Privacy Policy
Effective Date: 18 July 2026
Brand: Xtasify
Legal Entity: AhaLok® Technologies Private Limited
Website: https://xtasify.com
1. Introduction
Welcome to Xtasify.
Xtasify is the brand name of the Training and Education Division of AhaLok® Technologies Private Limited. In this Privacy Policy, “Xtasify,” “AhaLok®,” “we,” “us,” and “our” refer to AhaLok® Technologies Private Limited, operating through the Xtasify brand.
We respect your privacy and are committed to handling your personal information responsibly, transparently, and securely.
This Privacy Policy explains how we collect, use, store, disclose, and protect your personal information when you:
- Visit https://xtasify.com;
- Register for a course, workshop, webinar, consultation, event, membership, or training programme;
- Join an Xtasify community or communication channel;
- Purchase or access any of our services;
- Submit an enquiry, feedback, testimonial, assessment, or application; or
- Otherwise communicate or interact with us.
Where your consent is required, we will seek it through an appropriate notice, form, checkbox, message, or other clear consent mechanism.
2. Scope of This Policy
This Privacy Policy applies to information collected through:
- The Xtasify website and landing pages;
- Course and programme registration forms;
- Online and offline workshops, seminars, webinars, and training sessions;
- Video-conferencing and online meeting platforms;
- Email, telephone, WhatsApp, social media, and community groups;
- Payment gateways and transaction platforms;
- Surveys, assessments, feedback forms, and testimonials;
- One-to-one consultations, mentoring, and educational guidance sessions; and
- Any other service offered under the Xtasify brand.
Third-party websites, platforms, applications, and payment services may have their own privacy policies. Their data-handling practices are governed by their respective policies.
3. Information We May Collect
We collect only the information reasonably required to provide, administer, improve, and protect our services.
A. Personal and Contact Information
You may provide information such as:
- Full name;
- Email address;
- Telephone or WhatsApp number;
- City, state, country, or general location;
- Age or age group;
- Occupation, educational background, or organisation;
- Profile photograph, where voluntarily provided; and
- Emergency or parent/guardian contact details, where relevant.
B. Registration and Programme Information
When you register for an Xtasify programme, we may collect:
- Programme or course selected;
- Registration and attendance details;
- Learning objectives or expectations;
- Responses submitted through assessments or questionnaires;
- Assignments, reflections, practice records, or programme progress;
- Certificates issued or course completion status; and
- Questions submitted before, during, or after a session.
C. Consultation and Wellness-Related Information
For certain educational, mentoring, mind-wellness, meditation, spiritual-development, astrology, Vastu, energy-awareness, or personal-development programmes, you may voluntarily share information concerning:
- Personal goals, concerns, habits, or challenges;
- Lifestyle, emotional, behavioural, or wellness-related experiences;
- Date, time, and place of birth;
- Family, professional, educational, or relationship circumstances;
- Previous learning or wellness practices; and
- Other information you consider relevant to the requested service.
We request that you provide only the information that is necessary for the service you have chosen.
Such information will be used only for the programme, consultation, guidance, administration, safety, or follow-up purpose for which it was collected, unless you separately consent to another use.
D. Payment and Transaction Information
When you make a payment, we may collect or receive:
- Name of the purchaser;
- Billing information;
- Transaction reference or payment status;
- Programme purchased;
- Invoice details; and
- Limited payment-related information supplied by the payment service provider.
Complete debit card, credit card, bank account, UPI credential, or payment authentication information is generally processed directly by third-party banks or payment gateways. We do not intentionally store complete card or banking credentials on our website.
E. Communications
We may retain communications exchanged through:
- Email;
- Telephone;
- WhatsApp;
- Contact forms;
- Social media;
- Online community groups;
- Support requests; and
- Consultation or programme-related messages.
F. Audio, Video, Photographs, and Session Recordings
Some online or offline sessions may be photographed or recorded for:
- Programme delivery;
- Participant access or revision;
- Internal quality improvement;
- Trainer review;
- Educational archives; or
- Promotional use, where separate permission has been obtained.
Whenever reasonably practicable, participants will be informed before a session is recorded.
Participants should avoid sharing highly confidential or sensitive personal information in group sessions, public chats, or community spaces.
G. Testimonials and Success Stories
We may collect feedback, reviews, photographs, audio statements, video testimonials, or success stories voluntarily provided by participants.
We will obtain permission before publicly using personally identifiable testimonials for promotional or marketing purposes. You may withdraw such permission by contacting us, subject to material already lawfully published, printed, distributed, or incorporated into completed media.
H. Information Collected Automatically
When you visit our website or digital platforms, certain technical information may be collected automatically, including:
- Internet Protocol address;
- Browser type and version;
- Device type;
- Operating system;
- Approximate geographical location;
- Referring website or source;
- Pages visited;
- Date, time, and duration of visits;
- Website interactions;
- Cookie identifiers; and
- Technical error or performance information.
This information helps us operate, secure, analyse, and improve our website and services.
4. How We Use Your Information
We may use your personal information to:
- Process registrations and payments;
- Provide access to programmes, sessions, communities, and learning resources;
- Communicate schedules, joining instructions, reminders, updates, and changes;
- Respond to questions, enquiries, complaints, and support requests;
- Deliver consultations, assessments, mentoring, and educational guidance;
- Maintain attendance, participation, and completion records;
- Issue invoices, receipts, certificates, or programme-related documents;
- Personalise the learning experience where appropriate;
- Improve our courses, website, content, and service quality;
- Conduct internal research, analysis, and programme evaluation;
- Prevent fraud, misuse, unauthorised access, or security incidents;
- Maintain legal, accounting, taxation, and business records;
- Send newsletters, programme announcements, and promotional communication where you have consented or where otherwise legally permitted;
- Protect the rights, safety, and legitimate interests of Xtasify, its participants, trainers, employees, and partners; and
- Comply with applicable laws, regulations, legal proceedings, and governmental requirements.
We do not sell or rent your personal information to third parties.
5. Consent and Withdrawal of Consent
Where processing is based on your consent, you may withdraw that consent by contacting us.
Withdrawal of consent will not affect processing that was lawfully completed before the withdrawal.
In certain circumstances, withdrawing consent may prevent us from continuing to provide a programme, consultation, certificate, community membership, or other requested service where the relevant information is necessary for its delivery.
6. Cookies and Similar Technologies
Our website may use cookies and similar technologies to:
- Remember user preferences;
- Maintain website functionality;
- Analyse website traffic and usage;
- Improve performance and user experience;
- Measure the effectiveness of campaigns; and
- Support security and fraud prevention.
Where legally required, non-essential cookies will be used only after obtaining appropriate consent.
You may control or disable cookies through your browser settings. Disabling certain cookies may affect the functionality or performance of the website.
7. Marketing Communications
With your consent or as otherwise permitted by law, we may send information about:
- New courses and workshops;
- Upcoming webinars or events;
- Educational content;
- Programme reminders;
- Special offers;
- Community activities; and
- Related Xtasify or AhaLok® initiatives.
You may unsubscribe using the option provided in the communication or by contacting us.
Transactional and service-related messages, such as payment confirmations, schedule changes, access information, or important programme notices, may still be sent where necessary.
8. Online Communities and Group Interactions
Xtasify may operate WhatsApp groups, social-media communities, discussion groups, or other interactive learning spaces.
Information you voluntarily post in a group may be visible to other participants. This may include your name, profile image, telephone number, comments, questions, audio, video, or other content, depending on the platform and its settings.
Participants must not copy, misuse, publish, or distribute another participant’s personal information or private communication without permission.
Xtasify cannot fully control how other participants use information voluntarily shared in a group. Participants are therefore advised to exercise discretion when sharing personal or confidential information.
9. Sharing and Disclosure of Information
We may share limited personal information with trusted third parties where reasonably necessary, including:
- Website hosting and technical service providers;
- Learning-management and course-delivery platforms;
- Video-conferencing and communication platforms;
- Email, messaging, and customer-support providers;
- Payment gateways, banks, and accounting service providers;
- Cloud-storage and document-management providers;
- Trainers, facilitators, mentors, consultants, and programme partners;
- Analytics, security, and website-performance providers;
- Professional advisers, including accountants, auditors, and legal advisers; and
- Governmental, judicial, regulatory, or law-enforcement authorities where required by law.
Such parties are expected to process personal information only for authorised purposes and to maintain reasonable confidentiality and security safeguards.
We may also disclose information:
- To enforce our agreements or policies;
- To investigate suspected fraud, misconduct, or security threats;
- To protect the safety or rights of participants or others;
- In connection with a merger, restructuring, acquisition, transfer, or sale of a business or business division; or
- When you have expressly authorised the disclosure.
10. Information Relating to Children
A “child” means an individual below the age specified under applicable law. Under Indian data-protection law, this generally includes individuals below 18 years of age unless a lawful exemption applies.
Where a programme is offered to children or collects information concerning a child, we may require verifiable consent from the child’s parent or lawful guardian before processing the child’s personal information.
Parents or guardians may contact us to:
- Review information relating to their child;
- Request correction or deletion;
- Withdraw consent; or
- Raise a privacy or safety concern.
We do not knowingly undertake targeted advertising directed at children or use children’s personal information in a manner likely to cause detrimental effects to their well-being.
Children should not independently submit personal information, make payments, or join a restricted programme without the knowledge and consent of a parent or lawful guardian.
11. Data Retention
We retain personal information only for as long as reasonably necessary to:
- Deliver the requested programme or service;
- Maintain learning, attendance, certification, or transaction records;
- Respond to enquiries or disputes;
- Meet legal, taxation, accounting, and regulatory requirements;
- Protect our legal rights;
- Maintain programme continuity; and
- Fulfil the purposes described in this Privacy Policy.
When personal information is no longer required, we may securely delete, anonymise, aggregate, or restrict access to it.
Information contained in system backups may remain temporarily until the relevant backup cycle is completed.
12. Data Security
We use reasonable administrative, organisational, physical, and technical safeguards designed to protect personal information against:
- Unauthorised access;
- Accidental loss;
- Misuse;
- Alteration;
- Disclosure; and
- Destruction.
These measures may include access controls, password protection, secure hosting, limited staff access, backups, confidentiality practices, and security monitoring.
However, no internet transmission, electronic storage system, communication platform, or website can be guaranteed to be completely secure. Participants should also protect their passwords, devices, meeting links, and account information.
Where required by applicable law, we will notify affected individuals and relevant authorities of a qualifying personal-data breach.
13. Your Privacy Rights
Subject to applicable law and reasonable verification of your identity, you may have the right to:
- Obtain information about the personal data we process;
- Request access to or a summary of your personal information;
- Request correction, completion, or updating of inaccurate information;
- Request erasure of information that is no longer required or lawfully retained;
- Withdraw consent where processing is based on consent;
- Opt out of promotional communications;
- Raise a grievance regarding the processing of your information; and
- Nominate another individual to exercise applicable rights in permitted circumstances.
Some requests may be restricted where retaining or processing the information is required by law, necessary for an existing contractual obligation, needed for fraud prevention, or necessary for establishing or defending legal claims.
To submit a privacy request, email privacy@AhaLok®.com with the subject line:
Xtasify Privacy Request
We may request reasonable information to verify your identity and protect your information from unauthorised requests.
14. Third-Party Platforms and External Links
Our website, programmes, or communications may contain links to third-party websites, applications, social-media services, video platforms, meeting platforms, or payment services.
We do not control the privacy, security, availability, or content practices of these independent third parties.
You should review the privacy policy and terms of the relevant third-party platform before providing personal information or using its services.
15. Storage and Processing Outside Your Location
Some of our service providers may store or process information on servers situated outside your state or country.
Where personal information is transferred or processed across jurisdictions, we will take reasonable steps to ensure that the transfer is made in accordance with applicable law and subject to appropriate safeguards.
16. Accuracy of Information
You are responsible for ensuring that the information you submit is accurate, complete, and current.
Please contact us when your contact details or other relevant information change so that we can update our records.
17. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in:
- Our programmes and services;
- Technology and business practices;
- Third-party platforms;
- Security requirements; or
- Applicable laws and regulations.
The updated policy will be published on this page with a revised effective date.
Material changes may also be communicated through email, website notices, programme announcements, or other appropriate channels.
18. Privacy Questions and Grievances
For questions, requests, complaints, or concerns regarding this Privacy Policy or the handling of your personal information, contact:
AhaLok® Technologies Private Limited
Operating Brand: Xtasify
Email: privacy@AhaLok.com
Website: https://xtasify.com
Parent Website: https://AhaLok.com
Business Hours: Monday to Friday, 9:00 AM to 5:00 PM IST
Please include sufficient details to help us identify and address your request.
We will review privacy grievances and respond within the period required under applicable law.
19. Our Commitment
At Xtasify, learning is built on trust.
We respect the personal experiences, questions, reflections, and information that participants share during their learning journey. We are committed to using such information responsibly, maintaining appropriate confidentiality, and creating a secure and respectful environment for education, awareness, and personal development.
