Privacy Policy

Last Updated: January 2024

1. Introduction

Agrim Fincap Private Limited ("Company," "we," "us," or "our") values your trust and respects your privacy. This Privacy Policy explains how we collect, use, process, store, and protect your personal information when you access our website, mobile application, or avail our financial products and services.

As a Non-Banking Financial Company (NBFC) registered with the Reserve Bank of India (RBI), we comply with:

  • Information Technology Act, 2000
  • Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011
  • RBI Master Directions and Guidelines for NBFCs
  • RBI Digital Lending Guidelines (2022–23)
  • Other applicable data protection and telecom regulations

Key Commitments under RBI Digital Lending Guidelines:

  • Data will be stored only on servers located in India (data residency).
  • No borrower data will be accessed by Lending Service Providers (LSPs) or third parties without explicit, informed consent.
  • Borrowers will be provided with a Key Fact Statement (KFS) before disbursal, in line with RBI requirements.

By using our services, you consent to the practices described in this policy.

2. Information We Collect

2.1 Personal Information

We may collect the following information for regulatory compliance and loan underwriting:

  • Name, date of birth, gender, and contact details
  • Government-issued ID documents (Aadhaar, PAN, Passport, Voter ID, Driving License)
  • Employment, occupation, and income details
  • Bank account details, UPI, IFSC, and other financial information
  • Credit history and credit bureau data
  • Address proof and residence information
  • Photographs or biometric data (only as required for KYC compliance, and never shared with third parties)

Sensitive Data Handling:

  • We obtain explicit, informed consent before collecting, processing, or sharing sensitive personal data such as Aadhaar, biometrics, or financial details.
  • We follow the data minimization principle - collecting only the information necessary to comply with regulations and provide our services.

Note: We do not knowingly collect data from individuals under 18 years of age.

2.2 Technical Information

Automatically collected when you use our website/app:

  • Device details, operating system, browser type, IP address
  • Location data (GPS or network-based)
  • App usage behavior, session logs, and navigation patterns
  • Cookies, SDKs, and similar technologies

2.3 Information from Third Parties

We may receive information from:

  • Credit bureaus (CIBIL, Experian, CRIF, Equifax)
  • Banks, account aggregators, and payment service providers
  • Employers, references, or professional databases
  • Social media or third-party services (if linked with our platform)

3. How We Use Your Information

Your information may be used for:

  • Processing and evaluating loan applications
  • Identity verification and KYC compliance
  • Credit assessment and risk evaluation
  • Compliance with RBI regulations (including AML, CFT, fraud detection, KFS disclosures)
  • Delivering financial products, services, and account updates
  • Sending statements, notifications, and important communications
  • Marketing and promotional messages (only with your prior consent; you may opt-out anytime)
  • Customer service, dispute resolution, and grievance handling
  • Internal audits, analytics, and service improvement
  • Record-keeping and regulatory reporting

4. Information Sharing and Disclosure

We do not sell your data. However, we may share it under the following conditions:

4.1 With Authorized Third Parties (Purpose-Limited)

  • Credit Bureaus & Banks – for credit evaluation and loan processing
  • Payment Gateways & Collection Agencies – for repayment and recovery
  • IT Vendors & Analytics Providers – for system hosting, security, and app improvement
  • Auditors, Legal & Compliance Advisors – for regulatory compliance

Important: No biometric data will be shared with any third party.

4.2 Legal & Regulatory Requirements

We may disclose information if required to:

  • Comply with applicable laws, regulations, or court orders
  • Assist RBI, regulators, law enforcement, or government agencies
  • Enforce our Terms & Conditions and protect rights, property, or safety

If data must be transferred outside India, it will only be done in compliance with Indian laws and with adequate safeguards.

5. Data Security and Retention

We implement robust security practices, including:

  • 256-bit SSL encryption for data transmission
  • Secure servers hosted within India
  • ISO 27001-certified data centers
  • PCI DSS compliance (if card-based payments are processed)
  • Regular vulnerability assessments and penetration testing
  • Multi-factor authentication for system access
  • Employee training in data confidentiality

Breach Notification: In the unlikely event of a material data breach, we will notify affected users and regulators within prescribed timelines.

Retention: Data will be retained only as long as required by law or regulation. For example, loan-related data may be retained for up to 8 years. After expiry, data will be securely deleted or anonymized.

6. Your Rights

As a borrower, you have the right to:

  • Access personal data held with us
  • Request corrections or updates
  • Withdraw consent for non-essential processing
  • Opt-out of marketing communications (we comply with TRAI DND/spam rules; no unsolicited calls or SMS will be made)
  • Request deletion of data (subject to RBI-mandated retention)
  • Request data portability - to download or transfer your personal information
  • Receive a response to data rights requests within 30 days
  • Lodge a complaint with our Data Protection Officer (DPO), and escalate to the RBI Ombudsman if unresolved

Requests can be made at: info@agrimfincapindia.com

7. Cookies and Tracking Technologies

We use cookies and similar tools to:

  • Enhance app performance and user experience
  • Remember preferences and improve navigation
  • Analyze traffic and usage statistics
  • Provide personalized services

You may disable cookies via browser/app settings, but certain features may not function properly.

8. Third-Party Links

Our website/app may contain links to third-party platforms. We are not responsible for their privacy practices. Once you leave our platform, this policy no longer applies.

9. Policy Updates

This Privacy Policy may be updated periodically. Material changes will be communicated via our website, app notifications, or email. Continued use of our services constitutes acceptance of updates.

10. Grievance Redressal

For concerns or complaints, please contact:

Data Protection Officer (DPO)
Agrim Fincap Private Limited
Registered Office: 276, First Floor, Gagan Vihar,
Shahdara, Delhi - 110051
Email: info@agrimfincapindia.com
Phone: +91 98733 32713

If unresolved within 30 days, you may escalate to the RBI Ombudsman for NBFCs.

11. Contact Information

Agrim Fincap Private Limited
Registered Office: 276, First Floor, Gagan Vihar,
Shahdara, Delhi - 110051
Email: info@agrimfincapindia.com
Customer Care: +91 98733 32713
Website: https://www.agrimfincapindia.com
CIN: U74899DL1995PTC067419
NBFC License Number: NBFC-14.03268