PRIVACY POLICY
OBJECTIVE

We Mitrata Inclusive Financial Services Private Limited (“MITRATA”) are fully committed to respecting your privacy and shall ensure that your personal information is safe with us. This privacy policy sets out the information practices of https://www.mitrata.in (“Website”) including the type of information collected, how the information is collected, how the information is used and with whom it is shared. Reference to “you” in this Privacy Policy refers to the users of this Website whether or not you access the services available on the Website or consummate a transaction on the Website.

By using or accessing this Website, you agree to the terms and conditions of this Privacy Policy. You also expressly consent to our use and disclosure of your Personal Information (as defined below) in any manner as described in this Privacy Policy. If you do not agree with the terms and conditions of this Privacy Policy, please do not proceed further or use or access this Website.

Types of information:

This policy is applicable to any ‘information’ that is collected:
a) By MITRATA and which is in the nature of personal / sensitive personal information/demographic information of the User provided to MITRATA online or offline ( i.e. Name, age, date of birth, gender, address, mobile number, email id, PAN number, photograph/image, KYC documents provided by customer or collected from CKYC registry/Aadhar Authority/Digi locker, bank account details, credit scores, GST details, provident fund account details, provided to MITRATA through mobile application, website and/or at the time of availing various financial products/services).
b) by MITRATA server from User’s browser, mobile app or mobile device, including cookies etc.,
c) by MITRATA, which may or may not be personally identifiable and/or traffic information; and
d) by MITRATA, its dealers, agents/agencies, including the server from the User’s browser mobile app or mobile device.
e) By MITRATA, which are collected with consent of User by reading the SMS and email regarding billers, bill reminders and bill payment confirmations to identify the billers that User interacts with (“Relevant Billers”) or for facilitating auto read OTP.
For brevity sake, the above types of information is collectively referred as “Information” in this Policy.

Purpose

Information collected from User may be used by MITRATA for the following listed “Purposes”:
a) To assess credit worthiness for our customers and sanction loans as per their repayment capacity.
b) To improve customer service. The information you provide helps us respond to your service requests and support your needs more efficiently.
c) Monitoring your compliance with any terms and conditions associated with our services, including to confirm your identity.
d) To process payments.
e) We may use the email address and phone numbers to respond to your inquiries, questions, and/or other requests.

Salient Features:

a) MITRATA respects the privacy of User in accordance with prevailing Law/regulation that governs privacy and always strives to uphold the standards in protecting the same.
b) The Information shall not be shared with any external organisation unless the same is necessary to enable MITRATA to provide you services, meet legal and/or regulatory compliance requirement and/or to enable the completion of a transaction, rendition of services, pursuant to applicable norms/process or pursuant to the terms and conditions applicable to such Information as agreed with MITRATA.
c) MITRATA may use the Information to enhance the User’s experience and may make subsequent offers to the User about its products/services.

Cookies

Cookies are small data files that a website stores on your computer/electronic device. While cookies have unique identification nos., personal information (name, a/c no, contact nos. etc) SHALL NOT be stored on the cookies. MITRATA may:
a) use persistent cookies which are permanently placed on User’s computer to store non-personal (Browser, ISP, OS, Clickstream information etc) and profiling information (age, gender, income etc);
b) use Information stored in the cookies to improve User experience by throwing up relevant content where possible;
c) use the cookies to store User preferences to ease User’s navigation on the website/electronic/mobile application.

Data Governance and trainings

Securing User’s Information is of paramount importance to MITRATA. Following are some of the initiatives by MITRATA to security privacy of the User’s Information:
a) MITRATA has reasonable management, technical and administrative measures in place to protect Information within MITRATA.
b) Sound technical controls around Information and underlying systems are in place.
c) MITRATA adheres to multiple regulatory and statutory requirements like RBI’s Master Direction for NBFC, Guidelines for Prepaid payment instruments, NPCI guidelines for Data localization, VKYC etc. to name a few.
d) MITRATA conducts periodic internal and external audits of its systems.
e) Updates on information security position is updated at regular intervals to Board members, senior management of MITRATA via Risk Management Committee.
f) In all contractual arrangements, we require MITRATA employees, third party agencies/service providers to comply with appropriate compliance standards including obligations to protect any information and applying appropriate measures for the use and transfer of information. Staff also undergo mandatory information security awareness training annually once and at the time of joining.
g) Any acts involving (i) unauthorized usage/ sharing of Information, (ii) breach of security procedures; (iii) usage of Information for unlawful gain (iv) breach of IT policy/procedure; and
(v) breach of confidentiality as per employment terms and/or Code of Conduct, shall warrant appropriate disciplinary action as per Company’s Policy.

Service Providers

We may employ third-party service providers and individuals due to the following reasons(not exhaustive):
1.To facilitate MITRATA’s products/ services;
2. To provide the service on behalf of MITRATA;
3. To perform any ancillary service related to products/services of MITRATA and/or its Group;
4. To assist MITRATA in analysing how the services are used; and
5. To assist MITRATA and/or its Group in evaluating and improvising the service standards.
User is hereby informed that the third-party service provider/agent/agencies will have access to your Information on a need to know basis to assist MITRATA in rendering service and are restricted from using the same for any other reason. The third-party service provider is obligated not to disclose or use the Information for any other purpose.

Security

We value User’s trust in providing Information with MITRATA. Hence, MITRATA continuously strives to use commercially reasonable efforts in protecting such Information. But, remember that no method of transmission, whether in physical form or over the internet, or method of electronic storage is 100% secure and may be subjected to unintentional risks, due to reasons beyond the control of MITRATA.

Responsibility of User

User acknowledges the following:
a) MITRATA and/or its employees /assigns will not contact the User directly for disclosure of any sensitive and personal information unless required for the above mentioned Purposes. Hence, User is solely responsible to exercise proper due-diligence to verify the identity of the individual(s) contacting before disclosing any personal and sensitive personal data/ information by reaching out to the MITRATA’s nearest branch or MITRATA’s official customer care number accessible on its website before making any disclosure.
b) MITRATA will not be liable / responsible for any breach of privacy owing to User’s negligence.
c) User shall only use the official website/links of MITRATA for availing product/services by inputting the domain information on the address bar.
d) User is completely aware about the potential risk of data/privacy breach and User shall be solely liable for any unauthorized disclosure/ breach personal/ sensitive personal information etc. and any direct/ indirect loss suffered by User due to User’s conduct. Hence, User shall exercise utmost caution to ensure that User’s personal data/ Sensitive personal data (including but not limited to any Passwords, financial information, account details, etc.) are not shared/stored/made accessible through: any physical means with or without User’s knowledge (disclosure to any person/third-party etc.) or through any electronic means, by exercising the following precautions/ safety measures:
(1) User shall always check if “https” appears in any website’s address bar before making any online transaction, to ensure that the webpage is encrypted;
(2) User shall avoid using third- party extensions, plug-ins or add-ons on the/your web browser, as it may result in the risk of tracking or stealing of User’s personal details;
(3) User shall always type the information and not use the auto-fill option on web-browser and mobile apps to prevent the risk of storage of my personal/ sensitive personal information;
(4) User shall NOT access darknet, unauthorized/ suspicious website, suspicious online platforms, downloading information from unreliable sources;
(5) User shall ensure to disable cookies before accessing any domain/website, to ensure that User’s personal information is not tracked by any third-party, unless otherwise consciously permitted by User by accepting the same, for which, User alone will be responsible for the consequences thereof;
(6) User shall not respond to any generic emails from an unknown/ unidentified source;
(7) User shall check the Privacy Policy of website/ application to know the type of information that may be collected from User and the manner in which it may be processed by the website/ application before accepting/ proceeding/ transaction on any website/ application;
(8) User shall always verify and install authentic web/mobile applications from reliable source on User’s computer/Laptop/tab/ipad/ smart phone or any other electronic device;
(9) User shall NOT access any unidentified weblinks, bitly link or any other electronic links shared over electronic platform (such as email, sms, social media, websites);

Retention of Information: MITRATA may retain User’s Information if it is required to provide services or as long as it is required for business purpose. Retention of Information will be as per applicable law/regulatory requirements in India. Information may be retained for an extended period (i) in case of requirement of any investigations under law or as part of any requirement before Courts/Tribunals/Forums/Commissions etc and (ii) to enhance / improvise the products /services of MITRATA.

Website & links to Other Sites
MITRATA’s website/ electronic/mobile application may contain links to other sites. If User clicks on a third-party link, User may be directed to that site. It may be noted that such external sites are not operated by MITRATA and is beyond the control of MITRATA. Therefore, MITRATA strongly advises the User to review the privacy terms/policy of such external websites/electronic applications. MITRATA has no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services

Amendment of Privacy Policy
MITRATA may amend/update the Privacy Policy from time to time as required under law. Thus, User is advised to review this page periodically for any changes, since any such changes will be effective immediately after they are updated/posted on this page.

Contact us: In case if you may want to share your concern, we welcome you to easily reach out to us
Address-V-29/11 A, DLF Phase III, Gurugram-122002, Haryana, India
Phone No.- +91 124 4061961
Email Id- [email protected]