Privacy & Security Policies
Trust is the foundation of our identity platform. We design for privacy first, ensuring you retain total control.
Core Principles
Transparency
We clearly define what data is collected and why. No hidden trackers, no third-party data harvesting.
Encryption
Your identity attributes are secured with AES-256 encryption at rest and TLS 1.3 in transit.
Sovereign Ownership
You are the sole owner of your data. SwaDharmaSetu serves as a trusted custodian, holding it securely on your behalf. You retain full ownership and can export or delete your data at any time.
Data Exchange
Zero-Knowledge Sharing
We never share your personal ID details with third parties without your explicit, cryptographically signed consent (digital consent recorded with timestamp and audit trail).
Data We Collect
Identity Information
Name, email address, phone number, Aadhaar (last 4 digits retained after verification), PAN (for tax receipt generation), and profile photo (optional).
Spiritual Activity
Temple visits, darshan bookings, donation history, seva records, and spiritual milestones you choose to track.
Technical Data
Device information, IP address, browser type, and usage analytics (aggregated and anonymized).
Institutional Data (Temples)
Institution name, registration details, FCRA certification, admin contact information, and operational data submitted during onboarding.
Payment Data Handling
Payment Information Collected
When you make a donation to a temple, booking, or any payment facilitated by the SwaDharmaSetu platform, we collect transaction amounts, payment method type (UPI, credit/debit card, wallet, or net banking), transaction IDs, payment status, timestamps, and billing details. We do not store full card numbers, CVVs, or UPI PINs.
Payment Processor
All payments are processed by Razorpay, our PCI-DSS Level 1 certified payment partner. Your card details are tokenized and handled entirely by Razorpay's secure infrastructure. SwaDharmaSetu does not have access to your full card details at any point.
UPI Transactions
For UPI payments, your UPI VPA (Virtual Payment Address) is stored only for transaction reference purposes. No UPI PIN or MPIN is collected or stored by SwaDharmaSetu or shared with any third party.
3D Secure & Authentication
All card transactions are authenticated using 3D Secure (3DS) as mandated by RBI guidelines. Additional authentication layers including OTP verification are applied to ensure transaction security.
How We Use Your Data
Provide and maintain the SwaDharmaSetu platform and its features.
Facilitate donation transactions for temples and enable generation of 80G, 10BD, and 10BE tax receipts.
Verify identity via Aadhaar and PAN for Know Your Bhakt (KYB) compliance.
Send transactional notifications such as booking confirmations and donation receipts.
Improve platform features using aggregated, anonymized analytics only.
Lawful Basis for Processing
Consent
Explicit consent is obtained during registration and before each data-sharing action.
Contractual Necessity
Processing necessary to provide the services you have requested, including darshan bookings, facilitating donation transactions for temples, and identity verification.
Legal Obligation
Tax compliance requirements (80G, 10BD, 10BE under the Income Tax Act) and FCRA reporting obligations for temples receiving foreign contributions.
Legitimate Interest
Platform security, fraud prevention, and service improvement through anonymized analytics.
Data Retention
| Data Type | Retention Period |
|---|---|
| Identity & profile data | While account is active + 30 days after deletion |
| Donation & tax records | 8 years (Income Tax Act requirement) |
| Server logs | 90 days |
| Payment transaction records | 8 years (Income Tax Act requirement) |
| Payment method tokens | While account active + 30 days after deletion |
| Aadhaar verification data | Not stored — used for real-time verification only, then discarded |
Data Sharing
With Temples
Only the data you explicitly share for a specific booking or donation. Temples cannot access your full profile without your consent.
Payment Processor (Razorpay)
Transaction data is shared with Razorpay, our PCI-DSS Level 1 certified payment partner, to facilitate your donation and booking transactions. Data shared includes transaction amount, payer name, email address, and payment method details. Razorpay processes this data under their own privacy policy. No payment data is shared with temples beyond transaction confirmation status and amount.
Government & Tax Authorities
Only when legally required for 80G compliance, FCRA reporting, or in response to valid legal process.
We never sell, rent, or trade your personal data.
Your spiritual journey is yours alone. We do not monetize your data or share it for advertising purposes.
Security Controls
Biometric Lock
On-device FaceID or Fingerprint is required to reveal sensitive attributes like Aadhaar number, PAN, or government-issued identity documents.
User Rights
Grievance Redressal
Compliance Officer
For any privacy-related concerns, data access requests, or complaints, contact our Compliance Officer at hello@swadharmasetu.com.
Response Timeline
We will acknowledge your request within 48 hours and provide a substantive response within 30 days of receiving your complaint.
Escalation
If you are not satisfied with our response, you may contact the appropriate Data Protection Authority as per applicable Indian data protection laws.
Policy Updates
We may update this Privacy Policy from time to time. We will notify registered users of material changes via email before they take effect.
