Information provided by you
To avail certain services on our OneCard Mobile Application / Website, you are required to provide some personally identifiable information for the registration process, which includes but is not limited to the following:
• Your name
• Email address
• Mobile number
• Permanent Account Number (PAN)
• Date of Birth
While providing your details/documents via the App/Website, including but not limited to personal information as mentioned herein above, you expressly consent to FPL (including its marketing channels and business partners) to contact you through SMS, call and/or e-mail and to follow up with regard to the services provided through the App/Website, for imparting product knowledge, offering promotional offers running on the App/Website & various other offers/services by our business partners.
The App/Website requires you to provide consent for keying in or uploading your personal information, as may be necessary to process your application. Any personal information which requires to be keyed in or uploaded is required for enabling hassle free, faster and paperless (to the extent possible) processing of applications for financial products so opted or availed of by you. You hereby give your consent to FPL to obtain your KYC details from CERSAI CKYC portal.
Information obtained from Credit Information Companies on your behalf
We obtain your Credit Information Aggregates from Credit Information Companies (CICs) on your behalf. By viewing your credit information on the App/Website you hereby consent that we are authorised to share your personal information with Credit Information Companies. By availing your credit information report through our App/Website, you agree that FPL shall be entitled to rely on your authorisation and consent granted by you to us for a period of 12 months from the date on which you avail your credit information report through us.
We may analyse and profile your credit information in order to assist you in being better informed about, understand and manage your credit score/rating, identify and inform you of other credit products that are likely to be suited to your circumstances, to identify whether you may benefit from additional guidance concerning your credit score and steps you can take to improve your score and credit history etc.
Information automatically collected while using the app or website
We strive to keep automatically tracked information to a minimum by obtaining no permissions from the App / Website, unless absolutely necessary to enable proper functioning of the App / Website. However, we may collect information relating to your use of our App / Website such as your IP address, browser type, mobile operating system, manufacturer and model of your mobile device/computer, access time and time spent. We may also collect information about the screens/pages you view within our App / Website and other actions you take while using our App / Website.
We may use third party services for such automatic collection, however no personally identifiable information will be shared with such third parties, unless required under applicable laws.
Use of Personal Information
We shall not transmit, sell or rent the Credit Information Aggregates to any other person and the same cannot be copied or reproduced other than as agreed herein. Credit Information Aggregates provided to FPL are solely the property of you and Credit Information Companies. We may use the information collected for offering some of our credit products and services.
However, we do not share any information with third parties for soliciting products and services offered by them. Information automatically tracked while using the App or Website allows us to collect statistics about your usage, allowing us to deliver a more effective and personalized experience.
We do not share any of your personal information with any third parties except when it is requested or required by law or by any court or governmental agency or authority to disclose, for the purpose of verification of identity, or for the prevention, detection, investigation including cyber incidents, or for prosecution and punishment of offences.
We may need to share limited personal information with our partners who perform services for us (eg. KYC / documents collection, card delivery, Collection Agencies and other related partners, etc) and help us operate our business. We require our partners to safeguard this information and only use your personal information for the purposes we specify.
We implement reasonable security practices and procedures including the International Standard IS/ISO/IEC 27001:2013, Payment Card Industry Data Security Standard (PCI-DSS v 3.2.1), and RBI Cyber Security Framework.
We take appropriate security measures to protect against unauthorised access. These include internal reviews of our data collection, storage and processing practices and security measures, including appropriate encryption and physical security measures to guard against unauthorised access to systems where we store personal data. All information gathered on our App / Website is securely stored within a controlled database. Access to the servers is password protected, controlled, and is strictly limited.
The Credit Information Aggregates shared by you, or received on your behalf shall be destroyed, purged, erased or returned to the Credit Information Companies promptly either when you expressly seek to do so and/or seek to revoke the consent or if it is mandated or intimated by regulators.
We will retain your information for as long as it is necessary for providing you the services available on the App or Website or your request for termination of your account with us, whichever is later. Post termination of your account, we may continue to use your anonymised data aggregated or in combination with anonymised data of other users.
We use this aggregated anonymised data for data analysis, profiling and research purposes. We may keep your contact information along with your application details (if any) for fraud prevention purposes and for the exercise/ defense of a legal claim or for providing evidence in legal proceeding(s) if required.
If you wish to review, correct or rectify your sensitive personal information or withdraw your consent for processing your sensitive personal information, you may submit a request at firstname.lastname@example.org. However, we will continue to retain sensitive personal information as per the applicable laws.
This information may include Internet Protocol (IP) addresses, browser type, Internet Service Provider (ISP), referring/exit pages, operating system, date/time stamp, and/or clickstream data. We may use the collected log information about you to improve services offered to you, to improve marketing, analytics, or App / Website functionality.
Confidentiality of your account
Cookies and Do Not Track / Incognito mode settings
Grievance Redressal Policy