Data Privacy Policy for Intermediaries in Digital Lending

• 1. Introduction

  M/s Star Powerz Digital Technologies Pvt Ltd is committed to safeguarding the privacy and security of personal data in our role as intermediaries in the digital lending industry. This Data Privacy Policy outlines how we collect, use, disclose, and protect personal data in compliance with relevant data protection laws.

• 2. Definitions

  Personal Data: Any information that can directly or indirectly identify an individual. Processing: Any operation or set of operations performed on personal data, whether by automated means or not, such as collection, recording, organization, storage, adaptation, and retrieval. Data Subject: An individual to whom personal data pertains.

• 3. Data Collection

  We collect personal data for the following purposes:

  • • Identifying and verifying applicants for digital loans.
  • • Assessing creditworthiness.
  • • Processing loan applications.
  • • Servicing and managing loans.
  • • Complying with legal and regulatory requirements.

  We may collect the following types of personal data, among others:

  • • Contact information (name, address, email, phone number).
  • • Financial information (income, expenses, credit history).
  • • Identification information (government-issued ID, social security number).
  • • Employment and income details.
  • • Information related to loan transactions.

• 4. Legal Basis for Processing

  We process personal data on the following legal bases:

  • • To perform the contract with the data subject (e.g., processing loan applications).
  • • To comply with legal obligations (e.g., regulatory reporting).
  • • Based on the data subject's consent when required.
  • • For legitimate interests (e.g., fraud prevention, risk assessment).

• 5. Data Security

  We implement technical and organizational measures to protect personal data from unauthorized access, disclosure, alteration, and destruction. These measures include:

  • • Encryption of data in transit and at rest.
  • • Regular security assessments and audits.
  • • Access controls and authentication.
  • • Employee training on data security.

• 6. Data Sharing

  We may share personal data with the following parties:

  • • Lending institutions and financial partners.
  • • Credit bureaus and reporting agencies.
  • • Legal and regulatory authorities.
  • • Service providers who assist with loan processing.

  We ensure that third parties have adequate data protection measures in place.

• 7. Data Subject Rights

  Data subjects have the following rights:

  • • Right to access and rectify personal data.
  • • Right to erasure (where applicable).
  • • Right to restrict processing.
  • • Right to data portability.
  • • Right to object to processing.
  • • Right not to be subject to automated decision-making.

  To exercise these rights, please contact our Data Protection Officer (DPO) at [DPO contact details].

• 8. Data Breach Response

  • In the event of a data breach, we will notify affected data subjects and relevant authorities as required by law.

• 9. International Data Transfers

  • If we transfer personal data outside the jurisdiction, we will ensure that adequate safeguards are in place, such as standard contractual clauses or approved binding corporate rules.

• 10. Policy Updates

  • We will regularly review and update this policy to stay compliant with data protection regulations. We encourage data subjects to periodically review this policy for any changes.

• 11. Contact Information

  • If you have any questions or concerns about this policy, please contact our Data Protection Officer (Gutta Rajesh) at [Rajesh@stardigiloans.com].