Privacy Policy

NetAmbit ValueFirst Services Private Limited (hereinafter referred to as “COMPANY/ we/ us/our”) respect the confidentiality and integrity of your Personal Data and Information. Keeping your Personal Data and Information secure and preventing any misuse thereof is a top priority of the COMPANY.

This Privacy Policy is meant to help You understand what information We collect, why We collect it, what information We store, use and share with third parties and how (and to what extent) You can update, manage, export and delete your information. Please review the following to have a clear understanding of our privacy policy and accept the same to use Our services. By signing up or subscribing to any of Our services, You are explicitly confirming and accepting the terms of this Privacy Policy, any amendment in the privacy policy will be communicated to you through e-mail for which we will seek your fresh consent. Please note that the acceptance of the terms of this Privacy Policy by You is a legally binding agreement between You and M/s NetAmbit ValueFirst Services Private Limited. By accepting the terms of this Privacy Policy, you expressly authorise the Company, its affiliates, its associates/channel partners, the third party Service Providers engaged by the Company, to collect, copy, store, share, reproduce (in different formats), use Your information in terms with this Privacy Policy.

Interpretation and Definitions

“Account” means a unique account created for You to access our Service or parts of our Service.

“Affiliate” means an entity that controls, is controlled by or is under common control with a party, where “control” means ownership of 50% or more of the shares, equity interest or other securities entitled to vote for election of directors or other managing authority.

“Application” means the software program or the web application provided by NetAmbit ValueFirst Services Private Limited and being used, accessed or downloaded by You on any electronic device.

“Country” refers to the territorial jurisdiction of India.

“Device” means any device that can access the Service such as a computer, a mobile phone or a digital tablet.

“Service” refers tothat which is defined in the Terms and Conditions of the Website.

“Third-party Social Media Service” refers to any website or any social network website through which a User can log in or create an account to use the Service.

“Usage Data” refers to data collected automatically, either generated by the use of the Service or from the Service infrastructure itself (for example, the duration of a page visit).

“You” or “Your” or the “User” means the individual and/or the company, or other legal entity on behalf of which such individual is accessing or using the Service, as applicable.

“Personal Data” Means any information that can be used to identify an individual, either directly or indirectly or an individual who is identifiable by or in relation to such data.

Services offered by Us:

Our services include (but are not limited to) facilitating lending by Banks and NBFCs, loan facilities, credit card sales process, lead generation and management, and investment opportunities. These may evolve from time to time, subject to compliance with applicable regulatory frameworks from time to time.

  1. Facilitating lending by Banks and NBFCs
  2. Loan facilities
  3. Credit Card sales process
  4. Lead generation and management
  5. Investment opportunities

We wish to clarify here that the above list of businesses are not an exhaustive one as being a service provider the type of businesses may change from time to time.

Information We collect: -

a. Personally identifiable information: -

  • Email address
  • First name and last name
  • Phone number, mobile number
  • Address, State, Postal code, City
  • Date of Birth, Registration details, as applicable e.g. GST, PAN etc.
  • Documents such as identity card, passport details, Aadhaar details, PAN, Voter ID, driving license, education details.
  • Employment Details
  • Signature
  • Your Device’s ID
  • Your location (Unless you deactivate location services in the relevant section of the App);
  • Browser type, browser version, mobile operating system
  • Any other information, if required to be obtain will be communicated separately if not mention in clause “a) or b)”

b. Usage Data such as:-

  • The pages of our Service that You visit, the time and date of Your visit, the time spent on those pages, unique device identifiers and other diagnostic data.
  • We may also collect information that Your browser sends whenever You visit our Service or when You access the Service by or through a mobile device.
  • We may collect certain information automatically, including, but not limited to, the type of mobile device You use, your mobile device unique ID, the IP address of Your mobile device, Your mobile operating system, the type of mobile Internet browser You use, unique device identifiers and other diagnostic data.

Usage Data has collected automatically when using the Service.

c. Information from Third-Party Services

The Company allows You to create an account and log in to use the Service through the following Third-party Services:

  • Google

If You decide to register through or otherwise grant us access to a Third-Party Service, We may collect Personal data that is already associated with Your Third-Party Service’s account, such as Your name, Your email address, Your activities associated with that account.

You may also have the option of sharing additional information with the Company through Your Third-Party Service’s account. If You choose to provide such information and Personal Data, during registration or otherwise, You are giving the Company permission to use, share, and store it in a manner consistent with this Privacy Policy.

d. Information sharing with Third-Party

We may share your data with our clients and/or third parties to assess your eligibility to offer certain product or services to better serve your needs and interests.

We may also use aggregated and anonymised data for other internal business purposes. We are entitled to use such anonymized data freely, without any restrictions other than those set out under applicable law.

e. Information sharing for other Legal requirements

Business Transactions

If there is any corporate event such as a merger, acquisition or asset sale, Your Personal Data may be transferred. We will provide notice before Your Personal Data is transferred and becomes subject to a different Privacy Policy.

Law enforcement

Under certain circumstances, we may be required to disclose Your Personal Data if required to do so by law or in response to valid requests by public authorities (e.g. a court or a government agency).

Other legal requirements

We may disclose Your Personal Data in the good faith belief that such action is necessary to:

  • Comply with a legal obligation
  • Protect and defend the rights or property of the Company
  • Prevent or investigate possible wrongdoing in connection with the Service
  • Protect the personal safety of Users of the Service or the public
  • Protect against legal liability

Please note that the Company uses various technologies to collect and store information, including cookies, pixel tags, local storage, such as browser web storage or application data caches, databases and server logs.

Cookie Consent Mechanism

Our website and applications are integrated with a cookie consent mechanism. At the time of first access, users will be presented with a cookie banner clearly stating the use of tracking tools and allowing opt-in for non-essential cookies, in compliance with privacy regulations.

We use and transfer of information received from Google APIs to any other app will adhere to Google API Services User Data Policy, including the Limited Use requirements.

How Do We Process Your Personal Data

As per CICRA and RBI’s Fair Practices Code, user consent for accessing credit information shall be valid for a maximum of 180 days from the date of issuance. Consent shall be used only once unless explicitly renewed by the user. Post-expiry, consent will be considered invalid and data access will be revoked.

We process your Personal Data with your consent or for legitimate uses, in our business activities for providing products or services, and to perform, among other actions, the following:

  1. To process the data for the specified purposes for which it was provided to us voluntarily.
  2. To facilitate the transactions or report on transactions.
  3. To undertake research and analytics for offering or improving our products/ services and our security and service quality.
  4. To recommend/develop new products/ services and to monitor and review products/ services from time to time.
  5. To check and process the requirements submitted to us for availing products/ services and/ or instructions or requests received from you in respect of the products/ services.
  6. To respond to queries or feedback submitted by you.
  7. To verify your identity for us to provide or offer products/ services to you.
  8. To share with you, updates on changes to the products/ services and their terms and conditions.
  9. To take up or investigate any complaints, claims or disputes raised by you or any third- parties.
  10. To notify in case of suspicious activities or blocking of transactions as per our risk engines.
  11. To carry screenings, audits, due diligence checks and/or record keeping purposes as lawfully required by us.
  12. To undertake financial, regulatory or management reporting and create and maintain various risk management models.
  13. To enable us to show you advertisements, selective offers and promotions, search results, location-based services, which are relevant to you and your interests.
  14. To auto populate such Third-Party pages based on your click on advertisement instances on our website and proceeding to such pages.
  15. To adhere to judgements, decrees, or orders issued under Indian Laws or those pertaining to contractual or civil claims under foreign laws.
  16. To fulfill legal obligation under applicable laws to disclose information to the state or its instrumentalities.

For other purposes:

We may use Your information for other purposes, such as data analysis, identifying usage trends, determining the effectiveness of our promotional campaigns and to evaluate and improve our Service, products, services, marketing and your experience.

Your Rights & Preferences As A Data Subject:

S.NO RIGHT REQUIREMENT
1. RIGHT TO BE INFORMED You have a right to be informed about the manner in which any of your personal data is collected or used which we have endeavoured to do by way of this Policy.
2. RIGHT OF ACCESS You have a right to access the personal data you have provided by requesting us to provide you with the same.
3. RIGHT TO RECTIFICATION You have a right to request us to amend or update your personal data if it is inaccurate or incomplete.
4. RIGHT TO ERASURE You have a right to request us to delete your personal data.
Please note that we may have legal obligations to preserve certain data which could prevent us from deleting certain data.
5. RIGHT TO RESTRICT You have a right to request us to temporarily or permanently stop processing all or some of your personal data in certain circumstances.
6. RIGHT TO OBJECT You have a right, at any time, to object to our processing of your personal data under certain circumstances. You have an absolute right to object to us processing your personal data for the purposes of direct marketing .
7. RIGHT TO DATA PORTABILITY You have a right to request us to provide you with a copy of your personal data in electronic format and you can transmit that personal data for using another third-party’s product/service.
8. RIGHT NOT TO BE SUBJECT TO AUTOMATED DECISION-MAKING You have a right to not be subject to a decision based solely on automated decision making, including profiling.
9. RIGHT TO LODGE A COMPLAINT You have the right to file a complaint with the respective data protection authority, if you feel that your rights have been violated .
10. RIGHT TO WITHDRAW CONSENT You have the right to withdraw the consent given earlier to us to collect and use your personal data or information by writing to us.

In case you want to exercise any of the rights set out above you can reach us at dpo@netambit.net or at the contact details mentioned below.

Retention of Personal Information

All credit information accessed on the basis of user consent will be retained only up to the 180-day consent validity or earlier withdrawal, whichever is earlier. Automated routines ensure scheduled deletion without manual intervention.

a. All personal and credit-related data collected and processed by the Company is hosted on servers located within India. No cross-border transfer of sensitive personal data is performed. In case of any engagement with third-party sub-processors (e.g., for analytics or support), the Company ensures that appropriate contractual and technical safeguards are implemented to comply with CICRA and applicable data protection laws.

b.We may need to retain your personal data even if you seek deletion thereof, if it is needed to comply with our legal obligations, resolve disputes and enforce our agreements.

c. It is important that the personal data we hold about you is accurate and current. Please keep us informed if your personal data changes during your relationship with us. You may withdraw your consent for further sharing your information with any other third party. The withdrawal of your consent shall however affect or result in withdrawal of certain services being made available to you. You shall not hold responsible the Company or its employees, or employees or agents or third-party Service Providers for any withdrawal or deficiency in service in such case of withdrawal of consent, whatsoever.

Our services are available to anyone above the age of 18 years. Acceptance of the terms and conditions and the privacy policy by any such user is a legally binding agreement between the Company and such user.

We will cease to use your Persona Data on following events:

  • you withdraw your consent
  • It is erased by us voluntarily or by the rights exercised by you

Withdrawal of consent:

You may, at any time while availing of our Services or otherwise, withdraw the consent given earlier to us to collect and use your personal data or information by writing to us at dpo@netambit.net. dpo@netambit.net. Post successful verification of your consent withdrawal request, the same shall be processed subject to successful verification. In some cases, if you may have taken our product or services we may not be in a position to delete your data, except for any credit information data which will be deleted. This is because as per the applicable law, we may be required to retain your data, for us/our partners/clients to continue to provide services availed by you. We assure that such retained information shall be protected following all applicable cyber security norms.

However, in the case of you withdrawing such consent, we will have the option to stop providing you the Services for which the information was sought. You will not be eligible for a refund of any fees paid for any service in such event and you agree that the company shall not be liable to you for the same in any manner whatsoever.

Data Localization Assurance

All personal and credit-related data collected and processed by the Company is hosted on servers located within India. No cross-border transfer of sensitive personal data is performed. The Company ensures full compliance with CICRA’s data localization mandate.

Automated Data Purging Mechanism

All personal and credit information accessed through user consent shall be automatically purged from the systems on the earlier of (a) consent expiry (180 days) or (b) consent withdrawal. The system includes automated routines that ensure scheduled deletion or anonymization of data without manual intervention.

Changes to Privacy Policy

This Privacy Policy may be changed from time to time in view of the changing needs of the services being offered by us and/or requirement of any Law. Any significant change made to this Privacy Policy shall however prominently informed (including, for certain services, email notification of Privacy Policy changes) and we will seek your fresh consent to use your data.

When you use our services, you’re trusting us with your information. We understand that this is a big responsibility and we work hard to protect your information. We will not reduce your rights under this Privacy Policy without your explicit consent.

Data Security

The Company is an ISO/IEC 27001:2013 certified organization ensuring applicable compliance standards on information security and understands that the confidentiality, integrity, and availability of your information are vital to our business operations and our own success. We employ appropriate technical and organizational security measures at all times to protect the information we collect from you. We use multiple electronic, procedural, and physical security measures to protect against unauthorized or unlawful use or alteration of information, and against any accidental loss, destruction, or damage to information. We have put in place appropriate security measures to deal with any suspected data security breach However, no method of transmission over the Internet, or method of electronic storage, is 100% secure. Therefore, we cannot guarantee its absolute security. Further, you are responsible for maintaining the confidentiality and security of your login id and password, and may not provide these credentials to any third party.

During any security breach all the relevant stakeholders (both internal and relevant partners as well as statutory authorities) shall be informed with the relevant information as may be required by the applicable laws.

Third Party Advertising

We may use third-party advertising companies and/or ad agencies to serve ads when you visit our Website. These companies may use information (excluding your name, address, email address, or telephone number) about your visits to this Website in order to provide advertisements on this Website and other third-party websites about goods and services that may be of interest to you.

We use third-party service providers to serve ads on our behalf across the internet and sometimes on this Website. They may collect anonymous information about your visits to Website, and your interaction with our products and services. They may also use information about your visits to this and other Websites for targeted advertisements for goods and services. This anonymous information is collected through the use of a pixel tag, which is industry standard technology used by most major Websites. No personally identifiable information is collected or used in this process.

Contact Us

You may contact us on any aspect of this Privacy Policy or for any grievance(s) with respect to your Personal Data, through email at dpo@netambit.net

In case of any questions about our privacy practices or if you believe that we may have inadvertently collected Personal Data without proper consent, you may also contact us by writing to our Data Protection Officer as per the details provided below:

Name: Naincy Sharma

Designation: Data Protection Officer

Email ID: dpo@netambit.net

Address: C-171/2, 4th Floor Sector -15B, Noida - 201301, India