Privacy Policy
How 23 Finverse collects, uses, stores, and protects your personal data in accordance with the Digital Personal Data Protection Act, 2023.
1. Introduction
Welcome to 23 Finverse ("Company", "we", "our", or "us"). We respect your privacy and are committed to protecting your personal data in accordance with the Digital Personal Data Protection Act, 2023 (DPDP Act) and other applicable laws.
This Privacy Policy explains how we collect, use, store, process, disclose, and protect your personal data when you access or use the 23 Finverse web application.
By accessing or using our Platform, you acknowledge that you have read and understood this Privacy Policy.
2. Personal Data We Collect
Depending on your use of the Platform, we may collect:
Personal Information
- Full name
- Email address
- Mobile number
- Date of birth (where applicable)
- Government-issued identification (where legally required)
- PAN, GSTIN or other tax information (if applicable)
- Company information (for business users)
Financial Information
- Bank account details
- Payment transaction information
- Investment preferences
- Financial profile
- Portfolio information
Technical Information
- IP address
- Browser type
- Device information
- Operating system
- Session information
- Log files
Usage Information
- Pages visited
- Features used
- Login activity
- Time spent on Platform
- Clickstream data
3. Purpose of Processing Personal Data
We process your personal data for the following lawful purposes:
- Creating and managing your account
- Providing financial services available on the Platform
- Identity verification and KYC where applicable
- Processing transactions
- Customer support
- Improving our services
- Fraud prevention
- Security monitoring
- Legal and regulatory compliance
- Communication regarding services
- Marketing communications (where consent has been provided)
We process only such personal data as is necessary for the purposes identified.
4. Consent
Under the DPDP Act, your personal data is processed based on your consent or other lawful grounds permitted by law. By using the Platform, you consent to:
- Collection of your personal data
- Processing of your personal data
- Storage of your personal data
- Sharing with authorised service providers where necessary
Where required by law, we will obtain explicit consent before processing sensitive or additional categories of personal data. You may refuse to provide certain personal data; however, doing so may limit access to certain features or services.
5. Withdrawal of Consent
You may withdraw your consent at any time by updating your account settings, contacting our Grievance Officer, or writing to us at admin@23finverse.com.
Withdrawal of consent will not affect processing already undertaken before such withdrawal. Certain information may continue to be retained where required by law, regulatory obligations, dispute resolution, fraud prevention, or enforcement of legal rights.
6. Cookie Policy
The Platform uses cookies and similar technologies to improve user experience. Cookies help us authenticate users, maintain secure sessions, remember preferences, analyse website traffic, improve Platform performance, and detect security incidents.
Types of cookies we may use include Essential Cookies (required for operation of the Platform), Functional Cookies (remember user preferences and settings), Analytics Cookies (help us understand Platform usage), and Performance Cookies (improve loading speed and functionality).
You can manage or disable cookies through your browser settings. Disabling certain cookies may affect Platform functionality.
7. Data Retention
We retain personal data only for as long as necessary to fulfil the purposes described in this Privacy Policy or as required by applicable law. Retention periods may vary depending upon regulatory requirements, tax laws, financial regulations, contractual obligations, litigation requirements, and fraud prevention.
Once retention periods expire, personal data is securely deleted, anonymised, or destroyed in accordance with our internal data disposal procedures.
8. Cross-border Processing
Your personal data may be processed, stored, or accessed outside India where necessary for providing our services. Where cross-border processing occurs, appropriate contractual safeguards are implemented, data is protected using reasonable security measures, and processing complies with the DPDP Act and applicable Government notifications regarding permissible jurisdictions.
We do not transfer personal data to jurisdictions prohibited under applicable Indian law.
9. Security Practices
We implement reasonable security safeguards to protect personal data against unauthorised access, disclosure, alteration, destruction, or misuse. Our security measures include:
- Encryption of data in transit using SSL/TLS
- Encryption of sensitive data at rest
- Access controls
- Role-based permissions
- Multi-factor authentication where appropriate
- Network monitoring
- Security audits
- Vulnerability assessments
- Incident response procedures
- Regular software updates
Although we strive to protect your data, no internet transmission or electronic storage system can be guaranteed to be completely secure.
10. Children's Data
The Platform is not intended for individuals below the age specified under applicable law. We do not knowingly collect personal data from children without obtaining verifiable parental or lawful guardian consent where required.
If we become aware that children's personal data has been collected without appropriate authorisation, we will promptly delete such information. Parents or guardians who believe a child has provided personal data may contact our Grievance Officer.
11. Sharing of Personal Data
We may share personal data only where necessary with:
- Technology service providers
- Payment processors
- Banking partners
- Cloud service providers
- Analytics providers
- Regulatory authorities
- Government agencies
- Legal advisors
- Auditors
All such recipients are required to maintain appropriate confidentiality and security safeguards. We do not sell personal data.
12. User Rights
Subject to applicable law, you may have the following rights regarding your personal data:
- Right to access personal data
- Right to obtain information regarding processing
- Right to correction of inaccurate data
- Right to update personal data
- Right to erase personal data where applicable
- Right to withdraw consent
- Right to nominate another person to exercise rights in specified circumstances
- Right to grievance redressal
Requests may be submitted through our customer support or to the Grievance Officer. We may verify your identity before processing such requests.
13. Grievance Officer
In accordance with the Digital Personal Data Protection Act, 2023, we have designated a Grievance Officer.
- Email: admin@23finverse.com
- Address: 5th Floor, Esplanade One Mall, Rasulgarh, Bhubaneswar, Odisha 751010
We aim to acknowledge complaints promptly and resolve grievances within the timelines prescribed under applicable law.
14. Third-Party Services
The Platform may integrate with third-party service providers including payment gateways, banking APIs, analytics providers, and communication platforms. Such third parties process personal data under their own privacy policies and applicable contractual obligations.
We encourage users to review the privacy policies of third-party services before using them.
15. Changes to this Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in law, technology, or our business practices. Material changes will be communicated through the Platform or via registered email where appropriate. The revised Privacy Policy becomes effective from the date of publication.
16. Contact Us
If you have any questions regarding this Privacy Policy or the processing of your personal data, please contact:
- 23 Finverse (Teish Fintech Pvt Ltd)
- Email: admin@23finverse.com
- Website: www.23finverse.com
- Address: 5th Floor, Esplanade One Mall, Rasulgarh, Bhubaneswar, Odisha 751010
