Effective Date: May 19, 2026
Last Updated: May 19, 2026
This Privacy Policy describes how TAHR TECH STUDIO (OPC) PRIVATE LIMITED (“Company”, “we”, “our”, or “us”) collects, uses, stores, shares, and protects personal information through tahrtech.com and related products, platforms, APIs, software, and services (collectively, the “Services”).
By accessing or using our Services, you agree to the collection and use of information in accordance with this Privacy Policy.
Company Information
Company Name:
TAHR TECH STUDIO (OPC) PRIVATE LIMITED
Registered Address:
2, 35/1915C, CK SQUARE,
East Mankavu Road, Mankavu,
Kozhikode, Kerala – 673007, India
Contact Email:
info@tahrtech.com
Scope of This Policy
This Privacy Policy applies to:
- Visitors to our website
- Clients and partner institutions
- End users accessing solutions powered by our technology
- API users and integration partners
- Individuals interacting with our communication channels
This Policy applies to information collected through:
- Our website
- APIs and integrations
- Client onboarding processes
- KYC and verification workflows
- Support and communication channels
- Digital platforms and related services
Nature of Our Services
We provide technology solutions and financial infrastructure services for banks, financial institutions, fintech companies, and related organizations, including services related to:
- Debit cards
- Credit cards
- Prepaid cards
- Corporate cards
- Loyalty and rewards solutions
- Financial integrations and APIs
- Banking and payment technology services
Certain financial services may be offered in collaboration with or under the supervision of regulated financial institutions.
Information We Collect
We may collect the following categories of information:
Personal Information
- Full name
- Date of birth
- Gender
- Nationality
- Email address
- Mobile phone number
- Residential and business address
- Government-issued identification details
- Signature and photographs
Financial Information
- Bank account information
- Card-related information
- Transaction history
- Payment records
- Billing information
- Financial profile details
KYC and Verification Information
- PAN card
- Aadhaar or equivalent identification documents
- Passport, driving license, or voter identification
- Employment and professional details
- Income and occupation information
- Business registration documents
- Verification documents required for regulatory compliance
Technical and Device Information
- IP address
- Browser type and version
- Device identifiers
- Operating system
- Access timestamps
- Cookies and tracking technologies
- Log files and usage analytics
Communication Information
- Email correspondence
- SMS communications
- WhatsApp communications
- Customer support interactions
- Feedback and survey responses
How We Collect Information
- We may collect information:
- Directly from users
- Through onboarding forms
- Through KYC and compliance submissions
- Via APIs and integrations
- Through cookies and automated technologies
- Through partner institutions and authorized third parties
- Through communications and customer support interactions
Purpose of Collection and Use
We may use collected information for:
- Identity verification and KYC compliance
- Account creation and management
- Providing and maintaining Services
- Processing transactions
- Fraud prevention and risk monitoring
- Regulatory and legal compliance
- Client onboarding and due diligence
- Communication and notifications
- Service improvement and analytics
- API management and integration support
- Security monitoring and incident response
- Internal audits and record keeping
We may also use information where necessary to protect our legal rights, enforce agreements, or comply with lawful requests from regulatory authorities.
Legal Basis for Processing
We process information based on:
- User consent
- Performance of contractual obligations
- Compliance with applicable laws and regulations
- Legitimate business interests
- Fraud prevention and security purposes
Sharing and Disclosure of Information
We may share information with:
- Banks and financial institutions
- Regulatory authorities and law enforcement agencies
- Service providers and technology partners
- Verification and KYC providers
- Communication providers for SMS, email, and messaging services
- Cloud hosting and infrastructure providers
- Professional advisors, auditors, and legal consultants
We do not sell personal information to third parties.
Information may be disclosed where required:
- By law
- Under regulatory obligations
- For fraud prevention
- To protect legal rights and security interests
Third-Party Services
Our Services may involve third-party providers for:
- Email communication
- SMS delivery
- WhatsApp communication
- Hosting and infrastructure
- Analytics and monitoring
- Verification and authentication services
Use of third-party services may be subject to their respective privacy policies and terms.
Cookies and Tracking Technologies
We may use cookies and similar technologies to:
- Maintain sessions
- Improve website functionality
- Analyze website traffic
- Enhance user experience
- Support security and fraud prevention measures
Users may manage cookie preferences through browser settings. Disabling cookies may affect certain functionalities of the Services.
Data Retention
We retain information for as long as necessary to:
- Provide Services
- Fulfill contractual obligations
- Comply with legal and regulatory requirements
- Resolve disputes
- Enforce agreements
- Maintain security and audit records
Retention periods may vary depending on applicable laws, regulatory obligations, and business requirements.
Data Security
We implement commercially reasonable administrative, technical, and organizational safeguards intended to protect personal information against unauthorized access, misuse, disclosure, alteration, or destruction.
However, no method of electronic transmission or storage is completely secure, and we cannot guarantee absolute security.
Users are responsible for maintaining the confidentiality of account credentials and access information.
International Data Transfers
Information may be processed or stored in jurisdictions outside the user’s location, subject to applicable legal and contractual safeguards.
By using our Services, users consent to such transfers where necessary for operational purposes.
User Rights
Subject to applicable law, users may have rights to:
- Access personal information
- Correct inaccurate information
- Request deletion of information
- Withdraw consent where applicable
- Request restrictions on processing
- Raise objections to certain processing activities
Requests may be submitted to:
info@tahrtech.com
We may require identity verification before processing requests.
Children’s Privacy
Our Services are not intended for individuals under the age of 18 unless permitted under applicable law and supervised by a parent, guardian, or authorized institution.
We do not knowingly collect personal information from minors without appropriate authorization.
Regulatory Compliance
We may process and retain information in accordance with:
- Applicable Indian laws
- Financial sector regulations
- KYC and AML obligations
- Data protection requirements
- Regulatory directives issued by competent authorities
Nothing in this Policy limits our ability to comply with lawful regulatory or governmental requests.
Limitation of Liability
While we implement reasonable safeguards, users acknowledge that:
- Electronic systems are not completely secure
- Internet-based transmissions may involve risks
- Third-party systems may impact service availability
To the maximum extent permitted by law, the Company shall not be liable for indirect, incidental, consequential, or unauthorized third-party access beyond reasonable control.
Changes to This Privacy Policy
We reserve the right to modify or update this Privacy Policy at any time.
Updated versions will be published on:
tahrtech.com
Continued use of the Services after updates constitutes acceptance of the revised Policy.
Contact Information
For questions, concerns, or privacy-related requests, contact:
TAHR TECH STUDIO (OPC) PRIVATE LIMITED
2, 35/1915C, CK SQUARE,
East Mankavu Road, Mankavu,
Kozhikode, Kerala – 673007, India
Email: info@tahrtech.com
Governing Law
This Privacy Policy shall be governed by and construed in accordance with the laws of India.
Subject to applicable law, courts located in Kozhikode, Kerala, India shall have jurisdiction over matters arising from this Policy.
Regulatory and Banking Disclaimer
The Company operates as a technology service provider and does not independently function as a bank, non-banking financial company (NBFC), payment system operator, payment aggregator, or regulated financial institution unless expressly stated under a separate regulated arrangement.
Unless specifically stated otherwise, the Company is not licensed or regulated by the Reserve Bank of India (“RBI”) for banking or financial institution activities.
Any banking, card issuance, payment processing, settlement, lending, wallet, or regulated financial services are provided by licensed partner institutions and remain subject to their respective terms, approvals, and regulatory obligations.
The Company does not accept deposits, hold customer funds, provide lending services, or independently issue regulated financial products.
Data Processing and Compliance Roles
Depending on the nature of the Services, the Company may act as a data processor, data fiduciary, intermediary, or technology service provider on behalf of clients, banks, financial institutions, fintech partners, or authorized organizations.
Where the Company processes information on behalf of institutional clients or regulated entities, such entities remain responsible for obtaining required consents, providing legally required notices, and ensuring lawful collection and processing of personal information.
The Company may process personal information in accordance with applicable Indian laws, including the Digital Personal Data Protection Act, 2023 (“DPDP Act”), where applicable.
Security Responsibilities and Incident Handling
Users are solely responsible for maintaining the security of their systems, devices, API credentials, access tokens, authentication mechanisms, encryption practices, internal access controls, and connected infrastructure.
The Company shall not be liable for breaches, losses, or unauthorized access resulting from user-side vulnerabilities, credential compromise, insecure integrations, third-party systems, or failures beyond the Company’s reasonable control.
In the event of a security incident affecting personal information or systems, the Company may take reasonable remedial actions including investigation, containment, suspension of affected services, cooperation with regulatory authorities, and user notifications where required under applicable law.
Electronic Communications and Records
Users consent to receiving electronic communications, notices, disclosures, agreements, records, alerts, and notifications through digital means including email, SMS, WhatsApp, APIs, dashboards, and platform notifications.
Electronic records and communications shall satisfy any legal requirement that such communications be in writing, to the extent permitted under applicable law.
Regulatory, AML, and Sanctions Compliance
The Company reserves the right to monitor, suspend, restrict, or terminate access to Services where necessary to comply with:
- Applicable laws and regulations;
- Anti-money laundering (“AML”) obligations;
- Know Your Customer (“KYC”) requirements;
- Sanctions and anti-corruption laws;
- Regulatory directives;
- Law enforcement requests;
- Risk management and fraud prevention measures.
Users may not use the Services in violation of export control laws, sanctions regulations, anti-bribery laws, anti-corruption laws, or financial compliance obligations applicable in India or other relevant jurisdictions.
The Company does not guarantee that use of the Services will satisfy any specific legal, regulatory, tax, licensing, or compliance requirements applicable to users or their businesses.
Business Transfers and Corporate Transactions
Information collected through the Services may be transferred, disclosed, or processed as part of a merger, acquisition, restructuring, financing transaction, asset sale, insolvency proceeding, or similar corporate event, subject to applicable confidentiality and legal obligations.
Automated Processing and Risk Monitoring
Certain verification, fraud prevention, compliance, risk scoring, monitoring, onboarding, and security processes may involve automated systems, algorithmic analysis, or machine-assisted decision-making processes.
Accuracy of Information
Users are responsible for ensuring that all information, documentation, KYC details, financial data, and communications submitted to the Company are accurate, complete, current, and not misleading.
Failure to provide accurate or updated information may result in suspension, restricted access, delayed processing, or termination of Services.
Dispute Resolution and Arbitration
Any dispute, claim, or controversy arising out of or relating to the Services, Privacy Policy, or Terms shall first be attempted to be resolved amicably between the parties.
If unresolved, such disputes shall be referred to arbitration in accordance with the Arbitration and Conciliation Act, 1996. The seat and venue of arbitration shall be Kozhikode, Kerala, India. Proceedings shall be conducted in the English language.
Subject to applicable law, courts located in Kozhikode, Kerala, India shall have jurisdiction over matters requiring judicial intervention.
Government and Regulatory Disclosure
The Company may disclose information to governmental authorities, regulators, courts, law enforcement agencies, supervisory bodies, or authorized institutions where required under applicable law, lawful requests, investigations, subpoenas, regulatory directives, fraud prevention requirements, or security obligations.
Grievance Redressal
For grievances, privacy concerns, regulatory issues, or complaints relating to the Services or personal information processing, users may contact:
Grievance Officer
TAHR TECH STUDIO (OPC) PRIVATE LIMITED
Email: grievance@tahrtech.com
The Company will make commercially reasonable efforts to respond within a reasonable period in accordance with applicable law.