Privacy Policy

Last updated: 2026-05-03 | Dhanam Investment and Finance Private Limited

Information We Collect

We collect personal information necessary for locker rental agreements and identity verification:

• Identity: name, date of birth, gender, residential and permanent address
• Contact: phone number, email address
• KYC documents: Aadhaar number and photograph, PAN number and photograph, passport-size photograph, signature image
• Financial: bank account details (used solely for refund of security deposit), nominee details
• Service usage: appointment history, payment history, locker access records, app interaction events
• Device: Firebase Cloud Messaging (FCM) push token, Firebase Installation ID, app version, OS version, crash logs

How We Use Your Information

Your information is used to: manage your locker rental agreement, process payments and deposits, verify your identity for locker access, send appointment confirmations and transactional notifications, generate lease agreements, deliver push notifications, diagnose app crashes, and comply with regulatory requirements (Reserve Bank of India guidelines, Income Tax Act, Prevention of Money Laundering Act).

Data Storage and Security

All data is stored on secure servers within India. Communications between the app and our servers are encrypted in transit using HTTPS / TLS 1.2+. Passwords are hashed using industry-standard bcrypt; we never store plain-text passwords. Authentication uses JSON Web Tokens (JWT). KYC documents (Aadhaar, PAN, agreements) are stored in encrypted Microsoft SharePoint repositories within Dhanam's tenant.

Service Providers and Data Sharing

We do not sell your personal data. We share specific data with the following service providers strictly for the purposes listed:

• Digio (Digio API Services Pvt Ltd): a UIDAI-licensed Authentication User Agency / KYC User Agency. Receives Aadhaar number, PAN, name, and address to perform Aadhaar-OTP-based electronic signature on locker rental agreements. Governed by the Aadhaar (Authentication and Offline Verification) Regulations, 2021.
• Microsoft Graph / SharePoint Online: stores KYC document photographs (Aadhaar/PAN/passport photo) in an encrypted Microsoft 365 tenant owned by Dhanam.
• WappCloud Technologies: WhatsApp Business API provider. Receives phone number and tenant name to deliver appointment reminders, payment receipts, and transactional notifications.
• Google Firebase (Cloud Messaging, Crashlytics, Analytics): receives device push token, app interaction events, and crash diagnostics. No personally identifying information is sent to Firebase. Governed by Google's Privacy Policy.
• Email (Gmail SMTP): receives email address to deliver transactional emails such as appointment confirmations.

We may also disclose data when required by Indian law, court order, or to law enforcement and regulatory authorities (RBI, Income Tax Department, Financial Intelligence Unit).

Aadhaar Data Handling

We collect and process Aadhaar information solely through Digio, our UIDAI-licensed KYC partner, and only for the purpose of electronic signature on locker rental agreements. We do not store the raw Aadhaar number after the signing transaction completes; only a redacted reference (last 4 digits) is retained for audit. We comply with the Aadhaar Act, 2016 and UIDAI regulations.

Data Retention

Your personal data is retained for the duration of your locker rental agreement plus seven (7) years thereafter, as required by Section 12A of the Banking Regulation Act, 1949 and Income Tax record-keeping rules. After that period, data is permanently deleted unless an active dispute, audit, or law-enforcement matter requires longer retention. You may request earlier deletion subject to these regulatory minimums.

Your Rights

You have the right to:

• Access your data — view and download your records via the customer portal
• Request corrections — through the app or by contacting support
• Export your data — request a portable copy via support
• Request deletion — see the "Account Deletion" section below
• Withdraw consent — by closing your account; note that some legally-mandated records will be retained for the regulatory period
• Lodge a complaint — with our Grievance Officer or with the relevant data-protection authority

Account Deletion

You can request deletion of your account and personal data:

• From the app: log in as a customer → Request Closure
• From the public web: visit our account deletion page — no app install required

Deletion requests are processed within 30 days. Records subject to regulatory retention (see Data Retention above) are anonymised rather than fully deleted; we will confirm what specifically remains in an audit-trail form.

Children's Privacy

Dhanamfin is not directed at children under 18. We do not knowingly collect personal information from minors. Locker rental agreements require the customer to be 18+ and KYC-verified.

Changes to this Policy

We may update this policy. Material changes will be communicated via in-app notification at least 14 days before they take effect. The "Last updated" date at the top reflects the latest revision.

Contact & Grievance

For privacy concerns, data access requests, or complaints:

Email: info@dhanamfinance.com
Postal: Dhanam Investment and Finance Private Limited
Door No. 22/3, Nehru Nagar, 2nd St, Behind CMS School,
Ganapathy, Coimbatore - 641 006, Tamil Nadu, India