Reference

How indiluck Handles Your Personal Data

This Privacy Policy explains exactly what data we collect when you open an account with us, how we use it, and the choices you hold over it.

Data You ControlSecure Account StorageIndia Region ScopeUPI & Paytm ContextYour Deletion Rights

Explore the Lobby Read FAQ

What Data We Collect and Why

indiluck Service availability depends on jurisdiction. It is the user's responsibility to check local law before access.

When you open an account, we collect the details you provide directly — your name, email address, mobile number, and the payment identifiers linked to UPI, Paytm, or PhonePe transactions. We also gather device and session data automatically: IP address, browser type, and pages visited, so

1
we can keep the platform running correctly for you. Financial transaction records — amounts, timestamps, and payment-rail references — are retained to process withdrawals accurately and meet our audit obligations. We do not sell this data to third parties for marketing. Access to your data is
2
restricted to staff and systems that need it to operate your account. This policy applies to access from India where local law permits such services.

Service availability depends on jurisdiction. It is the user's responsibility to check local law before access.

REACH OUR TEAM

Contact Us About This Privacy Policy

If you have a question about how your data is used, want to request a copy of what we hold, or need to correct an inaccuracy…

HOW WE PROTECT DATA

Our Practices Around Data Security and Retention

We apply layered controls at every stage of data handling — from the moment you enter your UPI details to the point a withdrawal is confirmed in your account.

Encrypted Data Storage

All personally identifiable information is stored using AES-256 encryption at rest. Database access requires multi-factor authentication and is logged with a full audit trail so any unusual access attempt is flagged immediately.

Cookie and Tracking Policy

We use first-party cookies to keep your session active and remember your language preference. Analytics cookies are anonymised before storage. You can adjust cookie consent from the footer link on any page without affecting your account.

Payment Data Handling

UPI VPAs, Paytm wallet IDs, and PhonePe references are stored only long enough to process and verify a transaction. We do not retain full payment credentials after a session closes; tokenised references are used for recurring verification.

Retention Periods

Account data is retained for as long as your account remains active. If you request account closure, personal data is deleted within 30 days except where we are legally required to keep transaction records for audit purposes.

Who to Contact for Data Changes

Our Data Protection contact can be reached via the email address listed in the Contact Us section of this policy. Include your account mobile number and the specific change or access request so we can verify your identity and act promptly.

Third-Party Data Sharing

We share data only with processors directly needed to run the platform — payment gateways for UPI and Paytm clearance, fraud-prevention services, and hosting providers. Each processor is bound by a data agreement that limits their use of your information.

Your Questions About This Privacy Policy

The answers below cover the data rights and account privacy questions we hear most often. If your question is not addressed here, reach our support team via live chat or email and we will respond within one business day.

We collect your name, email address, registered mobile number, and the payment identifiers you provide through UPI, Paytm, or PhonePe. Device and session data such as IP address and browser type are gathered automatically to keep the platform functional.

Yes. Log into your account, go to Settings, and select the Privacy section to download a copy. Alternatively, email our data team with your registered mobile number and we will send a full data export within five business days.

Personal profile data is deleted within 30 days of a confirmed account closure request. Transaction records may be retained longer where applicable law requires us to keep financial records for audit or regulatory purposes.

We share data only with processors essential to running your account — payment gateways handling UPI and Paytm flows, fraud screening services, and our hosting infrastructure. We do not sell or rent personal data to advertisers or data brokers.

Payment identifiers are tokenised after a transaction is verified. We do not store full UPI credentials or Paytm wallet passwords. Tokenised references used for identity verification are held in encrypted storage and access is restricted to authorised systems only.

You can update most profile fields directly in the Account Settings panel. For fields that require identity verification — such as your registered mobile number — contact our support team via live chat or email to initiate a verified change request.

We use session cookies to keep you logged in and functional cookies for language preferences. Analytics cookies are anonymised. You can manage or withdraw cookie consent at any time from the cookie settings link in the footer without losing access to your account.

How indiluck Handles Your Personal Data

Contact Us About This Privacy Policy

Our Practices Around Data Security and Retention

Encrypted Data Storage

Cookie and Tracking Policy

Payment Data Handling

Retention Periods

Who to Contact for Data Changes

Third-Party Data Sharing

Your Questions About This Privacy Policy

01 What personal data does indiluck collect when I open an account?

02 Can I request a copy of the data held about me?

03 How long is my account data kept after I close my account?

04 Does indiluck share my data with third parties?

05 How are my UPI and Paytm payment details protected?

06 How do I update or correct inaccurate data in my account?

07 What cookies does indiluck use and can I turn them off?

Related Pages