Legal
Finsolis is committed to protecting client and end-customer privacy. This Privacy Policy explains how we collect, use, retain, and secure information when you interact with our autopay infrastructure.
We process data to deliver contracted services, troubleshoot issues, enhance our platform, meet regulatory requirements, and comply with law enforcement requests. We do not monetise client or end-customer data, nor do we share it with advertisers.
Operational data is retained in accordance with legal obligations and commercial agreements. Mandate artefacts are preserved for the duration required by applicable banking regulations and then securely deleted or de-identified.
Finsolis employs layered security controls including network isolation, encryption in transit and at rest, strict role-based access, and continuous monitoring. Independent audits such as ISO 27001 and SOC 2 Type II validate our control framework.
Where data is transferred outside India, we implement contractual and technical safeguards to maintain equivalent protection levels and comply with applicable cross-border data transfer regulations.
Institutional clients can request access, correction, deletion, or export of their data by contacting us. We assist clients in responding to end-customer requests consistent with payment network rules and regional privacy laws.
We engage vetted subprocessors for infrastructure, incident response, and analytics. Each subprocessor is bound by contractual and technical controls equivalent to those applied by Finsolis. Current subprocessors are listed atcompliance@finsolis.comupon request.
We review this Privacy Policy regularly. Significant updates will be communicated to clients through email or the admin console with advance notice.
For privacy enquiries, contact our Data Protection Officer atdpo@finsolis.com.