InvestorAi is committed to maintaining the confidentiality, integrity and security of personal data, i.e., any information relating to an identified or identifiable natural person.

What information do we collect and use?

We collect, use and process several different types of information in accordance with the Digital Personal Data Protection Act, 2023 and your use of our Services provides the consent for the use of the data in the manner specified below.

We collect personally identifiable information (“Personal Data”) about you, including but not limited to: name, address, date of birth, PAN, Aadhaar, signature, photograph, email address, phone number, location, password, any other prescribed KYC details and copies of documents attesting the same.

We use your Personal Data for various purposes, including but not limited to:

• to comply with the applicable laws and regulations 

• to check the identity and maintain/ update the KYC records

• to comply with any legal process and to respond to requests from regulatory authorities;

• provide, maintain and improve our Services

• notify you about changes or updates to the Services

• provide customer support and administrative purposes

• detect, prevent and address technical issues

• monitor the usage of the Services and gather diagnostic, technical and related information

• provide you with news, special offers and general information about our Services which we offer that may be of interest, unless you have opted not to receive such information

• create targeted advertising on social media platforms including lookalike audiences, and to prevent existing customers from being targeted with subscription offerings on social media platforms

Your Personal Data will never be used or analyzed to determine your financial situation, risk appetite, objectives or needs.

How is your data processed?

We take all appropriate technical and organizational measures to ensure the effective and secure processing of any Personal Data. “Processing” includes storing, transferring, sharing, recording and updating. Your Personal Data will only be processed for the purposes described above.

We may share your Personal Data with SEBI/ NSE/ BSE / CDSL/ NSDL/ Regulatory Bodies/ KYC Registration Agencies (KRAs). We may also share personal information with government agencies mandated under the law to obtain personal information including sensitive personal data or information for verification of identity or prevention, detection, investigation including cyber incidents, prosecution, and punishment of offenses.

We may also share your Personal Data with our subcontractors and social media providers, including the Platform. These third parties are obligated not to disclose your Personal Data or use it for any purpose other than as permitted in this Privacy Policy.

The Platform is connected to and runs the back-end of our website. The Platform is committed to protecting the security of your Personal Data. While the Platform uses reasonable efforts to protect your Personal Data, the Platform cannot guarantee its absolute security.

How do we manage payments data?

We use a third party for payment processing. We will not store or collect your payment card details. That information is provided directly to our third party payment processor whose use of your personal information is governed by their privacy policy, which ensures the secure handling of payment information.

What are your privacy rights?

You have a number of rights in respect of your personal data, including the right:

• to request access to, and copies of, the personal data that we hold about you

• to require us to correct the personal data we hold about you if it is incorrect

• to require us to erase your personal information, in certain circumstances

• to require us to restrict our data processing activities, in certain circumstances

• where our processing is based on your consent, the right to withdraw that consent

• where the processing is carried out by automated means, to receive from us the personal data we hold about you which you have provided to us

• to object, on grounds relating to your particular situation, to any of our processing activities where you feel this has a disproportionate impact on your rights

These rights are not absolute and we may be entitled or required to refuse requests where exceptions apply.

Updates, retention and deletion

This Privacy Policy can be updated at any time and will be available on our website.

We will retain your Personal Data for a minimum of five years after the end of our relationship with you, for our accounting, regulatory, record-keeping and tax reporting requirements.

After that period, we will delete your Personal Data and retain only anonymised information of former users, for the purposes set out in this Privacy Policy.