DPDP-ready by design

Your clients' privacy is the product.

India's Digital Personal Data Protection Act, 2023 makes every photograph of an identifiable person personal data. LIT SUITE is built for this from day one — so your studio is ready to demonstrate compliance to a school, a corporate event team, or a curious client.

Data residency in India

All studio data — clients, bookings, invoices, albums — is stored in India-region infrastructure. We do not move client photographs across borders for processing or analytics.

Consent before access

Client galleries open via a short-lived, signed token shared by the photographer. There is no public listing, no search-engine indexing, and no permanent URL.

Right to deletion

Studios can delete a booking, album or client at any time; deletion cascades to every linked spread, comment, approval and timeline event. We do not soft-archive against your will.

Audit log for every interaction

Every action a client takes — opening a review link, leaving a comment, approving a spread — is logged with a timestamp on the per-booking activity feed. You can prove compliance.

No training, no advertising

Client photographs and personal data are not used to train machine-learning models, sold to advertisers, or shared with third parties for marketing.

Token expiry & revocation

Public links default to a 60-day expiry. Studios can revoke any link instantly. Expired or revoked links return a 'not found' page — no leak.

Data Protection Officer

For a data deletion request, audit log export, or a DPDP-related question, email dpo@lit.app. We respond within 3 working days. Our sister product DPDPAReady.in publishes the latest DPDP guidance for events, schools and weddings.

POWERED BY