Privacy Statement

Privacy Statement

Privacy Statement for JCARM (journal.jcarm.in)

Executive Summary: JCARM is an open-access academic journal published in India. We collect only the personal data needed to operate the journal and support submissions – for example, authors’ names, email addresses, and affiliations – and we use it solely for journal purposes[1]. We do not sell or otherwise share your personal data with third parties. We implement reasonable security measures (e.g. SSL encryption, access controls) to protect your information[2], though no online system is perfectly secure. Our practices comply with India’s Information Technology Act and its Privacy Rules (currently the law governing data protection)[3]. We also respect global standards: for EU visitors we observe the GDPR’s principles (data minimization, lawful basis, data subject rights)[4], and for California residents we honor CCPA/CPRA rights (see below)[5]. In short, JCARM only collects minimal data needed to run the journal, keeps it secure, and gives you clear control over your information. (See below for details on cookies, retention periods, data transfers, and how to exercise your rights.)


JCARM’s website (built on a secure cloud platform) uses standard safeguards and limited data collection. We use personal data (e.g. author names/emails) only for editorial and communication purposes[1]. We comply with Indian law (IT Act and pending DPDP Act) and international privacy standards[3][4].

Information We Collect

·       Personal Data You Provide: When you submit a manuscript or otherwise contact us, we collect information such as your name, email address, affiliation, and any other details you voluntarily give (for example, on submission forms or in emails). These are used strictly for journal operations (review, editing, publication and correspondence)[1]. We do not ask for sensitive data like religious beliefs, health status or financial details, and we do not knowingly collect data on children under age 13[6].

·       Automatic/Technical Data: When you visit the site, our platform (built on Zyro/Hostinger) automatically collects non-identifying information such as your IP address, browser type, device and OS, and pages you view. We use this to analyze site usage and improve performance[7][8].

·       Cookies and Tracking: We use cookies (small text files stored on your device) to make the site work and to improve user experience[9]. For example, cookies let you stay logged in during a session, remember preferences, and help us measure site traffic. Cookies cannot by themselves identify you personally[10]. You may disable cookies through your browser at any time (see Cookie Policy below for details).

How We Use Your Information

·       Journal Operations: We use your personal data to run the journal. This includes managing manuscript submissions and peer review, publishing accepted papers, and communicating decisions. For example, when you submit via our Google Form, the data (names, emails, manuscript files) are emailed to our editorial inbox so we can manage your submission; then we email you confirmation and notification of acceptance/rejection. We do not use your data for any purpose beyond JCARM’s stated activities. As our OJS portal’s brief statement notes, names and email addresses are used exclusively for the journal’s purposes and not shared elsewhere[1]. We may also send you occasional service communications (e.g. reminders about missing documents, calls for papers) using the contact information you provide.

·       Site Improvement and Legal Compliance: We may use aggregated, non-identifying usage data to analyze and improve our site (for example, tracking how many visitors we get each month). We also use personal data as needed to comply with legal obligations (for example, to maintain publication records or to respond to lawful inquiries).

·       No Marketing or Selling: We do not sell your personal information or use it for targeted advertising. We also do not create user profiles for marketing. Our third-party tools and platforms (see below) are used only to facilitate journal services (like forms, plagiarism checks, etc.), and we never authorize them to sell your data.

Cookie Policy

JCARM’s website uses cookies to provide a better user experience[9]. In general, we use:
- Essential Cookies: Required for basic site functions (e.g. session cookies that keep you logged in). These are necessary for navigation and cannot be turned off in our system.
- Functional Cookies: Remember your preferences (e.g. language or font size).
- Analytical/Performance Cookies: We may use Google Analytics or similar tools to understand how visitors use the site (e.g. page views, referral links)[9]. These are anonymized (we don’t record your name or email) and only collect broad usage data to improve the site.

Cookies are stored on your device. They do not store sensitive personal information (like your password) and cannot identify you personally[10]. You can usually disable or remove cookies via your browser settings; however, blocking cookies may prevent the site from functioning properly. For more on managing cookies, see All About Cookies.

Third-Party Processors

Third Party

Purpose

Data Collected

Privacy/Terms

Google Forms/Analytics

Submission forms and site analytics

Submission details (names, emails, manuscript data), browsing metrics (optional)

Google Privacy Policy

Turnitin (iThenticate)

Plagiarism screening of manuscripts

Manuscript text and metadata (e.g. author names/email)

Turnitin Privacy Policy

Zyro (Hostinger)

Web hosting and infrastructure

Server logs (IP address, access times), cookies

AskZyro Privacy Policy (hosting provider; also see Hostinger Privacy)

WhatsApp (Meta)

Community group messaging

Phone number (if you join our group)

WhatsApp Privacy Policy

TikTok

Social media presence/linking

Usage data if you follow us (managed by TikTok)

TikTok Privacy Policy

X (Twitter)

Social media presence/linking

Usage data if you follow us (managed by Twitter)

Twitter Privacy Policy

We engage these providers only to support JCARM’s services. For instance, Google processes your submission form inputs and may log technical data (see Google’s policy). Turnitin processes submitted manuscripts for plagiarism checks. Zyro/Hostinger powers our website and may collect logs/cookies as described in their privacy documents. WhatsApp collects your phone number and chat messages only if you choose to join our group. We do not authorize any of these services to sell or reuse your data beyond their operational role.

Data Retention

We retain personal data only as long as needed for the purposes above or as required by law. Examples:

Data Category

Retention Period

Rationale

Manuscript submissions (authors’ names, emails, files)

Up to 5 years after last publication or final decision

To manage the peer-review/publication process; retain academic record.

Published Article Data (author names, affiliations, article content)

Indefinitely (archival record)

Scholarly record-keeping; required by many indexing standards.

Contact correspondences (email inquiries, editorial emails)

~2 years

To resolve any editorial queries or disputes; GDPR recommends not keeping indefinitely.

Cookies & Analytics data

Session cookies end at logout; analytics cookies < 26 months (Google’s default)

To analyze recent usage trends and site performance.

Other processing logs (e.g. server logs)

~1 year

For security monitoring and debugging.

We follow the principle of storage limitation: once data is no longer needed for JCARM’s purposes, we securely delete or anonymize it[11]. (For example, if a submission is withdrawn or rejected, we normally delete any supplemental files after a reasonable period.)

Your Data Rights

Access & Correction: You may request access to your personal data held by us (for example, your submission or contact records) and ask us to correct any errors.

Erasure (“Right to be Forgotten”): Where applicable (e.g. under GDPR or CCPA), you can ask us to delete your personal data. Note: published articles and archival records may be retained for historical/administrative reasons, but we will remove non-public personal data (like editorial correspondence) upon valid request.

Consent Withdrawal: If we rely on your consent for any processing (for example, marketing emails), you can withdraw consent at any time, and we will stop that processing.

Objection & Restriction: You may object to or request restriction of processing for certain purposes. For example, California residents have the right to opt out of any sale or sharing of their data[5] (we do not sell your data, but we honor the opt-out right) and to limit the use of “sensitive” data.

Data Portability: Where applicable, you may request a copy of your data in a portable format.

To exercise any of these rights, please contact us (see below). You may also lodge a complaint with a supervisory authority. For example, EU residents can contact their national Data Protection Authority, Indian users can contact the soon-to-be-established Data Protection Board of India[12], and California residents can contact the California Attorney General’s office or Privacy Protection Agency.

Data Security and Transfers

We use industry-standard technical safeguards (HTTPS/SSL for the website, encrypted email when possible, secure server configurations, etc.) and organizational measures (access controls, staff training) to protect your data[2]. However, no security system is infallible[2].

Your data may be transferred or stored outside India if handled by our service providers. For instance, Google and Turnitin are headquartered in the U.S., and Zyro/Hostinger may use servers in various countries. In each case, the third party’s own privacy compliance applies. To address this, we rely on standard mechanisms (such as the EU Standard Contractual Clauses with Hostinger) where required, and we only send data to countries recognized by EU/Indian regulators or via providers who commit to equivalent protections.

Contact Information / Complaints

For questions about this privacy statement or to exercise your rights, contact the JCARM Editorial Office at editor@jcarm.in or admin@ivoryandfinch.com. Please specify your request (e.g. “Right of Access” or “Data Deletion”). We aim to respond promptly and within legal timeframes.

If you have a privacy concern you cannot resolve with us, you may file a complaint with a data protection authority. For example: - India: Data Protection Board of India (upon establishment) or MeitY/Ministry of Law.
- European Union: Your national Data Protection Authority (see EDPB guidance).
- California: California Privacy Protection Agency or the California Attorney General’s Office[5].

Changelog

Date

Version

Changes

2026-04-05

1.0

Initial draft tailored for JCARM (journal.jcarm.in) site.

JCARM collects only necessary personal information (e.g. author names and emails) for journal operations and does not sell or share it for other purposes. We use cookies and analytical tools to improve the site. We protect your data with standard security measures and honor your legal rights (access, deletion, etc.) under India’s privacy laws as well as GDPR/CCPA. For any questions or requests, contact us at editor@jcarm.in.

[1]  Privacy Statement | Journal of Contemporary Academic Research and Methodologies (JCARM)

https://journal.jcarm.in/index.php/home/about/privacy

[2] Privacy Policy | AskZyro

https://askzyro.com/privacy

[3] [11] [12] Data protection laws in India - Data Protection Laws of the World

https://www.dlapiperdataprotection.com/?t=law&c=IN

[4] Data protection - European Commission

https://commission.europa.eu/law/law-topic/data-protection_en

[5] California Consumer Privacy Act (CCPA) | State of California - Department of Justice - Office of the Attorney General

https://oag.ca.gov/privacy/ccpa

[6] [7] [8] assets.zyrosite.com

https://assets.zyrosite.com/dWxl6QNa8PceLynE/privacy-policy-and-cookie-policy-dJobbx6qonf25E10.pdf

[9] [10] Cookies.docx

https://assets.zyrosite.com/YleqqMqpOQcolP5b/cookies.docx-mp8WKy5w5PI0z2Dn.pdf