PRIVACY POLICY

1. USE OF OUR PLATFORM OR SERVICES

2. COLLECTION OF INFORMATION

5. INFORMATION SECURITY

FFPL intends to protect Your information and to maintain its accuracy as confirmed by You. We implement reasonable physical, administrative and technical safeguards to help us protect Your information from unauthorized access, use and disclosure. For example, We encrypt all information when We transmit the data in digital form. We also require that our registered third-party service providers protect such information from unauthorized access, use and disclosure.

FFPL has adequate security measures in place to protect the loss, misuse and alteration of information under control. We endeavor to safeguard and ensure the security of the information provided by You. We use Secure Sockets Layers (SSL) based encryption, for the transmission of the information, which is currently the required level of encryption in India as per applicable laws.

We blend security at multiple steps within our products with state of the art technology to ensure our systems maintain strong security measures and the overall data and privacy security design allow us to defend our systems ranging from low hanging issue up to sophisticated attacks. We aim to protect from unauthorized access, alteration, disclosure or destruction of information We hold, including:

i. Encryption of data to keep Your data private while in transit;

ii. Security feature like an OTP verification to help You protect Your account;

iii. Review our process of collection, storage, and processing practices, including physical security measures, to prevent unauthorized access to our systems;

iv. Restricted access to personal information to our staff, representatives, contractors, and agents who need that information in order to process it. Anyone with this access is subject to strict contractual confidentiality obligations and suitable disciplinary action taken, in case if they fail to meet these obligations;

v. Compliance & cooperation with regulations and applicable laws;

vi. Periodic review of this Privacy Policy and make sure that We process Your information in ways that comply with it.

vii. Non-disclosure of Aadhaar number in any manner. We comply with legal frameworks relating to the transfer of data as mentioned and required under the Information Technology Act, 2000, rules and the amendments made thereunder.

viii. On receipt of formal/ written complaints, We respond by contacting the person who made the complaint. We work with the appropriate regulatory authorities, including local data protection authorities, to resolve any complaints regarding the transfer of Your data that We cannot resolve with You directly.

7. CHANGES IN PRIVACY POLICY

Our Privacy Policy might change from time to time, and FFPL will provide notice of it on Your email address linked to Your Platform account or can be seen by You in our Platform. We encourage You to periodically review the Platform for the latest information on our privacy practices. Users are bound by any changes to the Privacy Policy hosted / made available on the Platform.

8. COOKIES

The Platform uses temporary cookies to store certain data that is used by us for maintenance of the Platform and its features as well as for research and development. We do not store personal/identity information in the cookies.

The cookies shall not provide access to data in Your device such as email addresses or any other data that can be traced to You personally. The data collected by way of cookies will allow the Platform to provide more enhanced and personal features, enabling delivery of more User-friendly services.

Most devices allow You to configure settings to notify You when a cookie is received or to block cookies altogether. However, disabling cookies may restrict the functionality and features available on the Platform or limit access to certain Services. Additionally, some pages on the Platform may include cookies or similar technologies implemented by third parties. Please note that We do not control the use of cookies by these third parties.

9. THIRD PARTY SDKS AND OTHER SITES

The Platform has a link to registered third party software development kits (“SDKs”), Application Programming Interface (“API”) integrations, redirections which collects data on our behalf and data is stored to a secured server. We ensure that our third-party service providers take extensive security measures in order to protect Your personal information against loss, misuse or alteration of the data as required under the applicable laws.

However, We are not responsible for the privacy practices or the content of those linked websites. With this Privacy Policy, We are only addressing the disclosure and use of data collected by Us. Their data collection practices, and their policies might be different from this Privacy Policy and We do not have control over any of their policies neither do We have any liability in this regard.

Our third-party service providers employ separation of environment and segregation of duties and have strict role-based access control on a documented, authorized, need-to-use / know basis. The stored data is protected and stored by application-level encryption. They enforce key management services to limit access to data.

Furthermore, our registered third-party service providers provide hosting security – they use industry leading anti-virus, anti-malware, intrusion prevention and detection systems, file integrity monitoring, and application control solutions.

We don't allow unauthorized access to Your non-public personal contacts or financial transaction SMS data by any third party in relation to Services other than our authorized partners for the Services.

10. YOUR RIGHTS

Modifying or rectifying Your information: You are responsible for providing us with accurate and complete personal data. In the event of any personal information provided by You is inaccurate, incomplete or outdated then You shall have the right to provide Us with the accurate, complete and up to date data and have us rectify such data at our end immediately.

We urge You to ensure that You always provide us with accurate and correct information/data to ensure Your use of our Services is uninterrupted. In case of modification of personal information, You will be required to furnish supporting documents relating to change in personal information for the purpose of verification by FFPL.

Your Privacy Controls:You have certain choices regarding the information We collect and how it is used:

i. Your device may have controls that determine what information We collect. For example, You can modify permissions on Your android/iOS device or browser to remove any permissions that may have been given. However, FFPL does not provide a guarantee of Services if any such controls are exercised / access is denied.

ii. You can also request to remove content from our servers in accordance with sub-clause below

iii. Withdrawal/Denial of consent: You acknowledge that We have duly collected the information with Your consent and You have the option to not to provide such information, or deny consent for use of specific information, restrict disclosure by us to any third parties, deny retention by us of any of Your information, or revoke the consent already given for any of the above, and if required, make the /our DLAs delete/forget any such information. However, any withdrawal of such personal information will not be permitted in case any Service availed by You is active and such information is necessary to be retained by us or DLA/LSP/third party partners until the continuation of Services, or until such duration as stipulated under any applicable laws, whichever is later. Where consent has been withdrawn by you, We do not guarantee and cannot be liable for providing such Service. For exercising your right to withdraw/deny consent as per this clause, please contact us at [email protected]

You shall have the following rights pertaining to Your information collected by us:

i. Deny Consent: You shall have the right to deny consent for use of specific data, restrict disclosure of your data to third parties, revoke consent already granted to collect personal data, opt for preferences as to data retention, and if required, make the Platform delete/ forget the data. However, any such denial will not prejudice our right to retain any data in relation to the loans or credit facilities availed by You. Further, in case of a denial of consent, the Platform does not provide a guarantee or will not be liable towards the continued facilitation of the Services if any such controls are exercised.

ii. Withdraw Consent:You may withdraw Your consent to contact You, for the continued collection, use or disclosure of Your information, at any time, or request for deletion of Your login account to the Platform by raising a request on the Platform or by mailing us at [----]. However, We do not provide guarantee of continued provision of Services if any such controls are exercised / access is denied. Further, in the event the request for withdrawal is made while any credit facility or loan taken by you is outstanding, We shall have the right to continue processing Your information till such credit facility has been repaid in full, along with any interest and dues payable and/or for such period as may be allowed under applicable law. However, We shall not retain Your data and information if it is no longer required by us and there is no legal requirement to retain the same, and such data will be destroyed/purged in line with our internal policies. Do note that multiple legal bases may exist in parallel, and We may still have to retain certain data and information at any time to comply with applicable laws. Also, the information may still be used for execution of any outstanding or termination activity of any Services.

iii. Report an issue:You have the right to report any security breach / incident to the Grievance Redressal Officer (GRO) of FFPL (details mentioned hereinbelow). You are entitled / shall be entitled to prevent unauthorised usage of Your information by our personnel/staff / representative / agents by informing us immediately / within 10 days of being informed of the proposed use, that You do not wish to disclose such information. You can also exercise the right at any time by contacting us at [email protected].

iv. Information/data deletion may not be implemented for ongoing Services including loan, insurance policy (if any).

v. Marketing and Communication: The consent for this information can be withdrawn by sending an email to [email protected]

11. PROHIBITED ACTIONS

While visiting or using the Platform, You agree not to, by any means (including hacking, cracking or defacing any portion of the Platform) indulge in illegal or unauthorized activities including the following:

i. Restrict or inhibit any authorized user from using the Platform.

ii. Use the Platform for unlawful purposes.

iii. Harvest or collect information about Platform’s users without their express consent.

iv. "Frame" or "mirror" any part of the Platform without our prior authorization. v. Engage in spamming or flooding.

vi. Transmit any software or other materials that contain any virus, time bomb, or other harmful or disruptive component.

vii. Remove any copyright, trademark or other proprietary rights notices contained in the digital platform.

viii. Use any device, application or process to retrieve, index, "data mine" or in any way reproduce or circumvent the navigational structure or presentation of the digital platform.

ix. Permit or help anyone without access to the digital platform to use the digital platform through Your username and password or otherwise.

12. GRIEVANCE REDRESSAL AND FURTHER INFORMATION

In case You have grievance or relating to collecting receiving, possessing, storing, dealing or handling of Your personal information provided, You may contact our Grievance Officer on the following address or write an email: