Privacy Policy
Effective Date: 18th October 2025
1. Introduction
Welcome to Namah Ventures, a Mumbai-based financial advisory and loan facilitation firm dedicated to providing swift, transparent, and personalized borrowing solutions for individuals, entrepreneurs, and businesses in the Mumbai Metropolitan Region (including Navi Mumbai, Thane, Vasai-Virar, and beyond). Founded by Mr. Bipin Mishra, we specialize in Home Loans, Personal Loans, Loan Against Property (LAP), Business & Working Capital Loans, Unsecured Business Loans, Balance Transfers, Auto Refinances, CGTMSE schemes, and Education Loans. Our mission is to simplify access to finance with minimal documentation and expert guidance, all while upholding the highest standards of privacy and data protection.
This Privacy Policy (“Policy”) explains how Namah Ventures Pvt. Ltd. (“we,” “us,” or “our”) collects, uses, discloses, and safeguards your personal data when you visit our website, interact with our services, or submit inquiries. We are committed to transparency and compliance with applicable laws, including but not limited to:
- The Digital Personal Data Protection Act, 2023 (DPDP Act), which mandates consent, purpose limitation, and data minimization.
- Reserve Bank of India (RBI) guidelines under the Master Direction – Non-Banking Financial Company – Account Aggregator (Reserve Bank) Directions, 2016, and fair lending practices.
- Information Technology Act, 2000, and its rules on sensitive personal data.
By using our website or services, you consent to the practices described herein. If you do not agree, please do not provide your data or use our site. This Policy was last revised on October 27, 2025, and applies to all users in India.
2. Information We Collect
We collect data to deliver tailored financial services, process loan applications, and enhance user experience. Collection is limited to what is necessary (“data minimization” under DPDP Act), and we obtain explicit consent where required for sensitive information.
2.1 Personal Information
- From Forms and Inquiries: When you fill out contact forms on our “Contact Us” or “Book a Call” pages, we collect:
- Full name
- Phone number (e.g., for callbacks)
- Email address
- Message or inquiry details (e.g., loan type interest)
- During Loan Applications: For services like Home Loans or Business Loans, we request:
- Identification (KYC): PAN, Aadhaar number, passport, or voter ID
- Contact and demographic details: Address, date of birth, employment status
- Financial data: Income proofs (salary slips, ITR, bank statements for last 6-12 months), property documents (for LAP), business registration (for MSMEs)
- From Communications: Details from emails, calls, or chats, including preferences for loan updates.
2.2 Non-Personal Information
- Website Usage Data: IP address, browser type, device info, pages visited, time spent, and referral sources via analytics tools.
- Cookies and Tracking: See Section 7 for details.
2.3 Sensitive Personal Data
Under RBI and DPDP guidelines, financial data (e.g., bank details, credit scores) is treated as sensitive. We collect this only with your verified consent during loan processing and store it securely.
| Data Type | Examples | Collection Method | Purpose |
|---|---|---|---|
| Personal Identifiers | Name, Phone, Email | Contact Forms | Initial Queries & Callbacks |
| Financial Documents | PAN, Aadhaar, ITR, Bank Statements | Loan Applications | Eligibility Assessment |
| Usage Analytics | IP Address, Session Duration | Cookies/Analytics | Site Improvement |
| Sensitive Financial | Credit Score, Property Valuations | Secure Uploads | Loan Approval |
We do not collect data from children under 18 without parental consent, as our services target adults.
3. How We Use Your Information
Your data is used solely for legitimate business purposes, with processing limited to the specified intent (purpose limitation per DPDP Act). Common uses include:
- Service Delivery: Processing loan applications, matching you with suitable products (e.g., unsecured loans for self-employed via CGTMSE), and providing personalized advice based on your profile.
- Communication: Sending loan updates, EMI reminders, or promotional offers (with opt-out options).
- Compliance and Risk Management: Verifying identity (KYC/AML checks), reporting to regulators (RBI, Credit Information Companies like CIBIL), and fraud prevention.
- Analytics and Improvement: Aggregating anonymized data to refine services, such as faster approvals for Mumbai clients.
- Marketing: With consent, emailing newsletters on financial tips or new loan schemes.
We retain data only as long as needed: e.g., 7 years for financial records (RBI requirement), or until request for deletion.
4. Sharing Your Information
We do not sell, rent, or trade your data. Sharing occurs only when necessary and with safeguards:
- Service Providers: With vetted partners like banks (for loan disbursement), credit bureaus (CIBIL/Equifax for scores), and tech vendors (e.g., secure cloud storage via AWS India regions) under strict NDAs.
- Regulatory Bodies: As required by law, e.g., sharing KYC with UIDAI or RBI for audits.
- Business Transfers: In case of merger/acquisition, data may transfer with notice.
- Legal Requests: To comply with court orders or prevent harm.
All third parties must adhere to DPDP Act standards, and we ensure no cross-border transfers without adequacy decisions (data stays in India).
| Recipient Category | Examples | Safeguards |
|---|---|---|
| Financial Partners | Banks (e.g., HDFC for Home Loans) | Data Processing Agreements (DPAs) |
| Credit Agencies | CIBIL | Consent-Based Sharing |
| Legal/Regulators | RBI, Courts | Minimal Disclosure |
| Tech Vendors | Analytics Tools | Encryption & Audits |
5. Data Security
Protecting your data is paramount, especially for financial information. We implement:
- Technical Measures: AES-256 encryption for data at rest/transit, firewalls, and multi-factor authentication (MFA).
- Organizational Controls: Employee training on data handling, access limited to “need-to-know” basis, and annual security audits.
- Incident Response: In case of breach, we notify affected users and authorities within 72 hours (per DPDP Act).
- Storage: Data hosted on secure Indian servers, with backups in compliant facilities.
Despite these, no system is infallible; we cannot guarantee absolute security.
6. Your Rights and Choices
Under DPDP Act and RBI guidelines, you have rights regarding your data:
- Access: Request a copy of your data held by us.
- Correction: Update inaccurate information (e.g., address changes).
- Deletion: Erase data (subject to legal retention, e.g., 7 years for loans).
- Objection/Withdrawal: Opt out of marketing or processing; withdraw consent anytime.
- Portability: Receive data in structured format.
To exercise rights, email info@namahventures.com with verification. We respond within 30 days. For grievances, contact our Data Protection Officer at the same email.
7. Cookies and Tracking Technologies
Our site uses cookies to enhance functionality and analyze usage. Cookies are small files stored on your device.
7.1 Types of Cookies
- Strictly Necessary: Essential for site operation (e.g., form submissions). No consent needed.
- Performance: Track site speed anonymously (e.g., Google Analytics, with IP anonymization).
- Functionality: Remember preferences (e.g., loan type filters).
- Targeting: Third-party (e.g., Facebook Pixel for retargeting ads), with opt-out via browser settings.
7.2 Management
You can manage cookies via browser settings (e.g., Chrome: Settings > Privacy > Cookies). Our Cookie Policy details specifics; disabling may limit features.
| Cookie Type | Provider | Duration | Purpose |
|---|---|---|---|
| Necessary | Namah Ventures | Session | Form Functionality |
| Performance | Google Analytics | 2 Years | Traffic Analysis |
| Targeting | 90 Days | Ad Personalization |
We comply with the Information Technology (Reasonable Security Practices) Rules, 2011, for tracking.
8. Children’s Privacy
Our services are not directed at children under 18. We do not knowingly collect data from minors. If we discover such, we delete it promptly. Parents/guardians can contact us for access/deletion.
9. International Data Transfers
As an India-based firm, we do not transfer data outside India. All processing occurs within the country to align with DPDP Act localization requirements.
10. Changes to This Policy
We may update this Policy to reflect legal changes or business needs. Material updates will be posted here with a revised date and notified via email (for registered users) or site banner. Continued use post-changes implies acceptance.
11. Contact Us
For privacy queries, rights exercises, or complaints:
- Email: info@namahventures.com
- Phone: +91 9920237011 or +91 9082084661
- Office Hours: Monday to Saturday, 10:00 AM – 7:00 PM IST
- Address: Namah Ventures Pvt. Ltd., Mumbai, Maharashtra (specific office details available upon request via email)
- Data Protection Officer: Mr. Bipin Mishra (Founder & Lead Advisor)
We aim to resolve issues amicably; if unsatisfied, escalate to RBI’s Ombudsman.
Thank you for trusting Namah Ventures with your financial journey. Your privacy is our priority.