Privacy Policy

This privacy policy (“Policy”) explains how India Bond Private Limited (hereafter “Company” or “We” or “Our” or “Us”) collects, uses, shares, processes, transfers, and discloses the Personal Data (defined below) of visitors and users involved in transactions on the Platform, or as the case may be (hereafter “you”) of https://www.indiabonds.com/ including its mobile application (“IndiaBonds”) and other associated applications (hereafter referred to as the “Platform”).

The Platform enables you to, inter alia, browse, purchase, trade, and manage investments in fixed income securities, track your portfolio, make investments in permitted products, securities and services, and access related information and support services (“Services”).

This Policy is a part of and should be read in conjunction with the Terms of Use, available at [https://www.indiabonds.com/terms-and-conditions/] (“Terms”). We encourage you to review both documents carefully before using the Platform. By accessing the Platform or using our Services, you expressly consent to this Policy. If you do not agree with any part of this Policy, you may discontinue using the Platform.

The protection and security of your Personal Data (as defined below) is our top priority. We have implemented reasonable and necessary measures to protect your information and its transmission over the internet. This Policy, published in accordance with applicable law, outlines:

1. a) What data we collect;
2. b) How we collect your data;
3. c) How we use your data;
4. d) When we disclose your data;
5. e) Storage, transfer and security of your data;
6. f) Retention of your data;
7. g) Your rights and duties;
8. h) Your children’s rights;
9. i) Policy usage and updates;
10. j) Third party services;
11. k) Contacting us;
12. l) Communications from us; and
13. m) Your consent.

1.1 We strive to collect only the Personal Data that is necessary for the purposes for which it is processed, subject to your explicit consent. The scope of Personal Data collected by us depends on how you interact with us, the services you use, and the choices you make regarding the collection and use of your data, subject to the relevant provisions of the Policy. We collect Personal Data that is lawful, necessary, and directly related to the specific purpose for which it is obtained. The collection and processing of your Personal Data are carried out based on:

1. a) Your affirmative consent, provided through an explicit action on the consent notice displayed at the time of data collection; and
2. b) Legitimate purposes, as outlined in Section 3 below, where processing is permitted under applicable law.

1.2 “Personal Data” means digital data that can identify you or be linked to you, either alone or in combination with other data. This includes data you voluntarily submit or explicitly consent to be retrieved from third-party services.

1.3   We may, inter alia, collect the following types of Personal Data from you for the delivery of Services:

1. a) Personal identification information: Name, contact details, email address, physical address, account-related information, etc.
2. b) Identity and regulatory information: National identity documents such as, PAN, Aadhaar credentials, or other government-issued identifiers for KYC verification.
3. c) Financial information: Bank account details, demat account information, tax details, and other financial information necessary for investment purposes.
4. d) Corporate information (for business or institutional accounts): Company name, incorporation documents, authorized signatories, and other relevant corporate details, including but not limited to details of an LLP, HUF, sole proprietorship, partnership firms, etc.
5. e) Beneficiary information: Details of nominated beneficiaries or authorized representatives (if any).
6. f) Authentication information: User credentials (excluding actual passwords which are securely encrypted), security questions/answers, and other authentication data.
7. g) Any other relevant details

By providing this information, you confirm that it is accurate, up to date, and that you have the right and authority to share it with us.

1.4. Aadhaar Information

1. a) You acknowledge and agree that the provision of your Aadhaar number is entirely voluntary and shall only be required for the completion of your registration on the Platform and for digitally signing associated documentation, such as the registration form and supporting documents. You may voluntarily elect to use your Aadhaar as a valid proof of address in lieu of other identity documents, such as a passport or driving license. You also understand that the Platform does not store any Aadhaar number or Aadhaar-related data on its servers.
2. b) During the online account opening and registration process, you shall not be required to input your complete 12 digit Aadhaar number directly on the Platform. Instead, you will be redirected to DigiLocker, where, upon your explicit consent, DigiLocker will share limited details with the Platform for verification purposes. These details shall be restricted to: (i) the last four digits of your Aadhaar number or virtual ID (VID); (ii) full name; (iii) date of birth; (iv) gender; (v) address; and (vi) photograph. Further, you acknowledge that your Aadhaar details will be shared with the Platform's authorised e-signature service provider solely for the limited purpose of enabling digital signature of your registration form. The use of such information is subject to applicable laws, including the Aadhaar Act, 2016 and rules framed thereunder.
   Please note that DigiLocker-based Aadhaar verification is applicable only if you have access to and have activated the DigiLocker facility.

2. How we collect your data

2.1 We collect your information with your explicit consent or from third-party sources for uses as enumerated in Section 3 of the Policy. This includes but is not limited to various authorized and public databases, such as, Know Your Customer (KYC) Registration Agency (KRA), and CKYC; and government records, such as DigiLocker, bank verification services, e-sign service providers, payment gateways, and depositories (CDSL/NSDL). Such verification may require additional documentation or verification steps as mandated by regulatory requirements. We may collect data from the following third-party sources (including but not limited to):

1. a) Information provided when subscribing to newsletters, press releases, or other periodicals;
2. b) Responses to surveys or marketing communications;
3. c) Uploaded documents/photos required for availing our Services;
4. d) Voice recordings of customer service conversations to address queries or grievances;
5. e) Specimen signature(s) or consent for processing of your instructions;
6. f) Content posted by you on social media platforms;
7. g) Records of interaction with our representatives;
8. h) Your usage details such as time, frequency, duration and pattern of use, features used, and the amount of storage used;
9. i) Information submitted by clients through referrers and/or introducers associated with the Company; and
10. j) Any other mode, subject to your explicit consent.

2.2 Another way we collect your information is when you visit the Platform. The Company and the third parties with whom we have contracted to provide Services may collect anonymous data, device-related information, and user behaviour analytics to help us improve the Service and enhance overall user experience (“Aggregate Data”). We collect Aggregate Data through the following methods:

1. a) Server log and usage data: We collect data about your interactions with the Platform, including pages visited, geo-tagging, features accessed, and time spent on the Platform etc. Your Internet Protocol (IP) address, device type, browser details, and operating system information etc. are automatically logged when you visit the Platform by your Internet Service Provider (ISP). We use IP addresses to monitor Platform usage levels, help diagnose technical issues, administer the Platform effectively, track where users land from, and assess user engagement. In certain cases, IP addresses may also be used to restrict access where non-compliance with our Terms is detected. Collecting IP addresses is standard practice on the internet and is carried out automatically by many websites.
2. b) Cookies and tracking technologies: We use cookies, tracking pixels, and similar technologies to enhance user experience, improve security, and gather analytics. These may include tools, tracking software that record user behaviour, journey mapping, and engagement with specific features. We may also track the source from which users land on the Platform through API request parameters and store session details in cookies for security and optimization purposes. Cookies help us remember preferences, maintain session integrity, analyze navigation patterns, and improve search rankings etc. While you can manage cookie settings through your browser, disabling cookies may impact Platform functionality.

2.2   Exclusions: This Policy does not apply to (i) any information other than the data collected by us through the Platform, as outlined in the ‘How we collect the data about you’ clause above; and (ii) any unsolicited information provided by you through this Platform or through any other means. Such unsolicited data will be deemed non-confidential, and we may use or disclose it without limitation.

3. How we use your data

We process your Personal Data to provide, improve, and secure our Services, to comply with legal and regulatory obligations, and for other legitimate business purposes, including but not limited to customer support, operational efficiency, internal analysis, compliance reporting, and any other purposes permitted under applicable law.

3.1 Service Delivery & Business Operations

We may use your Personal Data to:

1. a) Registration and sign-up process: Verify your identity, enable your registration, and ensure secure Platform access, comply KYC norms, etc.
2. b) Transaction processing: Facilitate, inter alia, purchases and sales of permitted products, securities and services, fund transfers, and maintain transaction records, etc.
3. c) Portfolio management: Track your holdings in fixed income securities, returns, and generate reports, etc..
4. d) Risk assessment: Analyze data to assess investment suitability and regulatory compliance.
5. e) Your Personal Data may be shared within the Company across various departments, business units, internal teams, and authorised personnel involved in functions such as customer servicing, product offerings, compliance, risk management, analytics, and support. Such sharing is undertaken to facilitate business operations and is governed by internal policies, confidentiality obligations, and applicable data protection laws
6. f) We use your Personal Data for the purposes outlined in this Privacy Policy, as well as for the specific purposes described in the terms and conditions of the respective products, securities or services (“Product T&C”) that you explicitly consent to at the time of availing such products, securities or services.
7. g) Verification and Compliance

We use your Personal Data to meet regulatory and legal requirements:

1. i. KYC verification: Authenticate your identity via authorized third-party verification services and maintain regulatory compliance
2. ii. Regulatory reporting: Generate required regulatory reports and maintain compliance records as mandated by applicable laws and regulations, including SEBI guidelines and anti-money laundering (AML) requirements.

Subject to the provisions of Applicable Laws, your Aadhaar number may be shared with:

1. i. fixed deposit issuers or entities authorised by them for KYC and on-boarding purposes; and
2. ii. portfolio aggregator to access/analyse your portfolio information. You may have to provide your complete Aadhar number / information for KYC purposes, as required by fixed deposit issuer, in case of investment in fixed deposit.

3.2 Communications and Support

Your contact details may be used for:

1. a) Service updates: Notifications about your account, transaction confirmations, maturity alerts, interest payment updates, platform status, etc. These communications are essential for maintaining our business relationship.
2. b) Customer support: Providing effective customer service, respond to inquiries, resolve issues related to your investments or Platform usage, etc.
3. c) Educational content: Educational materials about bond investing, investments in fixed income securities, market insights, and product information to help you make informed investment decisions.
4. d) We may use your contact information to inform you about marketing campaigns, promotional offers, products and/or services, and other relevant communications, etc., for which you may be eligible or which may be of interest to you.

3.3 Platform Improvement and Analysis

We analyze usage patterns and service performance to enhance our offerings:

1. a) Platform enhancement: Improve features, streamline processes, and enhance user experience.
2. b) Market analysis: Analyze Aggregated Data to understand market trends, assess business opportunities, and improve our Service offerings.
3. c) Security monitoring: Use login patterns and activity data to detect and prevent unauthorized access attempts and protect your account from security threats.

3.4 Additional Use of Information

We may also use your information to:

1. a) update your dashboard;
2. b) personalize and display content based on user interests;
3. c) comply with legal and regulatory requests;
4. d) consider applications for career opportunities with us;
5. e) perform data analysis, audits, and measure campaign effectiveness;
6. f) share data with third-party service providers, clearing corporations, vendors, introducers, referrers and facilitating agencies, etc. for transaction fulfilment, provision of services;
7. g) for marketing and advertising purposes (e.g. newsletters via e-mail, online advertising)
8. h) To facilitate and improve the usage of Services;
9. i) collaborate on co-branded services, securities, products, or programs; and
10. j) for any other purpose for which you provide express consent.

4. When we disclose your data

We do not sell your Personal Data to third parties. However, we may disclose your Personal Data in various circumstances, including but not limited to those required or permitted by law, regulatory authorities, or as necessary to protect our rights, comply with legal obligations, or operate our business.
An indicative list of circumstances in which we may disclose your Personal Data is outlined below:

4.1. Service Providers

We work with third-party service providers who assist in delivering our Services to you through the Platform. These service providers assist with website hosting, payment processing, KYC verification, identity authentication, financial data analysis, and other administrative services such as reporting, settlement of trades, and validation of demat purposes (CDSL, NSDL) that enhance your overall user experience.

4.2. Third Parties

1. a) Vendors: In addition to above, we may share your Personal Data with vendors and service providers to share, view and store information between each other for the limited purpose of (i) verification of details with respect to bank/demat account details or settlement of transactions; and (ii) updation of your user profile with relevant account information.
2. b) Advertising and data storage providers: We may use third-party service providers for advertising, marketing, or cloud storage. These providers may collect anonymous usage data for ad targeting but do not collect personally identifiable information.
3. c) Third-party service providers: We work with various third parties for various operational needs. These service providers offer operational support, inter alia, in relation to, customer relationship management, payment processing, verification services and identity verification.

4.3. Banking & Financial Institutions

Some of our Services require coordination with banks, bond issuers, Fixed Deposit (“FD”) Issuers, depositories, and other financial institutions.

Before sharing your Personal Data with these service providers, we obtain your explicit consent specifying the Personal Data being shared and its purpose. These financial institutions / service providers are permitted to use shared Personal Data only for specific, clear, and lawful purposes necessary for service delivery. These financial institutions / service providers are obligated to use Personal Data for the stated purpose.

4.4. Business Transfers and fund raising

We may disclose your Personal Data, in a secure manner, to existing or prospective lenders or investors, and professional advisors in connection with any form of fund-raising, investment, financing, merger, acquisition, or similar strategic transaction or due diligence process. Such disclosures shall be subject to appropriate confidentiality obligations.

You acknowledge and expressly grant us your consent to share your data with any entity that we may merge with or entities that we may acquire or be acquired by, subject to the provisions of applicable law, in which situation we will require that the new combined entity or the acquired/ acquiring entity follows this Policy with respect to your Personal Data. Your data will continue to be handled securely and in line with regulatory requirements.

4.5. Legal & Regulatory Disclosures

We may access, use, store, transfer and disclose your Personal Data, to government or law enforcement officials or authorities, if we reasonably determine that it is necessary and appropriate to:

1. a) Comply with applicable laws, regulations, or legal requests;
2. b) Detect, prevent, or investigate fraud, security threats, or technical issues; and /or
3. c) Stop or prevent illegal, unethical, or legally actionable activities.

These disclosures may be carried out without prior notice to you, where required by law.

4. d) We may disclose your Personal Data to regulatory authorities, including the Financial Intelligence Unit – India (FIU-IND), in compliance with applicable laws such as the Prevention of Money Laundering Act, 2002. Brokers and regulated intermediaries may be required to file Suspicious Transaction Reports (STRs) without informing you, as mandated by law.

4.6. Your Personal Data is primarily stored in electronic form, though some records may also exist in physical form.

5. Storage, transfer and security of your data

5.1. We maintain security standards for storing and protecting your data in compliance with applicable laws. Your information is primarily stored on servers located in India, ensuring that data remains within Indian jurisdiction. Some data may also be stored on third-party service provider servers within India and local storage on network shared drives. For improved performance, certain data may be temporarily cached on your device.

5.2. None of your Personal Data is transferred outside Indian jurisdiction. We implement appropriate access controls, encryption, and other security measures to protect data across all storage locations. Our security measures include data encryption in databases, HTTPS protocol with the latest TLS version for data transmission, private network access controls within servers located in India, strict internal system access management, IP whitelisting for SFTP transfers, regular security audits, and employee access controls. All data transfers occur through secure channels, and access is strictly controlled based on business necessity.

5.3. We take commercially reasonable precautions to preserve the integrity and security of your Personal Data against loss, theft, unauthorized access, disclosure, reproduction, or misuse. Our computer systems and Personal Data are protected by strict access controls, with access limited to authorized personnel on a need-to-know basis. While we take all necessary precautions, using the Platform comes with inherent security risks associated with data transmission over the internet. Accordingly, use of the Platform is at your own risk, and we assume no liability for any disclosure of Personal Data due to transmission errors, unauthorized third-party access, or any acts beyond our control.

5.4. Security Disclaimer: No data transmission over the internet can be guaranteed to be 100% secure. “Perfect security” does not exist on the internet, and therefore Your use of the Platform is at your own risk.

We believe the biggest threat to the security and privacy of your data is, if someone gains access to any of your devices. Remember to keep your password safe and secret to prevent unauthorised access.

5.5. We use trusted security solutions to protect against malicious attacks, implement access control mechanisms, and conduct regular security and privacy protection training to enhance employee awareness of data protection practices. For sensitive data, we enforce a comprehensive role-based access control system, ensuring access is strictly assigned based on job function and authority level. Our security framework includes backup and recovery mechanisms to maintain data integrity, redundant systems, and disaster recovery protocols to ensure continued processing of Personal Data even in case of security incidents.

5.6. While we take all necessary precautions, using the Platform comes with inherent security risks associated with data transmission over the internet. Accordingly, use of the Platform is at your own risk, and we assume no liability for any disclosure of Personal Data due to transmission errors, unauthorized third-party access, or any acts beyond our control. In the event of a security breach, we will notify you and take all reasonable measures to mitigate its impact.

5.7. If you make payments through the Platform, we do not store any card-related information such as card number, validity date, expiry date, or CVV number. Any payment-related data is transmitted securely through payment gateways that comply with industry-standard security protocols.

5.8. Your Personal Data is primarily stored in electronic form, although certain records may also be stored in physical form. We may engage third-party data storage providers, who are contractually required to maintain comparable security standards to safeguard your data.

6.1. Legal or Regulatory Obligations

We retain your Personal Data for as long as your registration is valid, and as necessary to fulfil the purposes of Service provision, or as mandated by law, regulatory compliance, or legal claims. We may retain Personal Data beyond user deletion requests for:

1. a) Compliance with statutory obligations;
2. b) Regulatory audits, reporting & enforcement;
3. c) Fraud prevention & dispute resolution; and/or
4. d) Law enforcement & legal claims.

6.2. Data Access Logs & Monitoring

1. a) We may maintain detailed access logs and monitoring systems to track all access to Personal Data and detect any unauthorized access attempts. We may keep records of communications, including phone calls received and made for making enquiries, orders, feedback or other purposes for rendering services effectively and efficiently. We will be the exclusive owner of such data and records
2. b) However, upon cancellation or withdrawal of registration, all records are regarded as confidential. These logs are retained for at least 180 days as required by law. We may engage third-party storage providers, all of whom are contractually obligated to uphold comparable security standards.

6.3. Cessation of Relationship & Data Deletion

1. a) Users without completed KYC or transactions: If a user requests to terminate their relationship with us without completing KYC or executing transactions, we delete their Personal Data on a commercially reasonable effort basis. Non-identifiable logs or system interactions may still exist, but they will be purged once regulatory timelines expire. If any regulations require data to be stored for certain period, the same shall be purged post expiry of such period.
2. b) Users with completed KYC and/or executed transactions: If a user has completed KYC or executed transactions and subsequently requests termination of the relationship or deletion of their Personal Data, we are legally obligated to retain certain information. In such cases, while such user’s account will be deactivated, their Personal Data may not be deleted, due to legal (PMLA and SEBI regulations), regulatory, audit obligations, etc. Retention is strictly limited to the legal and regulatory requirements, and no data will be used beyond those mandates, unless explicit consent is obtained.

6.4. Technical Limitations in Data Deletion

When requesting account deactivation and data deletion, you acknowledge that complete erasure from our systems may not always be technpogically possible due to system backups and security redundancies.

7.1. Your rights

As a user of our Platform and provider of Personal Data, you have the following rights, subject to the Company’s obligations as a SEBI-registered Stockbroker and other applicable legal and regulatory requirements:

1. a) Right to review and correct: You may request to update or modify your Personal Data, which we will rectify after appropriate verification.
2. b) Right to withdraw consent: You may withdraw your previously given consent for processing of Personal Data at any time.
3. c) Right to nominate: You also have the right to nominate another individual to exercise these rights on your behalf in accordance with applicable laws.
4. d) Right to unsubscribe: You may manage communication preferences and withdraw consent for marketing communications at any time.

Note: Exercise of these rights may be limited by legal requirements, technical feasibility, and protection of other users.

7.2. Grievance Redressal

1. a) For grievances related to Personal Data processing, you may contact our Grievance Officer.
2. b) The Grievance Officer shall address the discrepancies related to Personal Data processing expeditiously, and in any case within one month from the date of receipt of such grievance.

7.3. Data Retention & Feasibility

1. a) Despite any removal or correction requests, residual information may remain within the Company’s databases and archival records due to technical feasibility and backup constraints.
2. b) If we have reasonable grounds to believe that a request is deceptive, impractical, or non-compliant with laws, we may refuse to process the request.

7.4. Your Duties

As a user of our Platform and provider of Personal Data, you are expected to fulfill the following duties, in accordance with applicable legal, regulatory, and contractual obligations. Please note that this list is indicative and not exhaustive:

1. a) Information accuracy: You must ensure that all Personal Data submitted is accurate, complete, and up to date. You are expected to promptly notify us of any change in your information, including changes to residential status, marital status, contact details, or other relevant circumstances. Providing false information or withholding material details, particularly in government-issued documents, is strictly prohibited and may result in regulatory or legal action.
2. b) Proper conduct: You must not engage in impersonation, false grievances, or misuse of data rights. Requests should be legitimate and compliant with applicable laws.
3. c) Compliance with applicable law: Any access requests, grievances, or exercise of data rights must comply with the applicable laws published on our Platform.

8. Your children’s rights

8.1. The Platform is intended for a general audience and not designed for direct use by minors under 18 years old. By accessing or using the Platform, you confirm that you are at least 18 years old and legally competent to enter a contract. If you are using the Platform on behalf of another individual (such as a guardian, Power of Attorney holder, or authorized representative), you confirm that you have the necessary authority to accept this Policy and consent to the processing of that individual’s Personal Data. The Company does not permit the creation of User Accounts by minors.

8.2. While the Platform may be accessible to users under 18 years of age, we do not knowingly collect or process Personal Data from minors. If we become aware that the Personal Data of a minor has been inadvertently submitted or created, we will take appropriate steps to delete such data and restrict access. If you believe that a minor’s Personal Data has been inadvertently shared with us without parental or guardian consent, please contact us at contactus@indiabonds.com and we will take necessary action.

9. Policy Usage & Updates

9.1. If you withdraw your consent for the collection and processing of your Personal Data, we may no longer be able to provide certain Services, and some functionalities of the Platform may be impacted due to the absence of required data processing.

9.2. We may modify this Policy from time to time to reflect changes in regulatory requirements, market practices, or Platform functionality. We reserve the right to unilaterally amend this Policy at any time. Any updates will be notified to you by reasonable means before they take effect, including by posting the revised Policy on the Platform.

9.3. Your continued use of the Platform after being notified of changes to this Policy constitutes acceptance of such changes. For this reason, we encourage you to frequently review this Policy to stay informed about applicable terms. If you do not agree with any part of this Policy, please discontinue use of the Platform.

9.4. The “Last Updated” version and date of this Policy is reflected at the end of the document. We encourage users to review this Policy periodically to stay informed about how we protect their information.

10. Third Parties’ Services

10.1. The Platform may contain links to third-party websites. These linked sites are not under the control or supervision of the Company, and we are not responsible for their privacy practices, security measures, content, etc.

10.2. We do not review, control, or monitor third-party websites' privacy policies, security protocols, or terms of service. The presence of such links does not imply our endorsement, validation, or recommendation of these sites. These links are provided for convenience only.

10.3. When you are redirected to, or access, a third-party website or service through the Platform — including via Single Sign-On (SSO) or other integrated access mechanisms — you will be subject to the terms and privacy policies of such third parties. Any Personal Data you provide in these environments is collected, controlled, and processed independently by the respective third party. We do not control or assume responsibility for their data practices, security protocols, or content standards. You are advised to review their privacy policies before sharing any Personal Data.

10.5. We expressly disclaim any liability for:

1. a) Loss or damage arising from the use of third-party websites;
2. b) Unauthorized access or breach of Personal Data by third parties; or
3. c) Failure of third-party security measures.

10.6. For your security, we recommend conducting transactions only on verified and trusted websites that demonstrate compliance with applicable laws.

11. Contacting us

In accordance with applicable law, we have appointed a Grievance Officer to address any discrepancies and grievances with respect to the processing of your Personal Data, and the Grievance Officer shall acknowledge the complaint within the timelines prescribed under law. For any concerns regarding your Personal Data, please contact:

Grievance Officer,
India Bond Private Limited,
605, 6th Floor, Windsor, Off CST Road, Kalina, Santacruz (East), Mumbai- 400 098
E-mail: grievance@indiabonds.com

12. Communications from us

12.1. 12.1. From time to time, we may seek your consent to receive communications from us via email, SMS, WhatsApp, or other electronic channels. If you opt in, we may send you updates, offers, and other information relevant to your interests. Please note that we will reach out to you on WhatsApp only after obtaining your explicit consent in accordance with applicable laws. Your consent to receive communication via one channel may also be used to reach you through other permitted channels for similar purposes, unless you specifically opt out.

12.2. If at any time you wish to stop receiving these email/SMS communications from the Company, you may:

1. a) Using the unsubscribe feature in emails;
2. b) Sending an email to our Grievance Officer;
3. c) Writing to us at the contact information provided; or

12.3. However, please note that you cannot opt out of receiving critical service-related emails (such as transaction confirmations, regulatory updates, or security alerts).

12.4. Sharing of data and right to opt out

(i)Sharing of your Personal Data is subject to applicable laws, including data protection and consumer rights regulations in force from time to time.

(ii) The Company does not share your Personal Data with third parties for direct marketing purposes if you have opted out of such communications. You may submit an opt-out request by contacting us via email, phone, or written communication using the details provided in Section 11, clearly stating that you do not wish your Personal Data to be used or shared for direct marketing.

13. Your affirmative consent

13.1. By clicking “I Agree,” you explicitly consent to the terms of this Policy and the processing of your Personal Data as outlined herein. You acknowledge that all Personal Data is provided voluntarily and that its collection, use, and disclosure require your express consent. Additional explicit consent will be obtained for specific processing activities as required by law.

13.2. By accepting this Policy, you provide your consent for the collection, usage, storage, transfer, retention, sharing and disclosure of such Personal Data by us in accordance with this Policy. You may choose to not provide us with Personal Data, but if you do so, we will be unable to provide to you use of our Platform, and it may result in restricted access to some or all Platform features.

13.3. Your visit and any dispute over privacy are subject to this Policy. The said Policy shall be governed by and construed in accordance with the laws of the Republic of India. Further, it is irrevocably and unconditionally agreed that the courts of Mumbai, India shall have exclusive jurisdiction to entertain any proceedings in relation to any disputes arising out of the same.

14. Cap on liability

Notwithstanding anything to the contrary in this Policy, the aggregate liability of the Company, its affiliates, service provider and vendor(s) hereunder shall be limited to INR 1,000 only (per user) and shall not extend to any direct, indirect or remote damages whatsoever, including but not limited to special, incidental, consequential, or punitive damages or loss of profits.

15. DNC Waiver

In furtherance to your usage of the Platform, you expressly waive the Do Not Call (DNC)/ Do Not Disturb (DND) registrations on your phone/ mobile numbers for contacting you. There is no DNC/ DND check required for the number you have provided/ made available to the Company.