Privacy Policy

Effective date: 1 April 2025 · Fusionpact Technologies Private Limited

1. Who We Are

Fusionpact Technologies Private Limited ("Fusionpact", "we", "us") operates the FusionKYC platform at fusionkyc.com and app.fusionkyc.com. We are a data fiduciary under the Digital Personal Data Protection Act 2023 (DPDP Act).

2. What Data We Collect

We collect and process the following categories of personal data:

  • Identity data: Name, Aadhaar number (last 4 digits only), PAN, date of birth, photograph
  • Contact data: Mobile number, email address, residential address
  • Financial data: Income details, bank statement summaries, existing loan obligations
  • KYC data: eKYC verification results, liveness detection scores, DigiLocker document references
  • Usage data: Login timestamps, IP addresses, device identifiers (for security purposes only)

3. How We Use Your Data

We process personal data solely for the following purposes, each requiring explicit consent under DPDP Act 2023:

  • KYC verification as required by RBI KYC Master Directions 2016
  • Credit assessment and underwriting for home loan applications
  • Compliance with PMLA 2002 and reporting obligations
  • Communication regarding loan application status

4. Data Sharing

We share personal data only with:

  • UIDAI — for Aadhaar eKYC verification
  • Income Tax Department — for PAN verification
  • DigiLocker — for document fetching with your explicit consent
  • Account Aggregator ecosystem — with your explicit AA consent
  • The relevant Housing Finance Company processing your application

We do not sell, rent, or share personal data with advertisers or third-party marketers.

5. Data Retention

KYC and loan application data is retained for 8 years from loan closure as required by RBI and PMLA regulations. Consent logs are retained for 5 years.

6. Your Rights Under DPDP Act 2023

You have the right to: access your personal data, correct inaccurate data, erase data (subject to regulatory requirements), and nominate a representative. Contact our Grievance Officer at kyc@fusionpact.com.

7. Security

All data is encrypted at rest (AES-256) and in transit (TLS 1.3). We are ISO 27001 certified. Access is controlled by role-based permissions with full audit logging.

8. Contact

Grievance Officer: kyc@fusionpact.com
Response within 72 hours.