Privacy Policy
At Sahayya Finserve Private Limited (hereinafter referred to as “SFPL”, “we”, “us”, etc.), a company incorporated under the provisions of Companies Act, 1956, having our registered office at No.65, Shrinijaya Arcade, 1st Floor, Opp Punjab National Bank, T Dasarahalli, Bangalore- 560057 and having corporate identity number U65999KA2020PTC132242, we value your trust and respect your right to privacy.
This Privacy Policy applies to all individuals whose personal information is processed by the Company, including:
- customers and prospective customers,
- users of our website, applications, and digital platforms,
- employees,
- vendors, service providers, and consultants.
Personal Data and its collection
Personal Data, means and includes, any data relating to identified or identifiable living person (‘data subject’ here in referred as you/your’) including but not limited to, name, address, mailing address, telephone number, email ID, bank account details including details linked to credit/debit payment instruments, information about your mobile phone, any personal details that may have been voluntarily provided by the customer, whether to Unique Identification Authority of India (UIDAI), Credit Information Bureau of India Limited (CIBIL) or any other agency including any other Credit Information Companies (CIC).
We sometimes use this information to improve our application, and content primarily to give you a better experience. This Policy is not intended to and does not create any contractual or other legal rights in favour of any user or viewer on behalf of any other party.
Sensitive Personal Data or Information (SPDI)
SPDI includes financial information, passwords, biometric data, health information, and other data as defined under applicable laws such as the following
- Password;
- Financial information such as bank account or credit card or debit card or other payment instrument details;
- Physical, physiological, and mental health condition;
- Sexual orientation;
- Medical records and history;
- Biometric information;
- Any detail relating to the above clauses as provided to a body corporate for providing a service; and
- Any of the information received under the above clauses by a body corporate for processing, stored, or processed under lawful contract or otherwise
The terms mentioned/capitalized but not defined in this Privacy Policy shall have the same meaning as assigned to them under IT Act and the rules thereunder.
Information we collect
The Company collects Personal Information (including SPDI) through the Sites, mobile applications including through the registration or contact us pages. The information typically requested includes the following:
|
Registration |
PAN, Email ID, Mobile Number |
|
Information we get from your use of our Services or Sites |
Date of your visit, Time of your visit, Browser used, Default Language setting, Pages viewed, Number or links clicked |
|
General Information |
Address, Telephone Details, Parent’s Name, State, City, Gender, Religion, Caste Category, Occupation, Marital Status, Date Of Birth, Educational Background, Photos, Employment History, Nationality, Nominee Details, Professional Licenses and Affiliations. |
|
Identification Information |
Aadhar Card Number, PAN, Driving License, Voter ID, Passport No. |
|
Financial Info |
Bank Statement, Credit History, Income Statements |
|
Telephone Recordings |
Recording of telephone calls to our representatives and call centers |
|
Photographs and video recordings |
Photographs or video recordings created in connection with our business activities, including for claims assessment, processing, settlement, and disputes, or for other relevant purposes as permitted by law. |
|
Marketing Preferences |
Voluntary Surveys |
Your Personal Information (including SPDI) will only be processed inside India in compliance with applicable data protection laws and regulations.
Purpose of Collection and Usage of Information
We use Personal Data to provide you with loan you explicitly requested for, to resolve disputes, troubleshoot concerns, help promote safe services, assess your interest in our services, inform you about offers, products, services, updates, customize your experience, detect and protect us against errors, fraud and other criminal activity, enforce our terms and conditions, etc. Any information that we collect from you may be used for a variety of purposes, including but not limited to the following: Verifying your identity and conducting KYC checks, Credit Underwriting, assessment, and risk scoring, Processing and evaluating loan applications, Disbursing loans and managing loan accounts, Meeting legal, regulatory, and RBI compliance requirements, To deliver services and also for training, quality, compliance monitoring, audit purpose to the customers, To personalize your experience, by using the Personal Information provided by you to customize your visit to the Sites by displaying appropriate content at our discretion, To improve the functionality of our Sites, quality of products and customer service effectiveness, To facilitate transactions under your user ID and password, as requested, To send periodic emails, SMS, WhatsApp, push notification, To perform statistical analysis, To provide you with information about our products and services. To allow our affiliates to periodically send you information about their products and services via email or other means.
Disclosure of Information
The information provided by you may be disclosed to:
- RBI/SEBI/Collecting Banks / KYC Registration Agencies (KRAs) and other such agencies, solely for the purpose of processing your transaction requests for serving you better,
- Another business entity to carry out any business activity or re-organization, amalgamation, restructuring of business or for any other reason whatsoever,
- Any judicial or regulatory body,
- Auditors,
- Other third-party service providers.
We shall not publish the sensitive personal data or information or disclose it further, without your consent, for any purpose other than stated above.
Consent
By continuing to use, access, or interact with our Sites or Services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. You hereby provide your free, informed, and voluntary consent to the collection, use, storage, processing, and disclosure of your Personal Information (including SPDI) by the Company in accordance with this Privacy Policy and applicable law.
You also acknowledge and agree that this consent shall extend to compliance with, and any processing required under, the Digital Personal Data Protection Act, 2023 (“DPDPA”) upon its implementation, and that you will provide such additional consents or acknowledgements as may be required by the Company under the DPDPA and any rules or regulations made thereunder. Failure to provide such consent may affect the Company’s ability to provide you certain Services.
Such consent may be obtained through application forms, digital platforms, agreements, or other legally acceptable modes.
Individuals shall have the right to withdraw their consent for processing of their personal information at any time, subject to applicable legal and contractual obligations. Withdrawal of consent may impact the Company’s ability to provide services. The same can be done by dropping an email to the address below.
Retention of Information
SFPL shall not retain or store such information for periods longer than is required for the purposes except when the information may lawfully be used or is otherwise required under any other law for the time being in force. Upon completion of the purpose or termination of relationship, such data shall be securely deleted or anonymised, unless retention is required by law. We also take appropriate technical, physical, legal and organizational measures, which are consistent with applicable information security standards.
If you feel that the security of any Personal Information (including SPDI) you might have with us has been compromised or if you have other data security questions or concerns related to us, please notify us at the address details or through email communication. When we provide Personal Information (including SPDI) to a service provider, such service provider will be selected carefully and required to use appropriate measures reasonably designed to protect the confidentiality and security of the Personal Information
If we believe the security of your Personal Information (including SPDI) in our possession or control may have been compromised, we may seek to notify you of that development. If a notification is appropriate, we would endeavor to do so as promptly as possible under the circumstances, and, to the extent we have your e-mail address, we may notify you by e-mail.
Data Subject Rights
The Company recognises the rights of individuals in relation to their personal information and Sensitive Personal Data or Information (SPDI). Subject to applicable laws, individuals, including customers, employees, vendors, consultants and service providers, shall have the right to:
- Access and Review: request access to their personal information held by the Company;
- Correction: request correction or updating of inaccurate or incomplete personal information;
- Erasure: request deletion of personal information where it is no longer required for the purpose for which it was collected, subject to applicable legal and regulatory retention requirements;
- Withdrawal of Consent: withdraw consent for processing of their personal information at any time, subject to legal and contractual obligations.
The Company shall provide appropriate mechanisms to enable such requests and shall process the same within a reasonable timeframe. It is clarified that withdrawal of consent or deletion of data may impact the Company’s ability to provide services or continue the existing relationship, where such data is essential for regulatory or contractual purposes.
Information Sharing and Disclosure
We restrict access to your Personal Data to employees who we believe reasonably need to know that data in order to fulfil their jobs to provide, operate, develop, or improve our products or services.
Communications & Notifications
When You use the application or send emails or other data, information or communication to us, You agree and understand that You are communicating with us through electronic mode and You consent to receive communications from us periodically. We may send notifications to you via email or in writing as a hard copy notice, or through conspicuous posting of such notice on our application. You may choose to opt out of certain means of notification as you may deem fit.
Grievance Redressal
In case of any grievances in relation to your Personal Information, please contact our Grievance Officer whose details are as below:
Mr. Rohith Balakrishnan
Sahayya Finserve Private Limited
No.65, Shrinijaya Arcade, 1st Floor,
Opp Punjab National Bank, T Dasarahalli, Bangalore- 560057
Email : grievance.officer@sahayyafinserve.com
Updating or Reviewing Your Information
You may upon written request to us review the personal data or information provided by You. SFPL shall ensure that any personal information or sensitive personal data or information found to be inaccurate or deficient shall be corrected or amended as feasible.
Reasonable Security Practices for Protecting Your Information
SFPL uses commercially reasonable physical, managerial, and technical safeguards to preserve the integrity and security of your personal information. These include internal reviews of our data collection, storage and processing practices and security measures, such as appropriate encryption and physical security measures to guard against unauthorized access to systems where we store personal data.
All information gathered on said application is securely stored within the SFPL controlled database. The database is stored on secured servers; access to which is password-protected and is strictly limited.
Changes to Our Privacy Policy
Please note that this policy may change from time to time. If We change our privacy policies and procedures, We will post the changes on the application to keep You updated. Changes to this Policy shall become effective on the day they are posted on this page.
1. Introduction
Welcome to Sahayya Finserve Private Limited (the ‘Company’ or ‘Sahayya’). The domain name www.Sahayyafinserve.com (‘Website’) is owned by Sahayya, a company incorporated under the Companies Act, 2013 with its registered office at #65, Shrinijaya Arcade, <br>1st Floor, Opp Punjab National Bank, <br>T Dasarahalli, Bangalore – 560057
2. Definitions
“Device Information” means unique device identifier such as IMEI number, contact lists (in some cases), technical Data about Your computer and mobile device including details regarding applications and usage details.
“Digital Platform(s)” shall mean this website, the Company’s website, mobile applications, online services, and other digital/ electronic media.
“Location Information” means information that may be collected by certain mobile applications that identifies Your physical location. This information may be collected from Your mobile device’s location-aware features when You request certain services that are dependent on Your physical location.
“Other Information” shall mean various remaining information including those relating to Your occupation, details of employment/ business/ profession, Your financial situation, type of business relationship, Your financial statements, income, expenditure, repayment capacity, proofs of income proof, bank statements, income tax returns, salary slip, source of income, contract of employment, debit card/credit card details, Your other bank account details, KYC documents i.e. identity proof, address proof, signature, etc.
The Other Information will also include the information provided, uploaded, shared by You through Our Digital Platforms and such information shall include, inter alia, your Personal Information, details of incorporation, government and business related approvals/ consents/ licenses, tax certificates, invoices, reviews, photographs, comments, lists, followers, the users You follow, current and prior purchase or browsing details, contact or notification information, and other information that You Provide Us and aggregated and de-identified data or any such information available/ accessible to the Company.
“Personal Information” or “Personal Data” means any information that relates to a natural person, which, either directly or indirectly, in combination with other information available or likely to be available with the Company, is capable of identifying such person. It also refers to data that identifies (whether directly or indirectly) You, such as information You may provide on Our forms, surveys, online applications or similar online fields. Examples may include Your name, previous names, postal address, email address, gender, marital status, telephone number, domicile, nationality, PAN number, date of birth or account information etc.
“Sensitive Personal Data/ Information” of a person means such personal information which consists of information as defined under Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information), Rules, 2011 (“Rules”).
“Use of Our Digital Platforms” shall mean visiting any Digital Platforms owned and/or controlled by us including to access Your accounts, conducting/ authorizing transactions through electronic mode etc.; viewing or clicking on Our ads on third-party sites that re-direct You to Our Digital Platforms; interacting with us on third-party sites, etc.
3. Type of Personal Information Collected
Sahayya may, for the purpose of rendering its services, collect personal information as described below:
i) Information that may be provided by You directly, such as:
a. Identification Information: Name, gender, residential/communication address, contact number, date of birth, marital
status, email address or any other contact information.
b. PAN, KYC, Signature and Photograph.
c. Bank account or other payment instrument details.
d. Any other detail which may be required by Us for providing such services.
ii) Information that We may collect from Your use of Our services, such as:
a. Your Personal Data/ Information (pls. refer to the definition given under the Definitions).
b. Your Sensitive Personal Data/ Information (pls. refer to the definition given under the Definitions).
c. Your Location Information (pls. refer to the definition given under the Definitions).
d. Your Other Information (pls. refer to the definition given under the Definitions).
e. Generation and storing Password or One-Time password based on Your request on Our Digital Platform(s).
f. Your PAN details, copy/ details of Identity Proof & Address Proof and photograph(s).
g. Financial data and transaction data pertaining to You collected from Credit Information Companies, Your bankers & lenders and Our partnering merchants.
h. Social relationships detail such as Your father’s name, spouse’s name, and mother’s name.
i. Your Device Information (pls. refer to the definition given under the Definitions). It shall also include Unique mobile device identifier (e.g. IDFA or other device IDs on Apple devices like the iPhone and iPad), if You are using Our Digital Platform(s) on a mobile device, We may use mobile device IDs (the unique identifier assigned to a device by the manufacturer), instead of cookies, to recognize You. Unlike cookies, mobile device IDs cannot be deleted from records. We may share it with advertising companies, and they may use device IDs to track Your use of Our applications, track the number of advertisements displayed, measure advertising performance and display advertisements that are more relevant to You. We may also share it with analytics companies which may use mobile device IDs to track Your usage of Our applications/ Platforms.
j. All other information, you may provide Us through third-party sign-in services such as Facebook, Google etc. In such events/ cases, We will fetch and store whatever information is made available to Us by You through these sign-in services.
k. Communications between You and other lenders, merchants, and other third parties through Our Platforms; participation by You in a survey, poll, sweepstakes, contest, or promotion scheme; Your request for certain features (e.g., newsletters, updates, or other products/ services).
l. Your preferences including settings such as time zone and language.
m. Behavioral details as to how to utilize Our products, services, offers etc., Your browsing actions, patterns, and online activity. It may also include Your online activity, such as Your search queries, comments, domain names, search results selected, number of clicks, pages viewed and the order of those pages, how long You visited Our Digital Platform(s), the date and time you used the Platforms, error logs, and other similar information.
n. Records of correspondence and other communications between Us, including email, telephone conversations, live chat, instant messages, and social media communications containing information concerning Your grievances, complaints and dispute.
o. Personal data You provide to Us about others or others provide to Us about You. We may collect and store information about You to process Your requests and automatically complete forms for future transactions, including (but not limited to) Your phone number, address, email, billing information and credit or debit/ payment card information. This information may be shared with third-parties which assist in processing and fulfilling Your requests, including PCI compliant payment gateway processors, card associations, payment aggregators, lenders, etc. When You submit credit or payment card information, We will encrypt the information using industry standard technologies. If You write reviews about businesses/ services with which You conduct transactions through Our Digital Platform(s), We may publicly display information that You transacted with those businesses/ services.
p. The information provided by You such as ratings, reviews, tips, photos, comments, likes, bookmarks, friends, lists, etc. to be published or displayed (hereinafter, “posted”) on publicly accessible areas of Our Digital Platform(s), or transmitted to other Users of Our Platforms or third-parties (collectively, “User Inputs”). Your User Inputs are posted on and transmitted to others at Your own risk. Although We limit access to certain pages, You may set certain privacy settings for such information through Your account profile. Please be aware that no security/ data protection measures are perfect or impenetrable. additionally, we cannot control the actions of other users of our platforms with whom you may choose to share your user contributions. therefore, we cannot and do not guarantee that your user inputs will not be viewed by unauthorized persons. We may display this information on the Our Digital Platform(s), share it with businesses, and further distribute it to a wider audience through third party sites and services. You should be careful about revealing any sensitive details about Yourself in such postings; and
q. Your locations details including the latitude, longitude or altitude of Your mobile device, GPS location.
r. Information collected through cookies.
s. In case of mobile application users, the online or offline status of Your application.
t. The information that You agree to share with us for the availing of services provided by Us.
We, wherever possible, indicate which fields are mandatory and which fields are optional to be filled on the Our Digital Platform(s). You always have the option to not provide information by choosing not to submit particular information or feature on Our Digital Platform(s).
By using Our Digital Platform(s), You consent to the collection, storage, and use of the User Information that You provide for any of the services that We offer, and You consent to Our collection of any changes or updates that You may provide to the User Information. The Company collects only such User Information that the Company believes to be relevant for the purpose of identification and verification and is required to understand You or Your interests or provide services that You may require or request. it is clarified that we shall not be liable, for any reason whatsoever, for the authenticity of any user information provided by you to us. you hereby represent, warrant and confirm that the user information provided by You is and shall continue to be valid, true and accurate.
iii) Log File Information which shall be stored automatically:
If You visit/log into Our website just to browse, read pages or download information, certain information regarding Your visit is automatically stored on Our systems. This information cannot and does not identify You personally.
The kind of information that is gathered automatically includes without limitation:
a. the type of browser You are using (e.g. Internet Explorer, Firefox, etc.);
b. the type of Operating System You are using (e.g. Windows or Mac OS);
c. the domain name of Your Internet Service Provider, the date and time of Your visit and the pages on Our website.
We sometimes use this information to improve Our website(s) design, and content, primarily to provide You with a better browsing experience.
4. Purpose of Collection and Usage of Information
On our website, we collect, retain, and use information about you only when we reasonably believe that it will help administer our business or provide products, services, and other opportunities to you. Such information is collected for specified business purposes, such as:
a) to provide You with the services that You may require,
b) to process Your financial and non-financial transaction requests,
c) to undertake research and analytics for offering or improving Our services,
d) to check and process Your submitted applications, if any, for availing any financial services,
e) to share with You any updates/changes in Our services and their terms and conditions,
f) to take up and investigate any complaints/claims/disputes,
g) to respond to Your queries and feedback submitted by You,
h) for verification of Your identity and other parameters,
i) to fulfil the requirements of applicable laws/regulations and/or court orders/regulatory directives received by Us.
5. Disclosure of Information
The information provided by You will not be sold or otherwise transferred to unaffiliated third parties unless otherwise stated at the time of collection or without Your approval. However, Sahayya might share / disclose / exchange information:
a) With subsidiaries and/or affiliates in an effort to bring You improved services across Our family of products and services,if permissible under relevant laws and regulations.
b) With third-party service providers, vendors, data processors and/or agents who perform services for us and help us operate Our business.
c) Other companies to bring You co-branded services, products or programs that are empaneled with us
d) With statutory/ regulatory agencies & authorities, departments under the central/ state/ local governments including but not limited to the Reserve Bank of India or the Securities and Exchange Board of India, other law enforcement authorities/ agencies or persons, to whom or before whom it is mandatory to disclose the Personal Data as per the applicable regulations, laws, courts, judicial/ quasi-judicial authorities, tribunals, arbitrators and arbitration tribunal.
e) With Credit Information Companies (CICs)/ Credit Bureaus as per the regulatory/ statutory requirements.
f) Any other third parties to comply with legal requirements such as the demands of applicable warrants, court orders; to verify or enforce Our terms of use, Our other rights, or other applicable policies; to address fraud, security or technical issues; to respond to an emergency; or otherwise to protect the rights, property or security of Our customers or third parties.
g) By using Our Digital Platform(s) or by agreeing to transact with Us, You agree to the above sharing of information during Your relationship with Us.
h) We use information about the devices You use to interact with the Company such as Device Information and Location Information.
i) When You provide Your details in forms, surveys, online applications or similar online fields.
6. Retention of Information
We may retain Your Personal Data for as long as required to provide You with services such as managing Your account and dealing with any concerns that may arise.
Sahayya shall not retain or store such information for periods longer than is required except when the information may lawfully be used or is otherwise required under any other law for the time being in force.
By agreeing to avail services offered by Sahayya, You have agreed to the collection and use of your Sensitive Personal Data or Information, as well, by Sahayya. You always have the right to refuse or withdraw Your consent to share/disseminate your Sensitive Personal Data or Information by contacting the customer care. However, in the event of Your refusal or withdrawal of personal data, You shall not be able to fully avail any services of Sahayya.
Information however may remain on the servers unless otherwise deleted or purged permanently.
7. Communications & Notifications
When You use the Website or send emails or other data, information, or communication to us, You agree and understand that You are communicating with Us through electronic mode and You consent to receive communications from Us periodically. We may send You notifications via email or in writing as a hard copy notice, or through conspicuous posting of such notice on our Website. You may choose to opt out of certain means of notification as You may deem fit.
8. Updating or Reviewing Your Information
You may, upon written request to us, review the personal data or information provided by You. Sahayya shall ensure that any personal information or sensitive personal data or information found to be inaccurate or deficient shall be corrected or amended as feasible.
9. Reasonable Security Practices for Protecting Your Information
Sahayya uses commercially reasonable physical, managerial, and technical safeguards to preserve the integrity and security of Your personal information. These include internal reviews of Our data collection, storage and processing practices and security measures, viz. appropriate encryption and physical security measures to guard against unauthorized access to systems where We store personal data.
To protect Your privacy and security, Sahayya takes reasonable steps (such as requesting a unique password) to verify Your identity before granting You access to Your account. You are responsible for maintaining the secrecy of Your unique password and account information, and for controlling access to Your email communications from Sahayya, at all times.
Although We use security measures to help protect Your personal information against unauthorized disclosure, misuse, or alteration, as is the case with all computer networks linked to the internet, Sahayya cannot, however, ensure or guarantee the security of any information You transmit to Sahayya and You do so at Your own risk. Once We receive Your transmission of information, we make commercially reasonable efforts to ensure the security of such information.
10. Links to Other Websites
Clicking on certain links within Our Digital Platform(s) may take You to other websites or may display information on Your computer screen or device from other sites, which may not be maintained by the Company. Such sites may contain terms and conditions, privacy provisions, confidentiality provisions, or other provisions that differ from the terms and conditions applicable to Our Digital Platform(s). Links to other Internet services and websites are provided solely for the convenience of users. A link to any service or site is not an endorsement of any kind of the service or site, its content, or its sponsoring organization.
The Company assume no responsibility or liability whatsoever for the content, accuracy, reliability, or opinions expressed in a website, to which Our Digital Platform(s) are linked (a “linked site”) and such linked sites are not monitored, investigated, or checked for accuracy or completeness by the Company. It is the responsibility of the user to evaluate the accuracy, reliability, timeliness, and completeness of any information available on a linked site. All products, services and content obtained from a linked site are provided “as is” without warranty of any kind, express or implied, including, but not limited to, implied warranties of merchantability, fitness for a particular purpose, title, non-infringement, security, or accuracy.
11. Changes to Our Privacy Policy
Please note that Our Privacy Policy may change from time to time. If We change our privacy policies and procedures, we will post the changes on the Website to keep You updated. Changes to this Policy shall become effective on the day they are posted on this page. Please visit Our Website to keep yourself abreast of any changes to the Privacy Policy.
12. Grievance Redressal
Any discrepancies and grievances related to the processing and use of Your information can be raised to the grievance officer appointed by Sahayya. For further details please visit Grievance Redressal Procedure.
13. Cookie Policy
Cookies are small data files that a website stores on your computer/electronic device. While cookies have unique identification nos., personal information (name, a/c no, contact nos. etc.) SHALL NOT be stored on the cookies. We may use cookies to improve Your experiences when visiting or using Our Digital Platform(s).
We do not use cookies to store or transmit any Personal Data. These cookies collect information analytics about how users use a website, for instance often visited pages. All information collected by third party cookies is aggregated and therefore anonymous. By using our website user/s agree that these types of cookies can be placed on his/her device. User/s is free to disable/delete these cookies by changing his/her web browser settings. Sahayya is not responsible for cookies placed in the device of user/s by any other website and information collected thereto.