This Privacy Policy ("Policy") is issued in compliance with the provisions of the Information Technology Act, 2000, the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, applicable guidelines issued by the Reserve Bank of India, and other relevant laws and regulations in force in India.
This Policy describes how CredBuddha Financial Consultancy Services Private Limited (hereinafter referred to as "CredBuddha", "Company", "We", "Us", or "Our") collects, receives, processes, stores, handles, and discloses information provided by users (hereinafter referred to as "You", "Your", or "User") when You access or use Our digital platforms, including the website located at www.credbuddha.com and the mobile application branded as "CredBuddha" (collectively referred to as the "Platform").
This Policy constitutes a legally binding agreement between You, as a user of the Platform, and CredBuddha, as the owner and operator of the Platform.
By accessing the Platform and voluntarily providing any information, including Personal Information and Sensitive Personal Data or Information, You expressly consent to the collection, processing, storage, and use of such information in accordance with the terms of this Policy.
Users expressly consent to the collection and processing of Sensitive Personal Data or Information strictly for lawful purposes, regulatory compliance, fraud prevention, and service facilitation.
Users expressly consent to the processing of financial and transaction-related information for payment processing, billing management, fraud prevention, regulatory compliance, and service delivery.
CredBuddha reserves the right to amend, modify, or update this Policy from time to time at its sole discretion. Any revisions shall become effective immediately upon being published on the Platform. Your continued access to or use of the Platform after such publication shall constitute Your acceptance of the revised Policy. Users are advised to review this Policy periodically to remain informed of any updates.
By accessing, reading, and acknowledging this Privacy Policy, You agree to be legally and unconditionally bound by its terms and conditions.
If You do not agree with this Policy or any part thereof, You must immediately discontinue access to the Platform and refrain from using, accessing, downloading, or installing any part of the Platform.
Access to and use of the Platform and the services made available thereon are intended solely for individuals who are legally competent to enter into binding contracts under applicable laws of India.
By accessing, registering on, or using the Platform, You represent and warrant that:
If You do not satisfy the above eligibility requirements, You must not access, register on, or use the Platform or provide any personal information through it.
CredBuddha reserves the right to suspend or terminate access to the Platform if it has reasonable grounds to believe that a User does not meet the eligibility criteria specified herein.
CredBuddha Financial Consultancy Services Private Limited operates a digital financial services platform that enables users to discover, compare, and apply for financial products offered by RBI-regulated banks and NBFCs, including loans, credit cards, credit score services, and other permitted lending products.
In addition, CredBuddha provides certain paid value-added services such as credit health reports, credit score analysis, monitoring, and credit profile improvement support. These services may require payment of applicable fees through authorized payment methods available on the platform.
CredBuddha acts solely as a technology platform and service facilitator. It is not a bank or financial institution, does not provide loans directly, does not make credit decisions, and does not guarantee approval of any financial product. All approvals and terms are determined by the respective lending partners.
CredBuddha does not provide free trial services, does not collect token verification or nominal authorization charges, and does not facilitate fixed deposit or term deposit products.
CredBuddha collects information that is necessary to provide its services, facilitate financial product applications, comply with regulatory requirements, enhance user experience, and ensure platform security.
When You access, register on, or use the Platform, You may voluntarily provide the following information:
To comply with applicable laws, regulatory guidelines, and lending partner requirements, CredBuddha may collect:
Such information is collected solely for identity verification, regulatory compliance, fraud prevention, and application processing.
To maintain platform security, prevent misuse, and improve system performance, CredBuddha may automatically collect certain technical information, including:
CredBuddha does not collect sensitive hardware identifiers such as IMEI numbers or device serial numbers.
CredBuddha automatically records technical logs and metadata including IP address, browser type, device information, access timestamps, clickstream data, and interaction history to maintain security, monitor performance, and improve services.
With Your explicit consent, CredBuddha may collect one-time location data to: Verify Your declared address; Confirm service availability in Your geographic region; Detect suspicious or potentially fraudulent activity.
CredBuddha does not continuously monitor or track Your real-time location in the background.
With Your prior and explicit permission, the mobile application may access limited SMS data, including: Sender name; Message content relating to financial transactions; Date and time of receipt.
This information is used strictly for: Assessing financial behaviour patterns; Supporting creditworthiness evaluation; Enabling faster loan processing and decisioning.
Subject to Your consent, CredBuddha may collect limited information regarding applications installed on Your device for the purposes of: Credit risk assessment; Fraud detection; Personalization of financial product recommendations.
Such information may be securely processed by authorized analytics partners strictly for service-related purposes.
CredBuddha may receive information about Users from regulated lending partners, credit bureaus, service providers, and other lawful third-party sources for identity verification, creditworthiness assessment, fraud prevention, regulatory compliance, and service improvement.
Where Users purchase paid services, CredBuddha may collect and process transaction-related information including payment method details, billing information, transaction identifiers, payment status, and related records.
CredBuddha does not store complete card or banking credentials. Payment processing is handled through authorized third-party payment gateway providers in compliance with applicable security standards.
CredBuddha does not access or collect: Personal photos, videos, or media files; Contacts or address books; Call logs or voice recordings; Unrelated personal files or private communications.
CredBuddha uses cookies and similar automated technologies to enhance Platform functionality, improve User experience, maintain security, and analyze usage patterns.
We may use the following categories of cookies:
We may also use tools such as web beacons, pixel tags, SDKs, and log files to monitor usage, improve services, and maintain system security.
These technologies help us: Maintain secure sessions; Improve Platform performance; Understand usage trends; Enhance User experience; Prevent fraud and misuse.
Users may disable cookies through browser or device settings. However, certain Platform features may not function properly if cookies are disabled.
By continuing to use the Platform, You consent to the use of cookies and automated technologies as described in this Policy.
CredBuddha processes and uses the information collected from Users for lawful business purposes, regulatory compliance, and to deliver services efficiently and securely.
Certain User information may be processed using automated systems, algorithms, and risk assessment models to evaluate eligibility, detect fraud, assess creditworthiness, and improve operational efficiency.
Subject to applicable laws and User consent, CredBuddha may use contact details to: Inform Users about new products and services; Send promotional offers and updates; Provide information about partner financial products.
Users may opt out of receiving marketing communications at any time. By registering on the Platform, Users authorize CredBuddha and its regulated partners to contact them via calls, SMS, email, and digital notifications for service-related and promotional communications, even if the User is registered under Do Not Disturb (DND), Do Not Call (DNC), or similar registries, subject to applicable laws.
CredBuddha respects User privacy and does not sell, rent, or trade Personal Information for commercial gain. Information is shared only as necessary for lawful business operations, service delivery, and regulatory compliance.
CredBuddha may share User information with RBI-regulated banks and Non-Banking Financial Companies (NBFCs) to: Process loan and credit card applications; Conduct credit evaluation and underwriting; Complete verification and onboarding formalities; Provide financial products requested by the User. Such sharing is undertaken with User consent and strictly for service-related purposes.
CredBuddha may engage trusted third-party service providers to support its operations, including: Technology and infrastructure services; Cloud hosting and data storage; Analytics and risk assessment services; Customer support and communication services; Identity verification and compliance services. These entities are contractually bound to maintain confidentiality, implement reasonable security measures, and process information only for authorized purposes.
User information may be shared with affiliated entities of CredBuddha for internal administrative purposes, service improvement, compliance, and operational support, subject to appropriate safeguards.
CredBuddha may disclose User information where required: To comply with applicable laws, regulations, or legal processes; In response to court orders or lawful governmental requests; For investigation or prevention of fraud, cyber incidents, or financial crimes; To enforce legal rights or defend against legal claims; To protect the safety and security of Users, CredBuddha, or the public.
CredBuddha may share transaction-related information with authorized payment gateway providers, banking partners, and financial intermediaries to enable secure payment processing, fraud detection, reconciliation, refunds, and regulatory compliance.
In the event of a merger, acquisition, restructuring, asset transfer, or similar corporate transaction, User information may be transferred as part of the business assets, subject to applicable legal requirements.
CredBuddha may use and share anonymized or aggregated information that does not identify individual Users for research, analytics, business intelligence, and service improvement purposes.
CredBuddha stores User information on secure servers located within the territory of India. We implement reasonable technical, administrative, and physical safeguards to protect information against unauthorized access, disclosure, alteration, loss, or misuse.
User data is primarily stored in India but may be processed by authorized service providers outside India under strict security, confidentiality, and legal compliance safeguards.
CredBuddha retains User information only for as long as necessary to fulfill the purposes for which it was collected, including service delivery, regulatory compliance, dispute resolution, and enforcement of legal agreements.
a. Service-Related Data: Information related to User accounts, applications, and transactions is retained for the duration of the User relationship and for a reasonable period thereafter.
b. Regulatory and Compliance Data: Information collected for KYC, identity verification, digital lending facilitation, and financial compliance purposes may be retained for such period as required under applicable laws, RBI regulations, and governmental directives.
c. Legal and Dispute-Related Data: Information may be retained for longer periods where necessary for legal proceedings, dispute resolution, fraud investigation, or enforcement of contractual rights.
Upon expiry of the applicable retention period, or upon verified User request (subject to legal and regulatory obligations), CredBuddha will securely delete, anonymize, or dispose of User information in accordance with applicable laws and internal data retention policies.
CredBuddha is committed to protecting the confidentiality, integrity, and availability of User information and has implemented reasonable administrative, technical, and physical security measures.
Users are responsible for maintaining the confidentiality of their login credentials, passwords, and account access information. CredBuddha shall not be liable for any unauthorized access arising due to User negligence or failure to safeguard account credentials.
Users acknowledge that no method of transmission over the internet or electronic storage system is completely secure. While we strive to use commercially reasonable means to protect information, absolute security cannot be guaranteed.
In the event of a data security incident, CredBuddha shall take appropriate remedial measures in accordance with applicable laws and regulatory requirements.
CredBuddha shall not be liable for any interruption, loss, alteration, or disclosure of information arising from events beyond its reasonable control, including natural disasters, cyber-attacks, infrastructure failures, or governmental actions.
Users may request access to their Personal Information and details regarding its processing.
Users may request correction or updating of inaccurate or incomplete information by accessing account settings or contacting CredBuddha.
Users may withdraw consent for data processing where consent is the legal basis. Such withdrawal will not affect prior lawful processing and may limit access to certain services.
Users may request deletion of Personal Information where it is no longer necessary or where consent is withdrawn, subject to legal and regulatory retention requirements.
Users may opt out of marketing communications through unsubscribe options or by contacting CredBuddha. Service-related and legally required communications will continue.
User requests may be submitted through the contact details provided in this Policy. Identity verification may be required before processing requests.
Users may withdraw their consent to the processing of Personal Information at any time, subject to applicable legal and regulatory requirements.
Users may also request deletion of their account and associated Personal Information by: Submitting a request through CredBuddha's official communication channels; or Using the designated unsubscribe mechanism available at: https://www.credbuddha.com/unsubscribe
Upon receipt of a verified request: CredBuddha will discontinue processing of Personal Information where consent is the legal basis; User accounts may be deactivated; and Personal Information will be deleted, anonymized, or securely disposed of, unless retention is required under applicable laws.
Users acknowledge that withdrawal of consent or account deletion may result in discontinuation of services and loss of access to the Platform.
Inactive Accounts: CredBuddha reserves the right to suspend or deactivate User accounts that remain inactive for extended periods, subject to applicable laws and internal policies.
The Platform may contain links to websites, applications, or services operated by third parties that are not owned or controlled by CredBuddha. CredBuddha does not endorse, control, or assume responsibility for the content, privacy practices, security standards, or terms of use of any third-party platforms. CredBuddha shall not be liable for any loss, damage, or claims arising from User interactions with third-party platforms.
The Platform is intended only for individuals aged eighteen (18) years or above. CredBuddha does not knowingly collect Personal Information from minors. If we become aware that a minor's data has been collected, such information will be deleted in accordance with applicable laws.
Users may submit any grievance, complaint, or request relating to data privacy, digital lending services, or Platform usage by visiting the official grievance portal: https://credbuddha.com/grievance
All complaints will be reviewed and processed in accordance with applicable laws and regulatory requirements within 48–72 business hours.
CredBuddha reserves the right to modify, update, or revise this Privacy Policy at any time. Any amendments shall become effective immediately upon being published on the Platform. Continued access to or use of the Platform after such changes constitutes acceptance of the revised Policy.
This Privacy Policy shall be governed by and construed in accordance with the laws of India. Any dispute, claim, or controversy arising out of or relating to this Policy shall be subject to the exclusive jurisdiction of the competent courts located in Visakhapatnam, Andhra Pradesh, India.
Privacy Queries: For data privacy-related questions, contact: contact@credbuddha.com
CredBuddha Financial Consultancy Services Private Limited
Registered Office Address:
50-90-25/GF-1, Santhi Puram, Santhi Puram, Visakhapatnam, Andhra Pradesh – 530016, India
Official Email: contact@credbuddha.com
Official Website: www.credbuddha.com