Anti-Spam Policy

Increeks is committed to responsible, transparent, and consent-based digital communication. We believe that your inbox belongs to you. We will never send unsolicited commercial messages, never sell or rent our mailing lists, and always honour your communication preferences promptly.

This Anti-Spam Policy applies to all electronic communications sent by Increeks, our employees, contractors, affiliates, and any third parties acting on our behalf. It applies to email, SMS, push notifications, and any other form of electronic messaging we may use.

Violations of this policy by our staff or agents are treated as disciplinary matters. We expect the same standards from any marketing or communication vendor we engage.

"Spam" refers to unsolicited bulk electronic messages sent without the recipient's prior consent, typically for commercial or promotional purposes. Spam harms recipients, clogs networks, and undermines trust in digital communication.

Common characteristics of spam include:

• Messages sent without the recipient's express or implied consent.
• Deceptive, misleading, or false subject lines or sender identities.
• Failure to include a working unsubscribe mechanism.
• Continued messaging after an unsubscribe request has been made.
• Use of harvested, purchased, or scraped email lists.
• Disguising the commercial nature of a message.
• Use of forged headers or spoofed sender addresses.

Increeks prohibits all of the above practices absolutely and without exception.

All electronic communications from Increeks adhere to the following standards:

Sender Identification

• Every email clearly identifies Increeks as the sender. Our "From" name and address are never obscured or spoofed.
• Our registered business address (Bengaluru, India) is included in the footer of every marketing email.

Honest Subject Lines

• Subject lines accurately reflect the content of the message.
• We never use misleading, deceptive, or clickbait subject lines.
• Promotional emails are clearly labelled as such where required by applicable law (e.g., with "Advertisement" or "Promo" in the subject where required under CAN-SPAM).

Transactional vs. Marketing Emails

We distinguish between two categories of email:

• Transactional emails — sent in direct response to your actions (e.g., account confirmations, password resets, project status updates, invoices). These are sent regardless of marketing preferences and are necessary for service delivery.
• Marketing emails — newsletters, product announcements, event invitations, promotional offers. These are sent only to recipients who have given explicit consent and may be opted out of at any time.

Email Authentication

To combat spoofing and phishing, all outbound emails from Increeks are protected by:

• SPF (Sender Policy Framework): Our DNS records authorise only designated mail servers to send email on behalf of increeks.com.
• DKIM (DomainKeys Identified Mail): Outbound messages carry a cryptographic signature that receivers can verify against our published public key.
• DMARC (Domain-based Message Authentication, Reporting and Conformance): Our DMARC policy instructs receiving mail servers on how to handle messages that fail SPF or DKIM checks, and provides us with aggregate reports on potential abuse of our domain.

List Management

• We never purchase, rent, or borrow email lists from third parties.
• We never scrape email addresses from websites, social networks, or other online sources.
• All email addresses in our lists were provided voluntarily by the recipient.
• We maintain suppression lists to ensure that unsubscribed, bounced, or complained addresses are never contacted again with marketing communications.

Consent is the foundation of our communication programme. We collect consent in the following ways:

Express (Opt-In) Consent

Express consent is obtained when a person takes a clear, affirmative action to receive communications from us. Examples include:

• Ticking an unchecked checkbox on a sign-up form (we never use pre-ticked boxes).
• Submitting a "Subscribe" form on our website.
• Downloading gated content (e.g., a case study or whitepaper) where the consent to receive related communications is clearly disclosed.
• Verbally or in writing requesting to be added to our newsletter or communications list at an event.

Implied Consent

In limited circumstances, and only where permitted by applicable law, we may send communications based on implied consent — for example, where you are an existing client and we are communicating about directly relevant services. Implied consent is time-limited and subject to your right to opt out at any time.

Consent Records

We maintain records of how and when consent was obtained for every subscriber, including: the date and time of consent, the mechanism used, and the specific consent language presented. These records are available on request and support compliance with GDPR, CASL, and other applicable laws.

No Pre-Ticked Boxes

In accordance with GDPR Article 7 and CASL requirements, we never use pre-ticked consent checkboxes. Consent must always be an active, affirmative choice.

You have the right to stop receiving marketing communications from us at any time, without giving a reason.

How to Unsubscribe

• One-click unsubscribe: Every marketing email contains a clearly visible unsubscribe link in the footer. Clicking it will immediately remove you from that mailing list.
• Email request: Send an unsubscribe request to hello@increeks.com or abuse@increeks.com.
• Reply "Unsubscribe": Replying to any of our marketing emails with "Unsubscribe" in the subject or body will be processed as an opt-out request.

Processing Timeframes

• CAN-SPAM (US): Opt-out requests will be honoured within 10 business days of receipt.
• CASL (Canada): Opt-out requests will be honoured within 10 business days of receipt.
• GDPR (EU/EEA): Opt-out requests will be honoured without undue delay and, where technically feasible, immediately upon submission.
• General: We aim to process all unsubscribe requests within 2 business days in practice.

After unsubscribing from marketing communications, you may still receive transactional emails necessary for the delivery of services you have contracted.

The CAN-SPAM Act (Controlling the Assault of Non-Solicited Pornography And Marketing Act, 15 U.S.C. § 7701 et seq.) sets requirements for commercial email sent to recipients in the United States. Increeks complies with the CAN-SPAM Act as follows:

• Accurate header information: Our "From", "To", "Reply-To", and routing information accurately identify Increeks as the originating sender.
• Non-deceptive subject lines: Subject lines are never misleading and accurately reflect the content of the email.
• Advertising disclosure: Commercial emails are identified as advertisements where required, clearly and conspicuously.
• Physical postal address: Every commercial email includes our valid physical postal address in Bengaluru, India.
• Opt-out mechanism: Every commercial email contains a clear and conspicuous explanation of how recipients can opt out of receiving future emails.
• Prompt opt-out honouring: We honour opt-out requests within 10 business days. Opt-out requests are fulfilled at no cost to the recipient and without requiring the recipient to provide any information beyond an email address.
• Third-party accountability: We monitor the email practices of any third party sending email on our behalf and take responsibility for their compliance.

Canada's Anti-Spam Legislation (CASL, S.C. 2010, c. 23) is among the world's strictest anti-spam laws. It applies to commercial electronic messages (CEMs) sent to or from Canada. Increeks complies with CASL as follows:

• Express consent required: We obtain express consent before sending CEMs to Canadian recipients, except where an implied consent exemption clearly applies under CASL s. 10.
• Implied consent: Where we rely on implied consent (e.g., existing business relationships), we track the basis and duration of that consent and cease sending when the implied consent period expires (generally 2 years for existing business relationships, 6 months for inquiries).
• Consent records: We maintain records of the basis for consent, including the date, mechanism, and language presented.
• Identification: Every CEM includes our legal name, mailing address, and a valid contact email address.
• Unsubscribe mechanism: Every CEM includes a functional unsubscribe mechanism honoured within 10 business days.
• No installation of software without consent: We do not use computer programs that alter settings, gather personal information, or send messages without explicit consent, in accordance with CASL's anti-malware provisions.

As an Indian company headquartered in Bengaluru, Increeks operates under the following Indian legal framework governing electronic communications:

Information Technology Act, 2000 (and Amendments)

• We comply with the IT Act 2000 and the IT (Amendment) Act 2008, which govern the sending of electronic messages and prohibit the sending of obscene, menacing, or offensive messages.
• We do not use computer resources to communicate information that is knowingly false, offensive, or intended to cause annoyance, inconvenience, or injury to any person.

TRAI Regulations

• Where we send SMS or voice communications to Indian mobile numbers, we comply with the Telecom Regulatory Authority of India (TRAI) Telecom Commercial Communications Customer Preference Regulations, 2018 (TCCCPR), including registration on the Distributed Ledger Technology (DLT) platform, use of approved sender IDs (headers), and registered content templates.
• We respect Do Not Disturb (DND) / National Customer Preference Register (NCPR) preferences and do not send promotional messages to registered DND numbers.

Digital Personal Data Protection Act, 2023 (DPDP Act)

• Personal data used for email marketing (including email addresses) is processed under the consent requirements of the DPDP Act. Consent is free, specific, informed, unconditional, and unambiguous.
• Data principals have the right to withdraw consent for marketing communications at any time, which we facilitate through our unsubscribe mechanism.

For recipients in the European Economic Area (EEA) and the United Kingdom, Increeks processes personal data for email marketing in accordance with the General Data Protection Regulation (GDPR, Regulation (EU) 2016/679) and the UK GDPR.

• Lawful basis — Consent: We rely on consent (GDPR Article 6(1)(a)) as our lawful basis for sending marketing emails. Consent is obtained via a clear, affirmative opt-in action; we never use pre-ticked boxes.
• Right to withdraw: You may withdraw consent for marketing emails at any time, without detriment, by using the unsubscribe link in any of our emails or by contacting us directly. Withdrawal does not affect the lawfulness of processing carried out before withdrawal.
• Consent records: We record the date, time, mechanism, and wording of each consent capture, as required by GDPR Article 7(1).
• Privacy Notice: At the point of consent capture, we provide a clear link to our Privacy Policy, explaining how the email address will be used, for how long it will be retained, and with whom it may be shared.
• Data minimisation: We collect only the minimum personal data necessary for the email communication purpose — typically an email address and, where needed for personalisation, a first name.
• Retention: We retain marketing consent records for the duration of the subscription plus 3 years for compliance evidence purposes.
• ePrivacy / PECR: For recipients in the UK, we also comply with the Privacy and Electronic Communications Regulations (PECR), which require opt-in consent for marketing emails to individuals.

If you believe you have received a message that claims to be from Increeks but looks suspicious, or if you are receiving emails you did not sign up for, please report it immediately.

Report Abuse to Increeks

Email our dedicated abuse address: abuse@increeks.com

Please forward the suspicious email as an attachment (rather than inline) to preserve headers, or include the following information:

• The full email headers of the suspicious message.
• The email address the message was sent to.
• A brief description of why you consider it suspicious.

We investigate all abuse reports and will respond within 3 business days.

Report to External Authorities

You may also report spam or phishing directly to relevant authorities:

• India: Cyber Crime portal at cybercrime.gov.in or the National Cyber Crime Reporting Portal.
• United States: FTC at reportfraud.ftc.gov or forward to spam@uce.gov.
• European Union: Your national data protection authority or national cybercrime reporting portal.
• Global: SpamCop (spamcop.net) or the Anti-Phishing Working Group (APWG) at reportphishing@apwg.org.

Violations of this Anti-Spam Policy — whether by employees, contractors, or third-party vendors acting on Increeks' behalf — are treated as serious disciplinary matters.

• Internal staff: Employees or contractors who send unsolicited commercial messages, use non-compliant email practices, or circumvent our consent mechanisms may face disciplinary action up to and including termination.
• Third-party vendors: Any marketing or communication vendor found to be in violation of this policy will be subject to immediate termination of the engagement and, where legally warranted, will be held financially liable for fines, penalties, or damages arising from their non-compliance.
• Regulatory enforcement: Non-compliance with CAN-SPAM can result in penalties of up to USD $51,744 per email. Non-compliance with CASL can result in penalties of up to CAD $10,000,000 per violation. We take these risks seriously and invest in ongoing compliance training and tooling.

If you have questions about this Anti-Spam Policy, wish to manage your communication preferences, or need to report a concern, please contact us:

• General: hello@increeks.com
• Abuse / spam reports: abuse@increeks.com

Increeks
Bengaluru, Karnataka, India

This policy was last updated on 31 March 2026. We reserve the right to update this policy at any time; the current version will always be available at this URL.