​​Last updated: 11/12/2025

Guruvion (“we”, “us”, “our”) is a niche advisory for Indian founders on governance, due diligence readiness and capital structuring. This Privacy Policy explains how we collect, use and protect personal data in line with the Digital Personal Data Protection Act, 2023 (“DPDP Act”).

By using this website or sharing your data with us (for example, via contact forms or email), you agree to the practices described here.

1. What personal data we collect

We may collect and process the following categories of personal data:

• Basic contact details – name, email address, phone number, company name, role/designation.

• Communication data – messages you send via our contact form, email, or other channels, including meeting notes.

• Engagement data – information you provide when you discuss or enter into an engagement with us (e.g., corporate documents, financials, cap tables).

• Website usage data – limited technical data such as pages visited and time spent, via standard analytics tools (no invasive tracking).

• Consent and preference data – records of your consents, preferences and communication choices.

We do not knowingly collect data from children or target our services at minors.

2. How we use your personal data

We use your personal data to:

• Respond to your enquiries and schedule discovery calls.

• Evaluate whether we are a good fit for an engagement.

• Deliver agreed services (e.g., Red Flag Scans, Sprints, advisory retainers).

• Maintain basic records for billing, accounting and compliance.

• Improve our services, content and website.

• Send occasional updates about our work or new resources, where you have consented or it is otherwise lawful to do so.

We do not sell your personal data.

3. Legal basis and consent

Under the DPDP Act, we act as a Data Fiduciary for personal data you share with us.

We rely on the following bases:

• Consent – for data you voluntarily provide through forms or emails, and for any optional communications (e.g., newsletters, updates).

• Performance of a contract – where we use data to deliver an agreed engagement.

• Compliance with law – where we must retain certain records for tax or regulatory reasons.

• Legitimate purposes – limited use of data to prevent fraud, protect our legal rights, and improve our services in a proportionate manner.

Where consent is the basis, you can withdraw it at any time using the contact details below. Withdrawal will not affect processing already carried out.

4. Sharing your data

We may share your data with:

• Professional and technical service providers – such as accountants, IT providers or secure cloud storage / email services, strictly on a need-to-know basis.

• Legal or tax advisors – where you explicitly instruct us to coordinate with them.

• Regulators or authorities – only where required by applicable law.

All such recipients are expected to handle data securely and only for the specified purpose. We do not share your data with advertisers or unrelated third parties.

5. Data security and retention

We take reasonable technical and organisational measures to protect personal data against unauthorised access, loss or misuse, including:

• Use of reputable, password-protected cloud and email providers

• Limited access to engagement documents on a need-to-know basis

• Periodic clean-up of stale data that is no longer required

We retain personal data only for as long as:

• It is necessary to respond to your enquiry or deliver the engagement; and/or

• We are required to do so by law (e.g., basic accounting records).

Thereafter, we securely delete or anonymise the data.

6. Your rights under DPDP

Subject to the DPDP Act, you have the right to:

• Request confirmation of whether we process your personal data.

• Request access to and correction of your personal data.

• Withdraw consent where processing is based on consent.

• Raise grievances about misuse or unauthorised processing of your data.

We may need to verify your identity before acting on certain requests, to protect your data.

7. Grievance officer / contact for privacy

If you have any questions or would like to exercise your rights, please contact:

Grievance Officer – Data Protection
Guruvion Advisory
Email: team@guruvion.com
Location: Gurgaon, Haryana, India

We aim to respond to privacy-related queries and grievances within a reasonable timeframe in line with DPDP requirements.

8. Links to other documents

This Privacy Policy should be read together with:

• Our Terms & Conditions – https://www.guruvion.com/terms-conditions

• Our Disclaimer – https://www.guruvion.com/disclaimer

• Our Mutual NDA – https://www.guruvion.com/nda where applicable to a specific engagement

These documents cover engagement terms, limitations of liability and confidentiality in more detail.

9. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. The “Last updated” date at the top indicates the latest version. Material changes will be highlighted on this page.