Privacy Policy

1. Nature of Business

PaisaOne ("Company", "we", "our" or "us") operates as a Direct Selling Agent (DSA) facilitating the promotion and distribution of financial products and services offered by banks, non-banking financial companies (NBFCs), insurance providers and other regulated institutions. In facilitating the above, we collect, process and share personal information from customers who show interest in our services.

Privacy Policy

This privacy policy describes our policies and procedures on the collection, use and disclosure of your information when you use the service and tells you about your privacy rights and how the law protects you.

We use your personal data to provide and improve the service. By using the service, you agree to the collection and use of information in accordance with this Privacy Policy.

2. Collection of Personal Information

We may collect the following types of personal information:

  1. Full Name
  2. Date of Birth
  3. PAN Number
  4. Contact Number
  5. Email Address
  6. Financialfinancial details, as needed for product qualification
  7. or any other Usage data

Usage Data

Usage Data is collected automatically when using the Service.

Usage Data may include information such as your device's Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our service that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers and other diagnostic data.

When you access the service by or through a mobile device, we may collect certain information automatically, including, but not limited to, the type of mobile device you use, your mobile device unique ID, the IP address of your mobile device, your mobile operating system, the type of mobile internet browser you use, unique device identifiers and other diagnostic data.

We may also collect information that your browser sends whenever you visit our services or when you access the service by or through a mobile device.

This information is collected when users:

  1. Access or register on our website/platform
  2. Fill out contact forms
  3. Interact with our representatives or services

Once registered with us, users are no longer anonymous and may be contacted via phone, SMS, RCS, whatsapp and email.

3. Consent and Disclosure

By using our services, users explicitly authorize PaisaOne to:

a. Share their personal information with our group companies and authorized third party service providers, including but not limited to Credit Information Companies (CICs), financial institutions and data analytics partners.

b. Use the information for:

  • Communication regarding financial products and services
  • Tailored offers and personalized recommendations
  • Data enrichment and creditworthiness assessment

4. Regulatory Compliance

Our data practices comply with the following:

  1. The Information Technology Act, 2000
  2. The IT (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011
  3. The Companies Act, 2013
  4. The Digital Personal Data Protection Act, 2023 (DPDP Act)
  5. RBI and SEBI guidelines as applicable to the DSAs and third party intermediaries

5. User Rights and Credit Reports

Users have the right to:

  1. Access and review their credit reports (subject to verification and consent).
  2. Request corrections in line with CICs' procedures.
  3. Withdraw consent with an understanding that it may limit or restrict access to certain services.

6. Data Usage and Retention

  1. Collected data is used solely for the purposes mentioned above.
  2. We retain personal information only as long as it is necessary for service delivery, legal obligations or business needs.
  3. Upon withdrawal of consent or service deactivation, user data will be archived as per retention policy and applicable law.

7. Data Security Measures

We use industry-standard practices to secure the data of our users:

  1. Secure Socket Layer (SSL) encryption.
  2. JWT (JSON Web Token) based authentication.
  3. Regular audits and secures storage.
  4. Access controls and encrypted data transfers.

We may share your personal information in the following situations:

With Service Providers: We may share your personal information with service providers to monitor and analyze the use of our service, to contact you.

For business transfers: We may share or transfer your personal information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company.

With Affiliates: We may share your information with our affiliates, in which case we will require those affiliates to honor this privacy policy. Affiliates include our parent company and any other subsidiaries, joint venture partners or other companies that we control or that are under common control with us.

With business partners: We may share your information with our business partners to offer you certain products, services or promotions.

With other users: When you share personal information or otherwise interact in the public areas with other users, such information may be viewed by all users and may be publicly distributed outside.

With your consent: We may disclose your personal information for any other purpose with your consent.

Disclosure of your Personal Data

Business Transactions

If the company is involved in a merger, acquisition or asset sale, your personal data may be transferred. We will provide notice before your personal data is transferred and becomes subject to a different Privacy Policy.

Law enforcement

Under certain circumstances, the company may be required to disclose your personal data if required to do so by law or in response to valid requests by public authorities (e.g. a court or a government agency).

Other legal requirements

The Company may disclose your personal data in the good faith belief that such action is necessary to:

  • Comply with a legal obligation.
  • Protect and defend the rights or property of the company.
  • Prevent or investigate possible wrongdoing in connection with the service
  • Protect the personal safety of users of the service or the public
  • Protect against legal liability

Security of your Personal Data

The security of your personal data is important to us, but remember that no method of transmission over the internet, or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal data, we cannot guarantee its absolute security.

Detailed Information on the Processing of your personal data

The service providers we use may have access to your personal data. These third-party vendors collect, store, use, process and transfer information about your activity on our service in accordance with their privacy policies.

Children's Privacy

Our service does not address anyone under the age of 13. We do not knowingly collect personally identifiable information from anyone under the age of 13. If you are a parent or guardian and you are aware that your child has provided us with personal data, please contact us. If we become aware that we have collected personal data from anyone under the age of 13 without verification of parental consent, we take steps to remove that information from our servers.

If we need to rely on consent as a legal basis for processing your information and your country requires consent from a parent, we may require your parent's consent before we collect and use that information.

Links to Other Websites

Our service may contain links to other websites that are not operated by us. If you click on a third party link, you will be directed to that third party's site. We strongly advise you to review the privacy policy of every site you visit.

We have no control over and assume no responsibility for the content, privacy policies or practices of any third-party sites or services.

Changes to this Privacy Policy

We may update our privacy policy from time to time. We will notify you of any changes by posting the new privacy policy on this page.

We will let you know via email and/or a prominent notice on our service, prior to the change becoming effective and update the "Last updated" date at the top of this privacy policy.

You are advised to review this privacy policy periodically for any changes. Changes to this privacy policy are effective when they are posted on this page.

8. Contact & Grievance Redressal

If you have any concerns regarding your personal data, you may reach our Data Protection Officer (DPO) or grievance officer:

Grievance Officer: Manoj Kumar

Email: grievance@paisaone.com

Phone: 7075358227

Address: 4th Floor, B Wing, Purva Summit, White Field Road, Hitech City, Madhapur, Hyderabad, Telangana, 580001

Time: Monday to Saturday, 10:00 AM to 6:00 PM