Zype

Get Personal Loans up to 2 Lakhs in 6 minutes

Apply Now

Privacy Policy

1. INTRODUCTION

Easy Platform Services Private Limited (“Easy” or “we” or “us” or “our”) owns and operates the website www.getzype.com (“Website”) and the iOS android mobile application, including any other application or software, run under the brand name – ‘Zype’ (“Zype”) (Website and Zype, collectively referred to as “Platform(s)”). Through our Platform we (i) connect borrowers with our affiliates, financing partners, third-party service providers and lenders or their Lending Service Providers (defined below) (among other “Third Party”), defined below); (ii) monitor the loans; (iii) assists in recovery of loans (collectively referred to as “Services”); and (iv) facilitate UPI payments.  

This privacy policy (“Policy”) discloses the practices and policies adopted by Easy while accessing, collecting, storing, retrieving, disclosing, transferring, using, or otherwise Processing (defined below) information it may receive from its users (“you” or “your” or “Customer” or “User”) who access / use the Platform(s) to receive the Services. It also sets out the types of data (“Data”, defined below) we collect from you and the way in which we collect, use or disclose such data to other entities (“Third Parties”, defined below). Capitalised terms used but not defined in this Policy shall have the meaning as set out in Easy’s Terms and Conditions, accessed at https://stagingv2.zypecard.co.in/terms-conditions/ 

This Policy is published in accordance with the applicable provisions of law (“Applicable Laws”, defined below).  The information received from you while accessing / using the Platform(s), including our call-center facility (“IVR”) will be utilised in a manner as set out in this Policy.  

This Policy is published in accordance with Applicable Laws. We request you to go through this Policy and the Terms and Conditions (“T&C”), accessible at https://stagingv2.zypecard.co.in/terms-conditions/, carefully before you decide to access / use the Platform and receive Services. We encourage you to familiarise yourself with our Policy and reach out to us in case you have any further questions.  

For availing our Services, we shall take your explicit consent to this Policy which shall indicate your acceptance of the practices described here as part of the Policy. While our Platform(s) may contain links to third party applications or platforms, we are only responsible for the privacy practices and security of your Data in relation to our Services and we recommend that you check the privacy policies of all such third party applications / platforms you visit.  

2. DEFINITIONS

  1. Applicable Laws means all laws, rules, regulations, guidelines, directions and judgments in force in India for the time being or as may be notified to be in force in India, including but not limited to the Information Technology Act, 2000 (“IT Act”), Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 (“SPDI Rules”), the Information Technology (The Indian Computer Emergency Response Team and Manner of Performing Functions and Duties) Rules, 2013 (“IT Rules, 2013”), the Digital Personal Data Protection Act, 2023 (“DPDP Act”) as and when enforced, the Aadhaar (Targeted Delivery of Financial and Other Subsidies, Benefits and Services) Act, 2016 (“Aadhaar Act”), the Banking Regulation Act, 1949, the Reserve Bank of India (Digital Lending) Directions, 2025 (“Digital Lending Directions”), the Reserve Bank of India (Know Your Customer) (KYC)) Directions, 2016 (“KYC Master Directions”), Credit Information Companies Act, 2005 (“CIC Act”), and Prevention of Money-Laundering Act, 2002 (“PMLA”) and rules notified thereunder each as may be amended from time to time, as well as all other laws, rules and regulations for the time being in force in India or as may be notified to be in force in India.
  2. CERT-In shall have the same meaning as ascribed to the ‘Indian Computer Emergency Response Team’ under sub-section (1) of Section 70B of the IT Act, 2000 as may be amended from time to time.  
  3. Cookie means a small file placed on your device via our Platform(s) when you either visit or use certain features of the Platform, which allows it to remember your actions or preferences for a certain period of time.  
  4. Collected Data shall have the same meaning as explained in clause 3 below. 
  5. Cyber Incident, Cyber Security Incident and Cyber Security Breaches shall have the same meaning as ascribed to them under the IT Rules, 2013 as may be amended from time to time.  
  6. Data shall have the same meaning as ascribed to it under sub-section (h) of Section 2 of the DPDP Act, as may be amended from time to time 
  7. Know-Your-Customer (KYC) shall have the same meaning as ascribed to it under the KYC Master Directions.  
  8. Legitimate Uses shall have the same meaning as ascribed to it under Section 7 of the DPDP Act, as may be amended from time to time.  
  9. Lending Service Provider (LSP) shall have the same meaning as ascribed to it under sub-clause (v) of paragraph 4 of the Digital Lending Directions, as may be amended from time to time; 
  10. Personal Data shall have the same meaning as ascribed to it under sub-section (t) of Section 2 of the DPDP Act, as may be amended from time to time.   
  11. Personal Data Breach shall have the same meaning as ascribed to it under sub-section (u) of Section 2 of the DPDP Act, as may be amended from time to time.  
  12. Processing, with its grammatical variations and similar expressions, shall have the same meaning as ascribed to it under sub-section (x) of Section 2 of the DPDP Act, as may be amended from time to time. 
  13. Third Parties means other entities including our affiliates, financing partners, third-party service providers, lenders or their lending service providers, credit information bureaus, account aggregators, group companies, business partners, technical sub-contractors, analytics providers, search information providers from whom we may receive information in accordance with Applicable Laws and/or to whom we may disclose Collected Data in accordance with Applicable Laws. 
  14. UPI means Unified Payments Interface. 

3. COLLECTION OF INFORMATION 

The Platform(s) may access, collect, store, use, disclose, transfer or otherwise process the following Data from you for the provision of Services, including for such purposes as specified below, with your explicit consent is obtained via a consent screen on the Platform(s):  

  1. On-boarding information including Know your customer (KYC) Data: To register as a User on the Platform, you will be required to provide us with information about yourself, as required for our customer identification and customer due diligence process and in order to provide you with customised Services. This includes information such as government-issued officially valid documents such as PAN card, voter ID, Goods and Services Tax (“GST”) details, and ration card, voter identification card, Aadhaar card, driver’s licence, Udyam information, etc. and any other document prescribed under Applicable Laws from time to time. This Data is collected for the purpose of on-boarding / KYC requirements and are only used on a need to use / know basis. Obtaining one-time access to your device’s camera, microphone, location or any other facility may be necessary for the purposes of fulfilling KYC requirements under Applicable Laws 
  2. Aadhaar data: We may collect your Aadhaar number for verifying, authenticating and / or updating your Aadhaar number in accordance with the Aadhaar Act solely for the purpose of facilitation of our Services. Collection of your Aadhaar details is not a mandatory requirement for availing our Services unless required under any Applicable Law. We ensure that your Aadhaar number shall be disclosed only with your consent, and in a manner specified under Applicable Law. 
  3. Financial Data: Information relating to your economic profile, including your age, income, occupation, employer, employment details (for instance, whether in service or self-employed), bank account details, payment credentials or payment instrument information, financial statements, income tax returns, lending history, repayments, credit history, and expenditure trends may be processed for the purposes explained under clause 4 below, including for the purposes of assessing your eligibility for our Services; and Additionally, for availing loans / credit facilities with the Third Parties: 
      • Salaried individuals may have to provide: Employment details like company name, salary/offer letter on case-to-case basis, and the company email address;
      • Self-employed individuals may have to provide: Self-employment details such as profession, work location and monthly income.
  4. SMS: We require access your transactional SMS to provide relevant services / offers / rewards basis your consumption pattern and to facilitate the credit assessment to be undertaken by Third Parties. The SMS data stored on your device for the purposes of, including but not limited to, registering you and your device for payments services, OTPs for logins and payments, enhancing your security, bill payments and recharge reminders, and any other legitimate uses with your explicit consent. 
  5. Camera Access: We require a one-time access to your mobile device camera for clicking your selfie, enabling you to upload photos / videos for KYC compliance and / uploading any other necessary documents on the Platforms as part of our on-boarding / KYC compliance function. Even for instances when you want to initiate a payment by scanning a QR code of the payee.  
  6. Geolocation Data and phonebook contact: This data is only accessed at the time you make the UPI payment. 
  7. Device Information: When you browse our Platform(s), we automatically receive your device internet protocol (IP) address. This helps us learn about your browser and operating system, software, the date and time at which you visited the Platforms, the type of device being used (including the hardware models). This helps us detect and prevent fraud. We may also access your gallery, in order to enable you to download your QR code or
    if you choose to make payment to a QR code saved in your gallery.  
  8. Personal Data: We may collect Personal Data such as your name, gender, address including pin code, email address, mobile phone number, nationality, marital status and date of birth for the Purposes as explained under clause 4 below. 
  9. Third Party Information: We work closely with Third Parties including other entities, including, credit information bureaus (Equifax, CRIF), account aggregators, business partners, technical sub-contractors, analytics providers, search information providers, etc. and may receive information about you from such sources in accordance with Applicable Laws. Such information may be combined with information collected on the Platform resulting in the derived information to provide you with a customised user experience.
  10. Voluntarily shared Data: We will also process Data that may be shared by you voluntarily and / or Data received from your family members / your employers, shared online, by telephone or via written correspondence, as well as Data received from regulatory authorities or government agencies and their databases. This includes Data that you provide us by filling in forms on the Platform for availing the Services. This includes contact information such as name, email address, mailing address, phone number, financial information, if any, unique identifiers such as username, account number, password and preferences information such as favorites lists and transaction history and any Data provided by you at the time of registration / application for the Services offered by us directly or through Third Parties. 
  11. Biometric Data: No biometric data shall be collected by us or Third Parties, in accordance with the Digital Lending Directions.  
  12. Marketing related Data: We may collect information such as preferences regarding marketing messages from us and Third Parties, as well as your communication preferences. We may use third-party advertising companies to serve advertisements when you visit the Platform(s). These companies may use information about your usage preferences and about your visits to this and other websites in order to provide advertisements about goods and services of interest to you. In the event you chose to interact with their advertisements and are redirected to their websites, you will be complying with their respective terms and conditions. We will not be responsible for product and services of such websites and is also not responsible for their privacy practices, as we do not own, manage or control such websites. 
  13. Other Data processed as part of providing the Services: Information which may be processed as part of underwriting, debt collection, operations, compliance requirements, facilitating UPI payments and user grievance redressal. Such information may include the last 4 digits of your bank account number, first 6 and last 2 digits of your credit card, name of the bank account holder linked to your mobile number, IFSC Code of the relevant bank, bills linked to reference ids provided by you, and transaction details for the transactions initiated through the Platform such as transaction id and status of the transaction. 
  14. We shall ensure that we and Third Parties do not store Personal Data of users except some basic minimal data (viz., name, address, contact details of the user, etc.) that may be required to carry out operations as part of providing Services.  

Additionally, we may process further information relating to you as may be required for certain Legitimate Uses for the purpose of compliance with Applicable Laws. This includes instances where the Processing is for the purpose of ascertaining the financial information and assets and liabilities of any person who has defaulted in payments due on account of a loan obtained from us, subject to such Processing being in accordance with Applicable Laws.  

This Policy shall be notified to you while you apply for any of the Services or when we initiate Processing of any of your Personal Data, along with appropriate requisite consent requests for collection of your Personal Data in relation to the Services. 

Such collection of Data shall be on a need-to-know basis. By continuing to avail of our Services or accessing the Platform(s), you explicitly consent to our Processing of the above information. In the event that you withhold, disable or withdraw your consent to our access of Collected Data, your access to the Platform(s) and Services available on the Platform(s) may be restricted. All reasonable efforts shall be made to notify you of the same at the appropriate time. Please note that we may require you to share further information, at a later date, to confirm the veracity of your Collected Data or pursuant to any additional features added to the Platforms or for compliance with Applicable Laws.  

Additionally, we may process further information relating to you as may be required for certain Legitimate Uses as well as exempted uses as specified in Sections 7 and 17 of the DPDP Act respectively, without obtaining your prior and informed consent. In compliance with regulatory requirements, we are committed to protecting your privacy and ensuring responsible access to your mobile device resources. We do not access or collect any sensitive mobile phone resources such as your file storage, media, contact list, call logs, telephony functions, or any other information not explicitly required for our services. 

You understand that you have explicitly consented to voluntarily sharing such information with us as specified in this clause. You are required to comply with Applicable Laws while providing us with your Personal Data and other information. We request that any change to your Personal Data be communicated to us at the earliest and within a reasonable time, for provision of Services and to comply with Applicable Laws. 

You understand that any reviews, comments and / or messages communicated by Users on any public sections of any of our Platform(s) or other public fora is regarded as published content, is not considered Personal Data and is not subjected to this Policy.  

4. PURPOSES OF COLLECTION

We may access, collect, store, retrieve, disclose, transfer, use or otherwise process the Collected Data detailed in clause 3 above as necessary for the performance of our obligations and for the following specified purposes (“Purposes”):  

  1. Onboarding and administration: Creating and updating your user account and profile, onboarding you as a user, verifying and authenticating your identity, verifying and authenticating and authorising your use of our products or Services, facilitating your usage of the Platform(s), administering your account on a continued basis, providing Services which you request or have expressed an interest in, carrying out obligations arising from any contract entered into between you and us, processing and completing your transactions, connecting you with our Third Parties, linking your bank account to your user account for such purposes and otherwise managing our relationship with you;  
  2. Eligibility assessment: Assessing your eligibility for various Services you request, avail or have expressed an interest in, including assessing creditworthiness by way of analysis of the Data provided by you;  
  3. Communications: Informing you about important details regarding the Platforms or any new services or features, change in terms, conditions and policies and/or other relevant information, communicating with you in relation to your use of the Platforms or Third Parties, and addressing your requests, feedback and queries in relation to our Services; 
  4. Advertisements: Advertising of, or relating to, Services offered by us, including providing targeted advertisements to you; 
  5. Linking of your bank account for creation of VPA. 
  6. Personalisation / customisation: Tracking your activities and engagement on our Platforms, personalising and improving your experience in availing our Services and tailoring any communications made to you in relation to our Services or Platforms; 
  7. Technical functions: Diagnosing technical problems and providing troubleshooting services, performing internal operations and reviews necessary to provide and improve Services and the content and features of our Platform(s) and protecting the integrity of our Platform(s), developing the system or product, carrying out internal risk assessments and analysis, managing cybersecurity risks and improving the performance and user interface/user experience of Platforms; 
  8. Record-keeping and fraud detection: Record-keeping purposes, screening and preventing fraud, illegal activity, harm, financial loss and other legal risks, and to protect our legal rights, security and business continuity; and  
  9. Legitimate Uses: For Legitimate Uses, as may be amended from time to time, including without your prior and informed consent where required to do so to comply with Applicable Laws.  

5. CONSENT 

  1. By having consented to the terms of this Policy, you provide your free, prior, informed and unconditional consent to us, and permit us to utilise the Collected Data for the Purposes as set out in this Policy or with the consent obtained from you. Such consent provided by you will be recorded by us for the purpose of maintaining an audit trail.  
  2. We shall disclose to you the Purpose for which consent is being obtained from you at each stage of interface.  
  3. We reserve the right to regularly review and amend this Policy to reflect changes to our privacy procedures and practices and Applicable Laws from time to time. While we shall provide express notice to you of any material amendments, we encourage you to periodically review this Policy for the latest information on our privacy procedures and practices. The updated version of this Policy will be effective as soon as they are accessible on our Platform(s) and your continued use and access of our Platform(s) will be considered as your acceptance of this Policy or any updated version thereof. 

6. RESTRICTIONS ON PROCESSING OF COLLECTED DATA

We will not use Collected Data for any Purpose other than as set out in this Policy. 

7. RETENTION OF COLLECTED DATA

Notwithstanding anything contained in this Policy, unless you request the erasure if any or all of your Collected Data as explained in Clause 3 above, including by withdrawing consent, we will continue to retain Collected Data provided by you except as required to be deleted by Applicable Law follows, for such period and Purposes as specified:   

  1. As long as we have your prior, informed and express consent to the retention of such information;  
  2. For providing you with Services or fulfilling our obligations towards you, until and unless you specifically request us to destroy such Collected Data or revoke your consent to share such Collected Data by way of emailing us your request at support@stagingv2.zypecard.co.in 
  3. As long as your registration with us is valid and the outstanding amount(s) in respect of the loan(s) availed by you are due and payable to the Third Party; 
  4. For such period as may be necessary to comply with Applicable Laws, including the PMLA, PML Rules and other rules notified thereunder as may be amended from time to time; 
  5. Till final settlement/outcome of any disputes with you, any Third Party(ies) or governmental authorities, as the case may be; 
  6. To enforce/exercise our rights under the contract agreements entered into between us, you and/or the Third Party.

We shall not store Personal Data received from Third Parties apart from some basic minimal information (such as name, address, contact details of the Customer, etc.) as may be required to carry out our operations or obligations within the scope of agreements with such Third Parties.   

Upon receiving a written request for deletion as set out above, we shall take all reasonable measures as mandated by Applicable Laws to delete and no longer store such information. However, it may take about 72 (seventy-two) business hours to process deletions. Further, please note that there might be latency in deleting / forgetting the Collected Data except credit information from our servers and certain backed-up versions might exist even after deletion.  

While we shall also mandate that Third Parties also delete such information in their possession in relation to the Services, we may not be able to enforce such deletion request upon such Third Parties and do not take responsibility or liability for the deletion of your information by such Third Parties.  

For users who have registered to be on the mailing list, their Collected Data is kept until we are notified that they no longer want their information stored. Users who supply us with their telephone numbers may receive communication from us via telephone, text message or emails, pertaining exclusively to new Services or any upcoming events. If you do not wish to be on our mailing list / SMS / WhatsApp or any other advertisement, you can let us know of your updated preferences by either emailing us at info@stagingv2.zypecard.co.in or choosing the “unsubscribe” option. 

8. DISCLOSURE OF INFORMATION

  1. We will share your Collected Data internally with our staff members who need it to carry out your instructions regarding the receipt of marketing information, loan / credit facility processing, and recovery of loan / credit facilities.  
  2. Any personal Information, forming part of the Collected Data, may be used to allow you to login to your account or to resolve specific service issues, inform you of our new Services / features, for IVR verification, or to communicate with you in relation to your use of the Platforms.  
  3. We value your online privacy and security while you are accessing the Platforms. We make every effort to ensure that the Collected Data relating to you, including information collected during solicitation or subsequently during our activities as a lending service provider, will be maintained with utmost confidentiality, privacy and protection. We shall take all measures to ensure that Collected Data will not be misused or accessed without authorisation.  
  4. We will not sell or rent Users’ Personal Data to any Third Parties. That said, we may share information derived from the Collected Data with Third Parties, including our affiliates, group companies, lenders, lending service providers credit bureaus, call centres, payment gateways, authorised service providers, payment transaction processors, as well as  law enforcement agencies or governmental authorities, for the Purposes mentioned in this Policy, to comply with any legal obligation, to help investigate, prevent or take action regarding unlawful and illegal activities, suspected fraud, potential threat to the safety or security of any Customer, or as defence against legal claims. 
  5. Information derived from the Collected Data may also be shared with Third Parties for the provision of services rendered by them in connection to our Services provided to you, such as delivering e-mail, analysis, providing marketing assistance, providing search results and links (including paid listings and links) and providing Customer service.
  6. We will keep the information derived from the Collected Data confidential and limit access to those who specifically need it to conduct their business activities, except as otherwise permitted by Applicable Laws. Any Third Party to whom such Collected Data is divulged, shall be subject to a duty of confidentiality, and will be required to comply with and take appropriate security measures to protect your Collected Data, in line with Applicable Laws. Further, access to any Collected Data shall be on a need-to-know basis.
  7. We share the details provided by you with other participants of the UPI journey, to facilitate the  UPI services, our PSP bank and the National Payments Corporation of India. This data includes details of the payee (such as their name and VPA), and your VPA for any transaction completion.
  8. The Collected Data shall be stored in India, and any transfer thereof to any destination outside India shall only be to the extent as permitted by the Applicable Laws. In case information is processed outside India, the same shall be deleted from servers outside India and brought back to India within 24 hours of Processing.
  9. As we continue to develop our Services and businesses, we might sell our business units. In such transactions, Collected Data is generally one of the transferred business assets, but remains subject to the terms of the pre-existing policy(ies). 
  10. A list of Third Parties with whom Users’ Collected Data is shared as per the terms of this Policy is available at: click here 

To clarify, we may disclose your Collected Data, without obtaining your prior consent, in the following cases: 

  1. if required to do so by law, rule, regulation, governmental, legal or regulatory authorities and statutory bodies, who have appropriate authorisation to access the same for any specific legal purposes; 
  2. for compliance with any judgment or decree or order issued under any law for the time being in force in India, or any judgment or order relating to claims of a contractual or civil nature under any law for the time being in force outside India; 
  3. If such Processing falls under the limited exemption of Legitimate Use under Applicable Law;
  4. if agreed by you under the contract entered into between you and Easy wherein you have provided your explicit consent; and 
  5. any other purposes which may be required for the purposes set out under this Policy.  

We will take such steps as is considered reasonably necessary to ensure that the users’ Data is treated securely and in accordance with the Policy. We use commercially reasonable safeguards to preserve the integrity and security of the users’ Data against loss, theft, unauthorised access, disclosure, reproduction, use or amendment. 

This Policy only addresses the use and disclosure of information we collect from you on our Platform(s). Other websites/applications that may be accessible through the Platform(s) have their own privacy policies and information collection, use and disclosure practices. If you click on the link to any such website/application, we urge you to review such website′s/application’s privacy policy. We are not responsible for the policies or practices of third parties. 

9. COOKIES AND WEB BEACONS

  1. We may set cookies to track your use of the Platform(s). These are used to enhance your experience while accessing our Platform(s). We use cookies to help us identify who you are, so your login experience is smooth each time. Cookies also allow us to collect non-personally identifiable information about you which has not been specifically described above, like interactions with Services, which pages you visit and what links you click on. Use of this information helps us to create a more user-friendly experience for all visitors. Please note that if you decline or delete these cookies, it may affect the services provided by us.  
  2. We encode our Cookies so that only we can interpret the Data stored in them. You may remove or block this Cookie using your browser settings to disable the feature. We may also collect additional Data in ways not specifically described herein. For example, we may track information related to interactions with you while providing the Services or responses from surveys or other feedback tools. We use this information to continually improve the Services provided to you. This Policy does not cover the use of cookies by Third Parties. We do not have access or control over these cookies. 
  3. Certain web pages of the Platform contain electronic images known as “web beacons” (sometimes called single-pixel gifs) and are used along with Cookies to compile aggregated statistics to analyse how the Platform is used for availing the Services. Web beacons may also be used in some of our emails so as to know which emails and links recipients have opened, allowing it to gauge the effectiveness of its communications and marketing campaigns.

10. ADVERTISERS

We may use Third Party advertisers to display advertisements on our Platform(s). In order to provide and improve our Services and to share relevant ads with you, we use and disclose to our advertising and analytics partners non-personally identifiable information that we collect, including cookie information and log information. When these Third Party websites/ advertisers/ internet advertising companies sometimes use technology to send or provide information that appears on the Platform(s), they automatically receive your IP address. They may also use cookies, JavaScript, web beacons and other technologies to measure the effectiveness of their advertisements and to personalise content, for which we are not responsible, including in respect of the advertisement, information or content contained therein or the privacy practices employed by them. Please contact them directly for more information about their privacy policies and practices.  

11. SECURITY

  1. We are committed to safeguarding the privacy, security and integrity of Collected Data by adopting reasonable security practices and procedures as prescribed under Applicable Law. By continuing to use our Platform(s) and / or avail of our Services, you acknowledge and consent to the practices detailed herein regarding storage and security of Collected Data.  
  2. All consent obtained from Users is maintained by us in a clear and auditable manner. Collected Data is stored on a secure server located in India, that only selected personnel contractors and authorised agencies have access to. We encrypt certain Collected Data using Secure Socket Layer technology to ensure that such Collected Data is safe, as it is transmitted to us.  
  3. We value your privacy and security while using the Platform(s) and receiving the Services available on the Platform(s). We make every effort to ensure that the Collected Data submitted by you will not be misused. Our security measures and practices are in compliance with Applicable Laws and we shall continue to maintain compliance in the future. You can access your Personal Data, which forms part of Collected Data, on our Platform through your login credentials. We recommend that you do not share your log-in credentials with anyone. 
  4. If you allow us to view your banking information online, it is on a read-only basis and we do not have access to modify bank account information in any manner whatsoever or view your banking username or passwords. We do not collect or store any biometric information in our systems and all access/use of biometric information is in accordance with Applicable Laws only. We shall also ensure that our Third Parties do not collect biometric information is in accordance with Applicable Laws only.  
  5. All suspected or reported security breaches will be logged and tracked from initiation of the preliminary analysis to determine whether there was a security breach till completion of necessary actions in relation thereto. As mandated by Applicable Laws, we shall report Cyber Incidents to CERT-In within 6 hours of noticing such incidents or being brought to notice about such incidents according to the procedures notified by CERT-In for such reporting. We shall cooperate with CERT-In and all other law enforcement agencies for the purposes of responsive and protective/preventive actions related to Cyber Incidents.  
  6. Notwithstanding the aforesaid, you understand and accept that no information transmission over the internet can be guaranteed to be completely secure. We cannot ensure or warrant the security of any information that you transmit to us due to errors in transmission, unauthorised access or acts or omissions beyond our reasonable control. you understand that you transmit information to us at your own risk. Information pilferage due to instances of unauthorised access, disclosure, reproduction, hacking, or virus attacks, is possible and we take no liabilities or responsibilities for it. 
  7. All Collected Data will be stored and preserved in a safe and secure manner so as to ensure that there is no tampering, alteration, destruction or anything which endangers the content, utility, authenticity, or accessibility of the Collected Data. We encrypt certain Collected Data using SSL technology to ensure that such Collected Data is safe as it is transmitted to us. We implement appropriate technical and organisational measures and reasonable security safeguards to protect your Collected Data, including your Personal Data, in accordance with Applicable Laws. 

12. CONFIDENTIALITY

  1. We will take such steps as we consider necessary to ensure that your Collected Data is treated securely and in accordance with this Policy. Disclosure of information derived from the Collected Data to Third Parties will be undertaken keeping in mind adequate safeguards on the confidentiality and use of information exchanged, including safeguards to prevent tipping-off.
  2. Notwithstanding the above, we are not responsible for the confidentiality, security or distribution of the Collected Data by our employees, agents and Third Parties outside the scope of our agreement / contract with them. Further, we shall not be responsible for any breach of security or for any actions of any third parties or events that are beyond our reasonable control including, computer hacking, unauthorised access to computer information and storage device, computer crashes, breach of security and encryption, poor quality of internet service or telephone service of the User etc.

13. GENERAL MATTERS

The authenticity and accuracy of the Collected Data , submitted by you, is your responsibility. You are responsible for maintaining the secrecy, authenticity and accuracy of your password, email address, and Collected Data submitted by you, at all times. We rely on you to disclose to it all relevant and accurate Collected Data submitted by you, and to inform us of any changes in respect of the Collected Data submitted by you. If you wish to make a request to correct or update any of the Collected Data submitted by you, please submit your request via email at support@stagingv2.zypecard.co.in 

14. YOUR PRIVACY RIGHTS

The rights available to you, in accordance with Applicable Laws, are as follows:  

  1. Right to access information: The right to access and review Collected Data relating to you, through your login credentials, including the right to seek a summary of such Collected Data, including the activities performed thereto, underlying purposes thereof, and identities of Third Parties to whom such Personal Data has been disclosed; 
  2. Right to correction: The right to correct Collected Data relating to you, including to correct and update inaccurate information and complete incomplete information;  
  3. Right to erasure of Collected Data: The right to seek erasure of Collected Data relating to you, including by way of withdrawing consent, unless the retention of such Data is required as outlined in clause 7 above. You may exercise this right by e-mailing us at support@stagingv2.zypecard.co.in
  4. Right to grievance redressal: The right to communicate grievances pertaining to our Processing of Collected Data relating to you to our Grievance Redressal Officer as identified below in clause 16 below
  5. Right to file a complaint: The right to file complaints to the relevant regulatory authorities in connection with our Processing of Collected Data relating to you as notified on our Platforms; and 
  6. Right to nominate: The right to nominate any other individual who shall, in the event of your death or incapacity, exercise your rights under this Policy in accordance with Applicable Laws.  

Each of these rights may be exercised by you by writing to us (or, as may be relevant, the Grievance Redressal Officer or relevant regulatory authorities). We shall endeavour to cooperate with your exercise of these rights within a reasonable period.  

You understand that upon withdrawing consent to provide Personal Data that is necessary to perform any of the Purposes as specified in clause 4 above and provide you with our Services, you may not be able to access or avail of some or all of our Services or features of our Platforms.  

You understand that withdrawing consent to our usage of cookies or to receive certain marketing materials pertaining exclusively to new services or upcoming events (including by emailing us your updated preferences at support@stagingv2.zypecard.co.in or unsubscribing from the mailing list) will not affect your ability to access or avail of our other Services or features of our Platforms, though it may negatively impact user experience. 

15. CONTACT US

If you have any questions or suggestions, you can contact us at info@stagingv2.zypecard.co.in or write to us at the following address: 

Principal Officer

Easy Platform Services Private Limited 

7th Floor, Dyna Business Park, Street No. 1, MIDC, Andheri (East) Mumbai – 400093  

16. GRIEVANCE REDRESSAL MECHANISM

If you have any complaints under this Policy or under the Applicable Laws, or the or any digital lending related complaints/issues, you can reach out to us by following the procedure listed out under our grievance redressal mechanism accessible at https://stagingv2.zypecard.co.in/grievance-redressal/ 

17. DISPUTE RESOLUTION

In the event of any dispute, difference or claim arising out of this Policy, the same shall be settled in accordance with the laws of India through regular judicial process and the courts of Mumbai, India shall have exclusive jurisdiction over such dispute, difference or claim.  

18. YOUR REPRESENTATIONS TO US

  1. You confirm that by consenting to this Policy, you are providing your free, specific, informed, unconditional and unambiguous consent to the terms contained therein.  
  2. You represent to us that you are above the age of 18 and are in contracting capacity to access our Platform and to share your Personal Data with us.  
  3. You confirm that all information submitted by you is authentic, accurate and consistent. Further, you are not impersonating another person.  
  4. You confirm that in providing information to us, you are compliant with all Applicable Laws and not suppressing any material information. 
  5. You undertake to update us on any changes to the same via email at support@stagingv2.zypecard.co.in
  6. You represent that in circumstances where you share Personal Data relating to other individuals (such as family members, co-applicants or nominees), you have obtained such individuals’ prior and informed consent for our Processing of their Personal Data.  
  7. You shall use the Services and the Platforms for lawful purposes and under no circumstances for any activity which violates or is prohibited under Applicable Laws.  

By having consented to the terms of this Policy, you hereby provide express consent to us to access, collect, share, transfer, store, retain, transfer, use or otherwise process the information derived from the Collected Data in accordance with the terms of the Policy.