Privacy Policy

Privacy Policy

Nifipay's India Limited (“Nifipay's”, “we”, “us”, “our”), respects every individual’s right to privacy and it is our endeavour to protect their personal and Sensitive personal data or information (defined below).

Scope

This Privacy Policy (“Policy”) applies to all visitors (i.e. those who do not have an Account with Nifipay's) and users (i.e. those who have an Account with Nifipay's) (collectively referred to as “User”) who share their personal and Sensitive personal data with us, while visiting, accessing, browsing and using our website and mobile application (collectively referred to as “Website”). The purpose of this Policy is to inform Users regarding collection, use, storage, transfer and disclosure of their data. Before submitting any information to us, please carefully read this Policy to understand how we shall treat your information.

Consent

The User acknowledges that this Policy is a part of Nifipay's's Terms & Conditions and all the terms defined there have the same meaning here in this Policy. Access, browsing and continuous use of the Website constitutes the User’s unconditional consent to this Policy read together with the Terms of Use. If the User does not agree with the terms of this Policy, please do not visit and use our Website. This Policy can be easily accessed at various places on our Website, including but not limited to when Users create an account with us on our Website.

Modifications

Nifipay's reserves its right to modify, alter, and update this Policy at any time, with or without prior notice. Although, Users shall be notified of material changes through their registered email address or any other mode of communication available with us, it is advised that they consult this Policy regularly to be updated about the changes. If a User continues to use or avail the services of the Website after any modification, amendment, alteration or change of this Policy, irrespective of whether notice was sent to the User or published on the Website, such User is hereby deemed to provide consent to this Policy and Nifipay's's other Policies and practices existing at the time of visiting, accessing and/or using the Website.

Compliance

This Policy is published in compliance of:

• Section 43A of the Information Technology Act, 2000 (“Act”)
• Regulation 4 of the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Information) Rules, 2011 (“SPI Rules”)

Definitions

Personal Information

SPI Rules define “Personal Information” as any information that relates to a natural person, which, either directly or indirectly, in combination with other information available or likely to be available with a body corporate, is capable of identifying such person. Such information includes name, address, mobile number, etc.

Sensitive Personal Data or Information

SPI Rules define “Sensitive personal data or information” of a person as personal information which consists of information relating to:

• passwords;
• financial information such as bank accounts or credit card or debit card or other payment instrument details;
• physical, physiological and mental health condition;
• sexual orientation;
• medical records and history;
• biometric information;
• any of the information received under above clauses by body corporate for processing or storage under lawful contract or otherwise.

Information which is freely available in the public domain or furnished under the Right to Information Act, 2005 or any other law shall not be regarded as sensitive personal data or information.

Payment Data

“Payment Data” is defined as end-to-end transaction details and information pertaining to payment or settlement transaction that is gathered / transmitted / processed as part of a payment message / instruction. Payment Data includes:

• Customer data (Name, Mobile Number, email, Aadhaar Number, PAN number, etc. as applicable);
• Payment sensitive data (customer and beneficiary account details);
• Payment Credentials (OTP, PIN, Passwords, etc.);
• Transaction data (originating & destination system information, transaction reference, timestamp, amount, etc.).

Consent for Collection of Personal Information

Users provide their consent to the use, disclosure, storage, possession, receiving, dealing or handling of their Personal Information by accessing, browsing, or availing services on the Website.

In accordance with Rule 5 of SPI Rules, Users provide their specific consent to the use, disclosure, storage, possession, receiving, dealing or handling of their Sensitive personal data or information for lawful purposes enumerated in this policy through checking the box affirming such consent appearing at the time of creation of their Account on the Website.

Nifipay's presumes adequate and lawful parental consent in case the Personal Information or Sensitive personal data or information is shared by a User under the age of 18 years.

Types of Information We Collect

The Users who access and use our Website are required to submit certain Personal Information and Sensitive personal data or information for creating an Account, entering into transactions with us and obtaining customer support services. Personal Information and Sensitive personal data or information which may be collected by us includes:

• full name and age;
• username and password;
• PAN;
• password of User’s account registered with us;
• postal address;
• E-mail address;
• mobile number;
• internet protocol (IP) addresses (through cookies);
• URL of website accessed prior to and post Users’ accessing our Website;
• credit/debit card number, credit/debit card expiration date and/or other payment instrument details;
• User’s feedback, queries, e-mails, letters, suggestions provided to us;
• third party information about concerned User’s activities or postings on the Website;
• Information about the mobile/tab device the App is installed on or mobile device identifier.
• any other information relevant for accessing and using our Website as maybe required by us.