Privacy Policy
Updated on 29-04-2025
Introduction
This Privacy Policy is applicable to personal information and sensitive personal data or information, including information that is of a confidential nature (“Customer Information”) belonging to the customers, potential customers, and other users of the Services (“Customer(s)” or “you”) of GoBrisk Technologies Pvt Ltd (known with brand name “BRISKPE”), its affiliates and group companies (collectively, “BRISKPE”, “we”, “our”, or “us”).
In the course of using this website, mobile applications, or its custom extensions, or availing products and services vide online or offline platforms, other points of sales, third party platforms, or through communications, by electronic means or otherwise, or any other mode/platform communicated/introduced by BRISKPE from time to time (collectively, the “Services”), BRISKPE may collect, receive, possess, store, use, deal, handle, transfer, retain and otherwise process Customer Information. By using or otherwise accessing our Services, you confirm that you have read and agreed to be bound by this Privacy Policy and consent to the collection, receipt, possession, storage, usage, dealing with, handling, processing, transfer and retention of your Customer Information by BRISKPE as described in this Privacy Policy.
BRISKPE is strongly committed to protecting the privacy of its Customers and has taken all necessary and reasonable measures to protect the confidentiality of the Customer Information and its transmission.
Customer Information
Customer Information includes, without limitation, the following categories of personal data/sensitive personal data that we may collect, receive, possess, store, use, deal, handle, transfer, and otherwise process as per applicable laws:
- Data about you: This may include, without limitation, your name, user IDs, signature, email addresses, phone numbers, addresses, KYC/identity documents (for example: Aadhaar and PAN), biometric data, communications with us, device and location data, information about how you use our Services, etc.
- Financial data: This includes, without limitation, information about your bank account details, financial information, payment credentials, transaction data, details such as amounts, collections/payments history, and returns/ rejections, credit history and income details.
- Marketing and communications data: This includes, without limitation, your preferences relating to receiving marketing messages from us and our service providers, and your communication preferences.
You must ensure that all Customer Information that you provide us with is accurate, up-to-date, and true. You will be responsible for any errors, discrepancies, or inaccuracies in the Customer Information you share with us, except for such Customer Information that has been verified through KYC processes set out by applicable law and backed by documentary proof. When you use our Services, we make best efforts to provide you with the ability to access and correct inaccurate or deficient Customer Information, subject to any legal requirements.
Collection of Customer Information
We are required to collect Customer Information to provide you with the Services, to comply with our contractual obligations and applicable law. If you do not wish to provide such Customer Information as and when requested by us, it will diminish our ability to perform our obligations under the arrangement we have with you or are trying to enter into with you (for example, to provide you with features of the Services). And consequently, we may be constrained to cancel or limit your access to the Services (or part thereof).
We use different methods to collect Customer Information from and about you, including, without limitation, through:
- Direct interactions: This includes Customer Information you consent to give us when you use our Services or when you interact with us, including, without limitation, when you:
- Create an account with us;
- Use the Services or carry out other activities in connection with the Services;
- Consent to receiving marketing communications; or
- Report a problem with the Services, give us feedback, or contact us.
- Automated technologies or interactions: When you use the Services, we may automatically collect data about your equipment, browsing actions, and patterns. We collect this data by using cookies, web beacons, pixel tags, server logs, and other similar technologies. We may also receive such data about you if you visit other websites that use our cookies.
- Third parties or publicly available sources: We receive Customer Information from publicly available sources as well as various third parties, such as our service providers, credit bureaus, partners, alliance partners, group companies, agents, affiliates and government portals.
Cookies
The BRISKPE website uses Google Analytics, a web analytics service provided by Google, Inc. Google Analytics uses cookies that are text files containing small amounts of information (this does not include personal sensitive information) which are downloaded to your device when you visit a website in order to provide you a personalized browsing experience. Cookies do lots of different jobs, like allowing you to navigate between pages efficiently, remembering your preferences, and generally improving your browsing experience. These cookies collect information analytics about how you use a website (for example: often visited pages).
We may contact third-party service providers to assist us in better understanding our site visitors. These service providers may use the information collected on our behalf to help us conduct and improve our Services.
Additionally, you may encounter cookies or other similar devices that are placed by third parties on certain pages of the website. We do not control the use of cookies by third parties. All information collected by third party cookies is aggregated and therefore anonymous.
You are free to disable or delete these cookies by changing your web browser settings. BRISKPE is not responsible for cookies placed in Customers’ devices by any third party and information collected thereby.
Use of Customer Information
We will only use your Customer Information as permitted under applicable law or pursuant to contractual obligations. Most commonly, we will use your Customer Information to perform the Services or to comply with a legal/contractual obligation. We use your Customer Information without limitation, for the following purposes:
- to verify your identity to register you as a Customer, and create and operate your account(s) with us;
- to provide the Services to you;
- to process payments made through our Services;
- to comply with legal obligations;
- to administer and protect our business and the Services, including for troubleshooting, data analysis, system testing, and performing internal operations;
- for risk control, fraud detection, and prevention;
- to perform our obligations that arise out of the arrangement we are about to enter or have entered with you;
- to respond to court orders, establish or exercise our legal rights, or defend ourselves against legal claims;
- to improve customer service to effectively respond to your service requests and support needs;
- to improve the functionality of our Services based on the information and feedback we receive from you;
- to send notifications to manage our relationship with you including to notify you of changes to our Services, send you information and updates pertaining to the Services you have availed, and to receive occasional company news and updates related to us or the Services;
- to monitor trends and personalize your experience;
- to market and advertise the Services to you;
- to improve our business; and
- To conduct training and AI-based skill training.
Disclosure of Customer Information
BRISKPE undertakes not to disclose Customer Information to any person, unless such action is necessary to:
- Offer and provide our Services, including for the purposes set out in Section 5 above;
- Conform to legal requirements or comply with legal process;
- Protect or defend BRISKPE’s or its affiliates or group companies’ rights, interests or property;
- Enforce the terms and conditions of the Services; or
- Protect the interests of BRISKPE, its affiliates, group companies, members, constituents, or of other persons.
Please note that to provide you with the Services, we may sometimes share confidential information that is about or belongs to BRISKPE. We expect that you will keep such information confidential, and not share it with any third party. Your failure to keep this information confidential could result in loss to BRISKPE, and if such failure does occur, BRISKPE reserves the right to suspend Services being offered to you in addition to its other rights and remedies.
BRISKPE will limit the collection and use of Customer Information to a need-to-know basis to deliver better service to Customers. BRISKPE may share or store with, and otherwise transfer Customer Information to third parties (including our affiliates, group companies, successors, service providers, vendors and partners), subject to suitable confidentiality obligations, and in accordance with contractual terms, applicable laws and our instructions, in order to render the Services to you and to enable us to provide you information about the Services. While due to the size and complexity of our operations, it is not possible for us to name each of the third parties in this Privacy Policy.
Such third parties may include, but not be limited to:
(a) Any revenue service or tax authority including Income Tax Department, if obliged to do so under applicable regulations.
(b) Overseas regulators and authorities in connection with their duties (such as crime prevention).
(c) Anyone to whom we may transfer our rights and/or obligations;
(d) Any other person or organization after a restructure, sale or acquisition, as long as that person uses your information for the same purposes as it was originally given to us or used by us (or both)
(e) Credit reference, identity and address verification organizations who may record and use your information and disclose it to other lenders, financial services organizations and insurers. Your information may be used by those third parties to make assessments in relation to your creditworthiness for debt tracing.
(f) Fraud prevention agencies and law enforcement agencies who will use it to prevent fraud and money-laundering and to verify your identity if false or inaccurate information is provided by you and fraud is identified. We, fraud prevention agencies and law enforcement agencies may access and use your information for example, when:
- Checking details on applications for credit and credit related or other facilities;
- Managing credit and credit related accounts or facilities;
- Recovering debt;
- Checking details on proposals and claims for all types of insurance
(k) Other product and service providers for products and services which you would have agreed to avail or being referred to
(l) Service providers as appointed from time to time for operational support to BRISKPE.
(m) Courier or postal service providers for the purpose of sending of mails to you as a customer
(n) Social media websites for our marketing campaigns where permitted
(o) Data analytics providers.
(p) Consultants and lawyers.
For further information, please refer to our product specific terms and conditions and application form.
These third parties shall use the Customer Information only for the above mentioned purposes or as per contractual obligations.
BRISKPE may also exchange, transfer or share all or a part of Customer Information with its affiliates, group companies, as may be required by applicable law, and the Customer shall not hold BRISKPE liable for such use or disclosure of this Customer Information.
Storage and Transfer of Customer Information
BRISKPE complies with applicable laws/internal policies in respect of the storage and transfer of Customer Information. As a part of your use of the Services, the Customer Information you provide to us may be transferred to and stored in countries other than the country you are based in. This may happen if any of our servers are from time to time located in a country other than the one in which you are based, or if one of our vendors, partners, or service providers is located in a country other than one you are based in. We ensure that that any recipients of Customer Information that we transfer are subject to suitable confidentiality obligations and access to and processing of Customer Information is in accordance with contractual terms, applicable laws, and our instructions.
Retention of Customer Information
BRISKPE may retain your Customer Information for as long as required to provide you with the Services in accordance with applicable laws and our internal policies, such as managing your account and dealing with any concerns that may arise, or if required for compliance with any legal or regulatory requirements, or for the institution, enforcement, or defense of legal claims.
BRISKPE may also retain your Customer Information where we need to use it for our business and related purposes, including but not limited to, responding to queries or complaints, fighting fraud and financial crime or pursuant to contractual obligations.
If we do not require the retention of Customer Information, we use best efforts to destroy or delete such Customer Information as per our internal policies. The retention of client’s information shall be mentioned in the contract/agreement between both the parties.
Security of Customer Information
BRISKPE endeavors to safeguard and ensure the security of the Customer Information using appropriate measures to protect it from unauthorized access, and follow standards prescribed by applicable law. BRISKPE uses appropriately secure encryption for the transmission of Customer Information.
The Customer is required to cooperate with BRISKPE in order to ensure the security of the Customer Information, and it is recommended that the Customer necessarily chooses their passwords/PIN/TPIN carefully such that no unauthorized access is made by a third party. To make the password complex and difficult for others to guess, the Customer should use a combination of alphabets, numbers and special characters (like !, @, #, $, etc.) wherever required for strength of password. The Customer should not disclose their password to anyone or keep any written or other record of the password such that a third party could access it.
YOUR RIGHTS
Subject to applicable law (including GDPR, CCPA, and Indian IT Rules), you may:
- Access your personal data;
- Correct inaccuracies in your data;
- Delete your personal data;
- Restrict how we process your data;
- Object to our processing (especially for direct marketing);
- Port your data to another service;
- Withdraw consent at any time;
- Not be subject to automated decisions, including profiling.
To exercise your rights, please contact our “BRISKPE Support” : [email protected]
CROSS-BORDER DATA TRANSFERS
We may store and process your data in locations outside your country of residence, including for disaster recovery purposes. When transferring data across borders, we implement appropriate safeguards including:
- Data Protection Agreements (DPAs);
- Standard Contractual Clauses (SCCs);
- Security and access controls aligned with global standards.
ANTI-BRIBERY & ANTI-MONEY LAUNDERING (AML) COMPLIANCE
Briskpe is committed to maintaining the highest standards of ethical conduct and complying fully with all applicable anti-bribery and anti-money laundering laws, including:
- The U.S. Foreign Corrupt Practices Act (FCPA);
- The U.S. Bank Secrecy Act (BSA) and related AML regulations;
- The USA PATRIOT Act;
- Applicable global AML/CFT (Combating the Financing of Terrorism) standards from bodies such as FATF.
PROHIBITION ON BRIBERY AND CORRUPTION
Briskpe strictly prohibits:
- Offering, giving, soliciting, or receiving any bribe or improper payment, directly or indirectly;
- Payments or gifts to foreign or domestic government officials to influence decisions or secure business advantages;
- Use of third parties (agents, consultants, vendors) to circumvent anti-bribery laws.
All Briskpe employees, partners, and users must:
- Avoid any conduct that could be perceived as corrupt;
- Report suspected bribery or unethical behavior immediately;
- Cooperate with internal and external investigations into compliance matters.
AML PRACTICES
Briskpe takes a risk-based approach to prevent its platform from being used for money laundering or terrorism financing. Our AML controls include:
- Know Your Customer (KYC) protocols for onboarding;
- Ongoing transaction monitoring to detect suspicious activity;
- Reporting of suspicious transactions to appropriate regulatory bodies, as required;
- Sanctions screening in accordance with OFAC (Office of Foreign Assets Control) guidelines;
- Employee training on AML red flags and escalation procedures;
- Recordkeeping and audit trails for financial transactions as required by U.S. laws.
U.S. SANCTIONS & EXPORT COMPLIANCE
Briskpe complies with all applicable U.S. sanctions programs and export control laws. We do not knowingly do business with:
- Individuals or entities listed on the Specially Designated Nationals (SDN) list;
Countries or regions under comprehensive U.S. sanctions (e.g., North Korea, Iran, etc.).
Updates to this Privacy Policy
We may occasionally update this Privacy Policy. By using our Services after such update, you consent to updates made to this Privacy Policy.
We encourage you to periodically review this Privacy Policy for the latest information on our privacy practices.
Contact Us and Details of Grievance Officer
We understand that you may have questions about this Privacy Policy, on how we process or handle your Customer Information, or may otherwise want to understand these aspects. We welcome you to reach out to us with your queries, grievances, feedback, and comments at
Name: Grievance Handling Team
Email: [email protected]
