Privacy Policy
Last updated: July 3, 2026
Independent Writer” (“we”, “us”, or “our”) is an online publishing platform operating under the laws of India, providing writers, journalists, and content creators a platform to publish articles, journals, and creative works. We are committed to protecting the privacy and personal information of all users in compliance with Indian law and applicable international regulations.
This Privacy Policy applies to all users of the Independent Writer platform accessible at https://www.independentwriter.in and any related mobile applications, APIs, or services (collectively, the “Platform”). By using the Platform, you consent to the practices described herein.
For any queries, contact us at: info@independentwriter.in
1. Legal Framework & Governing Laws
This Privacy Policy is governed by and compliant with the following laws and regulations:
1.1 Indian Laws
- Information Technology Act, 2000 (IT Act) and the Information Technology (Amendment) Act, 2008
- Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 (SPDI Rules)
- Digital Personal Data Protection Act, 2023 (DPDP Act) — India’s primary personal data protection legislation
- Indian Copyright Act, 1957 (as amended) — governing content published on the Platform
- Press and Registration of Periodicals Act, 2023 — applicable to digital publishing
- Consumer Protection Act, 2019 and Consumer Protection (E-Commerce) Rules, 2020
- Indian Contract Act, 1872 — governing agreements between Independent Writer and its users
1.2 International Frameworks (for International Users)
- General Data Protection Regulation (GDPR) — European Union users
- UK General Data Protection Regulation (UK GDPR) — United Kingdom users
- California Consumer Privacy Act (CCPA) / California Privacy Rights Act (CPRA) — California, USA users
- Personal Information Protection and Electronic Documents Act (PIPEDA) — Canadian users
- Asia-Pacific Economic Cooperation (APEC) Privacy Framework — applicable member economies
2. Information We Collect
2.1 Information You Provide
When you register, create a profile, or interact with our Platform, we collect:
- Identity Information: Full name, pen name or pseudonym, date of birth, gender
- Contact Information: Email address, mobile number, postal address, city, state, country
- Professional Information: Qualifications, writing credentials, publishing history, areas of expertise
- Account Information: Username, password (encrypted), profile photograph, author biography
- Content Data: Articles, journals, essays, manuscripts, and other written works you submit or publish
- Payment Information: Bank account details, UPI ID, payment instrument information — processed through secure gateways (Razorpay / PayU / Stripe)
- Communication Data: Messages sent via the Platform, support queries, feedback, and survey responses
- Verification Documents: PAN card, Aadhaar number (last 4 digits only), or other KYC documents where legally required
2.2 Automatically Collected Information
- Device Information: IP address, device type, operating system, browser type and version
- Usage Data: Pages visited, content viewed, time spent, click patterns, search queries
- Location Data: Approximate geographic location based on IP address (not precise GPS unless explicitly permitted)
- Log Data: Access logs, error logs, referring URLs, exit pages
- Cookie and Tracking Data: As detailed in Section 7 of this Policy
2.3 Information from Third Parties
- Social Media Platforms: If you log in via Google, Facebook, Twitter/X, or LinkedIn, we receive your public profile information as shared by those platforms
- Co-Authors and Collaborators: Information shared about you by other users of the Platform
- Public Sources: Publicly available professional information relevant to your authorship credentials
2.4 Sensitive Personal Data (under SPDI Rules and DPDP Act)
We may collect the following Sensitive Personal Data or Information (SPDI) only with your explicit consent
and only where necessary:
- Financial information such as bank account or payment details
- Any password-related information
- Physical, physiological, or mental health condition (only if voluntarily disclosed)
We do not collect biometric data, sexual orientation, or similar sensitive data unless mandated by law.
3. How We Use Your Information
We process your personal data for the following purposes, relying on the legal bases indicated:
3.1 Service Delivery (Contractual Necessity)
- Creating and managing your author/reader account
- Publishing, distributing, and managing your articles and journals on the Platform
- Processing payments, royalties, and subscription fees
- Enabling collaboration with co-authors, editors, and reviewers
- Providing customer support and resolving disputes
3.2 Platform Improvement (Legitimate Interest)
- Analysing Platform usage trends and improving features
- Conducting internal research and analytics
- Testing new features and performing bug fixes
- Preventing fraud, spam, and unauthorized access
3.3 Communications (Consent / Legitimate Interest)
- Sending account notifications, publishing confirmations, and payment receipts
- Marketing and promotional communications (only with your opt-in consent)
- Newsletters featuring editorial highlights and publishing opportunities
- SMS notifications related to your account and publications
3.4 Legal Compliance
- Complying with applicable Indian laws including the IT Act, DPDP Act, and Press Laws
- Responding to lawful requests from government authorities or courts
- Maintaining records as required under the Companies Act, 2013 and tax laws
4. Sharing of Your Information
We do not sell your personal data. We may share your data only in the following circumstances:
4.1 With Service Providers
We engage trusted third-party service providers under strict data processing agreements:
- Cloud Hosting and Storage Providers (e.g., AWS, Google Cloud, Microsoft Azure)
- Payment Gateway Providers (e.g., Razor pays, PayU, Stripe)
- Email and Communication Service Providers
- Analytics Providers (e.g., Google Analytics — data is anonymized where possible)
- Content Delivery Networks (CDNs)
4.2 With Other Users
Your author profile, published articles, and public biography are visible to other users of the Platform. Content you publish is available according to your chosen visibility settings.
4.3 Legal Requirements
We may disclose your information if required by a court order, government authority, or under applicable law, including under Section 69 and Section 79 of the IT Act.
4.4 Business Transfers
In the event of a merger, acquisition, or sale of all or a part of our business, your data may be transferred to the successor entity, subject to equivalent privacy protections.
4.5 With Your Consent
For any purpose not listed above, we will seek your explicit consent prior to sharing your personal data.
5. Data Retention
We retain your personal data for as long as your account is active or as needed to provide services, and thereafter for the following periods:
Data Category | Retention Period |
Account and Profile Data | 5 years after account deletion or last activity |
Published Content | Indefinitely unless removal is requested (subject to licensing agreements) |
Payment Records | 8 years (Income Tax Act, 1961 and GST laws) |
Log and Usage Data | 180 days, then anonymized or deleted |
Legal Hold | Until resolution of legal proceedings or government requests |
Upon expiry of retention periods, data will be securely deleted or anonymized in accordance with the DPDP Act.
6. Data Security
We implement appropriate technical and organizational security measures in accordance with the IT (Reasonable Security Practices) Rules, 2011 and the DPDP Act, including:
- Encryption of data in transit using SSL/TLS protocols
- Encryption of sensitive data at rest using AES-256 or equivalent
- Access controls and role-based permissions for internal staff
- Regular security audits and vulnerability assessments
- ISO/IEC 27001 aligned information security practices
- Two-factor authentication (2FA) for privileged access
- Incident response procedures with mandatory breach notification
In the event of a personal data breach, we will notify affected Data Principals and the Data Protection Board of India in accordance with timelines prescribed under the DPDP Act.
7. Cookies and Tracking Technologies
We use cookies and similar technologies to operate and improve the Platform:
MarketingServe relevant advertising (only with your consent)Yes
| Cookie Type | Purpose | Disable? |
| Essential | Required for login, session management, and core Platform functions | No |
| Performance | Collect anonymized usage data (e.g., Google Analytics) | Yes |
| Functional | Remember your preferences and settings | Yes |
You may manage cookie preferences through your browser settings or our Cookie Preference Centre available on the Platform. Disabling certain cookies may affect Platform functionality.
8. International Data Transfers
Your data is primarily processed and stored on servers located in India. Where we transfer data internationally, we ensure:
- Transfers to countries with adequate data protection as recognized by applicable Indian law
- Use of Standard Contractual Clauses (SCCs) or equivalent mechanisms for EU/UK transfers
- Data Processing Agreements with all international service providers
As an Indian platform, our primary compliance obligation is under the DPDP Act. International users are advised to review the supplemental notices applicable to their jurisdiction in Section 13.
9. Your Rights as a Data Principal
9.1 Rights Under the DPDP Act, 2023 (India)
- Right to Access: Obtain information about personal data processed and the means of processing
- Right to Correction and Erasure: Correct inaccurate data or erase data no longer necessary
- Right to Grievance Redressal: Lodge a grievance with our Data Protection Officer (DPO)
- Right to Nominate: Nominate another individual to exercise rights on your behalf in case of death or incapacity
- Right to Withdraw Consent: Withdraw consent at any time without affecting prior processing
9.2 Additional Rights for EU/UK Users (GDPR / UK GDPR)
- Right to Data Portability — receive your data in a structured, machine-readable format
- Right to Restriction of Processing
- Right to Object to Processing based on legitimate interests
- Right not to be subject to solely automated decision-making
9.3 Rights for California Users (CCPA / CPRA)
- Right to Know — know what personal information is collected, used, shared, or sold
- Right to Delete — request deletion of personal information (subject to exceptions)
- Right to Opt-Out of Sale of Personal Information (we do not sell personal information)
- Right to Non-Discrimination for exercising CCPA rights
- Right to Correct inaccurate personal information
To exercise any of these rights, please contact: info@independentwriter.in
10. Intellectual Property and Published Content
Independent Writer respects intellectual property rights. By publishing content on the Platform:
- You retain ownership of all original content you create and publish
- You grant Independent Writer a non-exclusive, royalty-free license to host, display, distribute, and promote your content on the Platform
- You represent that your content does not infringe the rights of any third party under the Indian Copyright Act, 1957
- We comply with takedown requests under the IT (Intermediary Guidelines and Digital Media Ethics Code) Rules, 2021
- Content that violates copyright, defamation laws, or any other applicable law will be removed upon receipt of a valid complaint
For copyright infringement notices, please write to info@independentwriter.in with the subject line ‘Copyright Complaint’.
11. Children’s Privacy
The Platform is intended for users who are 18 years of age or older. We do not knowingly collect personal data from individuals under 18 years of age. If you are a parent or guardian and believe your minor child has provided us with personal data, please contact us at info@independentwriter.in and we will promptly delete such information.
Users between 13 and 18 years of age may access certain features of the Platform only with verifiable parental or guardian consent, in compliance with the DPDP Act.
12. Grievance Redressal
In accordance with the Information Technology Act, 2000, the IT (Intermediary Guidelines) Rules, 2021, and the DPDP Act, 2023, we have appointed a Grievance Officer:
Grievance Officer: [Name of Grievance Officer] Designation: Grievance Officer / Data Protection Officer Organisation: Independent Writer
Email: info@independentwriter.in
Response Time: Acknowledgement within 24 hours; resolution within 30 days
If you are dissatisfied with our response, you may approach the Data Protection Board of India once constituted under the DPDP Act, or any other applicable regulatory authority in your jurisdiction.
13. Supplemental Notice for International Users
13.1 European Union and United Kingdom Users
The legal bases for processing your data under GDPR/UK GDPR are: (a) performance of a contract, (b) compliance with legal obligations, (c) your consent, and (d) our legitimate interests. You may lodge a complaint with your local supervisory authority.
13.2 Users in Other Jurisdictions
We are committed to complying with applicable privacy laws in all jurisdictions where we operate. For questions, contact us at info@independentwriter.in.
14. Updates to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in law, our practices, or Platform features. The revised policy will be posted on the Platform with an updated effective date. For material changes, we will provide prominent notice on the Platform and/or via email.
15. Contact Us
For any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us at:
Independent Writer
Email: info@independentwriter.in
Website: https://www.independentwriter.in
LinkedIn: https://www.linkedin.com/company/independentwriter/
Grievance Email: info@independentwriter.in
