Privacy Policy

Effective Date: December 15, 2025

Last Updated: April 15, 2026

1. INTRODUCTION

CrowdLite LLC ("we," "us," or "our") operates the Finiclub mobile application and related services. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you use our financial literacy and social investment platform.

2. INFORMATION WE COLLECT

2.1 Personal Information

  • Account Information: Name, email address, phone number, date of birth
  • Profile Information: Profile picture, bio, investment experience level
  • Financial Information: Investment preferences, portfolio data, financial goals
  • Identity Verification: Government-issued ID for compliance purposes

2.2 Usage Information

  • App Activity: Features used, time spent, learning progress, quiz scores
  • Content Interactions: Articles read, videos watched, community posts
  • Communication Data: Chat messages, forum posts, support inquiries
  • Device Information: Device type, operating system, app version

2.3 Technical Information

  • Log Data: IP address, browser type, access times, pages viewed
  • Cookies and Tracking: Session cookies, analytics cookies, preference cookies
  • Location Data: General location for content personalization (with consent)

3. HOW WE USE YOUR INFORMATION

3.1 Service Provision

  • Provide and maintain our financial education platform
  • Personalize learning content and recommendations
  • Enable social features and community interactions
  • Process payments and manage subscriptions

3.2 Communication

  • Send service-related notifications and updates
  • Provide customer support and respond to inquiries
  • Send educational content and market insights
  • Deliver promotional materials (with consent)

3.3 Improvement and Analytics

  • Analyze usage patterns to improve our services
  • Conduct research and development
  • Monitor and prevent fraud and abuse
  • Ensure platform security and integrity

4. LEGAL BASIS FOR PROCESSING (GDPR)

4.1 Consent

Marketing communications, location data, optional features

4.2 Contract Performance

Account creation, service delivery, payment processing

4.3 Legitimate Interest

Service improvement, fraud prevention, analytics

4.4 Legal Obligation

Compliance with financial regulations, tax requirements

5. INFORMATION SHARING AND DISCLOSURE

5.1 Service Providers

  • Cloud Infrastructure: Firebase, AWS for data storage and processing
  • Payment Processing: Stripe, Razorpay for secure payment handling
  • Analytics: Firebase Analytics, Google Analytics for usage insights
  • Communication: Email and push notification services

5.2 Business Transfers

In case of merger, acquisition, or sale of assets, your information may be transferred to the new entity.

5.3 Legal Requirements

We may disclose information when required by law, court order, or to protect our rights and safety.

5.4 Community Features

Information you share in public forums, chat groups, or social features is visible to other users.

6. DATA SECURITY

6.1 Security Measures

  • End-to-end encryption for sensitive communications
  • SSL/TLS encryption for data transmission
  • Regular security audits and penetration testing
  • Multi-factor authentication options
  • Secure data centers with physical access controls

6.2 Data Breach Response

In case of a data breach, we will notify affected users and relevant authorities within 72 hours as required by law.

7. YOUR PRIVACY RIGHTS

7.1 Access and Portability

  • Request a copy of your personal data
  • Export your data in a machine-readable format
  • View your data processing activities

7.2 Correction and Updates

  • Update your profile information
  • Correct inaccurate personal data
  • Complete incomplete information

7.3 Deletion and Erasure

  • Delete your account and associated data
  • Request erasure of specific information
  • Withdraw consent for processing

7.4 Restriction and Objection

  • Restrict processing of your data
  • Object to direct marketing
  • Opt-out of automated decision-making

8. COOKIES AND TRACKING TECHNOLOGIES

8.1 Types of Cookies

  • Essential Cookies: Required for basic app functionality
  • Analytics Cookies: Help us understand user behavior
  • Preference Cookies: Remember your settings and preferences
  • Marketing Cookies: Deliver personalized advertisements

8.2 Cookie Management

You can control cookie preferences through your device settings or our cookie consent manager.

9. INTERNATIONAL DATA TRANSFERS

9.1 Cross-Border Processing

Your data may be processed in countries outside your residence, including the United States.

9.2 Safeguards

  • Standard Contractual Clauses (SCCs) for EU data transfers
  • Adequacy decisions where applicable
  • Privacy Shield framework compliance (where applicable)

10. DATA RETENTION

10.1 Retention Periods

  • Account Data: Retained while account is active plus 7 years
  • Financial Records: 7 years for tax and regulatory compliance
  • Communication Data: 3 years for support and legal purposes
  • Analytics Data: 2 years for service improvement

10.2 Deletion Process

Data is securely deleted using industry-standard methods when retention periods expire.

11. CHILDREN'S PRIVACY

11.1 Age Restrictions

Our services are not intended for children under 13. Users aged 13-17 require parental consent.

11.2 Parental Controls

Parents can review, modify, or delete their child's information by contacting us.

12. CALIFORNIA PRIVACY RIGHTS (CCPA)

12.1 Consumer Rights

  • Right to know what personal information is collected
  • Right to delete personal information
  • Right to opt-out of sale of personal information
  • Right to non-discrimination for exercising privacy rights

12.2 Information Sale

We do not sell personal information to third parties for monetary consideration.

13. THIRD-PARTY SERVICES

13.1 Integrated Services

  • Social media login (Google, Apple, Facebook)
  • Financial data providers for market information
  • Educational content partners

13.2 Third-Party Privacy Policies

We encourage you to review the privacy policies of any third-party services you use through our platform.

14. UPDATES TO THIS POLICY

14.1 Policy Changes

We may update this Privacy Policy to reflect changes in our practices or legal requirements.

14.2 Notification Process

  • Email notification for material changes
  • In-app notifications
  • Updated effective date on this page

15. CONTACT INFORMATION

For privacy-related questions or to exercise your rights:

Data Protection Officer
Email: privacy@finiclub.com
Address: CrowdLite LLC, Privacy Department
Response Time: 30 days maximum

16. SUPERVISORY AUTHORITY

EU residents have the right to lodge a complaint with their local data protection authority if they believe their privacy rights have been violated.

By using Finiclub, you acknowledge that you have read and understood this Privacy Policy and consent to the collection and use of your information as described herein.