Privacy Policy
Your privacy and data security are our top priorities
Last Updated: September 15, 2025
1. Introduction
Welcome to Bharat E-Wallet. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our digital wallet service. Please read this policy carefully. If you do not agree with the terms of this privacy policy, please do not access the service.
Important: We are committed to protecting your personal information and your right to privacy. This policy applies to all information collected through our Bharat E-Wallet service.
2. Information We Collect
2.1 Personal Information
We collect personal information that you voluntarily provide to us when registering for the Bharat E-Wallet service, including:
- Full name and student roll number
- Email address and phone number
- Department and year of study
- Transaction PIN (encrypted and hashed)
- Profile information you choose to provide
2.2 Financial Information
- Wallet balance and transaction history
- Payment methods (processed securely through Razorpay)
- Top-up and spending patterns
- Vendor transaction details
2.3 Technical Information
- Device information and operating system
- IP address and location data
- Usage data and app performance metrics
- Login timestamps and security logs
3. How We Use Your Information
We use the information we collect for the following purposes:
3.1 Service Provision
- Process transactions and maintain wallet balances
- Authenticate users and secure accounts
- Provide customer support and technical assistance
- Send service-related notifications
3.2 Security and Fraud Prevention
- Monitor for suspicious activities
- Verify user identity and prevent unauthorized access
- Comply with legal and regulatory requirements
- Investigate potential security breaches
3.3 Service Improvement
- Analyze usage patterns to improve functionality
- Develop new features and services
- Conduct research and analytics
- Optimize user experience
4. Information Sharing and Disclosure
We do not sell, trade, or rent your personal information to third parties.
4.1 Limited Sharing
We may share your information only in the following circumstances:
- Campus Administration: Transaction data for institutional reporting and compliance
- Vendors: Transaction details necessary for service delivery (amount, timestamp, student ID)
- Payment Processors: Securely processed through Razorpay for top-up transactions
- Legal Requirements: When required by law, court order, or government regulations
- Security: To investigate fraud, security breaches, or policy violations
4.2 Data Protection
All shared data is:
- Minimized to only what is necessary
- Encrypted during transmission
- Subject to strict confidentiality agreements
- Limited to specific business purposes
5. Data Security
We implement comprehensive security measures to protect your information:
5.1 Technical Safeguards
- SHA-256 encryption for PIN storage
- SSL/TLS encryption for data transmission
- Secure database storage with access controls
- Regular security audits and monitoring
5.2 Access Controls
- Multi-factor authentication for admin access
- Role-based access permissions
- Regular access reviews and updates
- Secure API endpoints with rate limiting
5.3 Incident Response
- 24/7 security monitoring
- Immediate response to security incidents
- User notification of any data breaches
- Regular backup and recovery procedures
6. Data Retention
We retain your information for the following periods:
- Account Information: Throughout your student enrollment and 2 years after graduation
- Transaction Records: 7 years for financial compliance and audit purposes
- Security Logs: 1 year for security analysis and incident investigation
- Support Communications: 3 years for service improvement
7. Your Rights
You have the following rights regarding your personal information:
7.1 Access and Control
- Access your personal information and transaction history
- Update or correct inaccurate information
- Request account deactivation
- Download your transaction data
7.2 Privacy Controls
- Manage notification preferences
- Control data sharing settings
- Request data deletion (subject to legal requirements)
- Opt out of non-essential communications
8. Cookies and Tracking
We use cookies and similar technologies to:
- Maintain user sessions and authentication
- Remember user preferences
- Analyze usage patterns and improve services
- Provide security features and fraud prevention
You can control cookie settings through your browser preferences.
9. Third-Party Services
Our service integrates with:
- Razorpay: Payment processing (subject to Razorpay's privacy policy)
- Supabase: Database and authentication services
- Vercel: Application hosting and deployment
These third parties have their own privacy policies and are responsible for their data practices.
10. Contact Information
If you have questions about this Privacy Policy or your personal information, contact us:
- Email: hello@chitti.org
- Phone: +917287025149
- Office: IT Services Department, Administrative Block
- Response Time: Within 48 hours for privacy-related inquiries
11. Policy Updates
We may update this Privacy Policy periodically. When we make changes:
- We will notify users via email and in-app notifications
- Updated policy will be posted on our website
- Continued use of the service constitutes acceptance
- Major changes require explicit user consent