We value the trust you place in us and recognize the importance of secure transactions and information privacy. This Privacy Policy outlines Credsto's approach to Data Protection and Privacy to fulfil its obligations under the applicable laws and regulations. This Privacy Policy applies to your Personal Data which is processed by us, whether in physical or electronic mode.
While you may be able to browse the platform (Website and App collectively referred to as “Platform”) from countries outside of India, however, please note we do not offer any product/service under this Platform outside India. By visiting the platform or providing your information, you expressly agree to be bound by this Privacy Policy and agree to be governed by the laws of India including but not limited to the laws applicable to data protection and privacy. If you do not agree please do not use or access our Platform.
In this Privacy Policy, the expressions ‘Personal Data’, ‘Data Subject’, ‘Controller’, ‘Processor’ and ‘Processing’ shall have the meanings given to them in the applicable privacy laws.
We are committed to treating data privacy seriously. It is important that you know exactly what we do with your Personal Data.
Throughout this document, “we”, “us”, “our”, “ours” refer to CREDSTO. Wherever we have said ‘you’ or ‘your’, this means YOU.
WHO WE ARE
CREDSTO is a company incorporated and registered under the provisions of the Companies Act, 2013 and having its registered office at “BM 1-190 Udupi district ,karkala taluk , Karnataka, Pincode 576111”. CREDSTO is engaged in the business of facilitating selling, marketing and retailing Products (“Business”) through the e-commerce websites developed and owned by Credstoand its affiliates (Website and App collectively referred to as “Platform”) or offline stores / events to conduct its Business.
ROLES WE PLAY
We play the role of a Data Controller when we collect and process Personal Data about you.
We play the role of a Data Processor when we collect and process Personal Data on behalf of another Data Controller
OUR COMMITMENT
We commit to protecting your privacy and hence our Personal Data handling practices are continually reviewed to ensure compliance with the applicable Privacy laws and regulations
PERSONAL INFORMATION GATHERED BY CREDSTO
The information we learn and gather from you, personal or otherwise, is used to register you, verify your identity to permit you to use the app, undertake transactions (including to facilitate and process payments), communicate with you, convey any promotional offers, services or updates associated with CREDSTO, and generally maintain your accounts with us. We also use this information to customize your experience and improve CREDSTO.
Information You Give Us:
We receive and store any information you provide while using CREDSTOor give us in any other way. You can choose not to provide certain information, but then you might not be able to use CREDSTO. We use the information that you provide for such purposes as opening your account, processing your transactions, responding to your requests, and communicating with you.
Information We Collect About You:
We receive and store certain types of information whenever you interact with us. For example, like many websites, we use “cookies,” and we obtain certain types of information when your web browser accesses our Services. We may also receive/store information about your location and your mobile device, including a unique identifier for your device. We may use this information for internal analysis and to provide you with location-based services, such as advertising, search results, and other personalized content.
Information From Other Sources:
We might receive information about you from other sources, such as updated delivery and address information from our carriers, which we use to correct our records and deliver your next purchase more easily.
CATEGORIES OF PERSONAL DATA
Categories of Personal Data collected and processed by us are as follows: -
Demographic & Identity data
Online Identifiers and other Technical Data
CONSENT
By using the Website and/ or by providing your information, you consent to the collection and use of the information you disclose on the Website in accordance with this Privacy Policy, including but not limited to your consent for sharing your information as per this privacy policy.
LAWFUL BASES OF PROCESSING YOUR PERSONAL DATA
We are permitted to process your Personal Data in compliance with applicable laws and regulations by relying on one or more of the following lawful bases:
Where the processing is based on your consent, you have a right to withdraw your consent at any time. You may withdraw consent by contacting us. Upon receipt of your written request to withdraw your consent, consequences of withdrawal will be communicated to you and, upon your agreement, your request for withdrawal will be processed.
COOKIES AND OTHER TRACKERS USED BY OUR DIGITAL PROPERTIES
Cookies are small text files that are placed on your computer by websites that you visit. Similarly, there are other types of trackers used. Likewise, Mobile Apps use requisite permissions and SDKs. These are used to make Websites & Apps work, or work more efficiently, as well as to provide information to the owners of the website/ App.
We use cookies, permissions and other trackers in our website, web-based properties and mobile applications that are used to collect and process data about you so we can provide you a better online experience as well as improve our services
Below are the categories of cookies used on our website along with a description of what they are used for-
Strictly Necessary
These cookies are needed to run our website, to keep it secure if you are logged on and to obey regulations that apply to us.
If you are a customer, they help us know who you are so that you can log on and manage your accounts. They also help us keep your details safe and private.
Functional
These cookies are used for remembering things like:
Performance
These cookies tell us how you and our other customers use our website. We combine all this data together and study it. This helps us to:
Most web browsers allow some control of most cookies through the browser settings. Please note disabling the ‘Strictly Necessary’ cookies may cause certain parts of our website to remain inaccessible to you.
We use other tracking mechanisms in addition to the above
Do Not Track
Some web browsers have a “Do Not Track” feature. This feature lets you tell websites you visit that you do not want to have your online activity tracked. These features are not yet uniform across browsers. Our sites are not currently set up to respond to those signals.
PERSONAL DATA DISCLOSURE
CREDSTO app contains third party SDKs that collect personally identifiable information (PII). They use this information to better target users or provide elements of our products & services on behalf of us. These third-party sites have separate and independent privacy policies.
CREDSTO USES THREE TYPES OF SDKS:
SDKs |
Purpose |
Analytics |
|
Payment |
|
Login |
|
We have appropriate contracts in place with our third-party partners. This means that they cannot do anything with your Personal Data which is outside of the scope permitted by us. They hold it securely and retain it only for the period specified in our contracts with them.
We might also disclose your Personal Data to appropriate authorities if we believe that it is reasonably necessary to comply with a law, regulation, legal process, to protect the safety of any person, to address fraud, security, or technical issues, or to protect our rights or the rights of those who use our products & services.
Reasons for disclosing your Personal Data to other parties:
We may disclose your Personal Data to others where it is lawful to do so including where we or they:
To whom your Personal Data may be disclosed:
We may disclose your Personal Data for the above purposes to other parties including:
CROSS-BORDER DATA TRANSFER
Personal Data we hold about you may be transferred to other countries outside your residential country for any of the purposes described in this Privacy Policy.
You understand and accept that these countries may have differing (and potentially less stringent) laws relating to the degree of confidentiality afforded to the information it holds and that such information can become subject to the laws and disclosure requirements of such countries, including disclosure to governmental bodies, regulatory agencies and private persons, as a result of applicable governmental or regulatory inquiry, court order or other similar process. In addition, a number of countries have agreements with other countries providing for exchange of information for law enforcement, tax and other purposes.
If we transfer your Personal Data to third parties for purposes stated in this Privacy Policy, we will use best endeavors to put in place appropriate controls and safeguards to ensure that your Personal Data is kept accurate, adequately protected, and processed only for specified and reasonable purposes in a manner that is fair, transparent and has a lawful basis, and is stored for no longer than is absolutely necessary.
DATA SECURITY
We are committed to protecting your Personal Data in our custody. We take reasonable steps to ensure appropriate physical, technical and managerial safeguards are in place to protect your Personal Data from unauthorized access, alteration, transmission and deletion. We ensure that the third parties who provide services to us under appropriate contracts, take appropriate security measures to protect your Personal Data in line with our policies.
RETENTION AND DISPOSAL OF DATA
We keep the Personal Data we collect about you on our systems or with third parties for as long as it is required for the purposes set out in this Privacy Policy and for legal or regulatory reasons. We will only use your Personal Data for those purposes and will make sure that your Privacy is protected. We shall take reasonable steps to delete or permanently de-identify Personal Data that is no longer needed.
LINKS TO OTHER WEBSITES
Our website may contain links to websites of other organisations. This privacy policy does not cover how that organisation processes Personal Data. We encourage you to read the privacy policies on the other websites you visit.
CHILDREN’S PRIVACY
Use of our Platform is available only to persons who can form a legally binding contract under the Indian Contract Act, 1872. We do not knowingly solicit or collect personal information from children under the age of 18 years. If you have shared any personal information of children under the age of 18 years, you represent that you have the authority to do so and permit us to use the information in accordance with this Privacy Policy.
YOUR RIGHTS AS A CUSTOMER
We understand that when you interact with CREDSTO, you have rights over your Personal Data. These rights involve providing reasonable steps to allow you to access your personal data, correct any errors among others. In the event that you are not satisfied with our response or have unresolved concerns, you can get in touch with us to resolve the issue by means of privacy@Credsto.com.
CONTACT US
For any further queries and complaints related to privacy under applicable laws and regulations, you could reach us at:
Contact Email Address: support@Credsto.com .
In accordance with Information Technology Act 2000 and rules made there under, the name and contact details of the Grievance Officer are provided below
GRIEVANCE/ NODAL OFFICER - CUSTOMER SERVICES
Name :Credenceind
Email: grievanceofficer@Credsto.com
NOTIFICATION OF CHANGES
We keep our Privacy Policy under regular review to make sure it is up to date and accurate. Any changes we may make to this Privacy Policy in the future will be posted on this page. We recommend that you re-visit this page regularly to check for any updates.
Queries
If you have a query, concern, or complaint in relation to collection or usage of your personal information under this Privacy Policy, please contact us at the contact information provided above.