Skip to content
FSSAI Licensed · ISO 22000:2018 · Cold-chain at -18°C
Kingdom Foods

Privacy Policy

Last updated: 1 May 2026 · Effective from: 1 May 2026 · Issued by Kingdom 24 Private Limited.

1. Who we are

This Privacy Policy describes how Kingdom 24 Private Limited (CIN U55101UP2022PTC162049), trading as Kingdom Foods, with registered office at D-106, Sector 63, Noida, Uttar Pradesh 201301 ("Kingdom Foods", "we", "us", "our") collects, uses, stores and protects your personal data when you visit https://www.kingdom24.in (the "Website") or transact with us as a B2B buyer.

This policy is published in compliance with the Digital Personal Data Protection Act, 2023 ("DPDP Act") and the Information Technology Act, 2000 read with the IT (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011.

2. Personal Data we collect

We collect only the personal data necessary to provide our B2B HoReCa supply services. The categories include:

  • Identity & contact: full name, designation, business name, business type, mobile number, email address, postal address.
  • Tax & legal: GSTIN, PAN (where required for invoicing), FSSAI license (where applicable to your business).
  • Order data: products enquired, quantities, delivery addresses, order history, payment references (we do not store full card numbers).
  • Communications: emails, WhatsApp messages, call logs and contact form submissions.
  • Technical data: IP address, browser type, device type, referring URL, pages visited, session duration — collected via Google Analytics 4.

3. Purpose & Lawful Basis

We process your personal data for the following purposes, with your consent or based on the legitimate uses permitted under Section 7 of the DPDP Act:

  • To respond to enquiries, generate quotations, and process B2B orders.
  • To deliver products and coordinate cold-chain logistics.
  • To raise GST-compliant tax invoices and maintain books of account.
  • To collect payments and reconcile receivables.
  • To provide post-sale support, handle complaints and process refunds.
  • To communicate operational updates (order status, dispatch, invoice).
  • With your separate opt-in consent: to send marketing communications about new products and offers.
  • To comply with applicable laws (GST, Companies Act, Income Tax Act, FSSAI regulations).
  • To protect our website and services from fraud, abuse and security incidents.

4. Sharing of Personal Data

We share personal data only on a need-to-know basis, with:

  • Logistics partners (Porter, Shadowfax, Snowman Logistics, Gati) — to deliver your shipment.
  • Payment service providers (Razorpay) — to process card / UPI / netbanking payments.
  • Cloud and analytics service providers (Google Analytics for traffic measurement; our website hosting provider).
  • Tax authorities, GSTN portal and statutory authorities — as required by law.
  • Professional advisors (chartered accountants, legal counsel) under confidentiality obligations.

We do not sell, rent or trade your personal data to third parties for their independent marketing.

5. Cross-border Transfers

Personal data is primarily stored on servers located in India. Where Google Analytics or Razorpay involve processing outside India, we rely on the standards published by the Central Government from time to time under Section 16 of the DPDP Act. We do not transfer personal data to countries to which transfers are restricted by the Central Government.

6. Retention

  • Order records, invoices and tax documentation: retained for at least 8 years as required under the GST Act and Companies Act.
  • Active customer contact data: retained for the duration of the business relationship.
  • Marketing-only contacts: retained until consent is withdrawn.
  • Website analytics data: aggregated and de-identified after 14 months (Google Analytics default).

7. Your Rights under the DPDP Act

As a Data Principal, you have the right to:

  • Obtain a summary of personal data we hold about you.
  • Request correction or erasure of your personal data (subject to statutory retention).
  • Withdraw consent for marketing communications at any time.
  • Nominate another individual to exercise your rights in case of death or incapacity.
  • Lodge a grievance with us (contact below) or with the Data Protection Board of India.

To exercise any of these rights, write to contact@just2eat.com. We will respond within thirty (30) days of receipt of a verifiable request.

8. Cookies & Tracking

The Website uses essential cookies for navigation and security, and Google Analytics cookies for aggregated traffic measurement. We do not use cookies for behavioural advertising. You can control cookies via your browser settings; disabling essential cookies may break parts of the Website.

9. Security

We implement reasonable security practices, including HTTPS / TLS encryption in transit, restricted access to internal databases, periodic backups, and contractual safeguards with our processors. No system is impenetrable; if you suspect unauthorised access to your account or data, write to contact@just2eat.com immediately.

10. Children

Our services are aimed at B2B buyers and are not directed at children under 18. We do not knowingly collect personal data of children. If we discover such data has been collected, we will delete it promptly.

11. Updates

We may update this Privacy Policy to reflect changes in law or our practices. The "Last updated" date at the top of this page reflects the most recent revision. Material changes will be highlighted on the Website.

12. Grievance & Data Protection Officer

For all privacy-related queries, complaints or to exercise your rights:
Grievance Officer / DPO Liaison: Sales Head, Kingdom 24 Private Limited
Email: contact@just2eat.com · Phone: +91 8800804580
Postal: D-106, Sector 63, Noida, Uttar Pradesh 201301
We will acknowledge grievances within 48 hours and resolve them within 30 days.