Privacy Policy for App

Crosseas Capital Markets Private Limited ("Company", "We", "Us", or "Our") operates the mobile trading application ("App"). We are a SEBI-registered stock broker and a member of NSE, BSE, and MSEI. This Privacy Policy governs the collection, storage, usage, processing, and disclosure of personal and financial data when you use our App to register and trade in the securities market.

By registering on, accessing, or using this App, you consent to the collection and use of information in accordance with this policy.

1. Information Collection and Use

To provide online trading services and fulfill statutory obligations mandated by the Securities and Exchange Board of India (SEBI) and the Prevention of Money Laundering Act (PMLA), we collect several types of information:

• Personally Identifiable Information (PII): Name, Date of Birth, Gender, Marital Status, and Photograph.
• Government-Issued Identifiers: PAN card details, Aadhaar Number, Passport, Voter ID, or Driving License for mandatory KYC processing.
• Contact Information: Permanent and correspondence address, registered mobile number, and registered email ID.
• Financial & Demat Data: Bank account numbers, IFSC, cancelled cheques, and Demat account details.
• App Usage & Device Data: IP address, Android Device ID, operating system version, and system latency logs for security and algorithmic trade monitoring.

2. Mandatory Mobile Device Permissions

To function securely and comply with digital onboarding or tracking guidelines, our Android App requires explicit user opt-in permissions for:

• Camera: To capture live photographs or documents required for In-Person Verification (IPV) during onboarding.
• Location (Fine/Coarse): To ensure trades and account registrations originate from authorized geographical jurisdictions.
• Storage/Media: To download statement PDFs, upload KYC document images, and preserve application preferences.

3. Data Sharing and Third-Party Disclosures

We do not sell user data. However, as a regulated entity, your information is shared under strict legal frameworks:

• Regulators and Exchanges: Shared with SEBI, NSE, BSE, MSEI, CDSL, NSDL, and Financial Intelligence Unit (FIU-IND) to satisfy compliance, short-selling reporting, or audit demands.
• KYC Registration Agencies (KRAs): To verify identity attributes using reliable, independent source documents.
• Payment Gateways & Banks: To facilitate electronic movement of funds for margin and trading transactions.

4. Data Security and Retention

We utilize commercially acceptable security measures to safeguard your trading credentials and personal details. Data is stored and retained securely:

• Retention Period: Financial and KYC logs are retained for the duration of your active account trading lifecycle plus additional years as mandated by PMLA and SEBI archival guidelines.
• Security Actions: Accounts can be voluntarily frozen or blocked via your registered email/mobile number to prevent unauthorized access.

5. Data Safety Disclosures (Google Play Console)

In alignment with the Google Play Store Data Safety Form:

• Data Encryption: All data collected is encrypted in transit using secure HTTPS/TLS protocols.
• Data Deletion: Due to statutory financial regulatory frameworks (SEBI/PMLA), transactional records cannot be instantly deleted upon app uninstallation. Users may file a formal voluntary account de-registration request to restrict ongoing access.

6. Contact & Grievance Redressal

For any privacy concerns, data modifications, or complaints regarding this application, users can reach out to our dedicated cell:

• Corporate Address: Crosseas Capital Markets Private Limited, 1303, 13th Floor, Lodha Supremus, Dr. E. Moses Road, Worli Naka, Mumbai - 400 018, India.
• Official Email: mail@crosseascapital.com
• Investor Grievance Email: complaints@crosseascapital.com
• Contact Number: +91 22 6909 1300