Privacy Policy
At Credence Strategies, we hold ourselves to the highest standards of data protection. This policy outlines our commitment to your privacy under Indian regulatory frameworks.
1. Introduction
Credence Strategies Private Limited ("Credence Strategies", "we", "us", or "our") is committed to protecting your privacy. This Policy explains how we collect, use, store, share, and protect your personal information when you visit https://thecredenc.com or use our investor platform and services.
This Policy complies with India's Digital Personal Data Protection Act 2023 (DPDPA), the Information Technology Act 2000, the IT (SPDI) Rules 2011, and applicable FEMA and PMLA regulations.
2. Information We Collect
2.1 Information You Provide Directly
- Full name, date of birth, and nationality
- Contact details: email address, phone number, and postal address
- PAN card, Aadhaar, passport, or other government-issued identification
- Financial information: bank account details, investment preferences, and asset details
- KYC documentation as required by applicable law
- Communications you send via email, contact forms, or otherwise
2.2 Information Collected Automatically
- IP address, browser type, and device information
- Pages visited, time spent, and navigation patterns on our website
- Cookies and similar tracking technologies (see Section 6)
- Login timestamps and platform activity logs
2.3 Information from Third Parties
We may receive information from banks, financial institutions, property registries, credit bureaus, or other service providers as part of our KYC and due diligence processes.
3. How We Use Your Information
We process your personal data for the following purposes:
4. Legal Basis for Processing
5. Data Sharing & Disclosure
We do not sell, rent, or trade your personal information. We may share your data only with:
7. Data Retention
We retain your personal data for as long as necessary to fulfil the purposes in this Policy and as required by applicable law:
- KYC & Financial RecordsMinimum 5 years (PMLA regulations)
- Account DataDuration of relationship + 3 years
- Marketing DataUntil consent withdrawal
- Website LogsUp to 12 months
After the applicable retention period, data is securely deleted or anonymized.
8. Data Security
We implement appropriate technical and organizational security measures to protect your personal data, including:
In the event of a data breach, we will notify affected users and relevant authorities as required under applicable Indian law.
9. Your Rights
Subject to applicable Indian law, you have the following rights:
10. International Data Transfers
As a service provider to NRI clients globally, your personal data may be transferred outside India. We ensure all such transfers comply with applicable Indian data protection regulations and that adequate contractual safeguards are in place.
11. Children's Privacy
Our Services are not directed at individuals under the age of 18. We do not knowingly collect personal data from minors. If you believe we have inadvertently collected such information, please contact us immediately.
12. Changes to This Policy
We may update this Privacy Policy periodically. We will notify you of material changes by posting the updated Policy on our website with a new effective date. Continued use of our Services constitutes acceptance of the updated Policy.
13. Grievance Officer
In accordance with the Information Technology Act, 2000 and applicable rules, we have appointed a Grievance Officer for data privacy concerns:
Effective Date: April 21, 2026
"Built on trust, secured with integrity—Credence Strategies."