Privacy Policy
Last updated: February 2026 · Aligned with the Digital Personal Data Protection Act, 2023 (DPDP).
1. Who we are
Corpzo Ventures Private Limited (“Corpzo”) is the Data Fiduciary for information processed through AIFLedger. Where your AIF or Investment Manager uses the Platform to process investor / LP data, we act as a Data Processor on their behalf. Contact: aif@corpzo.com.
2. What we collect
We process the following categories of personal data:
- Account data: name, email, phone, designation, employer, roles.
- KYC data (for LP onboarding): PAN, Aadhaar (masked), passport, address proof, photograph, CKYC number, FATCA/CRS declarations, PEP declaration, UBO, source-of-funds, nominee, bank & demat details.
- Financial data: commitments, capital-account balances, NAV, distributions, tax packs.
- Usage data: login timestamps, IP address, device / browser, actions taken (audit log).
- Lead form data (public landing page): name, email, phone, fund name, category, corpus band, message.
3. Why we collect it (Purpose)
- To provide fund-administration services requested by your fund.
- To comply with SEBI AIF regulations, PMLA / AML, tax and reporting laws.
- To operate maker-checker workflows and audit trails required by law and by your fund's trustees / auditors.
- To respond to demo / sales enquiries submitted via the landing form.
- To secure the Platform, prevent fraud, and enforce our Terms.
4. Legal basis
We rely on consent (Section 6, DPDP) for lead-form data, on legitimate use for performance of contractfor account and fund-operation data, and on legal obligation for retention required by SEBI, tax and audit regulations.
5. How we share it
- With your AIF, Investment Manager, Sponsor, Trustee, Auditor, RTA and Custodian — for their operational and regulatory duties.
- With regulated third parties for PAN verification, CKYC, e-sign, e-mail delivery, and payment gateways.
- With SEBI or other regulators, when required by law or valid regulatory request.
- We do not sell your personal data. We do not use it for marketing outside of the demo enquiry you initiated.
6. Where we store it
Data is stored on encrypted infrastructure in India. Backups are encrypted at rest. Access is role-scoped and logged. Cross-tenant reads are prevented by design.
7. How long we keep it
- Fund-operation records: retained for as long as your fund uses the Platform, plus statutory retention (typically 8 years for SEBI-related records).
- Lead-form data: retained for 24 months from submission, unless you request earlier deletion.
- Audit logs: 8 years, immutable.
8. Your rights (DPDP)
- Right to access a summary of your personal data.
- Right to correction of inaccurate data.
- Right to erasure, subject to legal retention obligations.
- Right to grievance redressal — contact our Grievance Officer (below).
- Right to nominate another person to exercise these rights in the event of death or incapacity.
9. Security
We use TLS for data in transit and encryption at rest. Access is protected by password policy, TOTP MFA, session timeouts and IP logging. Sensitive actions require maker-checker approval. Every write is captured in an immutable audit log.
10. Cookies & analytics
We use strictly necessary cookies for authentication and session management. On the public landing page we use privacy-respecting product analytics to understand aggregate usage — no cross-site tracking.
11. Children
The Platform is not directed to children under 18. We do not knowingly collect personal data from minors, other than in the context of a legal-guardian LP relationship (e.g., minor beneficiary under a family trust).
12. Grievance Officer
Grievance Officer: Compliance Team, Corpzo Ventures Pvt Ltd, Noida, India.
Email: aif@corpzo.com · Response within 30 days as required by DPDP.
13. Changes
We'll notify material changes in-product or by email at least 15 days before they take effect.