Privacy Policy

About This Policy

Capital Finstech ("we", "our", or "us") is committed to protecting your personal information and your right to privacy. This Privacy Policy applies to all information we collect through our website capitalfinstech.com and related services.

By using our website or applying for any financial product, you agree to the terms of this Privacy Policy. Please read it carefully before sharing your personal information with us.

Information We Collect

We collect information you provide directly to us when you apply for a loan or contact us:

• Full name, date of birth, and government-issued ID (Aadhaar, PAN)
• Contact details — mobile number, email address, and residential address
• Financial information — income details, bank statements, employment information
• Credit history and CIBIL/credit bureau data
• Device information and IP address when you visit our website
• Photographs and KYC documents as required by RBI guidelines

Use of Your Information

We use the information we collect for the following purposes:

• Processing and evaluating your loan application
• Verifying your identity and conducting KYC checks
• Communicating with you about your application status
• Complying with legal and regulatory obligations
• Detecting and preventing fraud or unauthorized activity
• Improving our products, services, and website experience
• Sending relevant offers and updates (with your consent)

Sharing Your Information

We do not sell your personal data to third parties. We may share your information only in the following circumstances:

• Credit Bureaus: CIBIL, Equifax, or Experian for credit assessment
• Banking Partners: For loan disbursement and repayment processing
• Regulatory Bodies: RBI, SEBI, or other authorities as required by law
• Service Providers: Technology, legal, or audit partners under strict confidentiality agreements
• Law Enforcement: When required by court order or applicable law

How We Protect Your Data

We implement industry-standard security measures to protect your personal information from unauthorized access, alteration, disclosure, or destruction.

• 256-bit SSL encryption on all data transmission
• Secure servers with restricted access controls
• Regular security audits and vulnerability assessments
• Employee training on data privacy and confidentiality
• Data minimization — we collect only what is necessary

However, no method of internet transmission is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

Cookies & Tracking

Our website uses cookies to enhance your browsing experience. Cookies are small files stored on your device that help us:

• Remember your preferences and login sessions
• Analyse website traffic and usage patterns
• Display relevant advertisements via Google Ads
• Improve website performance and functionality

You can control cookie settings through your browser preferences. Disabling cookies may affect certain features of our website.

Your Rights & Choices

You have the following rights regarding your personal information:

• Access: Request a copy of the personal data we hold about you
• Correction: Request correction of inaccurate or incomplete data
• Deletion: Request deletion of your data (subject to regulatory requirements)
• Opt-Out: Unsubscribe from marketing communications at any time
• Grievance: Lodge a complaint with our Data Grievance Officer

To exercise any of these rights, please contact us using the details below.

How Long We Keep Your Data

We retain your personal information for as long as necessary to fulfil the purposes outlined in this policy, or as required by applicable law.

• Loan application data: 7 years from date of application (RBI mandate)
• KYC documents: Minimum 5 years after the end of business relationship
• Website usage data: 12 months from collection
• Marketing data: Until you opt out or request deletion

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of significant changes by:

• Posting the updated policy on our website with a new effective date
• Sending an email notification to registered users
• Displaying a prominent notice on our website

We encourage you to review this policy periodically. Continued use of our services after changes constitutes acceptance of the updated policy.