Privacy Policy
    Version 2.0 • 29.04.2025
    PurposeThird-Party LinksData CollectionLegal BasisRequired DataCollection MethodsMarketingCookiesInternational TransfersData SecurityData RetentionData DisposalYour RightsDisclaimerNotice UpdatesContact
    1. Purpose of this Privacy Notice

    Juspay Technologies Pvt. Ltd. ("Juspay", "we", "us", "our") may act as a controller and/or processor of your Personal Data. "Personal Data" means any personal information collected from you directly, via our customers/merchants, or other third parties.

    "You" or "your" refers to any individual who accesses, uses, or interacts with our services, websites or applications, including job applicants and individuals who communicate with us. By sharing your Personal Data, you agree to its processing in accordance with this notice.

    This notice explains how we collect and process your Personal Data. Please keep your information up to date and inform us of changes during your relationship with us.

    2. Third–Party Links

    Our websites may include links to third–party sites or applications. Clicking those links may allow third parties to collect or share data about you. We don't control these sites and aren't responsible for their privacy statements. When you leave our website, we encourage you to read the privacy notice of every website you visit.

    3. The Data We Collect About You

    When acting as a controller

    • Identity and contact data (name, email, phone, address)
    • Technical data (IP address, browser type, device information)
    • Usage data (how you use our website and services)
    • Marketing and communications preferences

    When acting as a processor (on behalf of customers)

    • Transaction data processed for payment services
    • Customer data processed on behalf of merchants
    • End-user data for service delivery

    We also collect, use and share aggregated data (e.g., statistics or demographics) to improve services, performance of contract, marketing and other allied purposes. Aggregated data is derived from Personal Data but is not considered Personal Data under applicable law as it does not directly or indirectly reveal your identity.

    4. Legal Basis and Purposes for Processing

    Below is a description of how we may process your Personal Data, the legal basis relied upon, and whether we disclose it to third parties.

    PurposeLegal BasisThird Party Disclosure
    Service provisionContract performanceService providers
    Marketing communicationsConsent/Legitimate interestMarketing partners
    Legal complianceLegal obligationRegulators, law enforcement

    Note: Legal bases may differ by jurisdiction. We will ensure compliance with applicable local laws and regulations.

    We disclose Personal Data only for the purposes identified in this notice unless a law or regulation allows or requires otherwise. Third parties must respect the security of your Personal Data and process it only for specified purposes and in accordance with our instructions.

    5. If You Fail to Provide Personal Data

    Where we must collect Personal Data by law or under a contract with you, and you fail to provide it when requested, we may be unable to perform the contract (e.g., to provide products/services). We will endeavor to notify you if this is the case.

    6. How We Collect Your Data
    • Direct interactions: when you purchase or access our products or services, request marketing, request support, or submit employment–related queries.
    • Automated technologies or interactions: technical data collected via cookies, pixels, server logs, and similar technologies.
    • Third parties or publicly available sources: contact and transaction data from providers located inside and outside your country.
    7. Marketing

    We provide choices regarding our use of your Personal Data for marketing and advertising. You may receive marketing communications if you have opted in, or if you subscribed for an account/purchased goods or services and have not opted out (where permitted by local law).

    All marketing communications include an opt–out option. Opting out will not affect the lawfulness of processing prior to the opt–out. You can adjust preferences in your account, follow opt–out links in emails, or contact us (see Contact).

    8. Cookies

    You can set your browser to refuse all or some cookies, or to alert you when websites set or access cookies. Disabling cookies may affect website functionality.

    9. International Transfers

    Some external third parties may be based outside your country and the EEA; their processing may involve data transfers outside your country.

    We implement safeguards such as transfers to jurisdictions deemed adequate, standard contractual clauses/data protection clauses, binding corporate rules, or other mechanisms allowed by law (including consent or necessity for contract performance).

    10. Data Security

    We use appropriate security measures to prevent your Personal Data from being accidentally lost, used or accessed in an unauthorized way, altered, disclosed, or unavailable. Access is limited to those with a need to know and who are under a duty of confidentiality.

    We periodically review our privacy and security policies and update them as needed in line with changes in law or technology. Where new technologies create a high risk to Personal Data, we may (where required) perform a data protection impact assessment and proceed only if high risks can be mitigated.

    11. Data Retention

    We retain Personal Data only as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, or reporting requirements. In some cases, we may anonymize Personal Data for research or statistical purposes and use it indefinitely without further notice.

    12. Data Disposal

    When retention periods expire, digital records are permanently destroyed or fully anonymized if retained for statistics or research. All personal identifiers are removed permanently so individuals cannot be identified.

    13. Your Legal Rights
    • Request access to your personal data
    • Request a privacy report (summary of Personal Data processed; processing activities; identities of entities with whom data is shared; and other related information as prescribed).
    • Request correction of inaccurate or incomplete data
    • Request erasure of your personal data
    • Object to processing (including sale or sharing of personal data, subject to applicable exemptions).
    • Request restriction of processing
    • Request transfer of your data to another organization
    • Withdraw consent at any time
    • Authorize an individual to exercise rights in case of death or incapacity.

    To exercise these rights, contact us using the details in Contact. Depending on your jurisdiction, you may also have the right to appeal our decision or lodge a complaint with your local data protection authority.

    • India: Data Protection Board of India (once implemented)
    • European Union: your local member state DPA
    • Singapore: Personal Data Protection Commission
    • Brazil: Brazilian Data Protection Authority
    • Delaware, USA: Delaware Attorney General Office
    14. Disclaimer

    When we act as a Data Processor on behalf of our customers, any request you submit regarding your data will be forwarded to the respective customer(s).

    15. Notice Updates

    We review policies at least annually and when laws change. We may update this notice to reflect changes in practices or to comply with applicable laws. Material changes will be posted on our website or notified directly. Continued use of our services after changes constitutes acceptance.

    16. Contact Details
    Data Protection Officer

    Email: privacy@juspay.in

    Address: Juspay Technologies Pvt. Ltd.

    Girija Building, #817, Ganapathi Temple Rd,

    8th Block, Koramangala, Bengaluru 560095

    General Inquiries

    Email: support@juspay.in

    Phone: +91 80 6719 8000

    Website: www.juspay.in