SHARA

Design Labs

Legal

Privacy Policy

Last updated: May 16, 2026

1. Who we are

This Privacy Policy describes how Shara Circuits (“Shara”, “we”, “us”) collects, uses, and protects information about visitors to sharacircuits.com and customers of the Shara Design Labs platform.

Shara Circuits
4th Floor, Connection Point, Airport Exit Road,
Murugeshpalya, Konena Agrahara, Bengaluru,
Karnataka 560017, India

2. Data we collect

We collect only what we need to respond to your enquiry and run the service:

  • Contact form data — name, email, phone (optional), company (optional), topic, and the message you send us.
  • Campaign attribution — UTM parameters (source, medium, campaign) attached to your visit, used to measure which marketing channels are working.
  • Server access logs — IP address, timestamp, request path, and user-agent, kept temporarily for abuse prevention and debugging.
  • Analytics cookies — only when you grant consent through the banner. See section 5.
  • Account data (if you sign up for the platform) — your email, hashed password, name, profile preferences, and any project or order data you provide.

We do not buy personal data from third parties and we do not set advertising cookies without explicit consent.

3. How we use your data

  • To respond to your enquiry and follow up with a quote, schedule, or answer.
  • To fulfill PCB design, fabrication, sourcing, and assembly services you order from us.
  • To improve the website and product (aggregate analytics, with consent only).
  • To measure the effectiveness of our marketing (with consent only).
  • To prevent abuse and secure our infrastructure (server logs).
  • To comply with applicable Indian tax, accounting, and statutory obligations.

4. Lawful basis

We process personal data on the following bases:

  • Contract — to provide services you have ordered.
  • Legitimate interest — to respond to contact-form enquiries, to keep the site secure, and to improve the product.
  • Consent — analytics and marketing cookies, where you opt in via the banner.
  • Legal obligation — invoicing, tax, and other statutory records.

5. Cookies and analytics

We use a small number of strictly-necessary cookies to keep the website working (session, security). When you grant consent, we also load Google Analytics 4 to measure traffic and conversion. GA4 operates in consent-mode v2: until you accept, no advertising or analytics storage is created.

You can change or withdraw your consent at any time by clicking Cookies in the footer, or by clearing the site data in your browser.

6. Sharing with third parties

We share data only with the providers we depend on to deliver the service:

  • Cloud infrastructure hosting our site and database.
  • Payment processor (Razorpay) for orders, governed by their own privacy terms.
  • Analytics (Google Analytics 4) — only with your consent.
  • Component distributors (DigiKey India, Mouser India, LCSC) when you ask us to source parts — we share only the part numbers, not your identity, unless required for shipping.

We never sell personal data. We do not enable cross-site advertising tracking.

7. Retention

  • Contact-form submissions — kept for up to 24 months from your last interaction. If your enquiry becomes an active project, project records are retained for the duration of the contract plus the statutory accounting period.
  • Server access logs — 90 days, then deleted.
  • Analytics aggregates — retained per GA4 default settings (currently 14 months); raw event data is not exported.
  • Account data — retained until you delete your account; backups expire on a 30-day rolling cycle.
  • Invoices and statutory records — retained for the period required by Indian tax law.

8. Security

Passwords are hashed with bcrypt. Sessions use signed JWTs. The platform sits behind helmet middleware with a Content-Security-Policy, HTTPS-only transport, and rate limits on auth and contact endpoints. We restrict access to production data on a need-to-know basis. No system is unbreakable, but we work hard to keep yours safe.

9. Your rights

You can ask us to:

  • Show you what personal data we hold about you (access).
  • Correct any inaccurate data (rectification).
  • Delete your data (erasure), subject to legal retention rules.
  • Restrict or object to certain processing.
  • Export your data in a portable format.
  • Withdraw consent for analytics or marketing cookies at any time.

Email info@sharacircuits.com with your request. We respond within 30 days.

10. Children

Our services are not directed at children under 18. We do not knowingly collect personal data from minors. If you believe we have, email us and we will delete it.

11. International transfers

Our infrastructure providers may store data in regions outside India. We choose providers with industry-standard data-protection commitments and prefer Asia-Pacific regions for latency and lower transfer risk.

12. Jurisdiction and governing law

This Privacy Policy is governed by the laws of India. Disputes are subject to the exclusive jurisdiction of the courts in Bengaluru, Karnataka.

13. Contact us

Privacy questions or requests: info@sharacircuits.com.

Postal: Shara Circuits, 4th Floor, Connection Point, Airport Exit Road, Murugeshpalya, Konena Agrahara, Bengaluru, Karnataka 560017, India.

14. Changes to this policy

We may update this policy as the service evolves or the law changes. Material changes will be announced on the site; minor edits will simply update the “Last updated” date above.

See also our Terms of Service.