Privacy Policy

Umme Hani owns and operates the website under the brand name “ Transform with Umme Hani
(hereinafter, “ we,” “ us,” “ our” or “ Umme Hani”), accessible at “https://transformwithummehani.com/”
(hereinafter, “ Website”). We are committed to protecting the privacy, confidentiality, and security of
the personal information collected from users of the Website and individuals engaging with our
corporate training, learning & development programs, employee training workshops, and related
facilitation services, as well as our coaching, consulting, mentoring, and transformation services. We
recognize the importance of safeguarding personal data and ensuring it is handled responsibly and in
accordance with applicable laws.

This Privacy Policy (“ Policy”) describes how we collect, use, process, store, disclose, and protect
personal information provided by users when they access or use the Website and/or avail our services,
including corporate training programs, learning & development initiatives, employee training
workshops, facilitation sessions, and any coaching, consulting, mentoring, or transformation services.
This Policy applies solely to personal information collected through the Website and does not apply to
information collected through offline channels or third-party websites, platforms, or services that are
not owned or controlled by us.

Our data handling practices are designed to comply with applicable data protection and privacy laws,
including but not limited to the Information Technology Act, 2000 and the Information Technology
(Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011,
the Digital Personal Data Protection Act, 2023, the Information Technology (Intermediaries Guidelines
and Digital Media Ethics Code) Rules, 2021, and, where applicable, the General Data Protection
Regulation (GDPR).

By accessing or using the Website or availing any of our Services, you acknowledge that you have read,
understood, and agreed to this Policy. Your continued use of the Website and/or participation in our
Services constitutes your consent to the collection, use, and processing of your personal information in
accordance with this Policy. If you do not agree with any part of this Policy, you should discontinue
access to and use of the Website and refrain from availing the Services.

1. DEFINITIONS
1.1. For the purposes of this Policy, the following terms have the meanings ascribed to them:
1.1.1. " Cookies" means small data files placed on your Device by the Website to enhance user
experience, remember preferences, enable website functionality, and collect analytical or
usage-related information.

1.1.2. " Device" means any electronic device, including but not limited to a computer,
smartphone, tablet, or similar equipment, used to access or interact with the Website.

1.1.3. " Information" means any data provided by you directly or automatically collected
through your access to or use of the Website, including but not limited to account details,
session bookings, program enrolments, communications, inquiries, feedback, responses
shared during coaching or consultations, and usage-related data.

1.1.4. " Personal Data" refers to any Information relating to an identified or identifiable
individual, either directly or indirectly, including name, age, email ID, profession, location,
address, contact details, personal goals, preferences, or any information voluntarily
shared in connection with coaching, mentoring, or transformation services, billing
address, payment-related information (excluding sensitive financial credentials processed
by payment gateways), identifiers, or any other data shared or collected through the
Website, as defined under applicable data protection laws

1.1.5. " Service Provider" means any third-party entity or individual engaged by the Company to
perform services on its behalf, including but not limited to payment gateways, session
scheduling tools, communication platforms, webinar or workshop hosting tools, IT and
hosting providers, analytics providers, customer support tools, and marketing or
communication partners.

1.1.6. " Services" means any offerings provided through the Website, including but not limited to
corporate training, learning & development programs, employee training workshops,
coaching sessions, mentoring programs, consultations, digital content, and
transformation-related services.

1.1.7. “ Usage Data” means data automatically collected through the Website relating to user
activity and technical interactions, including IP address, browser type, device information,
pages visited, time spent, navigation paths, and other diagnostic or analytical data.

1.1.8. " You" or " User” means any individual who accesses, browses, or uses the Website or  avails the Services.

1.2. INTERPRETATION
1.2.1. Words in the singular shall be interpreted to include the plural, and vice versa.
1.2.2. References to the words “include” or “including” shall be construed without limitation.
1.2.3. Headings and titles in this Policy are indicative and shall not be deemed part of the Policy
or be taken into consideration in its interpretation or construction.

2. COLLECTION OF INFORMATION
2.1 Information Provided Voluntarily:

A. When you access or use the Website, including when you create an account, book a session,
enroll in a program, register for a workshop, request a consultation, or otherwise avail the
Services, or communicate with us through the Website or official communication channels, we
may collect Personal Data voluntarily provided by you. This may include your full name, email
address, phone number, location, professional details, organizational affiliation (including
employer name, designation, and work-related information where participation is through a
corporate client), personal preferences, goals, or other information voluntarily shared in
connection with corporate training, learning & development programs, employee training
workshops, facilitation services, coaching, mentoring, or transformation Services, payment-
related details (excluding sensitive financial information processed by payment gateways),
details relating to session bookings, program participation, or service requests, and any other
Information you choose to share as part of your interaction with the Website or during the
course of availing the Services. Where Personal Data of participants is shared with us by a
corporate client, such data shall be processed strictly for the purposes of delivering the agreed
Services and shall be treated as confidential.
B. If you opt in to receive promotional or marketing communications through the Website, we may
use your email address, phone number, or other contact details to send updates relating to
Services, programs, workshops, insights, newsletters, or other offerings, or Website-related
information. Such communications may be sent via email, phone calls, messaging platforms
including WhatsApp, or other communication channels, subject to your consent. You may
withdraw your consent at any time by using the unsubscribe option provided in such
communications or by contacting us through the details available on the Website.

2.2 Information Collected Automatically: When you access or use the Website, certain Usage Data is
automatically collected to ensure functionality, improve user experience, personalize content, and
maintain Website security. This may include IP address, browser type, Device information, operating
system, time zone, pages visited, duration of visits, navigation patterns, and interaction behaviour. The
Website may also use Cookies and similar tracking technologies to recognize your Device, retain
preferences, enable core functionalities, and collect aggregated analytical data to enhance service
delivery and user engagement.

3. SHARING YOUR INFORMATION
3.1 We respect your privacy and ensure that your Personal Data is shared only in limited and lawful
circumstances, as outlined below:
3.1.1 With your Consent: Your Personal Data shall be processed and shared only where you have provided
consent, whether explicit or implied, including where such processing is necessary to provide and facilitate  Services, including session bookings, program enrolments, consultations, workshops, payment processing,  and user support. By providing Personal Data for such purposes, you consent to its collection, use, and  processing. For secondary purposes, including marketing or promotional communications, we shall obtain  your consent or provide you with the option to opt out.
3.1.2. With Service Providers: To facilitate the provision of our Services, we may share necessary
Information with trusted Service Providers, including but not limited to video conferencing platforms
(such as Zoom or Google Meet), session scheduling tools, payment gateways, technology and hosting
providers, analytics providers, customer support tools, and marketing service providers. Such Service
Providers are contractually obligated to use your Information solely for the purpose of providing services
to us and to maintain appropriate confidentiality and security standards.
3.1.3. Legal and Regulatory Requirements: We may disclose your Information where required to comply
with applicable laws, legal processes, regulatory obligations, or lawful requests from governmental or
regulatory authorities.
3.1.4. Business Transitions: In the event of a merger, acquisition, restructuring, or sale of assets of the
Company, your Personal Data may be transferred as part of such transaction, subject to the condition
that the receiving entity agrees to process such data in accordance with this Policy and applicable laws.
3.1.5. With Third-Party Services: Certain third-party providers engaged by the Company, including
payment gateways, session scheduling tools, video conferencing platforms, communication tools, and
technology platforms, may independently collect, process, or store your Information to the extent
necessary to perform their services. Such third parties operate under their own privacy policies, and we
encourage you to review their policies to understand their data handling practices. Please note that
some such providers may process data in jurisdictions outside India. Once you are redirected to or
interact with such third-party platforms, this Policy shall no longer apply.

4. PAYMENT
4.1 Payment Processing and Card Details:
4.1.1 We engage an authorized third-party payment processor, being a payment gateway and/or
financial institution (collectively referred to as “ Payment Service Provider”), to process payments made
through the Website in connection with Services, including session bookings, program enrolments,
consultations, workshops, corporate training programs, learning & development initiatives, employee
training workshops, facilitation services, or other service offerings. All payment transactions are
processed through secure and encrypted channels.
4.1.2 The Company does not collect, store, or retain sensitive financial information such as full card
numbers, CVV, PINs, or authentication credentials. Such sensitive data is collected and processed
directly by the Payment Service Provider in accordance with applicable security standards. Any limited
payment-related information retained by the Company shall be only to the extent necessary for service
confirmation, transaction tracking, refunds (if applicable), reconciliation, or compliance with legal and
accounting obligations.
4.1.3 All payment data is encrypted during transmission and handled in accordance with applicable
industry standards, including the Payment Card Industry Data Security Standard (PCI-DSS) or other
relevant regulations. Users are advised to review the privacy policy of the Payment Service Provider
integrated with the Website to understand its data handling practices.

5. COOKIES AND TRACKING TECHNOLOGIES
5.1. The Website uses Cookies and similar tracking technologies to enhance your browsing experience,
remember your preferences, enable core website functionalities (including session bookings, program
registrations, and user account management), personalize content, and optimize Website performance.
These small data files may be stored on your Device when you access or use the Website and assist the
Company in providing a more efficient and customized user experience. You can manage, control, or
disable Cookies through your Device or browser settings. However, disabling certain essential Cookies
may affect Website functionality or limit access to specific features, including booking Services and
program-related features.
5.2. By accessing or using the Website, you consent to the placement and use of Cookies and similar
tracking technologies as described in this Policy. Where required under applicable law, such Cookies
shall be deployed based on your consent preferences. You may withdraw or modify your consent at any
time by adjusting your browser settings or through the cookie consent mechanisms made available on
the Website.

6. CHANGES TO THIS POLICY
We reserve the right to modify this Policy at any time. We encourage you to review it periodically. Any
changes or clarifications will take effect immediately upon posting on the Website. If we make material
changes to this Policy, we will provide notice on the Website so that you are aware of the Information we
collect, how we use it, and under what circumstances, if any, it is shared or disclosed. The “Last Updated”  date of this Policy shall reflect the effective date of such changes.

7. PHISHING
We are committed to the security of your Personal Data and urges you to remain vigilant against phishing
attempts. Please be cautious of unsolicited communications such as emails, messages, or phone calls
requesting sensitive details, including passwords, payment information, address, or other personal
credentials. We will never request such information via unverified links or unexpected correspondence. If
you receive any suspicious requests claiming to be from Umme Hani, do not respond to or provide any  details. Instead, promptly contact us through our official channels to verify the communication's
authenticity and help us address potential threats.

8. SOCIAL MEDIA AND PUBLIC PLATFORMS
8.1 We may share updates, service announcements, program information, corporate training insights,
learning & development content, workshop highlights, coaching insights, testimonials (subject to obtaining  prior explicit consent), and engagement content relating to the Services, and engage with Users or the  public through official social media channels such as LinkedIn, Facebook, Instagram, or similar platforms.  Where testimonials are used, we may display names, designations, or organization names only with the  express consent of the individual concerned. Any Information you voluntarily post or interact with on  these public forums may be visible to others and could be used or shared beyond our control, depending  on the privacy settings of those platforms.
8.2 We advise Users to exercise discretion when posting Personal Data or sensitive Information on social
media or public online spaces. We are not responsible for how Information shared on these platforms is
accessed, used, or distributed by others. To protect your privacy, we recommend reviewing and adjusting
your social media account settings and being mindful of the content you make public.

9. YOUR RIGHTS AND CHOICES
9.1 As a User of the Website, you have control over your Personal Data, subject to applicable laws,
including rights available under the Digital Personal Data Protection Act, 2023. You are entitled to the
following rights:
9.1.1 You may request access to and a summary of the Personal Data maintained by the Company in
relation to your use of the Website, including data associated with your account and your use of the
Services, including session bookings and program participation.
9.1.2 If you believe that any of your Personal Data is inaccurate, incomplete, or outdated, you may
request correction or updating of such information.
9.1.3 You may request the erasure of your Personal Data, subject to applicable legal, regulatory,
contractual, or operational requirements, including retention of data necessary for service delivery
records, taxation, accounting, or dispute resolution.
9.1.4 You may withdraw your consent to the processing of your Personal Data or request restriction of
processing in certain circumstances, with the understanding that such withdrawal may affect your
ability to use certain features of the Website, including availing the Services or participating in
programs.
9.1.5 You may opt out of receiving marketing or promotional communications at any time by using the
unsubscribe mechanism or contacting the Company through the details provided on the Website. This
includes communications sent via email, phone calls, or messaging platforms such as WhatsApp.

9.2 To exercise any of these rights, you may contact us through the official email or contact details
provided on the Website. The Company shall endeavour to respond to such requests within a
reasonable timeframe, in accordance with applicable laws. Where a request cannot be fulfilled, the
Company shall provide a reasonable explanation, subject to legal limitations.

10. DATA RETENTION
10.1 The Company retains your Personal Data only for as long as necessary to fulfil the purposes for
which it was collected, including provision of Services, corporate training programs, learning &
development initiatives, employee training workshops, facilitation services, session records, program
participation, customer support, compliance with legal and regulatory obligations, taxation, accounting,
fraud prevention, and dispute resolution.
10.2 Where Personal Data is no longer required for the purposes stated above, it shall be securely
deleted, anonymized, or archived in accordance with internal data retention policies and applicable
laws.
10.3 Upon valid request, the Company shall delete or anonymize your Personal Data, subject to any
applicable legal, regulatory, or contractual retention obligations.

11. SECURITY MEASURES
11.1 We implement reasonable security measures following industry best practices to protect your
Personal Data from unauthorized access, misuse, alteration, or destruction.
11.2 Such measures include, but are not limited to, encryption of data in transit using SSL/TLS protocols,
secure server infrastructure protected by firewalls and access controls, restricted access to Personal
Data on a need-to-know basis, periodic security assessments and updates, and secure data storage and
backup systems.
11.3 While the Company adopts commercially reasonable measures to safeguard Personal Data, no
method of transmission over the internet or electronic storage is completely secure. Accordingly, the
Company does not guarantee absolute security of data and shall not be liable for unauthorized access,
disclosure, or loss occurring despite the implementation of such reasonable safeguards.
11.4 In the event of a data breach or unauthorized access to Personal Data, the Company shall take
reasonable steps to contain, investigate, and mitigate the impact of such incident, and shall notify
affected Users and/or relevant authorities where required under applicable law, including the Digital
Personal Data Protection Act, 2023.

12. CHILDREN'S PRIVACY
12.1 The Website and its services are not intended for individuals under 18 years of age.
12.2 By accessing or using the Website, you represent that you are at least 18 years old or the age of  majority in your jurisdiction, whichever is higher.
12.3 Individuals under 18 must obtain consent from a parent or legal guardian before using the Website
or providing any Personal Data.
12.4 Our Company does not knowingly collect Personal Data from children under 18. If we become
aware of such a collection, we will promptly delete the information.

13. CONTACT INFORMATION
13.1 If you have questions, concerns, or requests regarding this Policy or our data practices, or wish to
exercise your rights under applicable data protection laws, please contact us:
Umme Hani
Location: Bangalore
Email: ummehani@transformwithummehani.com

13.2 Grievance Redressal:
In accordance with applicable laws, including the Information Technology Act, 2000 and rules framed
thereunder, the Company has designated a Grievance Officer to address complaints or concerns relating
to the processing of Personal Data and to facilitate grievance redressal in line with the Digital Personal
Data Protection Act, 2023:
Name: Umme Hani
Email: ummehani@transformwithummehani.com
Contact: 8310342695
Location: Bangalore
The Grievance Officer shall acknowledge complaints within a reasonable timeframe and endeavour to
resolve such grievances within the timelines prescribed under applicable law.

14. GOVERNING LAW AND JURISDICTION
14.1 This Policy is governed by and construed in accordance with the laws of India.
14.2 Any disputes arising from this Policy shall be subject to the exclusive jurisdiction of the courts in
Bengaluru, Karnataka.