Data Policy

Entity: Sumangalam Credit Society (operating with Dhanwaan)
Website & App: https://dhanwaan.in

1. Introduction

This Data Policy explains how Dhanwaan (operated by Sumangalam Credit Society) collects, processes, uses, stores, and protects user data. We are committed to handling all data in a lawful, transparent, and secure manner in compliance with applicable Indian laws and cooperative banking regulations.

2. Types of Data Collected

a. Personal Data

• Full Name
• Contact Information (email, phone number)
• Date of Birth and Address
• State and Pincode
• Aadhaar / PAN (for KYC verification)

b. Financial Data

• Bank Account Details
• Transaction History (savings, deposits, withdrawals)
• E-Mandate / Auto-debit consent records
• Credit and loan-related data (if applicable)

c. Device & Technical Data

• IP address, device type, and OS version
• App usage logs and crash analytics
• Cookies and session identifiers (for web users)

d. Location Data

Used only to verify identity and prevent fraud during KYC and onboarding.

3. Purpose of Data Collection

• Completing KYC and regulatory compliance checks
• Enabling savings, deposits, and transaction services
• Verifying user identity and preventing fraud
• Providing customer support and resolving queries
• Sending transaction alerts, notifications, and updates
• Improving app functionality, security, and performance
• Generating analytics (anonymized and aggregated)

We do not sell, trade, or rent your personal information to any third party.

4. Data Storage and Security

• All sensitive user information is encrypted during transmission and storage.
• Data is stored securely on servers that comply with RBI and NPCI standards for financial systems.
• We regularly conduct security audits to protect against unauthorized access, data loss, or misuse.
• Only authorized personnel have controlled access to user data.

5. Data Sharing

Your data may be shared only with:

• Authorized banking and financial partners for transaction processing.
• Regulatory bodies such as RBI or NPCI, as mandated by law.
• Third-party vendors for secure services like OTP, SMS, KYC verification, or analytics — bound by confidentiality agreements.

We do not allow any partner to use your data beyond the purpose agreed upon.

6. Data Retention

We retain your data only for as long as:

• Required by law or regulatory authorities, and
• Necessary to fulfill the services you use.

After this period, data is safely deleted or anonymized following secure disposal protocols.

7. User Rights

As a Dhanwaan user, you have the right to:

• Access and review your stored personal data.
• Request corrections or updates to inaccurate data.
• Withdraw consent for certain data uses (subject to regulatory requirements).
• Request deletion of your account and related personal data.

To exercise these rights, email us at care@dhanwaan.in.

8. Data Breach Response

• You will be notified promptly via your registered email or phone.
• The breach will be reported to relevant authorities as per compliance norms.
• Immediate actions will be taken to mitigate impact and restore data integrity.

9. Data Transfers

We do not transfer user data outside India. All processing and storage occur within Indian jurisdiction, ensuring compliance with the Digital Personal Data Protection Act, 2023 (DPDP Act).

10. Policy Updates

This Data Policy may be updated periodically to reflect new legal or operational requirements. Any changes will be posted on https://dhanwaan.in/data-policy with the revised Effective Date.

11. Contact Us

• 📩 Email: care@dhanwaan.in
• 🏢 Address: Sumangalam Credit Society, Dehradun, Uttarakhand, India