Legal

Privacy Policy

Last updated: January 1, 2025  ·  Effective Date: January 1, 2025

CelerisPay Technologies Private Limited ("CelerisPay", "we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our payment gateway platform, website, and related services (collectively, the "Services").

By accessing or using our Services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not access the Services.

By using our Services, you consent to the collection, use, processing, and sharing of your information as described in this Privacy Policy.

1. Information We Collect

We collect information you provide directly to us, including:

  • Personal Identification Information: Name, email address, phone number, date of birth, and government-issued ID numbers (PAN, Aadhaar) for KYC compliance.
  • Business Information: Business name, type, address, GST number, bank account details, and business registration documents.
  • Financial Information: Bank account details, IFSC codes, and transaction data necessary for payment processing and settlements.
  • Technical Information: IP addresses, device identifiers, browser type, operating system, and usage patterns on our platform.
  • Communication Data: Any messages, emails, or support requests you send to us.

2. How We Use Your Information

We use the information we collect for the following purposes:

  • To provide, maintain, and improve our payment services
  • To process transactions and send related information including payment confirmations and invoices
  • To verify your identity and comply with KYC/AML regulations as mandated by the Reserve Bank of India (RBI)
  • To detect, investigate, and prevent fraudulent transactions and other illegal activities
  • To send you technical notices, security alerts, and support messages
  • To respond to your comments, questions, and requests
  • To send promotional communications (with your consent)
  • To comply with legal obligations and regulatory requirements
  • To generate aggregate, non-identifying data for analytical and business purposes

3. Sharing of Your Information

We do not sell, trade, or rent your personal information. We may share information in the following circumstances:

  • Banking Partners: With banks, payment networks (NPCI, Visa, Mastercard), and financial institutions necessary to process your payments.
  • Regulatory Authorities: With the RBI, NPCI, Income Tax Department, and other regulatory bodies as required by law.
  • Service Providers: With trusted third-party vendors who assist us in operating our platform (cloud hosting, fraud detection, customer support).
  • Legal Requirements: When required by law, court order, or government authority.
  • Business Transfers: In connection with any merger, acquisition, or sale of company assets.

4. Data Security

We implement industry-standard security measures to protect your information:

  • PCI DSS Level 1 certification — the highest standard for payment data security
  • 256-bit SSL/TLS encryption for all data transmitted over our network
  • AES-256 encryption for data stored in our systems
  • Regular security audits, penetration testing, and vulnerability assessments
  • Role-based access controls and multi-factor authentication for system access
  • 24/7 security monitoring and incident response capabilities

5. Data Retention

We retain your personal information for as long as necessary to provide our Services and comply with legal obligations. Financial transaction data is retained for a minimum of 7 years as required by Indian financial regulations. You may request deletion of your account data, subject to legal retention requirements.

6. Your Rights

You have the following rights regarding your personal information:

  • Access: Request a copy of the personal information we hold about you
  • Correction: Request correction of inaccurate or incomplete data
  • Deletion: Request deletion of your personal data (subject to legal obligations)
  • Portability: Request your data in a structured, machine-readable format
  • Opt-out: Unsubscribe from marketing communications at any time

7. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience on our platform. These include essential cookies for platform functionality, analytics cookies to understand usage patterns, and marketing cookies (with your consent). You may disable cookies through your browser settings, though this may affect platform functionality.

8. Third-Party Links

Our platform may contain links to third-party websites. We are not responsible for the privacy practices of such sites and encourage you to review their privacy policies before providing any personal information.

9. Children's Privacy

Our Services are not directed to individuals under the age of 18. We do not knowingly collect personal information from minors. If you become aware that a minor has provided us with personal information, please contact us immediately.

10. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of significant changes via email or a prominent notice on our platform. Your continued use of the Services after such modifications constitutes your acceptance of the updated policy.

11. Marketplace & Vendor Data Processing

CelerisPay operates as a marketplace platform where multiple vendors/service providers may be onboarded to deliver services to customers.

  • We may collect and process personal and financial information of vendors for KYC, onboarding, and settlement purposes
  • Customer and transaction data may be shared with vendors as required to fulfill services
  • Vendor data is processed in compliance with applicable laws and payment regulations
  • All vendors must complete KYC verification before receiving settlements

12. Payment Processing & Fund Flow

  • All payments are processed through authorized payment gateways and banking partners
  • CelerisPay acts only as a technology service provider facilitating transactions
  • We do not store sensitive card details such as CVV, PIN, or full card numbers
  • Funds are settled directly to merchants/vendors as per predefined settlement cycles
  • No fund pooling or misuse is performed by the platform
  • CelerisPay does not at any point take ownership of customer funds and only facilitates the transfer between customers and vendors.

13. Data Storage & Transfer

Your data may be stored and processed on secure servers located in India or other jurisdictions in compliance with applicable data protection laws.

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact our Data Protection Officer:

  • Email: privacy@celeris.co.in
  • Phone: +91 8094 010 261
  • Address: Celeris Sync Innovations Pvt. Ltd., Plot Number 14, Sultan Nagar, Gurjar ki thadi, Jaipur, Rajasthan 302019