Privacy Policy

1. Overview

Mahila Shakti ("we," "us," or "the App") is a credit card management application. This Privacy Policy describes how we collect, use, protect, and disclose your personal and device information, and the rights you have concerning this data. We only collect data necessary to provide and maintain our credit card-related services, always adhering to relevant data protection laws and regulations.

To avoid leakage and misuse of this information, We will transfer user data to the following address: https://ey.mahilashakti.com

2. Information We Collect

When you use Mahila Shakti, we may collect the following information, either with your explicit consent or as required for service operation. Declining certain data authorizations may limit some features.

Phone Number

For account registration, One-Time Password (OTP) verification, login alerts, and security notifications.

Email Address

For sending statements, account notifications, and password recovery communications.

Camera & Image Information

Used solely for uploading or changing your profile picture, or for uploading receipt vouchers. We do not access other photos.

Emergency Contact Information

Includes contact names and phone numbers, used to provide assistance during account anomalies or verification issues.

User ID / Device ID / Advertising ID

User ID: To identify your account and transaction records.

Device ID: For multi-device synchronization and detection of abnormal logins.

Advertising ID: For delivering personalized offers (can be disabled in device settings).

Approximate Location Information

City-level location data for geo-tagging transactions or providing localized features.

Crash Logs

Automatically collected app crash reports, error logs, and performance data to fix issues and optimize user experience.

Installed App Information (with separate authorization)

Only collected with your consent to identify the names of installed applications on your device, used to detect potential security risks or compatibility issues. We do not access any app content.

Call Logs

Temporarily used during phone number verification (e.g., OTP process), strictly limited to the verification process, not for other purposes.

Device Information

Includes device model, operating system version, storage status, battery information, Bluetooth status, hardware specifications, memory usage, network status, and sensor information, used to adapt to different devices and optimize services.

3. How We Use Information

The data we collect is used solely for the following purposes:

  • Account Establishment & Security Verification: Confirming identity and preventing fraud through OTP, Device ID, etc.
  • Service Operation: Recording credit card transactions, sending statements, and enabling multi-device synchronization.
  • Performance Optimization: Analyzing crash logs and device data to fix issues, improve stability, and enhance performance.
  • Feature Personalization: Providing customized recommendations and interface optimizations based on usage habits (requires your authorization).
  • Compatibility & Risk Detection: Identifying applications or system states that may interfere with service operation.
  • Compliance Requirements: Retaining necessary records as required by law or regulatory bodies.

4. Information Sharing & Disclosure

We do not sell your personal information. Data may only be shared in the following circumstances:

  • Service Providers: Third parties partnering with us (e.g., payment, data hosting, identity verification, or analytics providers) process information within contractually agreed limits and are bound by confidentiality obligations.
  • Statistical Data: We may share anonymized, aggregated statistical data for research and product improvement. This data does not contain any personally identifiable information.
  • Legal Requirements: We may disclose necessary information if required by law, court order, or government request.
  • User Consent: Any sharing beyond the above scope will require your explicit consent.

5. Data Transfer & Storage

Your data will be stored and processed on servers pointed to by https://ey.mahilashakti.com. To enhance reliability and security, we may transfer data to service providers or data centers located in other jurisdictions, ensuring its security and compliance through encryption and contractual terms.

6. Data Retention & Deletion

Account & Transaction Records: Retained for up to 5 years during account use and after termination, to comply with legal, audit, and dispute resolution requirements.

Crash & Diagnostic Logs: Retained for a maximum of 2 years or deleted once the issue is resolved.

Device Identifiers & User IDs: Deleted or anonymized within 30 days of account deactivation, unless otherwise required by law.

Verification-Related Data (e.g., call logs): Used only during the verification process and not stored long-term.

You can submit a deletion request by emailing service@mahilashakti.com or via "Settings → Privacy Management" within the App. We will process and respond to your request within 15 business days (excluding data legally required to be retained).

7. User Rights

Under applicable laws, you have the right to request access, correction, deletion, restriction, or export of your personal data. You can make such requests by contacting us at service@mahilashakti.com, and we will respond within a reasonable timeframe. Additionally, you can manage permissions for location, advertising ID, camera, etc., in your device settings.

8. Data Security Measures

We employ multiple security mechanisms to protect your information, including:

  • Data transmission and storage encryption (AES-256 / TLS);
  • Access control and permission management;
  • Operation log recording and regular security audits;
  • Employee privacy and security training.

While we implement strict measures, no internet transmission can be entirely risk-free. In the event of a security incident involving personal data, we will notify you promptly as required by law.

9. Data Deletion & Export Requests

To delete, correct, or export your data, please send a verified request to service@mahilashakti.com, specifying the scope of your request. After identity verification, we will process your request in accordance with legal requirements, generally within 15 business days. If subject to legal or system backup restrictions, we will delete the data as soon as our compliance obligations are met.

10. Protection of Minors

This App is not intended for users under 16 years of age. We do not knowingly collect personal data from minors. If such data is inadvertently collected, please contact us immediately for its removal.

11. Third-Party Links

The App may contain links to other merchants or websites. Third-party websites have independent privacy policies, and we are not responsible for their content or data practices. We recommend reviewing their privacy terms before use.

12. Policy Updates

We may modify this policy due to legal or business adjustments. The latest version will be published at https://www.mahilashakti.com/privacy-policy. For significant changes, we will notify you via in-app notification or email at least 30 days before the changes take effect.

13. Contact Us

If you have any questions, comments, or complaints regarding this Privacy Policy or the processing of your personal information, please contact us at:

Email: service@mahilashakti.com

Response Time: We generally respond within 10 business days.