Privacy Policy

Introduction

Baldor Technologies Pvt. Ltd (“IDfy and CrimeCheck”) respects your privacy and is committed to protecting your personal data. For the purpose of this Policy, “Personal Data” means any data about an individual who is identifiable by or in relation to such data, including name, email address, address, government identification documents, etc.

This Privacy Policy (“Policy”) explains how IDfy collects, uses, discloses, and safeguards your information when you visit IDfy’s website [www.idfy.com] (“Website”).

PLEASE READ THIS POLICY CAREFULLY TO FULLY UNDERSTAND THE NATURE AND PURPOSE OF GATHERING PERSONAL DATA, USAGE, DISCLOSURE, SECURITY PROCEDURES AND SHARING OF SUCH PERSONAL DATA.

If you do not agree with this Policy, do not access or use the Website or interact with any other aspect of IDfy’s business.

Purpose

The purpose of this Privacy Policy is to outline Baldor’s commitment to safeguarding Personal Data and to define the principles and practices followed to ensure lawful, secure, and transparent processing on behalf of our Clients.

Scope

This Policy applies to all Personal Data that Baldor processes on behalf of our Clients in the course of delivering our services.

Policy Statement

This Policy applies to all users of the Website and covers:

• Information collected through web forms, cookies, and analytics tools




• Communication through email or other online contact methods




• Use of IDfy’s products, demos, and services accessed via the Website

As a Processor

Providing Services: IDfy provides a range of background verification and allied services (including but not limited to KYC, KYB, risk assessment and digital onboarding) for its Clients. IDfy processes all Personal Data shared by or on behalf of the Clients as per the instructions of the Clients. Please contact the Clients for specific details of the Personal Data collected and the corresponding Purpose for such processing. IDfy uses such Personal Data to comply with the Client’s instructions, including:

• Conducting background verification including employment, education, criminal history, address verification etc.




• Conducting Automated document verification, identity checks and risk-assessment.




• Conducting identity and address verification through remote live video calls.




• Conducting financial checks, including bank statement analysis, tax registrations.

IDfy collects your Personal Data from several sources:

• Directly: This includes any Personal Data you share with us through the Website or other means, such as when you create an account, enter into a contract, or directly communicate with customer support.




• Automatically: When you use the Website or IDfy Services, cookies and similar technologies are used to automatically collect certain technical and behavioural data about you, including your Personal Data, that helps IDfy in improving your experience.




• Third Parties: IDfy may receive Personal Data about you from external sources such as analytics providers, marketing platforms, social media campaigns, events etc.

The Personal Data processed depends on the activity and the purpose for which the such Personal Data is used:

• Browsing the Website: IDfy collects and processes Personal Data to administer the Website, to customise user experiences, to conduct data analysis and monitor usage trends, to maintain and ensure security and to co-operate with public authorities, courts, regulatory and other supervisory bodies in responding to legal requests, resolve disputes, enforce policies or otherwise protect IDfy’s business interests. To this end IDfy collects:

  
  

  • Usage and interaction data: Personal Data about your activity on our Website, such as pages visited, time spent, frequency and patterns of use, storage and interactions.

  
  

  • Website and configuration preferences: Your settings, preferences, and custom configurations within the Website.

  
  

  • Technical information: Device details, IP address, browser type, operating system, general geographic location (based on IP address), and data necessary for Website functionality.

  
  

  • Communication preferences and support: Your preferences for notifications and any information from support tickets or other interactions with customer support.

  
  
  • Cookies and tracking technologies: Data gathered automatically through cookies, pixels, tags, and similar tools, for tracking and improving user experience.



• Account Management: IDfy collects and processes a Client’s Personal Data to provide the services, set up and maintain Client accounts and credentials, send alerts (including updates, features and maintenance), process payments and maintain billing records, improve the Website and develop new products/services and comply with legal obligations, collaborate with authorities, resolve disputes, manage risks, and enforce policies. To this end IDfy collects:

  
  
  • Contact information: Name, email address, phone number, name of your organization.
  
  
  • Account credentials: Username, password, and any additional login information.
  
  
  • Website preferences and settings: Customized configurations for your Website use.



• Contacting Us: When you reach out to IDfy as a prospective or current Client through the Website, for a demo, query, to file a complaint regarding our services or in any other form, IDfy processes such information to verify your identity, respond to such request, send transactional or marketing communication, collect feedback, improve and enhance services and user experience and comply with legal obligations, collaborate with authorities, resolve disputes, manage risks, and enforce policies. To this end IDfy collects the following Personal Data that is voluntarily provided by you:

  
  
  • Contact details: Name, Mobile Number, Company Email, Company Name, Service Interests (which services you are interested in) and Additional Requirements (any extra information you specify)
  
  
  • Personal Data from interactions with our representatives: This may include call recordings or transcripts where legally permitted.

IDfy uses the collected data to:

• Respond to your inquiries and provide requested services




• Improve Website functionality and user experience




• Send updates, newsletters, and marketing communications (with opt-out)




• Comply with applicable laws and regulatory obligations

IDfy may share your Personal Data with third parties in accordance with this policy or as required by law.

• Business Administration: To enable IDfy to provide services, Personal Data may be shared by IDfy either with its own employees, officers, agents, directors other corporate entities and affiliates, or unaffiliated third party service providers (both in India and outside India) working on IDfy’s behalf to provide services, and all other agencies from which relevant data or responses are to be obtained. This includes service providers for cloud services, payments, document signing, etc. (both in India and outside India).




• Provision of Services for the Purpose: To enable IDfy to provide services in relation to the Purpose, Personal Data may be shared by IDfy either with its own employees, officers, agents, and directors other corporate entities and affiliates, or unaffiliated third party service providers (both in India and outside India) working on IDfy’s behalf to provide the service in relation to the Purpose, and all other agencies from which relevant data or responses are to be obtained. This includes service providers for as cloud services, payments, document signing, etc. (both in India and outside India), on a ‘need-to-know’ basis, for the purpose of verifying the authenticity of the Personal Data/ for the purpose of undertaking the verification and submitting a report, which may be used for the Purpose.




• Legal and Regulatory Compliance: IDfy may disclose Personal Data if required to do so by law or upon the advice of its professional advisors, such as legal counsel, that such disclosure is reasonably necessary to respond to:

  • court orders, or other legal process, or third-party rights owners; or
  
  
  • law enforcement offices, and / or government agencies mandated under the law to obtain such Personal Data.



• Business Restructuring: In case of an amalgamation, merger, acquisition or business transfer,IDfy will transfer all your Personal Data to the acquirer.




• With Consent: If you provide explicit consent or make a specific request, IDfy may share your Personal Data with other parties for purposes outside the scope of this Policy.

Personal Data shared with clients or partners in the course of providing our services may be subject to their respective privacy policies and data handling practices. IDfy does not control and is not responsible for the privacy practices of third parties. We recommend that individuals review the privacy policies of such third parties to understand how their information may be collected, used, or disclosed.

• IDfy retains your Personal Data only as long as necessary to fulfil the purpose(s) for which it was collected, such as:

  
  

  • to provide the services or functionality of the Website

  
  

  • IDfy may further retain and use this Personal Data as necessary to comply with legal obligations, maintain accurate accounting, financial and other operational records,resolve disputes, and enforce agreements.




• While IDfy works to fulfil deletion requests, it may retain the same where required to fulfil:

  
  

  Contractual obligations: Completing contractual obligations or addressing support queries.

  
  

  Fraud prevention and legal claims: Preventing fraud, resolving complaints, and addressing inquiries, or exercising/defending legal claims.

  
  

  Legal compliance: Meeting ongoing legal obligations, exercising rights, or resolving disputes.




• IDfy may use anonymized or aggregated data derived from your use of its services and Website for statistical purposes, service improvement, research, and other lawful uses. This aggregated data is not considered Personal Data.

Once no longer needed, IDfy securely deletes or anonymizes your data. Some data may be retained longer if required by law or to maintain audit trails, as is common in the KYC/KYB domain.

• IDfy has taken appropriate steps to protect the security of Personal Data and to ensure that your preferences for its intended use are followed. IDfy takes strong security measures to protect your Personal Data from loss, misuse, unauthorised access or disclosure, alteration, or destruction, including compliance with ISO 27001 and SOC 2 Type II.


• IDfy prioritises the confidentiality and security of your Personal Data. As a result, it uses industry standards as well as physical, technical, and administrative security measures to keep Personal Data confidential and secure, and IDfy will not share your Personal Data with third parties unless otherwise specified in this Policy. Please be aware, however, that while IDfy strives to protect Personal Data and privacy, by using the Website, users accept the inherent security implications of data transmission over the internet and the world wide web, which cannot always be guaranteed to be completely secure, and thus there will always be some inherent risks associated with using the Website. Users are responsible for safeguarding the login and password records for their accounts. IDfy will evaluate this necessity on an annual basis, taking into account your privacy and IDfy's relationship, as well as the applicable legislation.

• You have the right to review your Personal Data submitted by you on the Website and to access / update / correct / delete any Personal Data provided by you directly on the mentioned website. You hereby understand that any such access/updating/modification or deletion may affect your ability to use the Website. Further, it may affect IDfy’s ability to provide its services to you.


• IDfy reserves the right to verify and authenticate your identity and your account information and/or payment information in order to ensure accurate delivery of services. Access to or correction, updation or deletion of your Personal Data may be denied or limited by IDfy, if it would violate another person’s rights and/or IDfy's client's rights based on IDfy's agreement with its Client and/or is not otherwise permitted by Applicable Law.

If you need to access, update, correct or delete your Personal Data that IDfy may have collected directly from you via the website to offer you personalized services and offers, you may send such requests to IDfy on the email address prescribed below, citing the reason for such request of Personal Data. IDfy will take all reasonable efforts to incorporate the changes within a reasonable period of time.

To enhance your experience on this website, IDfy uses a feature on your Internet browser called a “cookie”. Cookies are small files that your web browser places on your computer’s hard drive. IDfy uses cookies for remembering usernames and passwords and preferences, tracking click streams, and for load balancing. Because of IDfy’s use of cookies, IDfy can deliver faster service, consistent, updated results, and a more personalized website experience. You have the option of setting your browser to reject cookies. However, doing this will hinder performance and negatively impact your experience on the website.

Please be aware that IDfy’s web sites may contain links to other sites that are not governed by this Policy but by their own privacy statements that may differ from this Policy. We encourage you to reviewthe privacy policy of each website visited before disclosing any Personal Data.

The Website is not intended for children under the age of 18. We do not knowingly collect Personal Data from minors.

• IDfy may change this Policy from time to time at its discretion. The date of the Policy is indicated at the top of the Policy. You may review the Policy periodically to understand the Privacy protection offered by IDfy for your Personal Data.


• If you have any suggestions or questions, you may contact IDfy’s Grievance Officer.

• Should you have any complaint or grievance about the manner in which IDfy receives or processes your Personal Data, you may write to the Grievance Officer, whose details are provided below. IDfy is committed to resolving any such grievances in an expeditious and effective manner.


• Details of IDfy’s Grievance Officer:

  Name: Bhakti Dharod

  Office Address: Skyline Icon , 8th Floor, Unit no. 801 - 804, Chimat Pada, Marol, Andheri
  East, Mumbai – 400059, Maharashtra, India

  Email Address: grievanceofficer@idfy.com

  Phone Number: 022-49147777



• If you remain unsatisfied with our response, you may escalate the complaint to the Data Protection Board of India. The Board is empowered to handle such grievances and provide final resolution.

• IDfy has appointed a Data Protection Officer (DPO) responsible for overseeing the implementation of the organization’s data protection framework and ensuring ongoing compliance with applicable data protection laws and regulations. The DPO ensures that all processing of Personal Data is conducted lawfully, fairly, and securely, and serves as the designated point of contact for data subjects and regulatory authorities on all matters relating to data protection and privacy compliance.


• Details of IDfy’s Data Protection Officer:

Name: Pavankumar Shukla

Office Address: Skyline Icon , 8th Floor, Unit no. 801 - 804, Chimat Pada, Marol, Andheri
East, Mumbai – 400059, Maharashtra, India

Email Address: dpo.india@idfy.com