Privacy Policy

1. Scope

This Privacy Policy explains how Worthio ("we", "our", "us") handles personal data when you use the mobile app and connected services. We process personal data in line with applicable Indian law, including the Digital Personal Data Protection Act, 2023.

2. Data We Collect

• Account data: two-letter initials, mobile number, optional email, country, and consent records.
• Authentication data: MPIN hash, login/session records, OTP request and verification records, and reset events.
• Financial data you enter: assets, liabilities, reminders, institution details, masked identifiers, notes for family, and allocation/performance summaries.
• Subscription and billing data: selected plan, payment history, checkout session records, store subscription receipts, invoice/receipt metadata, provider transaction references, and refund/cancellation status updates.
• Sensitive fields: identifiers, relationship/branch contact, and family notes entered in asset/liability forms.
• Family sharing data: invite logs, role assignments (admin/write/read), and access/audit activity.
• Security telemetry: device identifier, app/device metadata, timezone/locale, IP address, user agent, and (if available from app context) approximate location coordinates and accuracy.
• Notification data: push token, in-app notification records, and reminder delivery status.

3. Data We Do Not Collect

• Bank passwords or internet banking credentials.
• Card CVV.
• SMS inbox content.
• Fingerprint or Face ID templates (biometric matching is handled by your device OS).

4. Why We Process Data

• Create and secure your account.
• Show assets/liabilities and family-access workflow.
• Protect sensitive fields using PIN-gated reveal, masking, and audit trails.
• Send reminder and security notifications to the account owner and linked family users.
• Manage subscriptions, verify purchases, generate receipts, and process billing-related status updates.
• Detect unauthorized access, bind trusted devices, and generate security incident reports.
• Generate AI Insights summaries using limited portfolio context.
• Meet legal, compliance, and fraud-prevention obligations.

5. Security and Storage Controls

• Data is protected in transit using TLS.
• Selected sensitive fields are stored encrypted at rest.
• Sensitive details are masked by default and full view requires your security PIN.
• Sensitive-detail access attempts (success/failure) are logged.
• Trusted-device controls are used for login flows.
• When sensitive details are revealed, notifications may be sent to owner and family members in that account.

6. Sharing of Data

We do not sell personal data. We may share data only as needed for service operation:

• With family members you authorize under your family role settings.
• With service providers that support OTP delivery, push notifications, hosting, payment processing, app-store billing validation, and AI response generation.
• With legal/regulatory authorities when required by law.

7. AI Insights Data Use

For AI Insights, we send limited context such as country code, preferred currency, portfolio totals, and allocation percentages. We do not intentionally send full account identifiers, contact numbers, or raw sensitive notes for this feature.

AI output may be incomplete or incorrect and is provided for informational awareness only.

8. Retention

• Primary account and portfolio data is retained while your account is active.
• On account deletion request, core account data is deleted from active tables.
• Certain operational/security records (for example deletion logs or fraud/security telemetry) may be retained in minimized or de-identified form where required or permitted by law.

9. Your Controls and Rights

• Export your data from the app.
• Edit or delete assets/liabilities/reminders.
• Reset MPIN and Security PIN via OTP verification flows.
• View and revoke trusted devices.
• Delete your account directly from supported in-app account controls. If you lose access to your login, you may request deletion by email after ownership verification.

For account deletion instructions, visit Worthio Account Deletion.

10. Cross-Border Processing

Some service providers used for notifications, analytics/security, or AI processing may operate from multiple regions. By using the app, you consent to such processing subject to applicable law and contractual safeguards.

11. Children

The app is not intended for children under 18.

12. Grievance Contact

For privacy/security requests: worthio-escalation@nexralabs.in. We target response within 15 working days.

13. Updates to This Policy

We may revise this Privacy Policy as features or legal requirements evolve. Updated versions are published in-app, and continued use after update means acceptance of the revised policy.