Privacy Policy
The entities comprising Dreamplug Paytech Solutions Private Limited, and affiliated companies (collectively referred to herein as "the Company", "Dreamplug", "Payment Aggregator", "We," "Us,"), place paramount importance on safeguarding the privacy and security of your personal data. We prioritize the establishment and maintenance of your trust.
This Privacy Policy ("Privacy Policy" or "Policy") outlines the methods and principles governing our collection, use, processing, and disclosure of personal data in connection with your use of our products, services, and our website ("Services"). By using our products, services, on app or website, you hereby acknowledge that you have read, understood, and agree to the processing of your personal data in accordance with the terms of this Privacy Policy and our Terms of Use.
It is clarified that the terms and conditions that are provided separately, form an integral part of your use of the Services and should be read in conjunction with this Privacy Policy.
This Privacy Policy ("Privacy Policy" or "Policy") outlines the methods and principles governing our collection, use, processing, and disclosure of personal data in connection with your use of our products, services, and our website ("Services"). By using our products, services, on app or website, you hereby acknowledge that you have read, understood, and agree to the processing of your personal data in accordance with the terms of this Privacy Policy and our Terms of Use.
It is clarified that the terms and conditions that are provided separately, form an integral part of your use of the Services and should be read in conjunction with this Privacy Policy.
A. Information We Collect and Purposes:
Information Provided by You
Name and Contact Information: We collect your name and contact details to facilitate payment aggregation services for merchants, business partners, and end-customers.
Financial Information (including settlement account details) and Identification Information (including requisite know your customer (KYC) documentation): This information is collected to provide payment aggregation services, and verification to our merchants and business partners, and to ensure compliance with screening requirements under applicable laws.
Payment and transaction related Data, including merchant details, goods/services details, transaction identifiers: We collect payment-related data to provide payment aggregation services, payouts, and verification services to our merchants, business partners, and end-customers, and to comply with legal screening requirements.
Device related Data, including IP address, browser type, mobile operating system, the manufacturer and model of your mobile device, geolocation, preferred language, access time, and duration of use:
Financial Information (including settlement account details) and Identification Information (including requisite know your customer (KYC) documentation): This information is collected to provide payment aggregation services, and verification to our merchants and business partners, and to ensure compliance with screening requirements under applicable laws.
Payment and transaction related Data, including merchant details, goods/services details, transaction identifiers: We collect payment-related data to provide payment aggregation services, payouts, and verification services to our merchants, business partners, and end-customers, and to comply with legal screening requirements.
Device related Data, including IP address, browser type, mobile operating system, the manufacturer and model of your mobile device, geolocation, preferred language, access time, and duration of use:
Information generated through the use of Services
We collect details pertaining to the services you avail, your interactions and transactional details relating to your usage of our Services or the services offered through our partners. This encompasses the types of Services you request, your chosen method of payment, the amount, and other related transactional and financial data. You will also generate data during your general interaction with Payment Aggregator, including during customer support instances.
Information we collect from third parties
We may request certain third parties, where permitted by law or with your express consent, to provide information about you to furnish specific Services and authenticate your information.
To access the Services, it may be necessary to undertake the KYC process, which may entail Company and its partners procuring your KYC data from one or more KYC registries or verifying KYC attributes and other identification information through our partners.
To access the Services, it may be necessary to undertake the KYC process, which may entail Company and its partners procuring your KYC data from one or more KYC registries or verifying KYC attributes and other identification information through our partners.
B. How we use your information
Deliver, Personalize, Measure, and Enhance Services Offered
We may employ your personal data for the execution of the contract of services, in legitimate business interests, and for regulatory compliance purposes.
Your personal data will be instrumental in creating and updating your account, delivering services, processing your transactions, and for essential internal functions such as software bug troubleshooting, operational problem resolution, data analysis, testing, research, usage and activity trend monitoring, and analysis. Additionally, we may use your personal data to carry out data analytics to improve the user experience, enhance performance, and accomplish desired results. We will pseudonymize/ anonymize your data wherever possible to uphold your privacy.
We may use your personal data, generated as a result of payment services availed by you, to ensure compliance of your access and use of payment services with our legal obligations (such as anti-money laundering regulations).
We may employ your information to detect and prevent fraud, spam, abuse, security incidents, and other harmful activity.
The information we collect (including recordings of customer support calls and chats) may be used to assist you when you contact our customer support services, to investigate and address your queries, and monitor and improve our customer support responses. This information may also be used for staff training, quality assurance, or to retain evidence of a specific transaction or interaction.
Your personal data will be instrumental in creating and updating your account, delivering services, processing your transactions, and for essential internal functions such as software bug troubleshooting, operational problem resolution, data analysis, testing, research, usage and activity trend monitoring, and analysis. Additionally, we may use your personal data to carry out data analytics to improve the user experience, enhance performance, and accomplish desired results. We will pseudonymize/ anonymize your data wherever possible to uphold your privacy.
We may use your personal data, generated as a result of payment services availed by you, to ensure compliance of your access and use of payment services with our legal obligations (such as anti-money laundering regulations).
We may employ your information to detect and prevent fraud, spam, abuse, security incidents, and other harmful activity.
The information we collect (including recordings of customer support calls and chats) may be used to assist you when you contact our customer support services, to investigate and address your queries, and monitor and improve our customer support responses. This information may also be used for staff training, quality assurance, or to retain evidence of a specific transaction or interaction.
C. Disclosure and Sharing of Data with Third Parties
In case required under law or under the instruction of any regulatory authority, DPSPL may need to share your Personal Data with regulatory authorities, government agencies, and law enforcement authorities.
In line with applicable laws and after conducting a detailed risk assessment, DPSPL may share your Personal Data with business partners, financial institutions, service providers, and group companies. This data will be shared on a strictly need-to-know basis for purposes such as:
a) enabling the processing, settlement, and reconciliation of your transactions, as well as your payment journey through our banking partners, acquiring banks and Escrow account providers in accordance with the RBI Guidelines on Regulation of Payment Aggregators,
b) complying with applicable laws and guidelines, including RBI Master Directions on KYC, to perform merchant/user verification and screening against sanctioned lists
c) fraud prevention, risk management, dispute resolution (handling chargebacks and refunds), customer support, and improvement of our services,
d) enabling your access to various other financial products that we or our partners offer.
Before sharing any Personal Data with any business partner or service provider, DPSPL undertakes a detailed risk assessment and vendor due diligence to ensure that the recipient follows best practices in terms of handling data. This includes following minimum standards prescribed by us, using secure infrastructure, and adhering to comprehensive data protection obligations. Being ISO 27001, ISO 27701 and PCI DSS certified, DPSPL is committed to implementing industry-standard best practices both internally and externally. For further information regarding the safeguards we use, please see the section below on 'Security' in this privacy policy.
Where any data is shared with any business partner or service provider for the purposes mentioned above, the processing of your personal information (including with any of their sub-contractors) is governed by their respective policies. We advise familiarizing yourself with their privacy policies and terms & conditions to understand how they will handle your information. However, DPSPL’s partners and service providers are bound by contractual obligations to keep such personal information confidential and use it only for the purposes for which we disclose it to them. For clarity, we do not sell or lease such information.
D. Your Rights
We acknowledge that you own your data, and you can reach out to Us through the information in the 'Contact Us' section for any queries or concerns regarding access, correction or deletion of your personal data. Please note that refusal to provide consent or subsequent withdrawal of consent for the processing of your personal data may impair our ability to offer you certain Services.
E. Security
We adopt reasonable safeguards to protect your personal data from unauthorized access, use and disclosure and ensure that your personal data is secured in accordance with applicable laws.
We have successfully satisfied the "Data Localization" stipulations as per the guidelines prescribed by the Reserve Bank of India (RBI), ensuring that all payment data is securely stored within the territorial limits of India.
We retain your personal data for a limited period of time in accordance with its legitimate business needs and applicable regulatory requirements.
We adhere to the international security standards and certifications issued by organisations such as International Organization for Standardization and the Payment Card Industry Data Security Standards (PCI DSS) Council such as ISO 27001: 2013, ISO 27701:2019, PCI DSS V4.
We have successfully satisfied the "Data Localization" stipulations as per the guidelines prescribed by the Reserve Bank of India (RBI), ensuring that all payment data is securely stored within the territorial limits of India.
We retain your personal data for a limited period of time in accordance with its legitimate business needs and applicable regulatory requirements.
We adhere to the international security standards and certifications issued by organisations such as International Organization for Standardization and the Payment Card Industry Data Security Standards (PCI DSS) Council such as ISO 27001: 2013, ISO 27701:2019, PCI DSS V4.
F. Modifications to privacy policy
We reserve the right to modify this policy at its discretion from time to time. Any amendments shall take effect immediately upon posting the revised Privacy Policy. We advise you to periodically review this page for the most recent information on our privacy practices. Your usage of services shall be deemed to be consent to the Privacy Policy as modified from time to time.
G. Contact Information
If you have any questions, concerns, grievances, or requests regarding this Privacy Policy or our data practices, you can contact our Nodal Officer on the below coordinates:
Name: Aravind Ashok
Address: 404, Uphar II CHS Ltd, Plot No. 5 BHD, Sanjeeva ENCL 7 Bunglows, Near Juhu Circle, Mumbai, Maharashtra - 400061
Email: nodalofficer@dpspl.co.in
Name: Aravind Ashok
Address: 404, Uphar II CHS Ltd, Plot No. 5 BHD, Sanjeeva ENCL 7 Bunglows, Near Juhu Circle, Mumbai, Maharashtra - 400061
Email: nodalofficer@dpspl.co.in