Privacy Policy
Last updated: June 2026 · Effective: June 2026
Finndesk is a product of Turia Finance, incorporated in India. This policy governs how we collect, store, and use your data in accordance with the Information Technology Act, 2000, the Digital Personal Data Protection Act, 2023 (DPDP Act), and applicable Indian regulations.
1. Data We Collect
- Account data: Name, business email, WhatsApp number, firm/company name, and role.
- Entity data: GSTIN, PAN, TAN, CIN, and related compliance identifiers you enter for your group companies.
- Usage data: Pages visited, features used, session timestamps — collected via server logs and analytics.
- Communication data: Emails and WhatsApp messages you send us or receive from us.
We do not collect government portal credentials (usernames or passwords). Our monitoring uses publicly accessible portal APIs and data feeds only.
2. How We Use Your Data
- To deliver compliance monitoring, notice detection, and alerts for your group entities.
- To send WhatsApp and email alerts as configured by your account.
- To improve the platform — analysing usage patterns and fixing issues.
- To communicate product updates, billing information, and support responses.
- To comply with applicable Indian legal and regulatory obligations.
We do not sell, rent, or trade your personal or business data to any third party.
3. Data Storage & Security
All data is stored on servers located in India. We use industry-standard encryption (in transit and at rest), role-based access controls, and regular security audits. Access to customer data is limited to authorised Turia Finance personnel on a need-to-know basis.
4. Third-Party Services
We use a limited set of third-party services to operate the platform:
- WhatsApp Business API — for delivering compliance alerts.
- Payment processors — for subscription billing (PCI-DSS compliant).
- Cloud infrastructure — hosting and database providers operating in India.
We do not share your data with these providers beyond what is necessary to deliver the service.
5. Data Retention
We retain your data for as long as your subscription is active, plus a 90-day grace period after cancellation to allow re-activation. After that, all personal and business data is permanently deleted from our systems unless legal retention obligations apply.
6. Your Rights
Under the DPDP Act, 2023 you have the right to:
- Access the personal data we hold about you.
- Correct inaccurate or incomplete data.
- Request erasure of your personal data.
- Withdraw consent for processing where consent is the legal basis.
- Nominate a person to exercise rights on your behalf.
To exercise any of these rights, email help@finndesk.com. We will respond within 30 days.
7. Cookies
We use essential cookies for session management and a minimal set of analytics cookies to understand site usage. You can withdraw consent for non-essential cookies at any time using the cookie preferences banner.
8. Changes to This Policy
We may update this policy from time to time. Material changes will be communicated via email or an in-app notice at least 14 days before they take effect.
9. Contact Us
For any privacy-related queries or grievances, contact our Data Protection Officer: