Privacy Policy
PRIVACY POLICY
Teenrang Business Management Pvt. Ltd. and its Affiliates (the “Company,” “we,” “us,” or “our”) have prepared this Privacy Policy (this “Policy”) to explain which Personal Data (defined below) we collect, how we use and share that data, and your choices concerning our data practices when you engage with our website – https://finvey.com (the “Website”) or Services (defined below).
We operate globally with our offices in India, Dubai and the United Kingdom. Most of our data processing activities are carried out in India, in compliance with applicable data protection laws. We do not sell your Personal Data, nor do we intend to do so. We do not give access to your Personal Data to third parties except to sub-processors to assist us in the provision of our Services to you.
Please read this Policy carefully to understand our policies and practices regarding your information and how we will treat it. By accessing or using our Website and Services, you agree to accept all the terms contained in this Policy and acknowledge and agree with the practices described herein. If you do not agree with the terms of this Policy, please do not access and use our Website and Services.
If you have any questions regarding this Policy, please send us an email at contact@finvey.com.
- SCOPE OF THIS POLICY
This Policy applies to:
- Clients (individuals and organizations) and their employees, personnel, affiliates, etc.;
- Website visitors;
- Vendors and service providers;
- Job applicants and employees; and
- Any third party whose data is collected in connection with our Services.
(collectively and/or individually referred to as “you”)
- PERSONAL DATA WE COLLECT
- We collect the following categories of information that alone or in combination with other information in our possession could be used to identify you (“Personal Data”). The information so collected will be stored on our servers. You are able to change your personal information via email by contacting us at contact@finvey.com.
- Identifiers/ Biographical Information: Unique personal identifiers, including, but not limited to, your IP address, your email address, your phone number, age, gender, PAN, passport number, national ID, tax identification numbers, or other identifiers.
- Financial Data: Bank account details, transaction history, salary and payroll data
- Business Information: Company incorporation documents, compliance records, shareholding details
- Employment Data: Employee records, salary structures, leaves, statutory filings
- Usage Data: Browser type, pages visited, access times
- Communication Records: Emails, call logs, and other communication with our team. We may also collect information when you contact us with questions or concerns and when you voluntarily respond to questionnaires, surveys, or requests for market research seeking your opinion and feedback. Providing this information is optional to you.
- Social Media Data: We have pages on social media sites like Facebook, Twitter, and LinkedIn (“Social Media Pages”). When you interact with our Social Media Pages, we will collect Personal Data that you elect to provide to us, such as your contact details. In addition, the companies that host our Social Media Pages may provide us with aggregate information and analytics regarding the use of our Social Media Pages.
- We collect data either directly from you, through your employer or service engagement, or via third-party sources (with necessary consent).
- We also draw inferences from the above data elements
- HOW WE COLLECT INFORMATION
- We collect personal information from you, inter alia, in the following ways:
- When you provide us with the information;
- When you post information to be published or displayed on our Website and the Social Media Page;
- We collect personal information from our customers availing our Services. Our customers are responsible for collecting consent for such personal information as per applicable law;
- We collect personal information when you visit our website, read our marketing communications, or engage with our brand as a customer or potential customer. We collect personal information directly from you when you choose to share personal information with us. We also automatically collect personal information when you visit and browse our website. We collect personal information in this context to help visitors to our website, customers, and potential customers understand our products and services.
- Our Site uses third-party analytics and tracking tools, including Google Analytics, to better understand who is using our website and how to improve the effectiveness of our content. We and our third-party analytics and tracking partners and service providers, including Google Analytics (opt-out here), may use a variety of technologies, such as cookies, tags, SDKs, or scripts, to collect information about your activity and use of our Site, such as the time, place, and frequency of your visits to our website. We may also use session replay software to capture and record information concerning your interaction with our website, including keystrokes, mouse movements, and form field entries;
- We may use aggregate information that we receive from publicly available sources, social media companies, census data providers, public directories, etc. to provide our Services;
- We may place cookies and use similar online tracking technologies on the Website, and in email communications, in accordance with this Policy and with your permission where required by applicable law.
- We may combine the personal information we receive from and about you from various sources, including personal information that identifies you personally or is associated with your device or internet activity.
- OUR COOKIE POLICY
- We use cookies and similar technologies on the Website to enhance user experience, analyze traffic, and personalize content. By using the Website, you agree to our use of cookies as described in this Policy.
- You can manage your cookie preferences through your browser settings, where you can delete or block cookies. However, disabling essential cookies may affect your ability to use certain features on the Website
- Changes to this Policy: We may update this Policy from time to time. Any changes will be posted on this page, and we encourage you to review it periodically to stay informed about our cookie practices.
- LEGAL BASIS FOR PROCESSING YOUR PERSONAL DATA
Depending on your jurisdiction, we may process your Personal Data based on one or more of the following legal grounds:
- Consent
- Performance of Services
- Compliance with a legal obligation
- Legitimate business interests
- Establishment, exercise, or defense of legal claims
- HOW WE USE PERSONAL DATA
- Under data protection laws, we can only use the Personal Data if we have a proper reason for doing so, for example, to comply with our legal and regulatory obligations; for the performance of our Terms of Service (“Terms”) with you; for our legitimate interests or those of a third party; or where you have given consent. A legitimate interest is when we have a business or commercial reason to use the Personal Data, so long as this is not overridden by your own rights and interests.
- We use the Personal Data, inter alia, for the following purposes:
- Providing financial, legal, tax, CS and payroll services and/or conducting due diligence or compliance checks (“Services”);
- Performing internal administration, invoicing and business operations;
- To process payments;
- To respond to your inquiries, comments, feedback, or questions;
- To send administrative information to you, for example, information regarding the Service and changes to our terms, conditions, and policies;
- We analyze your interaction with our Service to enhance efficiency and deliver the best possible experience. This is in our legitimate interest and that of third parties. Additionally, we continuously maintain and improve the Service’s content and functionality, and develop new products and services, all aimed at optimizing our Service delivery to you.
- To prevent fraud, criminal activity, or misuse of our Service, and to ensure the security of our IT systems, architecture, and networks.
- To comply with legal obligations and legal processes.
- To protect our rights, privacy, safety, or property, and/or that of our affiliates, you, or other third parties.
- To tell you about products or services we believe may be of interest to you.
- We may aggregate the Personal Data and use the aggregated information to analyze the effectiveness of our Service, to improve and add features to our Service, and for other similar purposes. In addition, from time to time, we may analyze the general behavior and characteristics of users of our Services and share aggregated information like general user statistics with prospective business partners. We may collect aggregated information through the Service, through cookies, and through other means described in this Policy.
- We may use your Personal Data to contact you to tell you about products or services we believe may be of interest to you. For instance, if you elect to provide your email or telephone number, we may use that information to send you special offers. We have a legitimate interest in processing your personal data for promotional purposes. This means we do not usually need your consent to send you promotional communications. However, where consent is needed (for example because you are based in the United Kingdom or European Union), we will ask for this consent separately and clearly. We will always treat your personal data with the utmost respect and never sell it to other organizations outside our group companies for marketing purposes. You may opt out of receiving emails by following the instructions contained in each promotional email we send you. To the extent you create an account, you can also control the marketing emails and/or text messages you receive by updating your settings through your account. In addition, if at any time you do not wish to receive future marketing communications, you may contact us. If you unsubscribe from our marketing lists, you will no longer receive marketing communications but we will continue to contact you regarding management of your account, as applicable, other administrative matters, and to respond to your requests.
- Sharing & Disclosure of Personal Data: In certain circumstances, we may share your Personal Data with third parties without further notice to you, unless required by the law, as set forth below:
- Group Companies:We may disclose your personal information within our group of companies for the purposes identified above.
- Vendors & Service Providers: To assist us in meeting business operations needs and to perform certain services and functions, we may share Personal Data with vendors and service providers, including providers of hosting services, cloud services, and other information technology services providers, email communication software and email newsletter services, advertising and marketing services, payment processors, customer relationship management and customer support services, and web analytics services. Pursuant to our instructions, these parties will access, process, or store Personal Data in the course of performing their duties to us. We only allow our service providers to handle your Personal Data if we are satisfied they take appropriate measures to protect Your Personal Data. We also impose contractual obligations on service providers to ensure they can only use your Personal Data to provide services to us and to you.
- Business Transfers: If we are involved in a merger, acquisition, financing due diligence, reorganization, bankruptcy, receivership, sale of all or a portion of our assets, or transition of service to another provider (collectively a “Transaction”), your Personal Data and other information may be shared in the diligence process with counterparties and others assisting with the Transaction and transferred to a successor or affiliate as part of that Transaction along with other assets. Usually, information will be anonymised but this may not always be possible. However, the recipient of the information will be bound by confidentiality obligations.
- Legal Requirements: If required to do so by law or in the good faith belief that such action is necessary to (a) comply with a legal obligation, including to meet national security or law enforcement requirements; (b) protect and defend our rights or property; (c) prevent fraud; (d) act in urgent circumstances to protect the personal safety of users of the Services, or the public; or (e) protect against legal liability. We may disclose and exchange information with law enforcement agencies and regulatory bodies to comply with our legal and regulatory obligations.
- Additional Data Sharing: We may also disclose your personal information to other third parties with your consent or if it believes that it will protect us, you, or any other person or third party or as we believe necessary or appropriate to: (a) comply with applicable law; (b) enforce our terms and conditions; (c) protect our operations; (d) protect our rights, privacy, safety, or property, and/or those of you or others; or (e) allow us to pursue available remedies or limit damages that we may sustain
- Some Personal Data may be transferred and stored outside your home country, including India, the UAE, the UK, or other jurisdictions. We ensure appropriate safeguards (such as contractual clauses or compliance with adequacy decisions) are in place for international transfers.
- Data Retention: We retain Personal Data only as long as necessary to fulfil the purposes for which it was collected or to meet legal, regulatory, and contractual requirements. This duration may vary depending on the type of data and jurisdiction.
- DATA SECURITY
- We implement reasonable administrative, technical, and physical security measures to protect Personal Data from unauthorized access, loss, misuse, or disclosure. However, no method of transmission over the internet is completely secure.
- In the event of a Personal Data breach, we will notify you within 72 (Seventy-Two) hours via (a) email; and/or (b) our notification system on our Website. We agree to the individual redress principle, which requires that individuals have a right to pursue legally enforceable rights against data collectors and processors who fail to adhere to the applicable laws. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or a government agency to investigate and/or prosecute non-compliance by data processors.
- In addition to following federal and state privacy and data regulations, we abide by the following principles to avoid the misuse of our data:
- We do not accept and will terminate a client if we learn of any dishonest or illegal practices on their part.
- We do not allow the use of our data by law enforcement unless required by the applicable law.
- We do not allow the use of our data for target advertising for specific categories (for example, alcohol and casinos) to people below the legal age or to create audiences for locations primarily visited by children (such as preschools, playgrounds, etc.).
- We do not allow the use of our data to target vulnerable or sensitive communities (for example, by political, religious, sexual orientation, or medical affiliation), or to identify those within sensitive areas (e.g. conflict zones, hospitals, protests, religious sites, clinics, etc) or to places.
- GENERAL
- Children: Our Service is not directed to children who are under the age of 16 (Sixteen). We do not knowingly collect Personal Data from children under the age of 16 (Sixteen). If you have reason to believe that a child under the age of 16 (Sixteen) has provided Personal Data to us through the Service please contact us and we will endeavor to delete that information from our databases.
- Links to other websites: The Website may contain links to third-party websites, and applications (including social media pages, integrated social media tools, or “plug-ins,” such as social networking tools) not operated or controlled by us (“Third-Party Sites”). The information that you share with Third-Party Sites will be governed by the specific privacy policies and terms of service of such Third-Party Sites and not by this Policy. By providing these links we do not imply that we endorse or have reviewed these sites. Please contact the Third-Party Sites directly for information on their privacy practices and policies.
- Security: You use the Service at your own risk. We have appropriate security measures to prevent Personal Data from being accidentally lost, used, or accessed unlawfully. We limit access to your Personal Data to those who have a genuine business need to access it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality. We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so. However, no Internet or e-mail transmission is ever fully secure or error-free. In particular, e-mails sent to or from us may not be secure. Therefore, you should take special care in deciding what information you send to us via the Service or e-mail. Please keep this in mind when disclosing any Personal Data to us via the Internet. In addition, we are not responsible for the circumvention of any privacy settings or security measures contained on the Service, or third-party websites.
- Your choices: In certain circumstances providing Personal Data is optional. However, if you choose not to provide Personal Data that is needed to use some features of our Service, you may be unable to use those features. If you have created an account, you can contact us to ask us to update or correct your Personal Data.
- Your Rights: Depending on your jurisdiction, you may have the (a) right to access your Personal Data; (b) right to rectify inaccurate data; (c) right to erase data (subject to legal exceptions); (d) right to restrict or object to processing; (e) right to data portability; and/or (f) right to lodge a complaint with a data protection authority. To exercise any of these rights, please contact us at the details below
- Changes to this Policy: The Service and our business may change from time to time. As a result, we may change this Policy at any time. When we do, we will post an updated version on this page, unless another type of notice is required by the applicable laws. By continuing to use our Service or providing us with Personal Data after we have posted an updated Privacy Policy, or notified you by other means if applicable, you consent to the revised Privacy Policy and practices described in it.
- Contact us: If you have any questions about this Policy or information practices, please feel free to contact us at our designated request address: contact@finvey.com.
PLEASE NOTE: IF YOU USE OUR WEBSITE AND/OR SERVICE, YOU HAVE AGREED TO AND ACCEPTED THE PRACTICES DESCRIBED IN THIS POLICY AND THE TERMS & CONDITIONS SET FORTH IN OUR TERMS, AS APPLICABLE. IF YOU DO NOT AGREE WITH THE TERMS OF THIS POLICY OR OUR TERMS, PLEASE DO NOT USE OUR WEBSITE AND SERVICE.
FOR CALIFORNIA RESIDENTS:
This Section supplements the information contained in our Policy and applies solely to all visitors, users, and others to our Website, who reside in California.
- Collection, Disclosure & Use of Personal Data: The categories of Personal Data we have collected in the preceding 12 (Twelve) months are described above in the “Personal Data We Collect” section. In the preceding 12 (Twelve) months, we have disclosed for business purposes each of the categories identified in that section to the third parties identified in the “Sharing & Disclosure of Personal Data” sections. The business and commercial purposes for collecting Personal Data are described in the “How We Use Personal Data” section. We do not sell your Personal Data.
- Privacy Rights: To the extent provided for by law and subject to applicable exceptions, California residents have the following privacy rights in relation to the Personal Data
- We collect: The right to know what Personal Data we have collected and how we have used and disclosed that Personal Information; The right to request deletion of your Personal Data; The right to be free from discrimination relating to the exercise of any of your privacy rights.
- Exercising Your Rights: California residents or their authorized agents can exercise the above privacy rights and request alternative forms of this Policy by contacting us.
- Verification: In order to protect your Personal Data from unauthorized access or deletion, we may require you to verify your identity in connection with a request to know or delete Personal Data. If you do not have an account with us, or if we suspect fraudulent or malicious activity, we may ask you to provide additional Personal Data for verification. If you submit a request through an authorized agent, the agent must present signed written permission to act on your behalf and you may also be required to independently verify your identity with us. If we cannot verify your identity, we will not provide or delete your Personal Data.
Note that (a) if we delete your Personal Data as requested, we will no longer be able to provide our Services to you; and (b) We may need to keep such Personal Data for a while during the shutting down and billing process.
FOR OUR CANADIAN USERS
This Section supplements the information contained in our Policy and applies solely to all visitors, users, and others to our Website, who reside in Canada (“Consumers” or “you”). We ensure compliance with the Personal Information Protection and Electronics Document Act of 2000 (“PIPEDA”). Any terms defined in the PIPEDA have the same meaning when used in this Section.
- Definition of Personal Data/ Information:Any information about an identifiable individual. Whatever may be the physical form or characteristics of a particular regime for “business contact information” (name, position, title, address, professional phone number, etc.)
- Right to Access Personal Data/ Information:You can request to access the Personal Data we hold about you. We will first confirm whether you have requested such information, explain how we have used your information, provide a list of names with whom your information has been shared, and provide a copy of your information in an accessible format, and make alternative formats available if requested.
- Right to Correction/ Limited Right to Deletion:You can request us to correct or delete your information if you demonstrate that the Personal Data we hold on you is inaccurate. We will delete or correct your information within 30 (Thirty) calendar days. When we delete/ correct your Personal Data, we will inform the third parties with whom we have shared Your information.
- Right to be Forgotten:Your information will be kept with us for as long as it is required for the fulfilment of the purposes it was collected for. Unless we otherwise give you notice, we will retain your Personal Data on the Platform on your behalf until such times as you or we terminate the Services.
- Data Breach Notification:We will send a notification to you as soon as feasible regarding the information of any breach that creates a “real risk of significant harm” to you. We keep a record of every data breach and, on request, provide the Office of the Privacy Commissioner with access to the record.
FOR OUR EUROPEAN CUSTOMERS & VISITORS
This Section supplements the information contained in this Policy and applies solely to all visitors, users, and others to our Website, who reside in Europe, the UK, or Switzerland.
- We are headquartered in India. Most of the operations are located in India. your Personal Data, which you give to us during registration or use of our Website and/or Services, may be accessed by or transferred to us in India. If you are visiting our Website or registering for our Services from outside India, be aware that your Personal Information may be transferred to, stored, and processed in India at our offices and those of our group companies, third-party agencies, service providers, representatives, and agents as described above (see above: ‘Sharing and disclosure of personal data’). Some of these third parties may be based outside the European Economic Area. For more information, including on how we safeguard your Personal Data when this occurs, see below: “Transferring Your Personal Data out of the EEA”. By using Our Services, you consent to any transfer of your Personal Data out of Europe, UK, or Switzerland for processing in India or other countries.
- How long your Personal Data will be kept?: We will not retain your Personal Data for longer than necessary for the purposes set out in this Policy. Different retention periods apply to different types of data. Generally, we store data until it is no longer necessary to provide our services or until your account is deleted (whichever comes first). When it is no longer necessary to retain your Personal Data, we will delete or anonymise it.
- Transferring your Personal Data out of the EEA: To deliver Services to you, it is sometimes necessary for us to share your Personal Data outside the United Kingdom and European Economic Area (“EEA”), for example, with our offices outside the UK and EEA, with your and our service providers located outside the UK and EEA; if you are based outside the UK and EEA. These transfers are subject to special rules under European and UK data protection law.
These countries do not have the same data protection laws as the United Kingdom and EEA. We will, however, ensure the transfer complies with data protection laws and that all Personal Data will be secure. Our standard practice is to use standard data protection contract clauses which have been approved by the European Commission.
If you would like further information please contact us.
- What are your rights?: You have the following rights, which You can exercise free of charge:
- Access: The right to be provided with a copy of your Personal Data.
- Rectification: The right to require us to correct any mistakes in your Personal Data.
- To be forgotten: The right to require us to delete your Personal Data in certain situations.
- Restriction of processing: The right to require us to restrict processing of your Personal Data in certain circumstances, e.g., if you contest the accuracy of the data.
- Data portability: The right to receive the Personal Data you provided to us, in a structured, commonly used, and machine-readable format and/or transmit that data to a third party in certain situations.
- To object: The right to object at any time to your Personal Data being processed for direct marketing (including profiling); or, in certain other situations, to our continued processing of Your Personal Data (e.g. processing carried out for the purpose of our legitimate interests).
- Not to be subject to automated individual decision-making: The right not to be subject to a decision based solely on automated processing (including profiling) that produces legal effects concerning you or similarly significantly affects you.
For further information on each of those rights, including the circumstances in which they apply, please contact us or see the guidance from the UK Information Commissioner’s Office (“ICO”) on individuals’ rights under data protection laws.
- If you would like to exercise any of those rights, please:
- contact us and let us have enough information (your full name, address, etc.) to identify you.
- let us have proof of your identity and address (a copy of your driving licence or passport and a recent utility or credit card bill); and
- let us know what right you want to exercise and the information to which your request relates.