Paisa Milega
Paisa Milega

Navigation

Data Policy

Effective Date: May 23, 2026 | Compliant with RBI Digital Lending Guidelines

1. Data Collection & Purpose

At Paisa Milega, we collect only the minimum data required to facilitate financial product referrals and ensure regulatory compliance. This includes:

• Identity Data: Name, Mobile Number, PAN, and Aadhaar (for KYC).

• Financial Data: Bank details for commission payouts.

• Lead Data: Basic financial requirements of customers you refer.

This data is used solely for onboarding, verifying conversions, and processing your earnings.

2. Data Storage & Security

We prioritize the security of your information above all else:

• Localized Storage: All user data is stored on secure, encrypted servers physically located within the territory of India.

• Encryption: We use industry-standard SSL encryption for data in transit and AES-256 encryption for data at rest.

• Access Control: Only authorized personnel with strict multi-factor authentication can access anonymized datasets for audit purposes.

3. Data Retention Policy

We adhere to strict timelines for keeping your data:

• Credit Report Data: Any data sourced from credit bureaus (like Equifax or CIBIL) is retained for a maximum period of 6 months, after which it is automatically purged from our active systems.

• Account Data: General profile information is retained as long as your account is active. Transactional and tax records (TDS) are retained for 7 years as mandated by Indian financial laws.

4. Data Disposal & Shredding

When data is no longer required or upon a valid deletion request, we employ 'Digital Shredding' techniques. This ensures that the data is not just deleted but overwritten multiple times, making it technically impossible to recover. Sensitive documents like PAN/Aadhaar copies are masked in our archives to prevent misuse.

5. User Rights & Consent

You have the absolute right to:

• Request a copy of the data we hold about you.

• Ask for the correction of inaccurate information.

• Request the deletion of your account and associated data (subject to legal retention requirements).

We never share or sell your data to third-party marketing companies. Data is only shared with RBI-regulated banks and NBFCs after your explicit consent for specific product applications.

Your data is secured using AES-256 encryption and stored exclusively on Indian servers.