Understanding Our Privacy Policy Structure in India
At Lirunex, our privacy policy defines clear data protection protocols tailored for Indian traders. We strictly adhere to Indian laws including the Information Technology Act and Reserve Bank of India regulations. Our policy details how personal data is collected, processed, and safeguarded within our trading ecosystem. Indian users access the full privacy policy through our website or client portal, ensuring transparency. Compliance updates are routinely implemented to keep pace with evolving standards.
| Data Category | Collection Method | Purpose | Retention Period |
|---|---|---|---|
| Personal Information | Registration Form | Account Creation | Account Lifetime |
| Financial Data | Bank Verification | Transaction Processing | 7 Years |
| Trading Activity | Platform Logs | Risk Management | 5 Years |
| Communication Records | Support Tickets | Customer Service | 3 Years |
Our privacy policy applies to all trading services, including desktop and mobile platforms. Data is processed only for legitimate reasons such as account verification, transaction execution, and regulatory compliance. Lirunex guarantees uniform privacy protection for its Indian client base, aligning with global standards.
Personal Data Collection Methods We Implement
Lirunex collects personal details through several channels during onboarding and trading. Registration mandates full name, email, phone, and Indian residential address. Identity verification requires uploading Aadhaar card, passport, or driver’s license scans. Financial details, including bank accounts and UPI IDs, are collected during fund deposits and withdrawals. Our platform logs trading activity such as login times and selected instruments for compliance and analysis.
Mobile apps capture device data like OS version, model, and unique device IDs. Location data supports regional service delivery and regulatory adherence within India. Communication data includes support chats, emails, and call recordings. Cookies track browser types, IP addresses, and session durations to improve user interactions. Marketing preferences are recorded based on explicit user selections during account setup.
Data Processing Purposes and Legal Basis
Data processing at Lirunex supports essential trading functions under Indian law. Account verification confirms identity per KYC standards mandated by financial regulators. We use data to facilitate secure logins and block unauthorized access. Transaction data is processed to execute trades and handle deposits or withdrawals efficiently. Risk management algorithms analyze trading behavior to detect possible fraud or misuse.
Marketing communications are dispatched only with user consent and aligned with preferences. Personalized market insights are generated through trading activity analysis. Regulatory compliance includes sharing data with Indian authorities when legally required. Anti-money laundering and sanction checks are integral to our data processing. Audit logs maintain transparency and support compliance reviews.
- Secure login authentication and identity verification
- Transaction execution and fund processing
- Risk and fraud management systems
- Marketing based on explicit consent
- Regulatory reporting and compliance checks
Security Measures Protecting Your Information
Lirunex employs advanced security technologies to shield user data. End-to-end encryption secures data flow between clients and servers using SSL/TLS protocols. Backend databases apply access controls, frequent audits, and intrusion detection systems. Firewalls and anti-malware software protect servers continuously. Role-based permissions limit employee data access to essential functions only.
Two-factor authentication (2FA) adds a critical security layer for login procedures. Suspicious login patterns trigger immediate alerts and investigations. Regular penetration tests and vulnerability scans identify weaknesses. Data backups are encrypted and stored securely to enable recovery without compromising privacy. Incident response plans ensure swift action upon security threats.
Core security features include:
- SSL/TLS encryption for all communications
- Multi-factor authentication enabled
- Continuous system monitoring and alerts
- Secure data centers with controlled physical access
- Regular third-party security audits
User Rights Under Indian Data Protection Laws
Indian clients have defined rights over their personal data stored by Lirunex. Users may request full access to their information and trading records. Data portability allows retrieval in machine-readable formats for external use. Corrections can be made via the client portal to update inaccurate details. Data deletion requests are honored where legally permissible, balancing regulatory retention mandates.
Consent withdrawal is supported for non-essential data usage, with core trading functions unaffected. Objections to automated decisions can be raised through customer support. Data breach notifications comply with Indian law, delivered within 72 hours of incident detection. We uphold transparency with detailed records and frequent privacy impact assessments.
| User Right | Description | Request Method | Response Time |
|---|---|---|---|
| Data Access | View personal information | Client Portal | 30 Days |
| Data Correction | Update incorrect details | Support Ticket | 7 Days |
| Data Deletion | Remove specific data | Written Request | 30 Days |
| Consent Withdrawal | Stop certain processing | Account Settings | Immediate |
Data Sharing and Third-Party Disclosures
Lirunex shares personal data strictly with authorized third parties crucial for service delivery. Payment gateways access financial details for transaction processing, adhering to equivalent data protection standards. Regulatory bodies receive required information under Indian financial laws. Data is disclosed for fraud prevention and legal compliance only.
Technology vendors access limited data for platform upkeep under confidentiality agreements. Cloud storage providers maintain encrypted data with strict security protocols. Customer support teams may access communication logs and account details to resolve issues. Marketing partners receive only anonymized aggregated data for analysis. We do not sell personal information to commercial entities.
International Data Transfers
Some processing involves transferring data outside India with adequate protection mechanisms. Standard contractual clauses and binding corporate rules govern these transfers. Transfers comply with EU adequacy decisions and are preceded by impact assessments. Users are informed of international data processing affecting their information.
Data Retention Policies and Deletion Procedures
Retention of personal data follows Indian regulatory and business requirements. Account data remains active for the duration of the client relationship. Trading records are stored for seven years post account closure to meet RBI mandates. Support and communication records are kept for three years. Marketing consents are retained until revoked or account termination.
Automated deletion systems remove outdated data on schedule, supplemented by manual audits. Notifications are sent prior to major data erasure events impacting user accounts. Secure disposal methods ensure irretrievable deletion of sensitive materials. Third-party processors are contractually bound to identical data destruction standards.
| Data Type | Retention Period | Deletion Method | Verification Process |
|---|---|---|---|
| KYC Documents | 7 Years Post-Closure | Secure Overwrite | Audit Certificate |
| Transaction Logs | 7 Years | Cryptographic Erasure | System Verification |
| Communication Records | 3 Years | Multi-Pass Deletion | Manual Review |
| Marketing Data | Until Withdrawal | Immediate Removal | Automated Confirmation |
Privacy Policy Updates and Notifications
Lirunex reviews and revises the privacy policy regularly to comply with legal and operational changes. Users receive email and platform notifications for major updates, with 30 days’ advance notice. Minor amendments are published online with the effective date indicated. Continued use of the platform implies acceptance of updated terms.
Objections to changes can be submitted through customer support. Version control tracks all modifications with timestamps and descriptions. Annual reviews incorporate regulatory guidance and user feedback. We provide educational resources and notifications to keep Indian users informed. Our privacy team is available for detailed inquiries regarding data handling and policy enforcement.
| Update Type | Notification Method | Notice Period | User Action |
|---|---|---|---|
| Major Changes | Email & Platform | 30 Days | Consent/Objection |
| Minor Updates | Website Publication | Immediate | Implicit Acceptance |
| Version Tracking | Internal Logs | Ongoing | Reference |
❓ FAQ
How can I access my personal data on Lirunex?
Log in to your client portal and navigate to the privacy settings to submit a data access request.
What security measures protect my data?
We use encryption, multi-factor authentication, firewalls, and regular audits to safeguard your information.
Can I withdraw consent for marketing communications?
Yes, you can opt-out anytime via account settings or by contacting customer support.
How long does Lirunex retain transaction records?
Trading and transaction data are retained for seven years in line with Indian regulations.
Will I be notified of privacy policy changes?
Major updates trigger email and platform notifications with 30 days’ notice; minor changes are posted online.
