Information Security and Privacy Policy

This Information Security and Privacy Policy (“Policy”) describes how Saveit (“we,” “us,” or “our”), operated by Affluenceit Fintech Pvt. Ltd., collects, uses, stores, shares, and protects your personal information when you use our digital gift card payment platform, website, mobile application, and related services (collectively, the “Services”). We are committed to protecting your privacy and ensuring the security of your personal data in compliance with the Digital Personal Data Protection Act, 2023 (“DPDP Act”), the Information Technology Act, 2000, and applicable data protection laws in India.

Company Name: Affluenceit Fintech Pvt. Ltd. (Saveit) Registered Office: F 59 GF, Dr Barsha Awas, Rapti Nagar, Phase 4, Chargaon, Gorakhpur, Gorakhpur, Uttar Pradesh 273013 CIN: U62011UP2024PTC211040 Support Email: [email protected] Grievance Officer: [email protected]

3.1 Personal Information A. Identity and Contact Information • Full name • Email address • Mobile phone number • Date of birth (for age verification) • Registered mailing address • Government issued identification details (for KYC, if required) B. Account Information • Username and encrypted password • Account preferences and profile settings • Login credentials • Security questions and answers (encrypted) C. Transaction and Payment Information • Gift card purchase and redemption history • UPI transaction metadata • Payment method details such as UPI ID or virtual payment address • Order details, voucher codes, and timestamps • Merchant or brand information Important: Saveit does not store UPI PINs, banking passwords, or complete card details. Payments are processed through RBI authorized payment gateways. D. Technical and Usage Data • IP address and device identifiers • Browser and operating system details • Mobile network information • Location data with consent • Cookies, logs, crash reports, and analytics • Anonymized screen recordings for fraud prevention E. Communication Data • Customer support correspondence • Feedback and survey responses • Communication history with Saveit F. Recipient Information (Gifting) • Recipient name • Email address or mobile number • Personalized messages and delivery preferences

• Account creation, authentication, and management • Processing UPI based gift card purchases and redemptions • Customer support and dispute resolution • Fraud detection, prevention, and security monitoring • Platform analytics and service improvement • Regulatory, legal, and compliance obligations • Transactional and service communications

• User consent • Performance of contractual obligations • Legal and regulatory compliance • Legitimate business interests • Public interest requirements

Saveit implements industry standard administrative, technical, and organizational security measures including encryption, role based access control, multi factor authentication, network firewalls, vulnerability assessments, incident response procedures, and secure infrastructure hosted in India. No system is completely secure. Users are responsible for maintaining the confidentiality of their login credentials.

We may share data with payment partners, gift card issuers, cloud providers, analytics vendors, KYC and fraud prevention services, and government authorities when legally required. Saveit does not sell, rent, or trade personal data.

Data is primarily stored in India. Where cross border transfers occur, appropriate safeguards such as contractual protections and regulatory compliance are ensured.

Data is retained only as long as necessary for business, legal, and regulatory purposes and is securely deleted or anonymized thereafter.

Under the DPDP Act, you have rights including access, correction, erasure, portability, withdrawal of consent, nomination, and grievance redressal.

Saveit does not knowingly collect data from individuals under 18 years of age.

This Policy may be updated periodically. Continued use of Services constitutes acceptance of the revised Policy.

Grievance Officer: CA Nitesh Srivastava Email: [email protected] Working Hours: Monday to Friday, 10:00 AM to 6:00 PM IST

General Queries: [email protected] Support: [email protected] Data Protection Officer: [email protected]