TheLoanMath ("we," "our," or "us") is committed to protecting your personal data and respecting your privacy rights in accordance with the Digital Personal Data Protection Act, 2023 ("DPDP Act") and other applicable Indian laws. This Privacy Policy explains how we collect, use, process, store, and protect your personal data when you use our website and services.
Personal Data We Collect
Data Provided by You (Data Principal)
As a Data Principal under the DPDP Act, you may provide us with the following personal data:
- Contact Information: Name, email address, mobile number
- Financial Information: Loan amount, income details, EMI preferences (for calculation purposes only)
- Demographic Information: Age, occupation, city of residence
- Communication Data: Queries, feedback, and correspondence with us
- Subscription Data: Newsletter preferences and communication choices
Automatically Collected Data
When you visit our website, we automatically collect certain technical information:
- Device Information: IP address, browser type, operating system, device identifiers
- Usage Data: Pages visited, time spent, click patterns, referring websites
- Location Data: General location based on IP address (city/state level)
- Cookie Data: Information collected through cookies and similar technologies
Indian Context
We process personal data of Indian residents in accordance with Indian data protection laws. All financial calculations are performed locally and are not stored permanently on our servers.
Legal Basis for Processing
Under the DPDP Act, we process your personal data based on the following lawful grounds:
Consent
When you voluntarily provide information for our services, subscribe to newsletters, or accept cookies
Legitimate Interest
For website analytics, security, fraud prevention, and service improvement
Legal Obligation
To comply with Indian laws, regulations, and legal processes
Performance of Service
To provide EMI calculations and respond to your queries
How We Use Your Personal Data
We process your personal data for the following specific purposes:
Service Provision
- Provide EMI calculator and financial tools
- Process loan calculations and display results
- Respond to queries and provide customer support
- Maintain and improve website functionality
Communication
- Send newsletters and financial tips (with consent)
- Notify about service updates and new features
- Respond to customer inquiries and feedback
- Send important notices about policy changes
Analytics & Improvement
- Analyze website usage patterns and user behavior
- Improve user experience and website performance
- Conduct research for better financial tools
- Generate anonymized statistical reports
Legal & Security
- Comply with Indian laws and regulations
- Prevent fraud and ensure website security
- Protect our rights and legitimate interests
- Respond to legal requests from authorities
Data Sharing and Disclosure
We do not sell or rent your personal data to third parties. We may share your data only in the following circumstances:
Service Providers (Data Processors)
We may share data with trusted Indian and international service providers who assist us in:
- Web Hosting: Secure hosting of our website and databases
- Analytics: Google Analytics and similar tools for website performance
- Email Services: Newsletter and communication platforms
- Customer Support: Help desk and support ticket systems
All service providers are contractually bound to protect your data and use it only for specified purposes.
Legal Requirements
We may disclose your personal data when required by Indian law or in response to:
- Orders from Indian courts or tribunals
- Requests from Indian government authorities (RBI, IT Ministry, etc.)
- Law enforcement agencies for legitimate investigations
- Compliance with the DPDP Act and other applicable laws
Business Transfers
In case of merger, acquisition, or business transfer, your data may be transferred to the new entity, subject to the same privacy protections and with prior notice to you.
Cookies and Tracking Technologies
We use cookies and similar technologies in compliance with Indian IT Rules. Here's what we use:
Essential Cookies
Required for basic website functionality. These cannot be disabled as they are necessary for the service.
Analytics Cookies
Help us understand user behavior and improve our services. Used with your consent.
Functional Cookies
Remember your preferences and settings for a personalized experience.
Marketing Cookies
Used to deliver relevant content and measure campaign effectiveness (with explicit consent).
Cookie Management
You can manage cookies through your browser settings or our cookie preference center. Note that disabling certain cookies may affect website functionality.
Data Security and Protection
We implement robust security measures to protect your personal data in accordance with Indian cybersecurity standards:
Encryption
SSL/TLS encryption for data transmission and AES encryption for data storage
Secure Infrastructure
Data stored on secure servers with regular security audits and monitoring
Access Controls
Strict access controls with role-based permissions and regular access reviews
Regular Updates
Regular security patches, vulnerability assessments, and compliance audits
Compliance Standards
Our security practices align with:
- Digital Personal Data Protection Act, 2023
- Information Technology Act, 2000 and IT Rules
- RBI Guidelines on Data Protection and Cybersecurity
- ISO 27001 security management standards
Your Rights as Data Principal
Under the DPDP Act, 2023, you have the following rights regarding your personal data:
Right to Information
Know what personal data we have and how it's being processed
Right to Correction
Request correction of inaccurate or incomplete personal data
Right to Erasure
Request deletion of your personal data (subject to legal requirements)
Right to Data Portability
Request transfer of your data to another service provider
Right to Withdraw Consent
Withdraw consent for processing at any time
Right to Grievance Redressal
File complaints with our Grievance Officer or Data Protection Board
How to Exercise Your Rights
To exercise any of these rights, please contact our Grievance Officer using the details provided in the "Contact Us" section. We will respond to your request within the timeframes specified under Indian law.
Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy or as required by Indian law:
- EMI Calculator Data: Calculation inputs are processed in real-time and not stored permanently
- Contact Information: Retained until you withdraw consent or request deletion
- Communication Records: Retained for 3 years for customer service purposes
- Analytics Data: Anonymized data may be retained for statistical analysis
- Legal Compliance: Some data may be retained longer to comply with Indian legal requirements
Children's Privacy
Our services are not intended for children under the age of 18 years. We do not knowingly collect personal data from children. If we become aware that we have collected personal data from a child under 18, we will take immediate steps to delete such information and notify the parent or guardian as required under Indian law.
Parental Rights
Parents or guardians have the right to:
- Request information about their child's data
- Request correction or deletion of their child's data
- Withdraw consent for their child's data processing
Cross-Border Data Transfers
Your personal data may be transferred to and processed in countries outside India for the following purposes:
- Cloud hosting and data storage services
- Analytics and performance monitoring
- Customer support and communication tools
Transfer Safeguards
When transferring data outside India, we ensure:
- Compliance with DPDP Act requirements for cross-border transfers
- Adequate data protection measures in the destination country
- Contractual safeguards with international service providers
- Your explicit consent where required by law
Data Breach Notification
In the event of a personal data breach that may cause harm to you, we will:
- Notify the Data Protection Board of India within 72 hours
- Inform affected individuals without undue delay
- Provide details about the nature of the breach and remedial actions
- Take immediate steps to contain and remedy the breach
Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or applicable Indian laws. We will notify you of material changes by:
- Posting the updated policy on our website with a new "Last updated" date
- Sending email notifications to registered users
- Displaying prominent notices on our website
- Seeking fresh consent where required by law
Your continued use of our services after the effective date of changes constitutes acceptance of the updated Privacy Policy.
Grievance Officer
In accordance with the DPDP Act, we have appointed a Grievance Officer to address your privacy concerns and data protection queries:
Grievance Officer Details
Email: contact@theloanmath.com
Response Time: Within 30 days as per DPDP Act
Contact Information
For any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
