Privacy Policy

Effective date: [21/09/2025]
Last updated: [21/09/2026]

1. Introduction

Beats in the Moment (“we”, “our”, “us”) respects your privacy and is committed to protecting the personal data you provide when you visit and use our website beatsinthemoment.com and our photography services. This Privacy Policy explains what information we collect, why we collect it, how we use it, with whom we share it, and the rights you have regarding your personal data. 

2. Scope & who this applies to

This Policy applies to visitors and clients (“you”, “your”) who:

  • visit our website;

  • contact us (email, phone, WhatsApp, contact form); or

  • book or pay for photography services (weddings, events, portrait sessions, etc.).

If you are a resident of the European Economic Area (EEA), United Kingdom, or India, additional legal rights may apply (see “Your rights” below). 

3. What personal data we collect

We collect the personal data you provide and technical/usage data automatically:

a. Data you provide directly

  • Contact details: name, email address, phone number.

  • Booking details: event date/time, location, package selected, special requests.

  • Payment details: when you pay via our site we receive payment confirmation and transaction metadata (e.g., transaction ID). We do not store full card numbers on our servers — payment card data is processed by our payment processor. (See “Payments & third parties” below.)

b. Automatically collected data

  • Cookies and analytics data (IP address, pages visited, device & browser info, referring URL).

  • Log data and error reporting.

c. Optional content

  • Photos or files you upload (for example, reference images or content required for the shoot).

4. Why we collect data & legal basis for processing

We process personal data for these purposes and legal bases:

  • To provide services and fulfill bookings — processing is necessary to perform a contract with you (bookings, scheduling, invoicing).

  • Payments & refunds — to process payments and handle refunds (necessary for contract performance). Payment card details are handled by our payment processor. 

  • Communication & support — to reply to queries, send appointment confirmations, invoices, and customer service messages (legitimate interest/contract).

  • Marketing (if you opt-in) — to send newsletters or promotional offers when you consent. You can unsubscribe at any time.

  • Legal & safety — to meet legal obligations, prevent fraud, or defend legal claims (legal compliance / legitimate interest).

If you are in the EEA/UK, we will rely on the legal bases above (consent, contract, legal obligation, legitimate interests) as applicable. 

5. Cookies & similar technologies

We use cookies and tracking technologies for site functionality, analytics, and (with consent) marketing. You can manage cookie preferences via our cookie banner or your browser settings. For analytics and advertising we use third-party services which may set their own cookies. 

6. Payments & third-party processors

We use third-party payment processors (for example, Razorpay, Stripe, PayPal) to accept online payments. When you pay on our site:

  • Your card details are collected directly by the payment processor using secure forms or redirects (we do not store card PANs or CVV).

  • We receive transaction confirmation and limited metadata needed to manage your booking (transaction ID, amount, currency).

  • The payment processors are separate controllers/processors and have their own privacy notices; please review them for details on how they handle payment data. 

Security & PCI: We take reasonable steps to protect payment-related information and rely on our payment processors’ PCI compliance measures. If you accept or store card data directly in any form, additional PCI DSS obligations may apply. 

7. With whom we share personal data

We may share personal data with:

  • Service providers who perform services for us (payment processors, hosting providers, email & SMS vendors, analytics providers, CRM).

  • Photographers and subcontractors working on a specific job (so they can execute the shoot).

  • Professional advisors (legal, accounting) where needed for compliance.

  • Law enforcement or regulators when required by law.

We require third parties to use appropriate technical and organizational measures to protect your data. Where required by law or contract we enter Data Processing Agreements with processors. 

8. Data retention

We retain personal data only as long as necessary for the purposes described (e.g., until the end of the contract and for a reasonable period for accounting and tax compliance). Typical retention periods:

  • Booking records, invoices and payment records: [minimum 6 years or as required by local law].

  • Marketing data: until consent is withdrawn.

  • Website analytics: [X months] (customize to your practice).

Replace bracketed periods with your chosen retention schedule and legal requirements. 

9. Your rights

Depending on your jurisdiction you may have rights including:

  • Access your personal data.

  • Rectify inaccurate data.

  • Request erasure (right to be forgotten) subject to legal exceptions.

  • Restrict or object to processing.

  • Portability of your data (where applicable).

  • Withdraw consent at any time for marketing communications.

10. International transfers

Your data may be transferred to third parties or service providers located in countries outside your country of residence. We will take steps to ensure the transfer is lawful and protected (e.g., standard contractual clauses, adequate safeguards) where required. 

11. Security

We implement reasonable technical, administrative, and physical safeguards to protect data from unauthorized access, loss, misuse, or alteration. However, no internet transmission is 100% secure — if you suspect a breach, notify us immediately at [contact@beatsinthemoment.com]. Payment card security is handled by our payment processors under their security frameworks. 

12. Children

Our services are not intended for children under 16. We do not knowingly collect personal data from children. If you believe we have collected data from a child in error, contact us and we will delete the information. 

13. Links to other websites

Our site may contain links to third-party sites (vendors, social media, galleries). This Policy does not apply to those sites — review their privacy policies separately.

14. Changes to this Privacy Policy

We may update this Policy. We will post the updated policy on our website with a revised “Last updated” date. Significant changes will be notified via email where appropriate.

15. Contact Information

Beats in the Moment

Head Office (Mumbai):
309, Orbit Premises, Mindspace, Opposite Knox Plaza, Malad W, Mumbai – 400064

Udaipur Office:
5th Floor, Urban Square Mall, 515, Udyog Vihar, RIICO Industrial Area, Sukher, Udaipur, Rajasthan – 313001

Hours: Mon–Sat, 10:00 AM – 7:00 PM

WhatsApp (Helpline): +91 73045 40040
Business Development: +91 77386 99909
Sales Enquiry: +91 77108 48390

Email: contact@beatsinthemoment.com