Effective Date: 11/11/2025
Last Updated: 11/11/2025

Goodwill eServices (“Company”, “we”, “our”, “us”) values your privacy and is committed to protecting your personal information. This Privacy Policy describes how we collect, use, store, and safeguard your data when you visit our website maharashtrashopact.in, contact us, or use our services.

By accessing or using our Website, you consent to the collection, processing, and use of your information in accordance with this Privacy Policy and our Terms and ConditionsRefund & Cancellation PolicyDelivery Policy, and Disclaimer.

  1. INTRODUCTION

1.1 This Privacy Policy outlines our practices regarding the collection, storage, use, and disclosure of personal data under applicable Indian laws, including:

  • The Digital Personal Data Protection Act, 2023 (DPDP Act);
  • The Information Technology Act, 2000 and the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011;
  • The Aadhaar (Authentication) Regulations, 2021; and
  • Other applicable laws relating to privacy and data protection in India.

1.2 By using our Website or providing your data to us, you agree to the terms of this Policy. If you do not agree, please refrain from using our Website or Services.

  1. SCOPE AND APPLICABILITY

2.1 This Policy applies to all Users, including clients, customers, and visitors, who access or use our Website or avail of our consultancy and document facilitation services.

2.2 It covers data collected through:

  • Our Website forms and portals;
  • Electronic communications (emails, chats, etc.);
  • Third-party integrations (payment gateways, e-sign providers, biometric agencies);
  • Doorstep verification services; and
  • Customer support interactions.
  1. INFORMATION WE COLLECT

We collect the following categories of information from you, either directly or indirectly:

3.1 Personal Information

Includes identifiable data such as:

  • Full name;
  • Email address;
  • Phone number;
  • Residential or correspondence address;
  • Aadhaar number (where applicable);
  • Identity or property details required for document processing.

3.2 Sensitive Personal Data

Includes information related to:

  • Aadhaar-based verification;
  • Biometric authentication (via authorized third-party agencies only);
  • Financial or payment information;
  • Digital signatures or identity tokens.

We do not store Aadhaar  numbers or biometric data on our servers. These are processed securely via UIDAI or CCA-licensed providers only.

3.3 Technical & Usage Data

  • IP address, browser type, operating system, device information;
  • Cookies and web analytics data;
  • Timestamp and interaction logs on our Website.

3.4 Communication Data

  • Emails, chats, feedback, and support requests exchanged between you and our team.
  1. PURPOSE OF DATA COLLECTION

Your data is collected and processed strictly for lawful and necessary purposes, including:

  1. Providing consultancy services related to rent agreements, document drafting, and submission;
  2. Facilitating e-sign, e-stamp, and biometric verification through licensed partners;
  3. Contacting you for service updates, clarifications, or document validation;
  4. Processing payments and issuing invoices;
  5. Maintaining records and compliance under applicable laws;
  6. Enhancing user experience and improving service quality; and
  7. Fulfilling legal or regulatory obligations.
  8. CONSENT
  9. shop & establishment registration assistance
  10. udyam registration assistance

5.1 By submitting your personal data, you provide explicit, informed, and voluntary consent for its lawful processing.

5.2 You may withdraw consent at any time by contacting us in writing. However, withdrawal of consent may result in discontinuation or limited functionality of our services.

5.3 In the case of Aadhaar-based authentication, consent is obtained separately and explicitly as per UIDAI guidelines.

  1. DATA STORAGE AND SECURITY

6.1 All personal information is stored on secure servers within India, in compliance with Section 4(2) of the DPDP Act.

6.2 We employ reasonable security practices, including but not limited to:

  • End-to-end encryption (HTTPS, SSL/TLS);
  • Limited employee access under confidentiality agreements;
  • Regular security audits and vulnerability assessments;
  • Firewalls, intrusion detection, and data minimization controls.

6.3 We do not sell, rent, trade, or otherwise disclose your personal data for profit.

6.4 Aadhaar and Biometric Data:
Any Aadhaar number or biometric verification is conducted only through authorized agencies. We do not retain, store, or copy such data post-verification.

  1. DATA RETENTION

7.1 We retain personal data only for as long as necessary to fulfil the purpose for which it was collected or as required by applicable law.

7.2 After completion of the retention period, data is securely deleted, anonymized, or archived in accordance with our internal retention policy.

  1. DATA SHARING AND DISCLOSURE

Your data may be shared only under the following lawful circumstances:

8.1 With Authorized Third Parties

We may share data with trusted third-party partners for:

  • Payment gateway processing;
  • E-stamp and e-sign integration;
  • Biometric verification;
  • Cloud storage and IT support.

All such third parties are contractually bound under Data Processing Agreements (DPAs) to:

  • Use the data only for authorized purposes;
  • Maintain strict confidentiality; and
  • Comply with applicable data protection laws.

8.2 Legal and Regulatory Requirements

We may disclose information to law enforcement or government authorities when required by law, regulation, court order, or to protect the Company’s rights or safety.

8.3 Business Transfers

In the event of a merger, acquisition, or restructuring, your information may be transferred subject to continued data protection obligations.

  1. USER RIGHTS UNDER THE DPDP ACT, 2023

Under the Digital Personal Data Protection Act, 2023, you have the following rights:

  1. Right to Access — to obtain a copy of your personal data held by us.
  2. Right to Correction — to correct or update inaccurate or incomplete information.
  3. Right to Erasure — to request deletion of your data when it is no longer necessary.
  4. Right to Withdraw Consent — to withdraw consent for further processing.
  5. Right to Grievance Redressal — to raise complaints related to misuse or unauthorized processing.
  6. Right to Nominate — to nominate another individual in case of incapacity or death, as prescribed under law.

Requests to exercise these rights can be made in writing to our Data Protection & Grievance Officer (see Section 13 below).

  1. COOKIES AND TRACKING TECHNOLOGIES

10.1 Our Website uses cookies and similar technologies to enhance user experience and track website usage analytics.

10.2 You can modify your browser settings to reject cookies, though certain website features may not function properly as a result.

10.3 We use cookies solely for operational and analytical purposes and do not track personal behavior across unrelated websites.

  1. MARKETING COMMUNICATIONS

11.1 With your consent, we may send promotional messages, offers, or updates about our services.

11.2 You may opt out of marketing communications at any time by clicking the “unsubscribe” link in our emails or contacting our support team.

11.3 Our promotions on Google Ads or other platforms are limited to private consultancy services. Any mention of government-related keywords or services is incidental and intended solely to identify client needs.
We do not represent or act on behalf of any government body, and all fees collected are for consultancy services rendered by Digiserve Business Services.

  1. CROSS-BORDER DATA TRANSFER

We primarily store and process data within India. However, in limited cases where service providers are located outside India, we ensure adequate contractual safeguards in compliance with the DPDP Act and applicable international data transfer standards.

  1. DATA PROTECTION AND GRIEVANCE OFFICER

For any concerns, grievances, or requests regarding your data, please contact our designated officer:

Data Protection & Grievance Officer
Goodwill eServices
Pune, Maharashtra, India
Email: support@maharashtrashopact.in

We will acknowledge all grievances within 7 business days and resolve them within 30 business days.

  1. DATA BREACH NOTIFICATION

In the event of a personal data breach, we will:

  • Immediately take corrective measures to contain and assess the breach;
  • Notify affected individuals, where required; and
  • Report the breach to the Data Protection Board of India or CERT-In within the prescribed timelines.
  1. CHILDREN’S PRIVACY

Our Website and Services are not intended for minors below the age of 18 years.
We do not knowingly collect personal data from children. If you believe a minor has provided information, please notify us for immediate deletion.

  1. THIRD-PARTY LINKS

Our Website may contain links to external websites or third-party portals.
We are not responsible for the content, data practices, or privacy policies of such third parties.
Users are encouraged to review the privacy policies of any external sites they visit.

  1. POLICY UPDATES

We reserve the right to amend this Privacy Policy at any time.
Revisions will be posted on our Website with an updated “Last Updated” date.
Continued use of our Website after updates constitutes your acceptance of the revised Policy.

  1. GOVERNING LAW AND JURISDICTION

This Policy shall be governed by and construed in accordance with the laws of India.
Any disputes shall be subject to the exclusive jurisdiction of the competent courts in Pune, Maharashtra.

  1. CONTACT INFORMATION

For questions or concerns regarding this Privacy Policy, please contact:

Goodwill eServices
Pune, Maharashtra, India
Email: support@maharashtrashopact.in
Website: maharashtrashopact.in

LEGAL NOTICE

Our Google Ads and promotional campaigns are directed exclusively toward private consultancy services.
Our references to government documents or services are incidental and intended to identify client needs.
We are not affiliated with, endorsed by, or associated with any government department or authority, and all fees paid are strictly for consultancy and facilitation services rendered by our Company.