Skip to main content
DEFT SERVICES

Home / Privacy Policy

Privacy Policy

Effective Date: April 2026 | DPDPA 2023 + DPDP Rules 2025 compliant

Data Fiduciary: DEFT SERVICES | PAN: AALFD9727A | GSTIN: 08AALFD9727A1ZE
H-140, Near Rishi Bhawan, Azad Nagar, Bhilwara, Rajasthan311001
Email: solutiondeft@gmail.com | Phone: +91 96027 10777

1. Introduction

DEFT SERVICES ("we", "us", "our") is committed to protecting your personal data in accordance with the Digital Personal Data Protection Act, 2023 (DPDPA) and the Digital Personal Data Protection Rules, 2025 (DPDP Rules). This policy explains how we collect, use, store, and protect your personal data when you interact with our website (deftservices.in) or our services.

2. Categories of Personal Data Collected

We may collect the following categories of personal data: • Identity data: Name, PAN, Aadhaar (where KYC-required), date of birth • Contact data: Email address, phone number, postal address • Financial data: Folio numbers, investment amounts, bank details (for transaction facilitation) • Technical data: IP address, browser type, pages visited, time spent (analytics only if consented) • Communication data: Messages sent via contact form, email correspondence We do not collect sensitive personal data beyond what is required for KYC and regulatory compliance.

3. Purposes of Processing

We process your personal data for the following purposes: • Responding to enquiries submitted via contact form or email • Facilitating mutual fund / PMS transactions as a distributor • Fulfilling KYC obligations under AMFI, SEBI, and PMLA regulations • Sending regulatory communications (account statements, compliance notices) • Maintaining complaint / grievance records per SEBI requirements • With your explicit consent: sending service updates or newsletters We do not process your data for automated decision-making or profiling.

4. Data Processors

We may share your personal data with the following categories of processors, strictly for the purposes above: • Asset Management Companies (AMCs) — for transaction processing • Registrar and Transfer Agents (CAMS, KFintech) — for folio management • BSE StAR MF / MFU — for transaction routing platforms • Email / communication service providers — for transactional emails All processors are bound by data processing agreements and applicable law. We do not sell your personal data.

5. Retention Period

We retain personal data for the period required by applicable law: • KYC and transaction records: 8 years after account closure (PMLA) • Complaint records: 5 years (SEBI) • Contact form enquiries: 12 months from last interaction • Consent records: Duration of consent + 3 years Data is securely deleted or anonymised upon expiry of retention periods.

6. Your Rights as Data Principal

Under DPDPA 2023, you have the following rights: • Right to access: Know what personal data we hold about you • Right to correction: Request correction of inaccurate data • Right to erasure: Request deletion of data (subject to legal retention obligations) • Right to grievance redressal: Raise concerns with our Data Protection Officer • Right to nominate: Nominate an individual to exercise rights on your behalf in case of death or incapacity • Right to withdraw consent: Withdraw consent for non-mandatory processing at any time To exercise any right, email: solutiondeft@gmail.com

7. Right to Nominate

You may nominate an individual to exercise your data principal rights on your behalf in the event of your death or incapacity. To register a nominee, email us at solutiondeft@gmail.com with the nominee's details and your signed authorisation.

8. Withdraw Consent

Where processing is based on your consent, you may withdraw consent at any time by: • Emailing: solutiondeft@gmail.com with subject line "Withdraw Consent" • Using the unsubscribe link in any marketing communication Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal. Mandatory processing for regulatory compliance cannot be opted out of.

9. Cookies

Our website uses essential cookies required for site operation. With your consent (via the cookie banner), we may also use analytics cookies. We do not use advertising or tracking cookies. You may withdraw cookie consent at any time by clicking "Withdraw Cookie Consent" in the site footer or clearing your browser cookies.

10. Cross-Border Transfers

We do not transfer personal data outside India except where required for transaction processing through platforms that may operate internationally (e.g., cloud infrastructure). Such transfers are subject to applicable data transfer safeguards.

11. Data Protection Officer / Grievance Officer

Data Protection Officer (also IT Rules Grievance Officer): Deepak Jain Email: solutiondeft@gmail.com Phone: +91 96027 10777 Address: H-140, Near Rishi Bhawan, Azad Nagar, Bhilwara, Rajasthan — 311001 For unresolved grievances, you may approach the Data Protection Board of India (once constituted and operational under DPDPA 2023).

12. Changes to This Policy

We may update this policy to reflect changes in law or our practices. We will notify you of material changes via email or a prominent notice on our website. Continued use of our services after the effective date constitutes acceptance of the updated policy.

Last updated: April 2026 | DEFT SERVICES | solutiondeft@gmail.com