the Site and apps.

Prospective, current and former clients, suppliers and business partners.

Individuals who communicate with us, attend our events or receive marketing materials.

This Policy does not apply to information processed by third‑party websites or services that are not operated or controlled by GreenLiving.

3. Key Definitions

Personal Information / Personal Data – information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular individual.

Processing – any operation performed on personal data, including collection, recording, organisation, structuring, storage, alteration, retrieval, use, disclosure, transmission, deletion or destruction.

Controller – the entity that determines the purposes and means of processing personal data. GreenLiving is the Controller for processing covered by this Policy.

4. Information We Collect

The personal information we collect depends on how you interact with us.

5. How We Collect Information

Directly from you – when you fill out web forms, request quotations, sign contracts, subscribe to mailings, upload drawings, attend webinars, or communicate with us.

Automatically – via cookies, server logs and similar technologies when you browse the Site.

From third parties – such as referral partners, publicly available sources, social networks (when you interact with our pages), credit‑reference agencies and analytics providers.

6. Purpose and Legal Basis of Processing

If we rely on consent as the legal basis, you may withdraw it at any time without affecting the lawfulness of processing based on consent before withdrawal.

7. Cookies and Similar Technologies

We use first‑party and third‑party cookies, web beacons and similar technologies to:

keep you signed in;

remember your preferences;

analyse traffic and performance;

serve tailored advertisements via platforms such as Google Ads and LinkedIn.

You can control cookies through your browser settings and by using our Cookie Preference Centre (banner displayed on first visit). For detailed information, see our [Cookie Notice].

8. Disclosures of Your Information

We share personal information only when necessary and in accordance with this Policy:

Service Providers – IT hosting, payment gateways, logistics, marketing, analytics and professional advisers, bound by confidentiality obligations.

Business Transfers – in connection with a merger, acquisition or sale of all or part of our assets.

Legal & Compliance – to competent authorities, regulators or courts where required to comply with law, enforce agreements or protect rights, property or safety.

With Your Consent – where you direct us to share information with third parties.

We never sell your personal information for monetary consideration.

9. International Data Transfers

GreenLiving is headquartered in India but operates in Hyderabad jurisdiction. When we transfer personal information outside your country (including transfers outside the European Economic Area), we ensure appropriate safeguards such as:

European Commission Standard Contractual Clauses (SCCs);

UK International Data Transfer Addendum (IDTA);

Adequacy decisions; or

Other lawful transfer mechanisms under applicable laws.

10. Data Security

We implement technical and organisational measures in line with industry best practices (ISO 27001‑aligned) to protect personal information against unauthorised access, alteration, disclosure or destruction. Measures include encryption at rest and in transit, role‑based access controls, secure development life‑cycle (SDLC), regular penetration testing and staff privacy training.

11. Data Retention

We retain personal information only for as long as necessary to fulfil the purposes described in this Policy, comply with legal obligations (e.g., tax and accounting retention), resolve disputes and enforce agreements. Criteria used to determine retention periods include the nature of the data, contractual requirements, statutory limitation periods and our legitimate business needs.

12. Your Rights

Depending on your location, you may have the following rights:

Access – obtain confirmation whether we process your data and receive a copy.

Rectification – correct inaccurate or incomplete data.

Erasure (“right to be forgotten”) – request deletion, subject to legal exceptions.

Restriction – limit processing under certain conditions.

Data Portability – receive data in a structured, machine‑readable format.

Object – object to processing based on legitimate interests or direct marketing.

Withdraw Consent – at any time where processing is based on consent.

Lodge Complaint – with a supervisory authority (e.g., the European Data Protection Authority or the Indian Data Protection Board).

To exercise your rights, please contact us using the details in Section 15.

13. Children’s Privacy

Our Services are not directed to children under 16. We do not knowingly collect personal information from children. If you believe we have inadvertently collected such data, please contact us so we can delete it promptly.

14. Third‑Party Sites & Social Media

The Site may contain links to third‑party websites or social‑media features (e.g., LinkedIn widgets). This Policy does not apply to, and we are not responsible for, the privacy practices of such third parties. We encourage you to review their privacy statements.

15. Contact Us / Grievance Redressal

For questions, requests or complaints regarding this Policy or our privacy practices, please contact:

Data Protection Officer (DPO) / Grievance Officer Mr. Viswa Prathap

GL Decor and Furnishings Private Limited

Company Identification Number: U36999TG2023PTC170462

Address:

Prestige High Fields, Tower 1, 1302, ISB Road,

Financial District, Hyderabad,

Rangareddi, Telangana, India,

500032 Email: hello@greenliving.in Phone: +91 89777 40876

Under the Indian DPDP Act 2023, you may submit a grievance to the above officer, who will respond within 7 working days.

16. Changes to This Policy

We may update this Policy periodically to reflect legal, technical or business developments. When we do, we will revise the “Last updated” date at the top and, where required by law, provide additional notice (e.g., via email or prominent notice on the Site). We encourage you to review this Policy each time you visit the Site.

17. Effective Date

This Policy is effective from 23 July 2025 and supersedes all previous versions.