Privacy policy

Effective Date: 09 June 2025

This Privacy Policy outlines how Lifafa Tech Services Pvt Ltd ("Lifafa","we", "us", or "our") collects, uses, shares, and protects the personal information of users ("you", "your" ,or "Users") who access and use our websites, white-label platforms, applications, and services (collectively, the "Platform").

This Privacy Policy is an integral part of the Terms of Use and shall be interpreted in conjunction therewith.

1. Scope of Policy

This policy applies to all Users of the Platform, including end users of white-label implementations, Customers, and their authorized representatives. It governs the collection, usage, disclosure, and security of personal data shared with or collected by Lifafa.

2. Eligibility and Consent

By using the Platform, you confirm that you are at least 18 years of age or are using the Platform under the supervision of a legal guardian. By accessing or using the Platform, you consent to the collection, use, disclosure, and transfer of your information as outlined in this Privacy Policy.

3. Information We Collect

We may collect the following categories of information:

 a. Personal Identifiable Information (PII):

• Full name, email address, mobile number, gender, address, PIN code
• Aadhaar, PAN, Passport, or other identity proof (for KYC or verification purposes)
• Payment information (e.g., card/bank details when applicable)

 b. Access Credentials and Device Information:

• Login ID, password, OTPs
• IP address, device ID, browser information, cookies, and usage logs

 c. Transaction Data:

• Orders placed, gift cards/vouchers purchased, redemptions, returns, reward points earned/used
• Linked third-party identifiers (e.g., via payment or shipping partners)

4. Methods of Data Collection

• Directly from Users during registration or transaction
• Automatically through cookies, SDKs, pixels
• From employer or authorized third-party sources
• Through integrated service providers (e.g., payment gateways, logistics partners)

5. Purpose of Collecting Data

We collect and use your information for the following purposes:

• To enable you to access and use the Platform securely
• To complete transactions including issuance/redemption of gift cards, loyalty points, and product/service orders
• To manage delivery, logistics, refunds, and order fulfillment
• To send transactional and service-related communications
• To send promotional and marketing messages (opt-out available)
• To verify identity and prevent fraudulent use of the Platform
• To improve Platform features and user experience
• To analyze usage and generate business intelligence
• To comply with applicable legal and regulatory requirements
• To comply with applicable legal and regulatory requirements

6. Disclosure of Information

Your data may be shared with:

a. Third-party service providers, such as:

• Payment gateways, payment processors, aggregators.
• Fulfilment partners including brand vendors and gift card issuers.
• Communication providers such as SMS, email, WhatsApp messaging platforms.

b. Program owners or clients on whose behalf we operate the Platform or associated loyalty/ gift card/ reward/     incentive program.
c. Cloud hosting providers, IT support vendors, auditors, legal consultants, or affiliates where necessary.
d. Law enforcement or government authorities where required under applicable laws

All data sharing shall be strictly limited to what is necessary to enable the respective party to perform their obligations under the program or service arrangement and shall comply with applicable laws.

Lifafa does not sell your personal data to third parties for their marketing purposes.

7. Anonymised and Aggregated Data

Lifafa may anonymise and aggregate user information for analytics, reporting, and product improvement. Such data cannot be used to identify you individually.

8. Data Retention

We retain your personal data:

• For as long as your account remains active and thereafter as required by applicable law
• Transactional and audit logs: up to 7 years
• Customer service and operational logs: up to 3 years

9. Data Security Measures

We use industry-standard security practices including:

• SSL/TLS encryption for data in transit
• Role-based access control and two-factor authentication
• Encrypted storage and restricted access to databases
• Regular security audits, staff training, and NDAs with service providers

10. User Rights

You have the right to:

• Access your personal data
• Request correction or deletion of data
• Withdraw consent to process personal data (with limitations on service usage)
• Lodge a grievance or request data portability

Requests may be directed to: info@lifafa.com

11. Cookies and Tracking

Lifafa uses cookies and tracking technologies to improve user experience, analyze site usage, deliver targeted communication, and facilitate remarketing campaigns on platforms like Google and Facebook. Users may choose to limit cookie access through browser settings.

12. Legal Basis for Processing

We process personal data based on:

• Consent obtained during Platform use
• Necessity for performing a contract (e.g., order delivery)
• Compliance with legal obligations
• Legitimate interests to improve Platform performance and prevent fraud

13. Data Transfers

Your data may be processed outside India if required by our international service providers. Such transfers will be done in compliance with applicable Indian laws and data protection requirements.

14. Grievance Redressal

If you have any concerns regarding this Privacy Policy or how your data is handled, you may contact our Grievance Officer:
Grievance Officer
‍
Email: info@lifafa.com
‍
Address: Lifafa Tech Services Pvt Ltd, 175, Kagalwala House, 2nd Floor, Vidyanagri Marg, Kalina, Santacruz (E), Mumbai 400098, India

15. Updates to Policy

This Privacy Policy may be updated periodically. Material changes will be communicated via email or Platform notifications. Continued use of the Platform after updates constitutes consent to the revised Policy.

16. Governing Law and Jurisdiction

This Privacy Policy shall be governed by and interpreted in accordance with the laws of India. Any disputes shall be subject to the exclusive jurisdiction of the courts in Mumbai.

17. Contact Us

For questions or feedback regarding this Privacy Policy:

Email: care@lifafa.com

‍This policy is compliant with applicable Indian laws including the Information Technology Act, 2000, and aligns with international data protection standards where applicable.