Compliance

Privacy Policy

Effective date: 1 May 2026. This policy is issued in line with the Digital Personal Data Protection Act, 2023 (DPDP Act) and the Information Technology Act, 2000 and rules thereunder.

1. Who we are

Money Compound ("we", "us", "our") is an AMFI-registered Mutual Fund Distributor operating from C-107, 1st Floor, Noida One, Sector 62, Noida, UP-201309. We act as the Data Fiduciary in respect of personal data collected through this website and our onboarding workflows.

2. Personal data we collect

  • Identity & KYC: name, PAN, Aadhaar (masked), photograph, signature, date of birth, nationality.
  • Contact: email, mobile, residential address, country of residence (for NRIs).
  • Financial: bank account, demat, scheme holdings, transaction history, income, risk profile responses.
  • Technical: IP address, device identifiers, browser type, cookies, analytics events.

3. Purposes

We process personal data only for the following specified, lawful purposes: (a) KYC, AML and onboarding under SEBI / AMFI / PMLA norms; (b) executing mutual fund and product transactions via the AMC / RTA / exchange; (c) servicing portfolio, statements and tax reports; (d) FATCA / CRS / FEMA reporting for NRI clients; (e) communication, support and product disclosures; (f) regulatory and legal compliance.

4. Lawful basis (DPDP Act, 2023)

We process personal data on the basis of (i) your specific, informed consent, captured at the point of collection, or (ii) certain legitimate uses recognised under Section 7 of the DPDP Act (KYC, compliance, court orders, employment).

5. Sharing of data

We share personal data with: (a) AMCs, RTAs (CAMS / KFintech), depositories, exchanges and IRDAI / NBFC partners as required to execute the transaction you authorise; (b) auditors, regulators and law-enforcement when required by law; (c) IT infrastructure providers under strict data-protection agreements. We do not sell or rent personal data to third parties.

6. Cookies & analytics

This website uses essential cookies and limited analytics (e.g. Google Analytics) to understand usage and improve performance. You may disable non-essential cookies from your browser settings without affecting core functionality.

7. Retention

KYC and transaction records are retained for the period mandated under PMLA / SEBI norms (currently 8 years from the end of the business relationship). General correspondence is retained for the lower of (a) the duration of the relationship and (b) 5 years.

8. Your rights as a Data Principal

  • Right to access a summary of personal data we hold.
  • Right to correction or erasure of inaccurate or no-longer-required data (subject to statutory retention obligations).
  • Right to grievance redressal and nomination.
  • Right to withdraw consent at any time, without affecting prior processing.

To exercise these rights, write to helpdesk@moneycompound.com.

9. Security

We deploy reasonable technical and organisational safeguards — TLS in transit, encryption at rest, role-based access, periodic audits — to protect personal data from unauthorised access, alteration, disclosure or destruction.

10. Children

Our services are not directed at children under 18. Minor accounts are operated only by guardians under SEBI / AMC norms.

11. Updates

This policy may be updated periodically. The current version is always available at this URL with an effective date.

12. Contact

Data Protection Officer (DPO): Vipul Khandelwal · dpo@moneycompound.com · +91 84474 96480.