Privacy Policy
Last modified on 19 Sep, 2022
BrightPay (Highmark Benefits Private Limited) (hereinafter referred to as “ Company or We or BrightPay”) is a technology company, focused on building and facilitating products and services in the financial domain for our customers (hereinafter referred to as “Customer/You/Your/User”, plurals included).
When using any asset of the company, including but not limited to the website, mobile applications, social media platforms, etc., the company is extremely sensitive to the privacy, rights, confidentiality, and security of personal information of users that are shared with or obtained by the company during the course of use.
Regarding data collection, storage, and usage, the firm is committed to offering all of its users a safe, open, and legal framework.
This Privacy and Data Security Policy (hereinafter referred to as "Privacy Policy") sets forth in detail how BrightPay obtains, stores, and manages customer specific information from its users via the use of its website (www.brightpay.in), various BrightPay mobile applications available at Android/iOS platforms, and Social media platforms including but not limited to Facebook, Instagram, LinkedIn, Twitter, Pinterest, etc. The term "BrightPay Platform" will be used to refer to all of the aforementioned things.
All users, past and present, of the BrightPay platform are subject to this Privacy Policy.
All users consent to unequivocally accept this Privacy Policy when you visit the BrightPay Platform, sign up for, access, or use our products, services, content, features, technologies or functions offered on our BrightPay Platform and all related sites, applications, and services (collectively referred to as “BrightPay Services”). Any feature or process in relation to customer engagement shall be deemed to be governed by this Privacy policy unless otherwise explicitly excluded by the Company.
When using any asset of the company, including but not limited to the website, mobile applications, social media platforms, etc., the company is extremely sensitive to the privacy, rights, confidentiality, and security of personal information of users that are shared with or obtained by the company during the course of use.
Regarding data collection, storage, and usage, the firm is committed to offering all of its users a safe, open, and legal framework.
This Privacy and Data Security Policy (hereinafter referred to as "Privacy Policy") sets forth in detail how BrightPay obtains, stores, and manages customer specific information from its users via the use of its website (www.brightpay.in), various BrightPay mobile applications available at Android/iOS platforms, and Social media platforms including but not limited to Facebook, Instagram, LinkedIn, Twitter, Pinterest, etc. The term "BrightPay Platform" will be used to refer to all of the aforementioned things.
All users, past and present, of the BrightPay platform are subject to this Privacy Policy.
All users consent to unequivocally accept this Privacy Policy when you visit the BrightPay Platform, sign up for, access, or use our products, services, content, features, technologies or functions offered on our BrightPay Platform and all related sites, applications, and services (collectively referred to as “BrightPay Services”). Any feature or process in relation to customer engagement shall be deemed to be governed by this Privacy policy unless otherwise explicitly excluded by the Company.
Policy details and applicability
This Privacy Policy applies to the personal information of individual or group of individuals (which means any and all information/ documents/ details pertaining to a natural person or group of persons, such information may either directly or indirectly or in combination with other information available with BrightPay, may be used to identify such a person or group.Except as otherwise stated, the use of any and all BrightPay services by our customers, including both personal and commercial usage, shall be governed by this privacy statement.
This privacy statement may at any moment be unilaterally changed by the company by publishing an updated version on the BrightPay Platform. Consumers are strongly encouraged to examine the policy before using any BrightPay platforms and on an ongoing basis going forward. The Company may additionally publish special alerts for customers in the event of a substantial change. The business disclaims all liability for any misunderstandings that result from a user's disregard for the current Privacy Policy
INFORMATION COLLECTED
To give you a smooth and simple user experience, we may gather any or all of the personal information listed below.Device Information :
We could gather data from your laptop, smartphone, tablet, or any other device you use to access the BrightPay platform. The types of information we may collect from you include, but are not limited to: your IP address, browsing data, device ID or unique identifier, device type, geo-location information, computer and internet information, mobile network information, statistics on page views, referral URL, advertisement data, web log data and other information of a similar nature, Calendar information, etc.We may also use web beacons and cookies to gather anonymous information. When you fill out web forms, update account information, engage in social media conversations, community/BrightPay online chats, or otherwise communicate with us with BrightPay Services through any channel, we may collect and keep any information you provide us or consent to share with us.
Report on credit information :
With your permission and in accordance with the current regulatory framework to access such information, we may get your credit information (credit score and credit information report) from your credit records with Credit Information Companies ("CICs"). Only once you agree to name BrightPay as your legally and voluntarily chosen authorised agent or representative for collecting your credit information from CICs may BrightPay get this information from one or more CICs for and on your behalf. By allowing BrightPay to use and get your credit information report, you accept that BrightPay and CICs may depend on the permission and consent you have given to BrightPay.Other information
When you use BrightPay platform, we may also collect information about your transactions and your activities including but not limited to:- Contact information including your name, address, phone, email, and other similar information
- Specific personal identification information such as your date of birth or national ID number.
- Address proof, Officially Valid documents, Income proof, PAN, credit score, credit information report, e-KYC through UIDAI, CKYC through CERSAI etc.
- Financial information, such as the full bank account numbers that you link to your BrightPay account or give us access to while you use BrightPay Services.
Additionally, BrightPay reserves the right to listen in on or record any and all of your communications with the BrightPay platform, any BrightPay employee, or any BrightPay agent. Additionally, by contacting BrightPay, you consent to the possibility of your communication being overheard, watched, or recorded without your knowledge or consent.
After obtaining the User’s specific consent to allow the BrightPay platform to access the User’s SMS inbox, we may collect relevant information from text messages (SMS) received by the Users from providers of services and/or products (including but not limited to retail outlets, financial institutions, mobile carriers, websites, ecommerce companies, any merchant and all utility companies), that will enable us to provide better access to financial products and services , managing your expenditure by providing insights and other products to the Users. We shall only access business messages and will never intrude in your personal messages.
To spot any harmful software or behaviour, we may also frequently analyse your computer, smartphone, or other access device. The user won't be charged any further fees for this.
We may obtain information about your location and your mobile device, including a unique identifier for your device, when you download or use our mobile applications or access one of our mobile-optimized sites. We could make use of this data to deliver you location-based services like advertisements, search results, and other tailored content. Most mobile devices have settings menus where you may manage or turn off location services.
Consent
By using any of BrightPay platforms, you expressly consent to BrightPay and including all its marketing channels and business partners, representatives to provide the details/documents/information mentioned hereinabove for the purpose stated under this Privacy Policy.Additionally, you expressly agree that BrightPay (along with its marketing channels, business partners, and representatives) may contact you via SMS, call, WhatsApp, email, or any other appropriate communication platform in order to follow up on the services offered by or through the BrightPay Platform, to impart product knowledge, to offer promotional offers through the BrightPay Platform, and to provide you with a variety of other offers made by its business partners.
You hereby give us your express permission to disclose your personal information with third parties, such as banks, credit reporting agencies, governmental entities, or any other organisation required by law, in order to provide the services you have requested.
You hereby grant your unambiguous, free and unequivocal consent to authorize and appoint BrightPay to request and obtain, collect, receive and/or fetch your credit score and/ or a copy of your credit information report from CIC, for and on your behalf;
Uses and objectives of data collection
The major goal of the Company's collection of any or all of the aforementioned personal information is to give you a safe, easy, effective, clever, and individualised experience while using BrightPay products or goods and services that BrightPay facilitates through its partners.We may use your personal information to:
- Provide you with access to BrightPay services and customer support, handle transactions and deliver alerts about them, and authenticate your identity throughout the account setup and password reset processes.
- Manage and safeguard our IT infrastructure; give promotional offers depending on your communication choices; target marketing and advertising; and provide service update reminders. reach you at any phone number, either by making a voice call, text (SMS), email, WhatsApp, or automated dialling; Check for solvency and creditworthiness, compare the correctness of the information, and confirm it with the appropriate third parties.
- Manage risk, or to detect, prevent, and/or remediate fraud or other potentially prohibited or illegal activities; detect, prevent or remediate violations of policies or applicable user agreements; improve the BrightPay Services by customizing your user experience; measure the performance of the BrightPay Services and improve their content and layout;
- Establishing and keeping up user accounts on the app.
- Offer personalised features.
- Assisting you in choosing the ideal financial product
- Facilitating platform transactions
- Keeping in constant contact with the User regarding any transactions the User initiates, such as payments, transfers of funds, requests for information or help, etc.
- Periodically making changes to the App to reflect user preferences.
- Efficiently providing the App and all of its features and functionality.
- Preserve social history in accordance with prevailing legislation or policy.
- Preventing the user from having to enter previously entered data again
Security Framework for Data
Information that may be linked to a particular person or group of people and used to identify that person or group is referred to as personal information. Information that has been rendered anonymous so that it cannot be used to identify a specific user is not regarded as personal information for the purposes of using BrightPay.On our computers and/or cloud infrastructure, situated at our premises, we store and process your personal data. By implementing physical, technological, and administrative security measures, we are dedicated to minimising the risks of loss, misuse, unauthorised access, disclosure, and alteration. Firewalls, data encryption, physical access restrictions for our data centres, and information access authorisation controls are a few of the security measures we employ. We have made sure that BrightPay's implementation of acceptable security methods complies with all applicable laws and is on par with fair industry norms.
Restrictions on the use of personal data
We may share your Personal information with our affiliates and business partners where we feel that you will be assisted better for the purpose of availing the BrightPay Services. We may share your personal information with:- Financial institutions like Banks, NBFCs, Insurance Companies, Asset Management companies and others who we may partner with to jointly create and offer any product or service. These financial institutions may only use this information to market BrightPay-related products, unless you have given consent for other services
- Users of BrightPay, members of the BrightPay corporate family, affiliates, group companies , to provide joint content, products, and services (such as registration, transactions and customer support), to help detect and prevent potentially illegal acts and violations of our policies, and to guide decisions about their products, services, and communications. Members of our corporate family will use this information to send you marketing communications only if you have requested their services.
- Credit bureaus and collection agencies to report account information, as permitted by law.
- Banking partners as required by credit card association rules for inclusion on their list of terminated merchants (in the event that you meet their criteria which includes having BrightPay close your BrightPay account due to your breach of BrightPay’s User Agreement).
- Companies that we may plan to forge a Joint Venture with or are acquired by.
- Law enforcement entities, personnel, government officials, or other third parties pursuant to a summon, court order, or other legal process or requirement applicable to BrightPay or one of its affiliates; when we need to do so to comply with law or debit/ credit card rules; or when we believe, in our sole discretion, that the disclosure of personal information is necessary to prevent physical harm or financial loss, to report suspected illegal activity or to investigate violations of our User Agreement.
Other unaffiliated third parties, for the following purposes:
- Fraud prevention and risk management: to identify, evaluate, and manage risks or assist prevent fraud. To safeguard your account from fraudulent behaviour, notify you if we notice such activity on your accounts, or assess credit risk, for instance, if you use the BrightPay Services to purchase or sell things, we could exchange account information.
- We may also disclose required account information in situations when BrightPay has set a hold or other restriction on your Account due to disputes, claims, chargebacks, or other circumstances involving the sale or purchase of products as part of our efforts to prevent fraud and manage risk. In order for them to run their systems for assessing buyers or sellers, we may also disclose account information as part of our efforts to prevent fraud and manage risk.
- For customer service objectives, such as to assist in handling your accounts or resolving conflicts (e.g., billing, or transactional).
- Legal Compliance: To assist them in adhering to the criteria for anti-money laundering and counter-terrorist funding verification.
- Service Providers: To make it possible for service providers with whom we have contracts to assist the operations of our business. According to the terms of our contracts, these service providers may only use your information in connection with providing services to us and not for other purposes.
- On a case-by-case basis, if judged suitable by our operational framework or by relevant legislation, we may additionally obtain the required express consent.
COOKIES POLICY
On specific pages of the app, we gather data using techniques like "cookies" and similar information sets to analyse the page flow, track the success of promotions, and advance trust and safety. Cookies are little files that are stored on the hard disc or other storage of your device to help us provide our services.How to stop receiving marketing communications from BrightPay
Please be aware that processing your request might take up to 15 business days. You expressly waive the Do Not Call (DNC) and Do Not Disturb (DND) registrations on your phone/mobile numbers in order to use the BrightPay Platform and contact you for such purposes. As a result, there won't be a need to monitor the DNC or DND status of any numbers you may have left on our BrightPay Platform. Sending SMSs and/or placing phone calls are two possible ways to get in touch with you.
DATA RETENTION
BrightPay will retain your information for as long as it is necessary for providing you the BrightPay Services available on the BrightPay Platform or your request for termination of your account with BrightPay, whichever is later. Furthermore, BrightPay may also be required to retain certain information under the applicable law and/or as part of its contractual obligations with the Banks/Financial Institutions and accordingly such information shall be retained as prescribed under the applicable law or part of BrightPay’s contractual obligation.BrightPay may continue to utilise your anonymized data after the end of your connection, either alone or in conjunction with the anonymized data of other users. For data analysis, profiling, and research reasons, such as to learn more about our users and their profiles, we utilise this aggregated anonymised data. We may preserve your contact information and the specifics of your application (if any) in order to prevent fraud, to exercise or defend a legal claim, or to use as evidence in a court case (s).
Updating personal information
If your personal information that you supplied with BrightPay changes, you can email or call our customer care. The BrightPay platforms allow for the same to be done.Obligation with respect to other platforms
The BrightPay platforms occasionally link to other platforms that may gather your personally identifying data. The content of these connected platforms and their privacy policies are not the responsibility of BrightPay.Grievance Redressal
Send an email to legal@brightpay.in with any grievance, complaint, questions, comments, concerns, or criticism regarding the handling of your information, our privacy and security policy, or any other privacy or security issue.The provisions of the Information Technology Act, 2000 and the rules made under it, such as the Information Technology (Reasonable security practises and procedures and sensitive personal data or information) Rules, 2011, as amended, and other applicable laws enacted from time to time shall govern the interpretation of this privacy statement.
Have any queries on the policy?
If you have any questions or concerns about the privacy policy please contact us.