Privacy Policy

We collect only the information necessary to provide the Service:

• Account data: Your name, email address, and authentication credentials when you register.
• Financial data: Credit card details (names, limits, bill dates — not card numbers), bank account balances, and transactions you manually enter.
• Usage data: Pages visited, features used, and interactions within the app — collected to improve the Service.
• Technical data: IP address, browser type, device information, and cookies for session management.

We do not collect actual bank card numbers, CVVs, PINs, or connect to your bank accounts directly. All financial data is entered manually by you.

Your data is used exclusively to:

• Provide, operate, and maintain the CreditPilot Service.
• Personalise your dashboard, reports, and notifications.
• Send service-related emails (password resets, billing alerts).
• Improve and develop new features based on aggregated, anonymised usage data.
• Comply with legal obligations under UAE law.

We do not sell, rent, or share your personal or financial data with third parties for marketing purposes.

All data is stored on servers located in the UAE or EU regions with industry-standard security measures:

• TLS 1.3 encryption for all data in transit.
• AES-256 encryption for data at rest.
• Regular security audits and penetration testing.
• Access controls — only authorised personnel can access production data.
• Automatic backups with 30-day retention.

We may share your data only in the following circumstances:

• Service providers: Trusted sub-processors (database hosting, email delivery) under strict data processing agreements.
• Legal requirements: When required by UAE law, court order, or government authority.
• Business transfer: In the event of a merger or acquisition, with prior notice to you.

Under the UAE Personal Data Protection Law, you have the right to:

• Access your personal data held by us.
• Correct inaccurate data.
• Delete your account and all associated data.
• Port your data in a machine-readable format.
• Object to certain processing activities.

To exercise these rights, contact us at prakashbhanu247@gmail.com. We will respond within 15 business days.

We use cookies strictly for authentication session management and security purposes. We do not use tracking or advertising cookies. You can disable cookies in your browser settings, but this may prevent login functionality.

We retain your data for as long as your account is active. When you delete your account, all personal and financial data is permanently deleted within 30 days. Anonymised aggregate data (totals, statistics) may be retained indefinitely.

CreditPilot is not directed to individuals under 18 years of age. We do not knowingly collect data from minors. If we become aware that a minor has provided personal data, we will delete it promptly.

We may update this Privacy Policy periodically. We will notify you by email and through an in-app notice at least 30 days before material changes take effect. Your continued use of the Service after changes constitutes acceptance.

For privacy questions or to exercise your rights:

• Email: prakashbhanu247@gmail.com
• Address: Dubai Internet City, Dubai, UAE