Privacy Policy
Last updated: January 1, 2025
Enterprise-Grade Security
Apni Saakh ("Platform," "we," "our," or "us"), a product of Tektic Technologies, is committed to protecting your privacy and securing your data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our services.
1. Encryption Standards
All data transmitted between your device and our servers is encrypted using Transport Layer Security (TLS 1.3). Data at rest is encrypted using AES-256 encryption. Personal identifiers — including Aadhaar numbers, mobile numbers, and KYC documents — are hashed and stored in an encrypted data vault with strict access controls. We never store plaintext sensitive identifiers beyond the duration required for verification processing.
Our infrastructure follows industry best practices, including regular security audits, penetration testing, and compliance with applicable Indian data protection regulations.
2. KYC Data Collection and Usage
To generate your Repo ID, we collect the following information:
- •Aadhaar Number: Used solely for identity verification via UIDAI-authorized OTP authentication. Not stored after verification.
- •Mobile Number: Linked to your Repo ID for OTP delivery and account recovery. Stored in hashed format.
- •Name and Date of Birth: As per Aadhaar records. Used for identity matching.
KYC data is never sold, shared with third parties for marketing, or used for any purpose beyond identity verification and credit scoring within the Apni Saakh network.
3. Zero-Knowledge Access — Your Secret Key
Apni Saakh employs a zero-knowledge architecture for credit score access. Your LLS score and credit history are encrypted using your unique Secret Key — a cryptographic key that only you possess. Without this key:
- •No lender can view your score without your explicit consent.
- •Apni Saakh personnel cannot access your credit data.
- •Even in the event of a data breach, your score remains encrypted and unreadable.
You are responsible for safeguarding your Secret Key. We cannot recover it if lost. In such cases, you will need to regenerate your identity and score history.
4. Audit Trails and Access Logs
Every access to your Repo ID or credit score is logged in an immutable audit trail. This includes:
- •The identity of the lender or entity accessing your data.
- •The date, time, and purpose of each access request.
- •Whether consent was provided via Secret Key entry.
You can request your access logs at any time by contacting our support team. Logs are retained for a minimum of 7 years in compliance with applicable laws.
5. Data Retention and Deletion
Your Repo ID and associated credit score data are retained for the lifetime of your account. You may request deletion of your data by contacting us. Upon verified request, we will permanently delete your personal identifiers within 30 days. Anonymized credit history may be retained for statistical and algorithmic improvement purposes in accordance with applicable regulations.
6. Contact Us
For privacy-related inquiries, data access requests, or to report a security concern, contact:
Tektic Technologies
Email: privacy@tektic.in
Response Time: Within 48 business hours