Loans Got Easy
Loans Got Easy

Privacy Policy

Last updated: 15 April 2026 · DPDPA 2023 compliant

This Privacy Policy explains how Loans Got Easy ("we," "us," "our") collects, uses, shares, retains, and protects your personal data when you use loansgoteasy.com / loansgoteasy.in, our WhatsApp Business channel, or our assisted advisory service. We process personal data in accordance with the Digital Personal Data Protection Act, 2023 ("DPDPA"), the Information Technology Act, 2000 and rules made thereunder, the SPDI Rules 2011, and other applicable Indian law.

1. Who We Are

Loans Got Easy is a loan advisory and comparison platform operating as a Direct Selling Agent (DSA) and Lending Service Provider (LSP) authorised by its partner banks and NBFCs. We are not a bank, NBFC, or deposit-taking institution. We act as a Data Fiduciary for the personal data we collect from you.

Registered office: Sainikpuri, Hyderabad, Telangana 500094, India.

2. Notice - What This Policy Covers

This Policy tells you:

  • What personal data we collect and why (Section 3 & 4);
  • How we use, share, and retain it (Sections 5–8);
  • Where it is stored and how it is protected (Sections 9–11);
  • Your rights as a Data Principal and how to exercise them (Section 12);
  • How to contact our Grievance Officer (Section 16).

3. Information We Collect

We collect only the data needed to match you with suitable Partner Lenders and run our Service.

  • Identity: full name, date of birth, gender, PAN, Aadhaar reference (via offline OVD or Account Aggregator only - we do not store raw Aadhaar numbers).
  • Contact: mobile number, email address, residential address, city/area.
  • Financial profile (when you choose to share it): employer name, profession, monthly income range, existing EMIs, CIBIL score band, bank-statement summary (via Account Aggregator framework where applicable).
  • Loan requirement: loan type, amount, tenure, purpose.
  • Property details (for home/LAP/construction loans): location, estimated value, ownership status.
  • Technical: IP address, browser, device type, referrer URL, UTM parameters, cookie identifiers.
  • Communication records: call recordings (with prior notification), WhatsApp/SMS message history, support tickets.

We do not collect biometrics, contact lists, SMS inbox, photo library, or device-storage contents. We do not engage in device fingerprinting beyond standard browser headers.

4. How We Obtain Your Data

  • Directly from you through web forms, WhatsApp, phone calls, email, or in-person consultations;
  • From Partner Lenders sharing eligibility outcomes;
  • From the Account Aggregator framework (with your explicit consent, per ReBIT specifications);
  • From Credit Information Companies (with your explicit consent, where applicable);
  • From cookies and similar technologies when you browse the Website.

5. Purposes of Processing

  • Match you with suitable lenders from our Partner Lender panel;
  • Conduct eligibility checks and prepare your loan application;
  • Communicate loan offers, status updates, and post-disbursement support via call, SMS, email, and WhatsApp;
  • Prevent fraud, identity theft, and money-laundering;
  • Comply with legal, regulatory, audit, and tax obligations;
  • Improve our website, advisory services, and lender recommendations;
  • Send promotional or marketing communications - only if you have separately opted in.

6. Consent & Lawful Basis

We process your personal data on the basis of your free, specific, informed, unconditional, and unambiguous consent under Section 6 of the DPDPA, 2023.

Granular consent: we separate (i) service consent (required to process your enquiry), (ii) marketing consent (optional, opt-in checkbox), and (iii) credit-bureau pull consent (separate authorisation each time). You may withdraw any consent at any time by emailing privacy@loansgoteasy.com. Withdrawal does not affect lawful processing carried out before withdrawal, and may limit our ability to continue providing you with the Service.

7. Sharing of Your Data

We share your personal data only with the parties listed below, and only for the purposes stated.

  • Partner Lenders (banks/NBFCs) - when you choose to apply, for the sole purpose of evaluating and processing your loan application. We will publish the current list of Partner Lenders on a dedicated page on the Website.
  • Credit Information Companies (such as CIBIL, Experian, Equifax, CRIF Highmark) - for credit assessment, with your separate consent.
  • Data Processors who help us run the Service under written contracts with confidentiality and security obligations:
    • Zoho Corporation (CRM, email - India region);
    • Twilio (OTP and voice call infrastructure);
    • Interakt / Haptik (WhatsApp Business API);
    • Saarathi.ai (loan aggregation engine);
    • Razorpay (payment processing, where applicable);
    • Vercel (web hosting infrastructure);
    • Analytics providers (privacy-respecting, IP-anonymised).
  • Regulators and law-enforcement - when required by law, court order, or lawful regulatory request.
  • Auditors and professional advisors - under confidentiality, for compliance verification.

We do not sell your personal data to advertisers or third parties.

8. Marketing Communications & DND

Service-related communications (eligibility outcomes, application status, lender follow-ups) are sent on the channels you have provided and may be sent notwithstanding your registration on the National Customer Preference Register (NCPR/DND), as permitted for service messaging under TRAI TCCCPR, 2018.

Promotional and marketing communications are sent only if you have separately opted in. You can opt out any time by:

  • Replying "STOP" to any SMS or WhatsApp message;
  • Clicking the unsubscribe link in any email;
  • Emailing privacy@loansgoteasy.com.

9. Data Storage & Localisation

All personal data you provide is stored on servers located within India in compliance with applicable digital lending and data-protection regulations. Where any Data Processor (e.g. Twilio, Interakt) processes data through global infrastructure, we use India-region endpoints and contract for India data residency to the extent feasible.

10. Data Retention

We retain personal data only as long as needed for the purpose collected:

  • Active leads (not converted): 12 months from last activity, then anonymised or deleted.
  • Converted customers: for the active loan relationship plus 8 years thereafter, to comply with KYC, anti-money-laundering, audit, and tax record-keeping obligations applicable to financial intermediaries.
  • Marketing data: until you withdraw consent.
  • Aggregated and anonymised data: may be retained indefinitely for analytics and product improvement; such data cannot be linked back to you.

After the retention period expires, data is securely deleted or irreversibly anonymised.

11. Data Security

We follow reasonable security practices and procedures aligned with the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 and ISO/IEC 27001 controls, including:

  • TLS/HTTPS encryption in transit;
  • Encryption at rest for sensitive data;
  • Role-based access control and audit logging;
  • Periodic vulnerability testing;
  • Vendor due diligence on Data Processors;
  • Mandatory consent and DPDPA training for staff.

Breach notification: in the unlikely event of a personal-data breach affecting you, we will notify you and the Data Protection Board of India in accordance with the timelines prescribed under DPDPA 2023.

No method of transmission over the internet is 100% secure. While we work continuously to maintain protection appropriate to the sensitivity of the data, you should also practise good security hygiene - never share OTPs, login credentials, or sensitive financial information with anyone claiming to represent us.

12. Your Rights as a Data Principal

Under DPDPA 2023, you have the following rights with respect to your personal data:

  • Right to access & obtain a summary of the personal data we hold about you and how we have used it;
  • Right to correction, completion & updating of inaccurate or out-of-date personal data;
  • Right to erasure of personal data no longer required for the purpose collected, subject to applicable retention obligations;
  • Right to withdraw consent at any time;
  • Right to grievance redressal - raise a concern with our Grievance Officer (Section 16);
  • Right of nomination - nominate another person to exercise your rights in the event of your death or incapacity.

To exercise any of these rights, email privacy@loansgoteasy.com from the email address registered with us. We respond within 30 days. We may need to verify your identity before fulfilling a request.

13. Cookies & Tracking

We use cookies and similar technologies for three purposes:

  • Strictly necessary: form state, session, language preference - cannot be disabled without breaking the site.
  • Analytics: privacy-respecting, IP-anonymised aggregate statistics that help us improve the Website.
  • Marketing: only with your consent, to measure ad effectiveness.

You can disable non-essential cookies in your browser settings or via our cookie banner without affecting core functionality.

14. Children

Our Service is intended for adults aged 18 or older. We do not knowingly process personal data of children under 18 (Section 9, DPDPA 2023). If you believe a child has provided personal data, please contact us and we will delete it promptly.

15. Third-Party Links

The Website may link to lender websites or other third-party resources. Once you leave our Website, this Privacy Policy no longer applies - please review the privacy policy of the destination site.

16. Grievance Officer

In line with DPDPA 2023, the IT (Intermediary Guidelines and Digital Media Ethics Code) Rules, 2021, and the Consumer Protection (E-Commerce) Rules, 2020, the following officer is responsible for addressing your privacy and data-related grievances:

We acknowledge grievances within 24 hours (IT Rules) / 48 hours (DPDPA) and resolve them within 15 working days (IT Rules) / 30 days (DPDPA). If your concern is not resolved to your satisfaction, you may escalate to the Data Protection Board of India.

17. Changes to This Policy

We may revise this Privacy Policy from time to time to reflect changes in law, technology, or our practices. Material changes will be communicated through a prominent notice on the Website and, where appropriate, by email. The "Last updated" date at the top of this page reflects the most recent revision. Continued use of the Service after a revision takes effect constitutes your acceptance of the revised Policy.

18. Contact Us

For any question about this Privacy Policy or our data practices, email privacy@loansgoteasy.com or call +91 80190 11950. You may also review our Terms of Service.

CallWhatsAppApply