• Personal data collected may include: identity details (name, date of birth, gender), contact details (email, phone, address), account information, KYC documents, payment and transaction information, device and log data, geolocation approximations, and communications with support.
• Purpose of collection:
  • Account creation, verification, and service delivery
  • Payments, withdrawals, and fraud prevention
  • Compliance checks under anti-money laundering and counter-terror financing obligations
  • Service reliability, troubleshooting, and security monitoring
  • Analytics to improve online services and user experience
• Protection measures:
  • Encryption in transit, strong access controls, role-based permissions
  • Segregation of environments and regular security testing
  • Vendor due diligence and confidentiality obligations for processors
  • Incident response procedures and audit logging
• User rights under applicable India law, including the Digital Personal Data Protection Act, 2023:
  • Access a copy of personal data and information on processing
  • Request correction of inaccurate or incomplete data
  • Request deletion when data is no longer required or consent is withdrawn
  • Withdraw consent where processing is consent-based
  • Lodge a grievance through the contacts below
• Compliance references:
  • Digital Personal Data Protection Act, 2023
  • Information Technology Act, 2000 and relevant rules on reasonable security practices
  • Applicable directions from CERT-In for security incident handling and logs
• Contact for privacy requests and grievances:
  • Email: [email protected]
  • Grievance Officer: Data Protection Lead, available on business days 10:00–18:00 IST

Personal data is used only for lawful and transparent purposes:

• Account and service operations: registration, profile management, KYC, customer support
• Transactions: deposits, withdrawals, payment reconciliation, and chargeback handling
• Security: fraud detection, risk scoring, identity verification, and service integrity
• Improvement: analytics, error diagnostics, and quality assurance for online services
• Communication: service notices, policy updates, and transactional messages
• Marketing: optional messages based on consent, with opt-out available in account settings or via message footer
• Compliance: prevention and detection of unlawful activity, responding to lawful requests, and meeting tax or record-keeping duties

Processing relies on consent, contract performance, compliance with legal obligations, or legitimate interests where permitted by law.

• Access and update:
  • Users can review and edit key profile fields in account settings.
  • For additional records or detailed logs, submit a request to [email protected].
• Correction and deletion:
  • Corrections are made after verifying identity. Supporting documents may be requested for accuracy.
  • Deletion is honoured when legally permissible. Certain records may be retained where law requires retention or for dispute resolution.
• Consent for checks:
  • By using the platform, the user consents to security checks, KYC verifications, and processing of payment data by authorised payment providers and verification partners.
• Timelines:
  • The team aims to respond to verified requests within 30 days, subject to lawful extensions for complex cases.

• Services are intended only for persons aged 18 years and above.
• Age cannot be verified without documents. Proof of identity may be requested during KYC or if misuse is suspected.
• If personal information of a minor is discovered, the account will be closed and related data deleted where lawful. A parent or legal guardian can request removal by emailing [email protected] and providing proof of relationship.

• Personal data may be collected in India and processed in other countries where partners, data centres, or processors operate.
• Using the website indicates consent to cross-border transfers for the purposes stated in this policy.
• Safeguards include contractual obligations for confidentiality, security controls, and adherence to applicable transfer restrictions under India law. Transfers will not be made to locations restricted by government notification.

• A disclaimer in this policy may clarify, limit, or expand the scope and effect of particular rules to reflect applicable law and risk controls.
• The disclaimer applies once the user accepts this policy by signature, electronic acceptance, or accession through continued use of the services.
• If any provision is held invalid by a competent authority, remaining provisions continue to apply as permitted by law.

• Cookies are small text files placed on the device by websites to store settings and identifiers.
• Use of cookies:
  • Statistics on site performance and errors
  • Behaviour analysis to understand how users navigate pages
  • Personalisation of content such as language and preferences
  • Improvement of services based on aggregated analytics
• Retention: cookies are generally kept for up to 1 year, after which they expire or are removed.
• Management: browser settings can block or delete cookies. Some features may not function properly if cookies are disabled.

• Using the online services signifies full acceptance of this Privacy Policy.
• The current version of this policy on the website prevails over any earlier version or other communications.
• Continued use after updates indicates acceptance of the revised document. Users should check the effective date shown on the page.

• Personal data may be shared with third parties for lawful purposes, including:
  • Payment gateways, banks, and card networks for transactions
  • Verification partners for KYC, sanctions, and fraud screening
  • Analytics and security vendors to support service operations
  • Legal authorities, regulators, and dispute resolution bodies when required by law or to establish, exercise, or defend legal claims
• The list of key processors and categories of recipients is maintained on the website. If a specific party is not listed, the purpose and scope of sharing will be communicated before or at the time of disclosure where feasible.
• Providing information constitutes consent to such sharing for the stated purposes, subject to contractual confidentiality and security safeguards.

• The website may contain links to external websites that follow their own privacy practices.
• The operator is not responsible for the content, security, or handling of personal information on external sites.
• Users should review the privacy notices of those sites and exercise caution when providing any data outside this domain.