DigiFinserve

LOGO HERE

Data Storage Policy

Last updated: January 2026

1. Overview

This Data Storage Policy outlines how digifinserve collects, stores, protects, and manages customer data. We are committed to maintaining the highest standards of data security and privacy in compliance with applicable laws and regulations.

2. Types of Data Stored

Personal Information

  • • Name, address, contact details
  • • Date of birth, gender
  • • PAN, Aadhaar details

Financial Information

  • • Bank account details
  • • Income and employment details
  • • Credit history data

Application Data

  • • Loan application details
  • • Uploaded documents
  • • Communication history

Technical Data

  • • IP addresses, device info
  • • Browser type, OS
  • • Usage analytics

3. Data Storage Infrastructure

Our data is stored on secure servers with the following characteristics:

  • Hosted on Tier-4 data centers in India
  • Regular backups with geographic redundancy
  • 24/7 monitoring and intrusion detection
  • Compliance with ISO 27001 standards
  • Physical security measures at data centers

4. Data Security Measures

We employ multiple layers of security:

Encryption

256-bit SSL encryption for data in transit and at rest

Access Control

Role-based access with multi-factor authentication

Firewalls

Enterprise-grade firewalls and DDoS protection

Regular Audits

Quarterly security audits and penetration testing

5. Data Retention Period

We retain data for the following periods:

  • Active loan data: For the duration of the loan + 7 years
  • Rejected applications: 3 years from rejection date
  • Inactive accounts: 5 years from last activity
  • Transaction records: As per RBI and legal requirements
  • Communication records: 3 years

6. Data Deletion

After the retention period, data is securely deleted using:

  • Secure data wiping methods meeting NIST standards
  • Physical destruction of storage media when decommissioned
  • Documented deletion procedures with audit trails

Users can request data deletion by contacting support@digifinserve.com. Deletion requests are processed within 30 days, subject to legal and regulatory retention requirements.

7. Third-Party Data Sharing

Data shared with lending partners and third-party service providers is governed by strict data processing agreements. We ensure all partners maintain equivalent security standards and comply with data protection regulations.

8. Contact

For questions about our data storage practices, contact our Data Protection Officer at:
Email: info@digifinserve.com
Phone: +91 9311751811