Section 01

Overview

This Privacy Policy describes how TezGateway ("we", "us", or "our") collects, uses, and protects your information when you use our mobile application or website (tezgateway.com).

By using TezGateway, you consent to the data practices described in this policy. This policy applies to all users of our app and website.

Section 02

Data We Collect

We collect the following categories of information:

Category Examples Purpose
Identity Name, email, mobile number Account creation & authentication
Financial UPI IDs, merchant account info Payment routing & reconciliation
Transaction Order IDs, amounts, UTR numbers Transaction records & reporting
Device Device ID, OS version, app version Security & troubleshooting
Usage Feature usage, session data Improving app experience
Log Data IP address, access timestamps Security monitoring
Note: We do not collect banking passwords, PINs, OTPs, or full card numbers at any point.
Section 03

How We Use Your Data

Your information is used for the following purposes:

  • Creating and managing your TezGateway account
  • Processing and routing UPI payment transactions
  • Providing customer support and resolving disputes
  • Sending transactional notifications (payment alerts, OTPs)
  • Improving our app's performance and features
  • Detecting and preventing fraud or security breaches
  • Complying with legal and regulatory obligations
Section 04

Data Sharing

We do not sell, rent, or trade your personal information. We may share data only in limited circumstances:

  • Service Providers: Trusted partners who help operate our platform (e.g., cloud hosting, SMS providers) under strict confidentiality agreements
  • Legal Compliance: When required by law, court order, or government authority
  • Business Transfer: In case of merger or acquisition, data may transfer with prior notice to users
  • With Your Consent: Any other sharing only with your explicit consent
We never share your personal data with advertisers or third-party marketing companies.
Section 05

Data Storage & Security

Your data is stored on secured servers located in India. We implement industry-standard security measures including:

  • TLS/SSL encryption for all data in transit
  • AES-256 encryption for sensitive data at rest
  • Regular security audits and penetration testing
  • Role-based access control — only authorized personnel access data
  • Automatic session timeouts and suspicious activity detection

Transaction data is retained for a minimum of 5 years as required by financial regulations. Account data is deleted within 30 days of a deletion request.

Section 06

App Permissions

Our Android application may request the following permissions. All permissions are used solely for app functionality:

Permission Why It's Needed
Internet Required for all app functionality (API communication)
Notifications To send payment alerts and important updates
Biometric / Fingerprint Optional — for secure app login
Camera Optional — for QR code scanning (if enabled)
Note: We do not access contacts, microphone, location, SMS content, photos, or any other sensitive permissions.
Section 07

Cookies & Tracking

Our website uses essential cookies to maintain your login session and security. We do not use advertising or tracking cookies.

  • Session Cookies: Maintain authentication state
  • CSRF Tokens: Prevent cross-site request forgery attacks
  • Preference Cookies: Remember your UI settings

You can disable cookies in your browser settings, but this may affect the functionality of our website.

Section 08

Your Rights

You have the following rights regarding your personal data:

  • Access: Request a copy of all data we hold about you
  • Correction: Update or correct inaccurate information
  • Deletion: Request permanent deletion of your account and data
  • Portability: Receive your data in a machine-readable format
  • Objection: Object to certain types of data processing
  • Withdraw Consent: Opt out of non-essential communications

To exercise any of these rights, contact us at support@tezgateway.com.

Section 09

Account & Data Deletion

You can request complete deletion of your account and all associated personal data at any time.

How to delete your account:

  1. Open the TezGateway app
  2. Go to Profile → Settings → Delete Account
  3. Confirm your identity via OTP
  4. Submit the deletion request

Alternatively, email support@tezgateway.com with subject: "Account Deletion Request".

All personal data is permanently and irreversibly deleted within 30 days of a verified deletion request. Transaction records required by law may be retained for up to 5 years in anonymized form.
Section 10

Children's Privacy

TezGateway is not intended for use by anyone under the age of 18. We do not knowingly collect personal data from minors. If we become aware that a minor has provided us with personal information, we will delete it immediately.

If you believe a minor has used our services, please contact us at support@tezgateway.com.

Section 11

Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will:

  • Update the "Last Updated" date at the top of this page
  • Send an in-app notification for significant changes
  • Require re-acceptance if changes materially affect your rights

Continued use of TezGateway after changes are posted constitutes acceptance of the updated policy.

Section 12

Contact & Grievance

For any privacy-related questions, concerns, or to exercise your data rights, contact our Data Protection Officer: