Privacy Policy

1. WHO WE ARE

Shree Moji Foundation Micro Finance Private Limited is a registered micro finance company incorporated under the Companies Act, 2013, operating in compliance with applicable Reserve Bank of India (RBI) regulations and Indian financial laws. Our registered office is located in jaipur, Raj.

We are committed to protecting the privacy, confidentiality, and security of all personal and financial information entrusted to us by our investors, website visitors, and service users across India and internationally.

Contact for Privacy Matters: privacy@shreemojifoundation.com +91 8741931135 Shree Moji Foundation., Jaipur, Raj. — 302012

2. SCOPE OF THIS PRIVACY POLICY

This Privacy Policy applies to:

All visitors to our website at https://shreemojifoundation.com
All registered investors and account holders on our platform
All users of our mobile application
All individuals who contact us via phone, email, WhatsApp, or in-person at our offices
All entrepreneurs and businesses using our Fundraising Assistance service
All NRI investors accessing our services from outside India

This policy does not apply to third-party websites, applications, or services linked from our platform. We encourage you to read the privacy policies of any third-party services you access through links on our website.

3. INFORMATION WE COLLECT

3.1 Personal Identification Information

When you register as an investor or use our services, we collect:

Full legal name
Date of birth
Gender
Residential address (current and permanent)
City, state, and PIN code
Nationality and country of residence
Aadhaar card number (as required for KYC compliance)
PAN card number (as required under Indian tax law)
Passport number (for NRI investors)
Photograph and signature

3.2 Financial Information

To process investments, payouts, and transactions, we collect:

Bank account number and IFSC code
Bank name and branch details
UPI ID or linked payment instrument
Investment amounts, plan details, and transaction history
Income details and financial profile (for advisory services)
Tax identification details
NRE/NRO account information (for NRI investors)

3.3 Contact Information

Mobile phone number
WhatsApp number
Email address
Emergency contact details

3.4 KYC & Compliance Documents

As required under Indian financial regulations, we collect:

Aadhaar card (front and back)
PAN card
Passport (for NRI investors)
Voter ID / Driving Licence (as alternate KYC documents)
Latest bank statement or cancelled cheque
Proof of address documents
Self-attested photograph

3.5 Technical & Usage Information

When you visit our website or use our app, we automatically collect:

IP address and device type
Browser type and version
Operating system
Pages visited and time spent on each page
Referring URL and exit page
Clickstream data and navigation patterns
Cookies and similar tracking technologies
Mobile device identifier and app usage data

3.6 Communication Records

Records of phone calls with our support team
Email correspondence
WhatsApp message history
Chat transcripts from our live support tool
Contact form submissions
Feedback and survey responses

4. HOW WE COLLECT YOUR INFORMATION

We collect your personal information through the following methods:

Direct Submission: When you register on our website, fill out an investment application, submit a contact form, or provide documents for KYC verification
Telephone & WhatsApp: When you contact our investor support team or book a consultation
In-Person Visits: When you visit any of our regional offices across India
Automated Technologies: Through cookies, web beacons, and analytics tools when you browse our website or use our mobile app
Third-Party Verification Partners: From UIDAI (Aadhaar verification), NSDL/UTI (PAN verification), and banking partners for account validation
Publicly Available Sources: From government databases or public records as required for regulatory compliance

5. HOW WE USE YOUR INFORMATION

Shree Moji Foundation uses your personal information for the following purposes:

5.1 Investment & Account Services

Creating and managing your investor account
Processing your investment applications and fund transfers
Calculating and disbursing your investment returns
Issuing investment certificates and portfolio statements
Processing withdrawal requests and account closures

5.2 KYC & Regulatory Compliance

Verifying your identity as required under RBI KYC norms
Complying with Prevention of Money Laundering Act (PMLA) obligations
Reporting to regulatory authorities as required by law
Maintaining records as mandated under Indian financial regulations
Filing TDS returns and issuing Form 16A as applicable

5.3 Communication & Support

Sending investment confirmation and receipt notifications
Providing quarterly and annual portfolio statements
Communicating return payout schedules and transaction alerts
Responding to your queries, complaints, and support requests
Sending important account security and policy update notifications

5.4 Marketing & Promotions

(Only with your explicit consent)

Informing you about new investment plans and opportunities
Sending financial insights, market updates, and newsletters
Notifying you about exclusive investor offers and referral programmes
Conducting investor satisfaction surveys

5.5 Platform Improvement

Analysing website and app usage to improve user experience
Conducting internal research and data analytics
Testing new features and service enhancements
Monitoring platform security and preventing fraud

6. LEGAL BASIS FOR PROCESSING YOUR DATA

We process your personal information on the following legal grounds:

Legal Basis	Purpose
Contractual Necessity	Processing required to fulfil your investment agreement with us
Legal Obligation	KYC, AML compliance, tax reporting under Indian law
Legitimate Interest	Fraud prevention, platform security, service improvement
Consent	Marketing communications, newsletters, promotional offers

You have the right to withdraw your consent for marketing communications at any time by clicking “Unsubscribe” in any email or by contacting us directly at privacy@shreemojifoundation.com.

7. DATA SHARING & DISCLOSURE

Shree Moji Foundation does not sell, rent, or trade your personal information to any third party for commercial purposes. We may share your information only in the following limited and lawful circumstances:

7.1 Regulatory & Government Authorities

We are legally obligated to share investor information with:

Reserve Bank of India (RBI) — as required under NBFC regulations
Income Tax Department — for TDS compliance and tax reporting
Financial Intelligence Unit (FIU-IND) — under PMLA requirements
Any court, tribunal, or law enforcement authority — when required by a valid legal order

7.2 Verified Service Providers

We share limited data with trusted third-party service providers who assist our operations, including:

Payment Gateway Partners — for secure fund transfers and payout processing
KYC Verification Partners — for Aadhaar and PAN authentication (UIDAI, NSDL/UTI)
Cloud Infrastructure Providers — for secure data storage and platform hosting
SMS & Email Service Providers — for transactional communications
Audit & Accounting Firms — for annual financial audit purposes

All service providers are bound by strict data processing agreements requiring them to handle your data with the same level of security and confidentiality that we apply internally.

7.3 Business Transfers

In the event of a merger, acquisition, restructuring, or sale of Shree Moji Foundation’s business, your personal information may be transferred to the acquiring entity — subject to equivalent privacy protections being maintained. You will be notified of any such transfer.

7.4 With Your Explicit Consent

We will share your information with any other party only when you have given us your clear, written, and informed consent to do so.

8. DATA RETENTION POLICY

We retain your personal and financial information for the following periods:

Data Type	Retention Period
KYC Documents & Identity Records	10 years from account closure (as per PMLA)
Investment Transaction Records	10 years from the date of transaction
Financial Statements & Returns	8 years (as per Income Tax Act requirements)
Communication Records	3 years from the date of communication
Marketing Consent Records	Until consent is withdrawn + 1 year
Website Usage & Cookie Data	12 months from collection
Closed Account Data	10 years from account closure date

After the applicable retention period, your data is securely deleted or anonymised in compliance with applicable Indian data protection laws.

9. DATA SECURITY

Shree Moji Foundation implements industry-standard technical and organisational security measures to protect your personal and financial information from unauthorised access, disclosure, alteration, or destruction.

9.1 Technical Safeguards

256-bit SSL Encryption on all data transmitted through our website and app
AES-256 Encryption for all stored personal and financial data
Multi-Factor Authentication (MFA) for all investor account access
Secure Payment Gateway Integration with PCI-DSS compliant partners
Regular Security Audits and penetration testing by certified cybersecurity firms
Intrusion Detection Systems monitoring our servers 24/7
Data Backup Systems with encrypted off-site storage

9.2 Organisational Safeguards

Strict data access controls — only authorised personnel access investor data
Regular staff training on data privacy and security protocols
Background verification of all employees handling sensitive data
Confidentiality agreements signed by all team members

9.3 Breach Notification

In the unlikely event of a data breach that poses a risk to your personal information, we will notify you and the relevant regulatory authorities within 72 hours of becoming aware of the breach — as required under applicable Indian data protection regulations.

10. YOUR RIGHTS AS AN INVESTOR

Under applicable Indian data protection laws, you have the following rights regarding your personal information:

10.1 Right to Access

You have the right to request a copy of all personal information we hold about you. We will provide this within 30 days of receiving a verified request.

10.2 Right to Correction

You have the right to request correction of any inaccurate, incomplete, or outdated personal information in our records. Account holders can update basic details directly through their investor dashboard.

10.3 Right to Deletion

You may request deletion of your personal information, subject to our legal obligation to retain certain records under Indian financial laws. We will inform you of any data we are legally required to retain and the applicable retention period.

10.4 Right to Withdraw Consent

You may withdraw your consent for marketing communications at any time without affecting the lawfulness of processing carried out before withdrawal.

10.5 Right to Data Portability

You may request a structured, machine-readable copy of your personal data for the purpose of transferring it to another service provider.

10.6 Right to Lodge a Complaint

You have the right to lodge a complaint with the appropriate Indian data protection authority if you believe your privacy rights have been violated.

To exercise any of these rights, contact us at: privacy@shreemojifoundation.com +91 8741931135

11. COOKIES POLICY

Our website uses cookies and similar tracking technologies to enhance your browsing experience and improve our services.

Types of Cookies We Use:

Cookie Type	Purpose
Essential Cookies	Required for website functionality — login sessions, security tokens
Analytics Cookies	Google Analytics — understanding how visitors use our website
Preference Cookies	Remembering your language and display preferences
Marketing Cookies	Only with consent — tracking campaign performance

You can manage your cookie preferences through your browser settings at any time. Disabling essential cookies may affect your ability to use certain features of our website. Our cookie consent banner allows you to accept, reject, or customise your cookie preferences on your first visit.

12. CHILDREN’S PRIVACY

Shree Moji Foundation’s services are intended exclusively for individuals aged 18 years and above. We do not knowingly collect, process, or store personal information from anyone under the age of 18. If we become aware that a minor has provided us with personal information, we will delete it immediately. If you believe a minor has submitted information to us, please contact us at privacy@shreemojifoundation.com.

13. NRI INVESTOR PRIVACY

For Non-Resident Indian (NRI) investors, your personal data may be processed and stored in India in compliance with FEMA regulations and RBI guidelines for NRI investments. By using our services as an NRI investor, you consent to the transfer and processing of your data in India under the protections described in this Privacy Policy.

14. THIRD-PARTY LINKS

Our website may contain links to third-party websites, payment gateways, or partner platforms. Shree Moji Foundation is not responsible for the privacy practices of any third-party website. We strongly encourage you to read the privacy policy of every website you visit through links on our platform before submitting any personal information.

15. CHANGES TO THIS PRIVACY POLICY

Shree Moji Foundation reserves the right to update or modify this Privacy Policy at any time to reflect changes in our business practices, legal requirements, or regulatory obligations. When we make material changes, we will:

Update the “Last Updated” date at the top of this page
Display a prominent notice on our website homepage for 30 days
Send an email notification to all registered investors
Post an in-app notification for mobile app users

Your continued use of our platform after the effective date of any updated Privacy Policy constitutes your acceptance of the revised terms. We encourage you to review this page periodically.

16. GRIEVANCE OFFICER

In accordance with the Information Technology Act, 2000, and applicable rules, Shree Moji Foundation has appointed a Grievance Officer to address privacy-related complaints and concerns:

Grievance Officer — Shree Moji Foundation Micro Finance Pvt. Ltd.

grievance@shreemojifoundation.com +91 8741931135 Shree Moji Foundation ,Jaipur Raj., — 302012 Available: Monday to Saturday | 9 AM – 6 PM IST

All privacy-related complaints will be acknowledged within 48 hours and resolved within 30 days of receipt. If your complaint is not resolved to your satisfaction, you may escalate it to the relevant Indian regulatory authority.

17. GOVERNING LAW & JURISDICTION

This Privacy Policy is governed by and construed in accordance with the laws of India, including but not limited to:

The Information Technology Act, 2000 and IT (Amendment) Act, 2008
The Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011
The Digital Personal Data Protection Act, 2023
The Prevention of Money Laundering Act, 2002
Reserve Bank of India KYC Master Directions

Any disputes arising from this Privacy Policy shall be subject to the exclusive jurisdiction of the courts in Rajasthan, India.

18. CONTACT US ABOUT THIS PRIVACY POLICY

If you have any questions, concerns, or requests regarding this Privacy Policy or the handling of your personal data, please contact us through any of the following channels:

Email: privacy@shreemojifoundation.com