Introducing the new experience of Neopay. Privacy Policy
Terms & Conditions for Usage of Website of Neopay Payments
Neopay Payments India Private Limited, a company incorporated under the Companies Act, 2013 with CIN No. U72900KL2021PTC069927, having its registered office at Level 8, DLF Center, Sanasad Marg , Connaught Palace, (“Neopay,” “Us,” “We,” or “Our”), operates as a Payment Aggregator and provides payouts and verification services, among other services, to various sectors such as e-commerce marketplaces, educational institutions, financial institutions, web aggregators, and more. We also possess an in-principle approval to operate as a prepaid payment system operator in India. Our primary goal is to establish a secure data processing environment and a user-friendly payment infrastructure for Our customers. Given that payment services heavily rely on data and information shared by Our customers, We are dedicated to maintaining a secure environment for the processing of personal and sensitive personal information (“Personal Data” as defined below) gathered from Our stakeholders. We adhere to security standards and best practices as mandated by Applicable Laws (as defined below) to safeguard Personal Data collected from individuals who directly or indirectly use or access Our website, software, mobile application, platforms hosted by Us, payment infrastructure provided by Us through Our merchant platforms/websites or our checkout pages (“Platforms”), products, and all or any part of Our payment aggregation, payouts, verification, and any other services (collectively, “Services”). The terms and conditions governing Our Services are provided separately on Our website and should be read in conjunction with this Privacy Policy as they form an integral part of Our Services.
This Privacy Policy is applicable to Users of Our Services, as well as to Our full-time, part-time, temporary employees and interns, merchants, business partners, contractors, vendors, outsourcers, consultants, contingent workers, temporary agency workers, etc., who offer services to Neopay.
By using Our Services, You acknowledge that You have read, understood, and are bound by Our Privacy Policy. You hereby provide Your explicit consent to the past, present, and future collection, usage, processing, sharing, and storage of Your Personal Data, including the transfer of Your Personal Data to third parties or service providers for the purposes outlined in this Policy. This Policy may be amended and updated by Us periodically to ensure compliance with changes in Applicable Laws and/or legal and regulatory developments. The Policy also outlines Your Rights, the methods by which You can exercise these Rights, and how to reach Our point of contact for any concerns regarding the protection of Your Personal Data.
We recommend that You revisit this page from time to time to review the most up-to-date version of Our Privacy Policy.
Definitions
- “Applicable Laws” shall refer to the Information Technology Act, 2000, The Information Technology (Reasonable security practices and procedures and sensitive personal data or information) Rules, 2011, Payment and Settlement Systems Act, 2007, Prevention of Money Laundering Act, 2002, and any other relevant rules and regulations issued under these Acts, including guidelines, circulars, ordinances, orders, judgments, notifications, decrees, bylaws, governmental restrictions, or any similar legal decisions or determinations, as well as interpretations, policies, or administrations with the force of law in India, whether effective as of the date of this Policy or in the future, as applicable to Us.
- “Biometrics” refers to the technologies that measure and analyze human body characteristics, such as ‘fingerprints,’ ‘eye retinas and irises,’ ‘voice patterns,’ ‘facial patterns,’ ‘hand measurements,’ and ‘DNA’ for authentication purposes.
- “Password” signifies a secret word, phrase, code, passphrase, secret key, or encryption/decryption keys used to gain access to information.
- “Reasonable security practices and procedures” denotes security practices and procedures designed to protect Personal Data from unauthorized access, damage, use, modification, disclosure, or impairment, as specified in an agreement between the parties or as mandated under Applicable Laws.
- “Personal Data” encompasses any information related to You, which, either directly or indirectly, individually or when combined with other available or likely-to-be-available information, is capable of identifying You. This includes:
- Password
- Financial information, such as bank account, credit card, debit card, or other payment instrument details
- Physical, physiological, and mental health condition
- Sexual orientation
- Medical records and history
- Biometric information
- Any details relating to the above clauses provided by You to Us for the purpose of obtaining Our Services
- Any information received by Us as mentioned above for processing and lawful storage under contract or otherwise
- “Processing” concerning Personal Data signifies automated operations or sets of operations performed on Personal Data. This may include collection, recording, organization, structuring, storage, adaptation, alteration, retrieval, use, alignment or combination, indexing, sharing, disclosure by transmission, dissemination or otherwise making available, restriction, erasure, or destruction.
- Exception to Personal Data: If any information provided by You is freely available or accessible in the public domain or disclosed under the Right to Information Act, 2005, or any other Applicable Laws, such information shall not be considered as Personal Data.
Purpose
The purpose of this Privacy Policy is to inform You about the reasons for collecting, using, processing, storing, transferring, and sharing Your Personal Data while using or accessing Our Services. We will also provide details on how We collect, use, process, store, transfer, and share Your Personal Data when You use or have access to Our Services.
We may request You to provide Us with Your Personal Data that We may use to contact or identify You. We may also collect Your Personal Data to enhance Our Services.
You have the option to not share such information with Us, but that may limit Your registration on Our Website or the availability of certain features. If Your information is used for a purpose different from those listed in this Privacy Policy, We will ask for Your consent in advance for such purposes. You acknowledge that information provided to third-party accounts by You may be transmitted into Your account with Us upon Your authorization for such transmissions, and such third-party account information will be covered under this Privacy Policy.
Your Personal Data is collected, processed, used, stored, disclosed, or shared as described in Our Privacy Policy. Through this Privacy Policy, We seek Your consent regarding the collection, processing, use, storing, and sharing of Your Personal Data for one or more of the purposes detailed herein. If specific consent is required for other purposes or under the Applicable Laws of India, We will obtain such specific consent from You. Your Personal Data is used, processed, stored, and/or disclosed in accordance with this Privacy Policy and in compliance with the Applicable Laws.
| Types of Personal Data | Purpose | Details of Personal Data |
|---|---|---|
| Name and Contact Information | For providing payment aggregation, payouts and verification services to Our merchants, business partners and end-customers. | Full name(s), title, age, user ID, gender and Your date of birth. Telephone/mobile number(s), address(es), state/city of residence, country, pin code, email address(es), and chosen billing address(es). |
| Financial Information | Account Registration | Personal bank account numbers, including e-nach, NEFT, IMPS and UPI ID details, tokenized card information, card type, expiry date on the credit or debit card, and name on the card. |
| Identification Information | For providing payment aggregation, payouts and verification services to Our merchants and business partners and to comply with screening requirements as per Applicable Laws. | Know Your Customer (KYC) documents including all proofs of identity and address, photograph, Permanent Account Number (PAN), GST Number, etc. |
| Payments related data | For providing payment aggregation, payouts and verification services to Our merchants, business partners and end-customers and to comply with screening requirements as per Applicable Laws. | Payment gateway ID, name of issuing bank, merchant’s name, category and other identifiers along with the details of products or services purchased or paid for, mode of payment, the date, currency and amount of the transaction(s), whether the payment was successful, and other information provided by You directly or indirectly to Us or provided to Us by banks, merchants or other service providers or business partners. |
| Log Data | Statistical analyses of User behavior and characteristics in order to measure interest in and use of the various areas of Our Services provided to You. | Browser type, IP address, location, requested URL, referring URL, timestamp information, application, device, versions and configurations, operating systems, device brand and model, geo-location information, unique identifiers associated with Your device(s) and pages that You access on the website(s) to access or avail Our Services and paths taken. |
| Credit related Information | For providing payment aggregation, payouts and verification services to Our merchants that are financial institutions or account aggregators under Applicable Laws, Our business partners and third party service providers and end-customers. | Your credit related information or assessment provided by third parties such as financial institutions or account aggregators under Applicable Laws including Our business partners and third party service providers. |
| Information provided by You directly to Us or received through Our merchants, business partners and third party service providers | We may use third party services such as Google Analytics, who may collect, monitor and analyze this type of information in order to facilitate Our Services, to provide the Service on Our behalf, to perform Service-related services or to assist us in analyzing how Our Services are used. Your information may also be used to contact You with newsletters, marketing or promotional materials and other information that may be of interest to You. You may opt out of receiving any, or all, of these communications from Us by following the unsubscribe link or instructions provided in any email that We send. | Account usernames and passwords; Your email address; Your preferred settings and themes, Communications with customer support, promotional and marketing campaigns, surveys, and records of Your subscriptions to marketing materials, or withdrawal, as the case maybe.(Note: We use "cookies" to collect information. You can instruct Your browser to refuse all cookies or to indicate when a cookie is being sent. However, if You do not accept cookies, You may not be able to use some portions of Our Service. We do not control the use of cookies by third parties. The third party service providers have their own privacy policies addressing how they use such information.) |
| Your Device Information | We may collect Your device information in order to gain insights about Your use of Our website or Services, to provide a customized experience, and to show targeted advertisements. | Your contact list, call records, SMS, media files and location data in Your devices to enable You to access Our Services after seeking necessary permissions. |
Exception to Our Collection of Your Personal Data
Neopay does not collect certain categories of Personal Data, such as details related to Your race or ethnicity, religious or philosophical beliefs, biometric information, sexual orientation, political opinions, or information about your physical, physiological, mental health condition, medical records, and history, or any genetic information.
Your Rights
Right to Review Your Personal Data – You have the right to review the Personal Data provided by You. Any inaccuracies or deficiencies in this data will be corrected or amended by Neopay, as feasible. However, please note that Neopay will not be responsible for the authenticity of the Personal Data provided by You.
Withdrawal of Your Consent – You may choose not to provide Your Personal Data at any time while availing the Services or otherwise, or withdraw Your consent provided to Neopay earlier by writing to our email ID: grievances@neopay.in.
However, if You choose not to provide or later withdraw Your consent, Neopay may not be able to provide You with some or all of the features and functionalities of Our Services. This may also affect Neopay’s ability to process Your Personal Data and could lead to the discontinuation of Our Services for which such Personal Data was required to be used or was being used, at Neopay’s sole discretion.
Please note that these rights are limited in instances where Neopay is legally required to retain Your Personal Data in order to comply with the Applicable Laws.
Security
Neopay adheres to international security standards and certifications issued by the International Organization for Standardization, the Payment Card Industry Data Security Standards (PCI DSS) Council, and Cybersecurity Standards by the American Institute of Certified Public Accountants (AICPA), such as ISO/IEC 27001: 2013, PCI DSS v3.2.1, and Service Organization Control Type 2 (SOC 2), respectively. We conduct regular audits of Our Information System, as required under the Applicable Laws, carried out by CERT-In empanelled auditors.
The security of Your Personal Information is important to Neopay, but remember that no method of transmission over the Internet or method of electronic storage is 100% secure. While Neopay strives to use commercially acceptable means to protect Your Personal Information, We cannot guarantee its absolute security.
International Transfer
Your Personal Data may be transferred to and maintained on computers located outside of Your state, country, or other governmental jurisdiction where the data protection laws may differ from those of Your jurisdiction.
If You are located outside India and choose to provide information to Us, please note that We transfer the information, including Personal Data, to India and process it there. Your consent to this Privacy Policy followed by Your submission of Your Personal Data represents Your agreement to that transfer.
Links To Other Sites
Neopay’s Service may contain links to other sites that are not operated by Us. If You click on a third-party link, You will be directed to that third party’s site. We strongly advise You to review the Privacy Policy of every site You visit. Neopay has no control over, and assumes no responsibility for the content, privacy policies, or practices of any third-party sites or services.
Children’s Privacy
Our Service does not address anyone under the age of 13 (“Children”).
We do not knowingly collect personally identifiable information from children under 13. If You are a parent or guardian and You are aware that Your child has provided Us with Personal Data, please contact Us at grievances@neopay.in. If We become aware that We have collected Personal Data from children under age 13 without verification of parental consent, We take steps to remove that information from Our servers.
Â
Retention of Your Personal Data
Neopay retains Your Personal Data for no longer than is required for the purposes for which Your Personal Data is collected or for the period required to be maintained under the Applicable Laws.
Exception to Consent for Disclosure of Personal Data
We seek Your express consent for the disclosure of Your Personal Data for the purposes stated in this Privacy Policy, unless such disclosure is necessary for compliance with a legal obligation under the Applicable Laws or any law for the time being in force.
Your Personal Data may be shared, without obtaining prior consent, with Government agencies mandated under the Applicable Laws or any law in India to obtain Your Personal Data for the purpose of verification of identity or for the prevention, detection, investigation, including cyber incidents, prosecution, and punishment of offenses. In such cases, the Government agency or authority sends a request to Us stating the purpose of seeking Your Personal Data.
Your Personal Data so obtained by the Government agency or authority is not published or shared with any third party, unless the disclosure to any third party is required by an order under the Applicable Laws or any law in India for the time being in force.
Â
For Any Queries / Details Users Can Contact:
Neofin Technologies Private LimitedÂ
Level 8, DLF Center, Sanasad Marg , Connaught Palace,
New Delhi-110001