Privacy Policy
Welcome to Creso.
We at Creso Technologies Private Limited ("Creso", "we", "our", or "us") take the confidentiality, integrity, and security of your and your family's personal information very seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you use Creso's mobile application, website, and related services (collectively, the "Services").
For the purposes of this policy, "personal information" means any data that can be used to identify you directly or indirectly.
HOW WE COLLECT AND USE YOUR PERSONAL INFORMATION
- Pre‑registration: You can browse basic information about Creso without registering or disclosing personal data. When you download or install our app, we automatically collect limited, non‑personal analytics (for example, generic device information and app‑usage patterns) to understand overall usage trends in regions where our Services are available.
- Registration: To access the full functionality of Creso, you must create an account. During registration we collect:
- Login credentials – a username and password
- Contact details – name, phone number, email address
- Demographic details – date of birth, communication address, PIN code
- KYC documentation – Permanent Account Number (PAN) and any documents mandated by Indian KYC regulations
- Investment‑related Information. To enable investments, you will also provide:
- Bank account details for funding and redemption (including photographic evidence such as a cancelled cheque or first‑page passbook image)
- Any documents required under evolving regulatory norms
- If you choose to track investments made outside Creso, we will request the email ID registered with your existing mutual‑fund folios. We only access emails whose subject line matches industry‑standard consolidated account statements to ingest your portfolio information; all other messages remain untouched. Alternatively, you may manually upload statement files if you prefer.
- We may periodically request additional personal information to satisfy updated legal requirements or to offer new features you opt into.
- Purposes of Processing: We use your personal and non‑personal information for legitimate business purposes including, but not limited to:
- Operating, maintaining, and administering your account
- Executing, reporting, and reconciling your investments
- Sending portfolio statements and regulatory communications
- Improving and customizing the user experience
- Performing research, analytics, and product development
- Meeting legal and regulatory obligations (for example, KYC, AML)
- Marketing our products and services, where you have consented
- Facilitating secure data flows between you and authorized third parties
- All processing is done in line with the Information Technology Act 2000, the Digital Personal Data Protection Act 2023 (DPDP Act), and associated rules.
SHARING YOUR PERSONAL INFORMATION:
Creso does not sell or rent your personal information. We disclose data only:
- To regulated entities such as stock exchanges, depositories, registrars, or payment intermediaries, strictly to fulfil transactions and comply with law
- To trusted service providers (for example, cloud hosting, KYC vendors, courier partners) under binding contracts requiring the same level of privacy and security that we observe
- If your advisor migrates to another regulated firm, unless you instruct us in writing not to transfer your records
- To governmental, judicial, or regulatory authorities when disclosure is necessary to (a) protect our rights or users' rights, (b) detect or prevent fraud or security incidents, or (c) comply with an order under applicable law
- With your explicit consent for any other purpose you choose
- Whenever we transfer personal information to third parties, we put in place appropriate safeguards as required by the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules 2011 and other applicable laws.
THIRD‑PARTY WEBSITES AND SERVICES:
Our Services may include links to external sites or services operated by third parties. Their privacy practices are outside our control; please review the privacy statements of those sites before providing any information. Creso is not responsible for the content or practices of third‑party services.
INFORMATION STORAGE AND SECURITY:
We employ industry‑standard technical and organisational measures — including encryption in transit and at rest, firewalls, and role‑based access controls — to protect personal information. Despite our efforts, no security system is completely infallible. You are responsible for protecting your login credentials and devices. If you believe your account has been compromised, change your password and notify us immediately. Data transmissions over the Internet involve some risk. Once we receive your data, we will use our best efforts to secure it, and we will assist you in notifying the relevant authorities in case of a data breach, in accordance with applicable law.
YOUR RIGHTS:
Subject to the DPDP Act and other applicable laws, you have the right to:
- Confirm whether we process your personal information and access copies of it
- Correct inaccuracies in your data
- Restrict or object to certain processing or disclosures
- Request portability of your data
- Be informed of processing activities
- Request erasure of your data
- Withdraw consent at any time without penalty (this will not affect processing carried out before withdrawal).
- To exercise these rights, log into your account or contact our Data Protection Officer. We may ask for additional proof of identity before acting on your request.
DATA PROTECTION OFFICER & GRIEVANCE REDRESSAL:
Our Data Protection Officer will endeavour to resolve any concern within 30 days of receipt.
- Name: Pranay Agarwal
- Address: Plot No 72, Cross Road C, Marol MIDC, Chakala, Mumbai 400093, India
LEGAL OBLIGATIONS:
We comply with the Information Technology Act 2000, the DPDP Act 2023, and all related rules. Under Regulation 4 of the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules 2011, every registered user is entitled to obtain a readable copy of the personal information Creso holds about them. Contact the Data Protection Officer to request such a copy.
CHANGES TO THIS POLICY:
We may update this Privacy Policy from time to time. We will not reduce your rights without your explicit consent. Material changes will be notified through the app or via email before they take effect. The "Last updated" date at the top indicates the latest revision.
TERMINATION OF RELATIONSHIP:
If your relationship with Creso ends, we will continue to protect your personal information per this Privacy Policy. You may instruct us not to retain or share your data, except where retention is required by law.
APPLICABLE LAW & JURISDICTION:
This Privacy Policy is governed by the laws of the Republic of India. Any dispute arising out of or relating to this Policy shall be subject to the exclusive jurisdiction of the courts located in Mumbai, Maharashtra, India.
CONTACT US:
If you have any questions about this Privacy Policy or our privacy practices, please reach out to our Data Protection Officer using the details above.
© 2024 Creso Technologies Pvt Ltd. All rights reserved. AMFI-registered distributor of Mutual Funds (ARN - 321367).
Mutual-Fund investments are subject to market risks; read all scheme-related documents carefully.
© 2024 Creso Technologies Pvt Ltd. All rights reserved. AMFI-registered distributor of Mutual Funds (ARN - 321367).
Mutual-Fund investments are subject to market risks; read all scheme-related documents carefully.
For any queries reach out to admin@creso.in
Welcome to Creso.
We at Creso Technologies Private Limited ("Creso", "we", "our", or "us") take the confidentiality, integrity, and security of your and your family's personal information very seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you use Creso's mobile application, website, and related services (collectively, the "Services").
For the purposes of this policy, "personal information" means any data that can be used to identify you directly or indirectly.
HOW WE COLLECT AND USE YOUR PERSONAL INFORMATION
- Pre‑registration: You can browse basic information about Creso without registering or disclosing personal data. When you download or install our app, we automatically collect limited, non‑personal analytics (for example, generic device information and app‑usage patterns) to understand overall usage trends in regions where our Services are available.
- Registration: To access the full functionality of Creso, you must create an account. During registration we collect:
- Login credentials – a username and password
- Contact details – name, phone number, email address
- Demographic details – date of birth, communication address, PIN code
- KYC documentation – Permanent Account Number (PAN) and any documents mandated by Indian KYC regulations
- Investment‑related Information. To enable investments, you will also provide:
- Bank account details for funding and redemption (including photographic evidence such as a cancelled cheque or first‑page passbook image)
- Any documents required under evolving regulatory norms
- If you choose to track investments made outside Creso, we will request the email ID registered with your existing mutual‑fund folios. We only access emails whose subject line matches industry‑standard consolidated account statements to ingest your portfolio information; all other messages remain untouched. Alternatively, you may manually upload statement files if you prefer.
- We may periodically request additional personal information to satisfy updated legal requirements or to offer new features you opt into.
- Purposes of Processing: We use your personal and non‑personal information for legitimate business purposes including, but not limited to:
- Operating, maintaining, and administering your account
- Executing, reporting, and reconciling your investments
- Sending portfolio statements and regulatory communications
- Improving and customizing the user experience
- Performing research, analytics, and product development
- Meeting legal and regulatory obligations (for example, KYC, AML)
- Marketing our products and services, where you have consented
- Facilitating secure data flows between you and authorized third parties
- All processing is done in line with the Information Technology Act 2000, the Digital Personal Data Protection Act 2023 (DPDP Act), and associated rules.
SHARING YOUR PERSONAL INFORMATION:
Creso does not sell or rent your personal information. We disclose data only:
- To regulated entities such as stock exchanges, depositories, registrars, or payment intermediaries, strictly to fulfil transactions and comply with law
- To trusted service providers (for example, cloud hosting, KYC vendors, courier partners) under binding contracts requiring the same level of privacy and security that we observe
- If your advisor migrates to another regulated firm, unless you instruct us in writing not to transfer your records
- To governmental, judicial, or regulatory authorities when disclosure is necessary to (a) protect our rights or users' rights, (b) detect or prevent fraud or security incidents, or (c) comply with an order under applicable law
- With your explicit consent for any other purpose you choose
- Whenever we transfer personal information to third parties, we put in place appropriate safeguards as required by the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules 2011 and other applicable laws.
THIRD‑PARTY WEBSITES AND SERVICES:
Our Services may include links to external sites or services operated by third parties. Their privacy practices are outside our control; please review the privacy statements of those sites before providing any information. Creso is not responsible for the content or practices of third‑party services.
INFORMATION STORAGE AND SECURITY:
We employ industry‑standard technical and organisational measures — including encryption in transit and at rest, firewalls, and role‑based access controls — to protect personal information. Despite our efforts, no security system is completely infallible. You are responsible for protecting your login credentials and devices. If you believe your account has been compromised, change your password and notify us immediately. Data transmissions over the Internet involve some risk. Once we receive your data, we will use our best efforts to secure it, and we will assist you in notifying the relevant authorities in case of a data breach, in accordance with applicable law.
YOUR RIGHTS:
Subject to the DPDP Act and other applicable laws, you have the right to:
- Confirm whether we process your personal information and access copies of it
- Correct inaccuracies in your data
- Restrict or object to certain processing or disclosures
- Request portability of your data
- Be informed of processing activities
- Request erasure of your data
- Withdraw consent at any time without penalty (this will not affect processing carried out before withdrawal).
- To exercise these rights, log into your account or contact our Data Protection Officer. We may ask for additional proof of identity before acting on your request.
DATA PROTECTION OFFICER & GRIEVANCE REDRESSAL:
Our Data Protection Officer will endeavour to resolve any concern within 30 days of receipt.
- Name: Pranay Agarwal
- Address: Plot No 72, Cross Road C, Marol MIDC, Chakala, Mumbai 400093, India
LEGAL OBLIGATIONS:
We comply with the Information Technology Act 2000, the DPDP Act 2023, and all related rules. Under Regulation 4 of the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules 2011, every registered user is entitled to obtain a readable copy of the personal information Creso holds about them. Contact the Data Protection Officer to request such a copy.
CHANGES TO THIS POLICY:
We may update this Privacy Policy from time to time. We will not reduce your rights without your explicit consent. Material changes will be notified through the app or via email before they take effect. The "Last updated" date at the top indicates the latest revision.
TERMINATION OF RELATIONSHIP:
If your relationship with Creso ends, we will continue to protect your personal information per this Privacy Policy. You may instruct us not to retain or share your data, except where retention is required by law.
APPLICABLE LAW & JURISDICTION:
This Privacy Policy is governed by the laws of the Republic of India. Any dispute arising out of or relating to this Policy shall be subject to the exclusive jurisdiction of the courts located in Mumbai, Maharashtra, India.
CONTACT US:
If you have any questions about this Privacy Policy or our privacy practices, please reach out to our Data Protection Officer using the details above.
© 2024 Creso Technologies Pvt Ltd. All rights reserved. AMFI-registered distributor of Mutual Funds (ARN - 321367).
Mutual-Fund investments are subject to market risks; read all scheme-related documents carefully.
© 2024 Creso Technologies Pvt Ltd. All rights reserved. AMFI-registered distributor of Mutual Funds (ARN - 321367).
Mutual-Fund investments are subject to market risks; read all scheme-related documents carefully.
For any queries reach out to admin@creso.in