Privacy Policy

INTRODUCTION

Angel One Limited (“Angel One”, “the Company”, “we”, “us”, or “our”) is a leading financial services company committed to helping you achieve your financial goals. Your trust is paramount to us, and that includes safeguarding your digital personal data. This privacy policy (“Privacy Policy” or “Policy”) details how we collect, use, store, process, disclose your personal information. It reflects our commitment to safeguarding your personal information when you engage with our diverse services.

We are unwavering in our commitment to upholding the highest standards of data privacy and aim to comply with the Data Protection Laws. This includes strict adherence to guidelines issued by regulatory bodies such as the Securities and Exchange Board of India (“SEBI”), Reserve Bank of India (“RBI”), Pension Fund Regulatory and Development Authority (“PFRDA”) and Insurance Regulatory and Development Authority of India (“IRDAI”).

Whether you're a retail client (B2C) directly investing with us, interacting through one of our business partners (B2B) or using our Platform, this Privacy Policy applies comprehensively to all interactions. Our extensive offerings include, but are not limited to, stock broking services offered by us, and the distribution or facilitation of third-party financial products such as fixed deposits (FDs) and loans and mutual funds.

YOUR CONSENT

By accessing our website or our mobile application ‘Angel One’ (collectively, “Platform”) or using any of our Services, you acknowledge that you have read, understood, and agreed to the terms outlined in this Privacy Policy. You provide your explicit consent for collection, processing, retention and sharing of your Personal Data as detailed in this Privacy Policy. If you do not agree with any part of this Policy, please refrain from accessing our Platform or availing our Services.

Where the processing of your Personal Data is based solely on your consent, you have the right to withdraw such consent at any time, in accordance with applicable laws. Please refer to Section XII for details.

Your access to the Platform and the usage of the Services is subject to your compliance with all the terms and conditions set forth herein, read along with all documents, including but not limited to; applications forms, agreements, undertakings signed by you, any terms/consents/policies included on the Platform including its Terms And Conditions | Angel One (“T&Cs”). In the event of any conflict between this Privacy Policy and the T&C, the Privacy Policy shall prevail solely in relation to the handling of your Personal Data. You understand and acknowledge that depending on the service availed by you, the collection and processing of your Personal Data may be governed by additional service-specific privacy policies, including the following:

1. Privacy Policy for Digital Lending Products / Money Lending Services, governs the collection and processing of your Personal Data for our digital lending services.
2. https://www.angelone.in/wp-content/uploads/pdfs/Privacy-Policy-of-AFAPL_28.07.2025V1_clean.pdf, governs the collection and processing of your Personal Data for insurance products/services offered through our Platform by our affiliate entity, Angel Financial Advisers Private Limited .

DEFINITIONS

All capitalized terms used and not defined in this Privacy Policy shall have the meaning ascribed to them under our T&C unless otherwise defined hereunder:

1. “Data Protection Laws” refers to Information Technology Act 2000, the Information Technology (Reasonable security practices and procedures and sensitive personal data or information) Rules 2011, Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Rules 2021, Digital Personal Data Protection Act, 2023 (DPDP Act, 2023), as well as all other laws, rules, and regulations applicable in India relating to the protection of Personal Data.
2. “Personal Data” refers to any data in relation to an individual, who is identifiable by or in relation to such data whether collected in digital form or digitized after collection.
3. “Processing” is a broad term encompassing any operation or set of operations performed on Personal Data, including its collection, storage, alteration, retrieval, use, disclosure, sharing, or erasure.
4. “Service” means any services, or products assistance that we provide through our Platform, offline branches and/or customer care/service channels, such as call centres, email support, chat support, or in-person help desks. This includes, but is not limited to, stock broking services, and the distribution or facilitation of mutual funds, fixed deposits (FDs), loans, or any other services.
5. "You" and "your" means anyone who visits, accesses, or uses our Platform or avails our Services.

KINDS OF PERSONAL DATA WE COLLECT

We strictly limit our collection of Personal Data to information that is relevant, necessary, and proportionate to the purposes for which it is processed, in accordance with applicable laws. To provide you with seamless services, we may collect the following categories of your Personal Data:

1. Identity Data: Your full name, date of birth, gender, marital status, nationality, status of tax residency, father's/spouse's name, photograph, specimen signature, Permanent Account Number (PAN), Aadhaar number, passport details, driving license, Voter ID, and any other government-issued identification required for Know Your Client (KYC) compliance.
2. Contact Data: Your residential address, correspondence address, email address(es), mobile number(s), and landline telephone number(s).
3. Financial Data: Bank account details (including account number, IFSC code, branch details), Demat account details, income details (e.g., salary slips, income tax returns), investment objectives, risk profile, trading patterns, transaction history, portfolio details, source of funds, and other financial information crucial for investment and financial product services.
4. KYC and Due Diligence Data: Information collected as part of our regulatory obligations for client identification and verification, including proof of address, proof of identity, and any information required for anti-money laundering (AML) and counter-terrorism financing (CTF) checks. This often includes biometric data for Aadhaar-based authentication, processed in compliance with relevant regulations.
5. Transactional Data: Detailed records of all your transactions with us, including trades executed, mutual fund investments, insurance policy details, loan application details, FD bookings, payment history, and service requests.
6. Technical Data: Information automatically collected when you interact with our Platform. This includes your Internet Protocol (IP) address, login data, browser type and version, time zone setting, location data (including latitude and longitude), browser plug-in types and versions, operating system, device type and device identifiers (e.g., Device ID, MAC address), advertisement identifiers and other technical metadata.
7. Usage Data: Insights into how you utilize our Platform and Services. This encompasses user behaviour patterns, pages viewed, links clicked, features accessed, search queries, session duration, and other interaction data.
8. Profile Data: Your username, password, unique user IDs, details of products or Services purchased, your stated interests, and preferences.
9. Marketing and Communications Data: Your preferences in receiving marketing and promotional communications from us and our third-party partners, as well as your communication preferences (e.g., email, SMS, push notifications, Whatsapp).
10. Voluntary Data and User Communication: Any other information you voluntarily provide to us or on our Platform through feedback forms, customer service interactions, or participation in surveys and contests.
11. Mobile App Permissions Data: Permissions and data derived from your mobile device that are accessed by our Platform, including camera, contacts, location, microphone, SMS, storage/media, phone/device information, and information regarding installed applications (appography), as required for enabling specific Platform functionalities or regulatory compliance.

HOW WE COLLECT YOUR PERSONAL DATA

We gather your Personal Data through various secure and compliant channels:

1. Direct Interactions: This is the most common way we collect data. When you:
   • Apply for an account (trading, Demat, etc.) or any of our financial products (e.g., Mutual Funds and FDs).
   • Fill out forms, whether physical or digital, provided by us.
   • Register for an event, webinar, or seminar hosted by Angel One.
   • Participate in surveys, contests, or promotions.
   • Interact with our customer support team, whether via phone, email, chat, or in person (including any integrated artificial intelligence features).
   • Email correspondence, letters with Angel One or posts and comments on message boards on our Platform.
2. Automated Technologies or Interactions (Digital Footprint): As you navigate and interact with our Platform, we automatically collect Technical and Usage Data. This is primarily done through the use of cookies and similar tracking technologies (further detailed in Section IX).
3. Through Device Permissions on Our Mobile Application: When you access or use our mobile application, we may request permission to access certain features of your device (such as camera, location, microphone, storage, SMS, contacts, phone/device information, and installed applications). These permissions are prompted contextually and only when required for enabling specific features (such as KYC, referrals, login authentication, or document uploads). Such data is collected only upon your explicit consent and in accordance with applicable laws.
4. Third Parties and Publicly Available Sources: To facilitate the provision of our Services and comply with regulatory requirements, we may receive your Personal Data from:
   • KYC Verification Agencies: For identity and address verification.
   • Credit Information Companies (CICs) / Credit Bureaus: To assess creditworthiness for loan products.
   • Payment Gateway Providers: To confirm transaction details.
   • Depositories (NSDL/CDSL) and Stock Exchanges (NSE/BSE): For transaction and holding information.
   • Registrar and Transfer Agents (RTAs) / Asset Management Companies (AMCs) / Insurance Companies / Banks: For mutual fund, insurance, and FD-related data.
   • Publicly available sources: Such as public registries, government publications, or reputable public databases, where legally permissible. We ensure that any third parties from whom we receive Personal Data are reputable and have appropriate legal bases for sharing your information.
   • Our business partners, independent service providers, our group entities, various merchants, marketplaces, re-sellers, payment partners, payment aggregators, payments systems, payment service providers and other financial institutions.
5. Through our B2B Channels: If you use our Services via our business partners, introducers, or authorised persons, they may share your Personal Data with us to enable the provision of Services you have requested through them. We ensure that our B2B partners adhere to strict data sharing protocols.

PURPOSES FOR PROCESSING YOUR PERSONAL DATA

We process your Personal Data only when we have a lawful basis to do so, as prescribed by the Data Protection Laws.
We may process your Personal Data for the following purposes:

• Providing access to our Platform and Delivery of our Services To create your login credentials or for creating your profile on the Platform.
• To open and manage your trading, Demat, and other financial accounts.
• To process your orders for stocks, mutual funds, bonds, and other instruments.
• To facilitate your applications for Fixed Deposits, and Loan products offered by third parties.
• To send transaction confirmations, account statements, and other service-related communications.
• To execute and fulfil the terms of the agreements and contracts entered into with you.

1. Regulatory Compliance and Legal Obligations
   • To fulfil our obligations under applicable laws, including Know Your Client (KYC) and Anti-Money Laundering (AML) requirements under applicable laws and guidelines issued by regulatory authorities such as SEBI, RBI, IRDAI, PFRDA, PMLA (Prevention of Money Laundering Act, 2002), and other competent bodies.
   • To report transactions and related information to relevant Government authorities (e.g., tax authorities, regulatory bodies).
   • To comply with court orders, subpoenas, enforcement actions or other legal processes.
   • To perform audits and ensure internal regulatory compliance.
2. Customer Relationship Management and Support:
   • To respond to your inquiries, complaints, and requests.
   • To provide technical support and troubleshoot issues related to our Platform and Services.
   • To manage our relationship with you, including notifying you about changes to our policies, terms or Services.
3. Product Development and Service Improvement
   • To analyze trends, conduct research, and gather statistical data to understand market needs.
   • To develop new products and Services, and enhance existing offerings based on user feedback and insights.
   • To optimize the performance, functionality, and user-friendliness of our Platform.
   • To provide you customised products and Services tailored to your needs and requirements.
4. Marketing and Business Development
   • To send you relevant updates, promotional offers, newsletters, and information about our products, services, and educational content that may be of interest to you.
   • To personalize our marketing communications based on your preferences and usage patterns.
   • To enable you to avail services offered by third-parties having contractual relationships with us, subject to compliance with applicable laws.
5. Risk Management, Compliance, Fraud Prevention, and Security
   • To detect, prevent, and investigate fraud, money laundering, terrorism financing and other illegal activities.
   • To protect the security and integrity of our Platform, systems, networks, and data.
   • To manage operational, reputational, regulatory and financial risks associated with providing our Services.
   • To verify your identity and prevent unauthorised access to your account.
   • To undertake financial/regulatory/management reporting and to create/ maintain various internal risk management models.
   • To monitor Platform usage for compliance with our terms, detect misuse, abuse, or policy violations.
6. Internal Operations and Business Efficiency
   • To maintain internal records, conduct data analysis, and support business planning.
   • To improve our internal processes, training, and operational efficiency.
   • To conduct internal audits, compliance assessments and performance reviews.
   • To support internal capacity-building initiatives, including AI-based training or skill development.
7. Legal Proceedings
   • To investigate or resolve any complaints, claims or disputes related to the Platform or our Services.
   • To establish, exercise, or defend our legal rights or claims in actual or potential legal proceedings.
   • To protect our legitimate business interests during dispute resolution, arbitration, or regulatory enforcement actions.
8. Business Transfers and Corporate Restructuring
   • To facilitate mergers, acquisitions, asset sales, corporate reorganizations, or other business transfers involving our Company or affiliate entities, where your Personal Data may be part of the transferred assets.
   • To ensure continuity of service and compliance during any restructuring, integration, or internal reorganization.
9. Consent Management and Regulatory Audit Readiness
   • To track, manage, and verify your consents and preferences in compliance with the Data Protection Laws.
   • To prepare for, cooperate with, and respond to regulatory inspections, supervisory reviews, and data protection audits.
10. Enabling Mobile App Features and Device-Level Functionality
    We process Personal Data collected via mobile device permissions to support the operation of specific Platform features and enhance your app experience. This includes:
    • Facilitating KYC processes using camera, microphone, and location access where required by regulatory norms.
    • Enabling document upload/download functionality through media/storage access.
    • Supporting contact-based features such as referral programs (e.g., “Refer & Earn”) using contact list access, subject to user opt-in.
    • Improving authentication and login experiences through phone/device binding and detection of trusted devices.
    • Accessing SMS, with your consent, to enable certain user-facing functionalities and improve app experience.
    • Accessing information about certain installed applications, with your consent, to enable specific features and improve in-app functionality.
    • Ensuring compliance with app store policies and data minimisation principles by requesting permissions contextually and proportionately.
11. For any other purpose as may be required under applicable law or pursuant to your consent.

DISCLOSURE AND SHARING OF PERSONAL DATA

We recognize the sensitivity of your Personal Data and commit to sharing it only when necessary, for lawful purposes, and with appropriate safeguards in place. Your Personal Data may be disclosed or shared with the following categories of recipients

1. Regulatory, Government, and Statutory Authorities: We may be legally obliged to share your Personal Data with regulatory, enforcement, or statutory bodies such as:
   • Securities and Exchange Board of India (SEBI)
   • Stock Exchanges (e.g. National Stock Exchange - NSE, Bombay Stock Exchange - BSE)
   • Depositories (e.g.National Securities Depository Limited - NSDL, Central Depository Services (India) Limited - CDSL)
   • Reserve Bank of India (RBI)
   • Pension Fund Regulatory and Development Authority.
   • Insurance Regulatory and Development Authority of India (IRDAI)
   • Income Tax Department and other tax authorities
   • Law enforcement agencies, courts and tribunals, pursuant to legal processes or detection of fraud, money laundering, or other unlawful activities Financial Intelligence Unit – India (FIU-IND)

2. Trusted Third-Party Service Providers: We engage reputable third parties to support our operations and delivery of our Services. These may include:

   • KYC and Identity Verification Providers
   • Payment Gateway Service Providers and Payment Aggregators
   • Cloud Computing and Hosting Infrastructure Providers
   • Data Analytics, AI/MLsolutions and Market Research Firms
   • IT Support and Maintenance Providers
   • Customer Relationship Management (CRM) System Providers
   • Marketing and Communication Service Providers
   • Auditors, consultants, professional services firms and Legal Advisors
   • Document execution and digital signature solution providers
   • Logistics, printing, courier, and document storage vendors

   
    

   We do not disclose the specific names of these third parties in this Privacy Policy to maintain operational flexibility and security. However, we ensure that all our third party service providers are bound by stringent contractual obligations to:

   • Process your Personal Data only according to our instructions.
   • Implement appropriate technical and organizational security measures.
   • Comply with the Data Protection Laws
   • Maintain strict confidentiality of your Personal Data

   
   You can request for the names of the third parties by reaching out to us in accordance with section XIII.

    

3. Business Partners and B2B Channel Entities: We may share relevant Personal Data with our business partners, registered Authorised Persons, or introducers as necessary to facilitate the provision of our Services and to manage our relationship with such partners.
4. Financial Institutions and Product Providers: To facilitate access to third party products or services, we share necessary Personal Data with
   • Asset Management Companies (AMCs).
   • Corporate Agents, Banks, NBFCs and other financial institutions
   • Banking Correspondents and intermediaries
   • Account Aggregators
5. Affiliates and Group Companies: Your Personal Data may be shared with our affiliates and entities within the Angel One group for business operational purposes internal reporting, and to offer you a broader range of solutions, always under similar strict data protection standards.

6. Acquiring Entities in Corporate Transactions: We may share or transfer your Personal Data with potential or actual acquiring parties, investors, or successors in interest as part of:

   • Due diligence exercises prior to a proposed merger, acquisition, investment, reorganization, or sale of assets involving us or any of our group entities
   • The execution or implementation of any such transaction, including post-closing integration activities
   • Any court- or regulator-mandated restructuring or resolution process

   In all such cases, recipients will be contractually obligated to maintain confidentiality and adopt data protection standards no less stringent than those described in this Privacy Policy.

DATA RETENTION AND STORAGE POLICY

We will retain your Personal Data only for as long as necessary to fulfil the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, regulatory, or reporting requirements. Our data retention periods are primarily dictated by:

1. Regulatory Mandates: Retention periods prescribed under SEBI regulations and other sector-specific guidelines applicable to stockbroking, lending, and distribution of financial products.
2. Legal Obligations: Compliance with applicable laws including but not limited to the Prevention of Money Laundering Act, 2002 (PMLA), tax laws, and other statutory requirements.
3. Business Needs: For internal record-keeping, dispute resolution, fraud prevention, and to protect our legitimate business interests.
4. Customer Relationship Management: To maintain historical records necessary for providing ongoing services, resolving queries, or analyzing trends.
5. Consent-Based Retention: Where processing is based solely on your consent, and you withdraw such consent, we will delete or anonymize the relevant personal data, unless we are required to retain it under applicable law.

Once the retention period expires, we will securely delete or anonymize the relevant Personal Data.  Your Personal Data collected by us shall be stored on servers, log files and any other storage system owned by us or by third parties authorised by us as per applicable laws and such storage will be need-based. 

TARGETING, ADVERTISING, AND THIRD-PARTY TECHNOLOGIES

We use cookies, web beacons, pixels, and other similar tracking technologies on our Platform. These technologies play a crucial role in enhancing your user experience, analyzing Platform performance, and delivering personalized content, Services and advertisements

1. Types of Tracking Technologies We Use:
   • Strictly Necessary Cookies: Enable core functionality such as security, network management, and accessibility. These are required for the Platform to function properly.
   • Performance and Analytics Cookies: Collect data on how you interact with our Platform (e.g., pages visited, errors encountered, response times), helping us improve performance and usability.
   • Functionality Cookies: Remember your preferences and past interactions to offer a more personalized experience.
   • Targeting and Advertising Technologies: We may use cookies, SDKs, and similar technologies to track your interaction with our Platform and deliver personalized advertisements, offers, or promotional content across websites, apps, and other digital channels. These tools help us understand your preferences and optimize ad relevance.
   • Third-Party Cookies and SDKs: We may allow third-party service providers—such as analytics platforms, advertising networks, attribution providers, and push notification services—to place cookies or integrate SDKs on our Platform. These technologies may collect data about your device, browsing behavior, in-app activity, and location for the purpose of analytics, engagement, or marketing.

1. Data Collected:
   • Technical Data: Your device's IP address, device ID, unique identifiers, browser type and version, operating system, and hardware information.
   • Usage Data: Pages you visit, links you click, features you use, time spent on pages, referral source, navigation paths, and other aspects of your interaction with our platforms.
   • Location Data: Approximate geographical location inferred from your IP address.

1. Please be aware that disabling or refusing cookies may impact the functionality and accessibility of certain parts of our website or application. Some features may not work as intended, and your user experience might be diminished. You may manage your preferences through your browser, device settings, or in-app privacy controls.

THIRD PARTY SITE

Our Platform may provide links to other third - party platforms including those of third-party partners (“Third – Party Sites”) that may collect your Personal Data such as your IP address, browser specification, or operating system, etc. We are not in any manner responsible for the security of such information or their privacy practices or content of those Third – Party Sites. The inclusion of any link pertaining to Third-Party Sites does not imply endorsement by Angel One of the site or its content. Additionally, you may also encounter “cookies” or other similar devices on certain pages of the Third – Party Sites and it is hereby clarified that neither we nor our affiliates control the use of cookies by these Third-Party Sites. These third-party service providers and Third-Party Sites may have their own privacy policies governing the storage and retention of your information that you may be subject to.

SECURITY PRACTICES AND PROCEDURES

At Angel One, the security of your Personal Data is a top priority. We employ a multi-layered approach with robust technical, administrative, and physical safeguards to protect your Personal Data from unauthorized access, accidental loss, alteration, disclosure, or destruction. Our security measures are continuously reviewed and updated in line with industry best practices and regulatory requirements. Our information security management practices are aligned with the ISO/IEC 27001 standard, and we are committed to continuously improving our controls in accordance with global best practices, regulatory expectations (including SEBI’s Cybersecurity & Cyber Resilience framework), and Data Protection Laws.
Our security framework includes:

1. ISO 27001-Aligned Information Security Program: We maintain an enterprise-wide information security management system (ISMS) consistent with the ISO/IEC 27001 standard, covering risk assessment, access control, data classification, incident response, and business continuity.
2. Encryption: We use industry-standard encryption protocols (e.g., TLS/SSL) to protect data both in transit (when it's being sent over networks) and at rest (when it's stored on our servers), wherever appropriate and feasible.
3. Access Controls: Strict access controls are implemented, ensuring that only authorized personnel have access to your Personal Data based on their job roles and responsibilities (least privilege principle).
4. Authentication Mechanisms: We employ strong authentication measures, including multi-factor authentication (MFA) where appropriate, to verify your identity before granting access to your account.
5. Network and Infrastructure Security: Our networks are protected by firewalls, intrusion detection systems (IDS), and intrusion prevention systems (IPS) to prevent unauthorized access and cyber threats. We have adopted a Zero Trust security model, which ensures that access to our systems is continuously verified based on user identity, device posture, and contextual risk.
6. Regular Security Audits and Vulnerability Assessments: We conduct regular internal audits and independent third-party assessments, including penetration testing and vulnerability scans, to proactively identify and mitigate risks.
7. Employee Training and Awareness: Our employees undergo regular training on data privacy, security policies, and best practices to ensure they understand their responsibilities in protecting your Personal Data.
8. Data Minimization: We collect and process only the Personal Data that is necessary for the specified purposes, thereby reducing the exposure risk.
9. Incident Response Plan: We have a well-defined incident response plan in place to detect, assess, contain, and recover from any potential data breaches swiftly and effectively, and to notify affected parties and regulatory authorities as required by applicable law.
10. Physical Security: Our data centers and physical infrastructure are secured with controlled access, surveillance, and other physical safeguards.
11. Third-Party Security Oversight: We assess the security posture of our vendors and service providers through due diligence, contractual safeguards, and periodic audits, especially for those processing personal data or accessing critical systems.
12. Data Localization: Where mandated by applicable Indian laws and sectoral regulators (such as SEBI and RBI), we ensure that sensitive Personal Data and critical financial data are stored and processed within Indian jurisdiction.
13. Audit Logs and Data Integrity: All critical actions on user accounts, financial transactions, and system operations are logged and monitored. Immutable logs help ensure accountability, traceability, and post-incident investigation.
14. Cloud Security Measures: Our cloud infrastructure is hosted on secure, compliant platforms that offer encryption, tenant isolation, automated backups, and access monitoring.

While we strive to provide the highest level of security for your Personal Data, it is important to acknowledge that no method of transmission over the internet or method of electronic storage is 100% impregnable. Therefore, we cannot guarantee absolute security. We encourage you to also take steps to protect your Personal Data, such as using strong, unique passwords and keeping your login credentials confidential.

YOUR RIGHTS

You have following rights concerning your Personal Data: 

1. Right to Access and Review: You have the right to request access to your Personal Data that we hold, along with information about how we process it. This includes receiving a summary of the Personal Data being processed and the processing activities. 
2. Right to Correction: You can request us to:
   • Correct inaccurate or incomplete Personal Data.
   • Update your Personal Data if it has changed.
3. Right to Grievance Redressal: You have the right to lodge a grievance with us regarding any aspect of the processing of your Personal Data. We are committed to addressing your concerns in a timely and effective manner. You may contact our Grievance Officer using the details provided in Section XIII.
4. Right to Withdraw Consent: You have the right to withdraw your consent for specific uses of your Personal Data where our processing relies solely on your consent. Withdrawing consent for certain activities might impact our ability to provide specific features or the full range of our services that depend on that consent. We will inform you of any such impact when you make your request.
5. Right to seek Erasure: You are entitled to request the erasure of your Personal Data. Upon receiving such a request, we will erase all your Personal Data from our systems, unless retention of any part or all of your Personal Data is required to comply with applicable laws or regulatory obligations.

To exercise any of these rights, please contact our Grievance Officer using the details provided in Section XIII. We will process your request promptly, in accordance with the timelines and procedures stipulated under the Data Protection Laws, and other applicable laws. We may need to verify your identity before fulfilling your request to ensure the security of your Personal Data.

GRIEVANCE REDRESSAL

We are committed to ensuring transparency and providing you with a clear channel for any questions, concerns, or grievances you may have regarding this Privacy Policy or the processing of your Personal Data. If you have any privacy-related inquiries or to exercise your rights under this Privacy Policy, please contact our Grievance Officer using the contact details provided below.

Grievance Officer:
Email: dpo@angelone.in

Registered Office Address for Correspondence:
Angel One Limited
6th Floor, Ackruti Star,
MIDC, Andheri East,
Mumbai, Maharashtra, India

We are dedicated to addressing your concerns promptly, efficiently, and in compliance with all applicable regulations.

INDEMNITY AND LIMITATION OF LIABILITY

1. You agree to indemnify and hold harmless Angel One, its affiliates, directors, officers, employees, agents, and service providers from and against any and all claims, liabilities, damages, losses, costs, and expenses (including reasonable legal fees and expenses) arising out of or in connection with:

   • Your breach of the terms and conditions outlined in this Privacy Policy.
   • Your misuse or unauthorized use of the Platform and/or Services, including any actions that lead to a violation of data privacy or security.
   • Your unauthorized disclosure or processing of personal data belonging to any third party without obtaining lawful consent or authority to do so.
   • Any unauthorized disclosure or processing of Personal Data resulting from your negligence or wilful misconduct.
   • Your failure to comply with applicable laws and regulations concerning Personal Data.
   • Any claims brought by a third party arising from your actions or omissions related to the use of our Services.

   This indemnity provision is designed to be fair and directly relevant to the nature of the Services provided by Angel One. It underscores the mutual responsibility in ensuring secure and compliant handling of Personal Data, recognizing potential liabilities that may arise from your actions or omissions that lead to breaches or non-compliance

1. Limitation of Liability: While we strive to protect your Personal Data using industry-standard security measures, we cannot guarantee absolute security. To the fullest extent permitted by law: 
   • Exclusion of Liability: Neither we now our officers, directors, employees, or agents shall be liable for any direct, indirect, incidental, special, consequential, or punitive damages arising out of or in connection with any unauthorized access, misuse. Loss or disclosure of your Personal Data, except where such liability is mandatorily imposed by applicable laws. 
   • No Warranties: We do not provide any warranties regarding third-party services availed by you through our Platform or their handling of your Personal Data. Any Personal Data shared with such third parties is at your sole discretion and risk, and subject to their respective privacy policies. You acknowledge and accept the risks associated with such third-party data sharing as outlined in this Policy.
   • Lawful Disclosures: We will not be responsible for any losses or damages that occur as a result of lawful disclosures made in compliance with applicable laws, legal processes, or directions from competent regulatory or Governmental authorities. 

DISCLAIMERS

While Angel One is committed to providing accurate information and secure services, it is important to clarify certain aspects and limitations of our responsibility. Please read the following disclaimers carefully:

1. Accuracy of Data: While we are responsible under applicable laws in India to ensure completeness, accuracy and consistency of your Personal Data, we cannot comply with this obligation without your due co-operation. We will not be responsible for any errors or inaccuracies in the Personal Data provided by you. You acknowledge and agree that you are solely responsible for ensuring the accuracy, completeness and currentness of your data.
2. You understand and acknowledge to not share your login details of Platform, with anyone for any reason whatsoever. Any resulting consequences to such sharing of information details will be your sole responsibility.
3. In the event you do not provide us the Personal Data requested by us, it will diminish our ability to provide you the Services and consequently, we may at our discretion cancel or limit your access to the Services and Platform.
4. In case of non-compliance and/or breach with this Policy by you, we reserve the right to terminate or suspend your access to the Services or all or part of the Platform with immediate effect.
5. Our platforms may contain links to third-party websites, applications, or content that are not owned or controlled by Angel One Limited.
   • These links are provided for your convenience only. Angel One Limited has no control over, and assumes no responsibility for, the content, privacy policies, or practices of any third-party websites or services.
   • The inclusion of any link does not imply endorsement by Angel One of the site or its content.
   • We strongly advise you to review the privacy policies and terms of service of any third-party websites or applications you visit. Angel One shall not be liable for any loss or damage caused by your use of or reliance on any third-party content, products, or services.
6. We do not voluntarily or actively collect, use or disclose Personal Data of minors according to the minimum age equivalent in the relevant jurisdiction or of persons with disability, without the prior verifiable consent of the parents or guardians of the minor, as required under applicable laws. If we learn that we have collected the Personal Data of a minor, without first receiving verifiable parental consent, we will take steps to delete such data in a manner consistent with applicable laws of India as soon as possible.
7. Deceptive Communication:
   • Please be aware that there may be deceptive emails, websites, blogs, and other communications ("Deceptive Communications") circulating on the internet that falsely claim to be affiliated with or associated with us. These Deceptive Communications may use our logo, images, links, or content and may attempt to mislead you into providing Personal Data.
   • We want to clarify that the sources and content of these Deceptive Communications are in no way associated with us. For your safety, we strongly advise you not to respond to any Deceptive Communications without verifying their authenticity.  
   • You agree that we shall not be liable for any loss, damage, or harm incurred as a result of your reliance on or actions taken in response to such Deceptive Communications.  
   • Except as required for verification purposes as outlined in our Platform’s T&Cs, neither we nor our employees will contact you to request your sensitive Personal Data.
8. No delay or omission by Angel One Limited in exercising any right or remedy under this Privacy Policy shall operate as a waiver of that right or remedy or any other right or remedy. A waiver on one occasion shall not be construed as a bar to or waiver of any right or remedy on any future occasion.

GOVERNING LAW & JURISDICTION

This Privacy Policy shall be governed by and construed in accordance with the laws of India, with specific reference to the Data Protection Laws, and other relevant statutes applicable in India.
Any disputes, claims, or controversies arising out of or in connection with this Privacy Policy, including its interpretation, validity, or performance, shall be subject to the exclusive jurisdiction of the courts in Mumbai, India.

POLICY REVIEW & UPDATES

This Policy shall apply uniformly to the Services provided by us unless specifically mentioned in this Policy. We reserve the unconditional right to review this Policy and change/modify/remove any part of this Policy, including the terms of this disclaimer, at any time and without providing prior notice.
We recommend that you review this Policy periodically for any changes as we do not undertake to notify you of the same. You can determine when the terms were last modified by referring to the “Last Updated” legend above. We shall not be held responsible for all or any actions that may subsequently result in any loss, damage and or liability on account of such change in the information in this Policy.
Your continued use of our Services and our Platform shall mean that you have reviewed and accept the changes and shall be legally bound by the same.

This Privacy Policy (i) is an electronic record under the Information Technology Act, 2000 read with rules and regulations made thereunder and is generated by a computer system; and (ii) will not require any physical, electronic, or digital signature.