Privacy Policy
Last Updated: May 2026
Effective Date: May 2026
1. Introduction
Welcome to Treishvaam Finance ("we," "our," or "us"), operated by Treishvaam Group. We are committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, store, and protect information when you visit treishvaamfinance.com (the "Platform") and use our services.
By accessing or using the Platform, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree, please discontinue use of the Platform immediately.
2. Information We Collect
We collect the following categories of information:
2.1 Information You Provide
- Account Data: Name, email address, and profile information when you create an account via Keycloak authentication.
- Content Data: Articles, comments, or other content you submit through the Platform.
- Contact Data: Information you provide when contacting us via the contact form.
2.2 Information Collected Automatically
- Technical Data: IP address (anonymized), browser type and version, operating system, device type, screen resolution.
- Usage Data: Pages visited, time spent on pages, click patterns, scroll depth, referral source.
- Location Data: Approximate geographic location derived from IP address (city/country level only).
3. Google Analytics 4 (GA4) Disclosure
We use Google Analytics 4 (GA4) to understand how visitors interact with our Platform. GA4 collects data automatically when you visit any page, including:
- Page views and navigation paths
- Session duration and engagement metrics
- Device and browser information
- Approximate geographic location (city/country)
- Referral source (how you arrived at the Platform)
IP Anonymization: We have enabled IP anonymization (anonymize_ip: true) in our GA4 configuration. Your full IP address is never stored by Google Analytics.
How to Opt Out: You can opt out of Google Analytics tracking by:
- Installing the Google Analytics Opt-out Browser Add-on
- Using your browser's "Do Not Track" setting
- Using a privacy-focused browser or browser extension that blocks tracking scripts
4. Cookies and Similar Technologies
We use the following cookies:
| Cookie | Provider | Purpose | Duration |
|---|---|---|---|
| _ga | Google Analytics | Distinguishes unique users | 2 years |
| _ga_* | Google Analytics | Maintains session state | 2 years |
| KC_SESSION | Keycloak (Auth) | Authentication session | Session |
| __cf_bm | Cloudflare | Bot management | 30 minutes |
5. How We Use Your Information
- To provide, maintain, and improve the Platform and its content
- To authenticate users and manage account access
- To analyze usage patterns and improve user experience
- To detect, prevent, and address technical issues and security threats
- To communicate with you about your account or our services
- To comply with legal obligations
6. Third-Party Services
We use the following third-party services that may process your data:
- Google Analytics 4: Website analytics and usage tracking
- Keycloak: Identity and access management (authentication)
- Cloudflare: Content delivery network, DDoS protection, and DNS
- Grafana Cloud (Faro): Real User Monitoring (RUM) for performance
Each third-party service operates under its own privacy policy. We encourage you to review their policies.
7. Data Retention
- Account Data: Retained for the duration of your account. Deleted within 30 days of account deletion request.
- Analytics Data: Google Analytics data is retained for 14 months, after which it is automatically deleted.
- Server Logs: Retained for 90 days for security and debugging purposes.
- Content Data: Published content remains on the Platform unless you request its removal.
8. Data Security
We implement industry-standard security measures to protect your data, including:
- TLS 1.3 encryption for all data in transit
- AES-256 encryption for sensitive data at rest
- Web Application Firewall (ModSecurity) for threat detection
- Rate limiting and brute force protection
- Regular security audits and vulnerability assessments
- Zero-trust network architecture via Cloudflare Tunnel
9. Digital Personal Data Protection Act, 2023 (India)
In compliance with the Digital Personal Data Protection Act, 2023 (DPDP Act) of India, we affirm the following:
- Lawful Purpose: We process personal data only for lawful purposes as described in this policy.
- Data Minimization: We collect only the data necessary for the stated purposes.
- Storage Limitation: Personal data is not retained beyond the period necessary for its purpose.
- Right to Access: You may request a summary of your personal data processed by us.
- Right to Correction: You may request correction of inaccurate or incomplete personal data.
- Right to Erasure: You may request deletion of your personal data, subject to legal retention requirements.
- Right to Grievance Redressal: You may contact our Grievance Officer (details below) for any concerns.
- Right to Nominate: You may nominate another individual to exercise your rights in case of death or incapacity.
10. Children's Privacy
The Platform is not intended for individuals under the age of 18. We do not knowingly collect personal data from children. If we become aware that we have collected personal data from a child without verifiable parental consent, we will take steps to delete that information promptly.
11. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated "Last Updated" date. We encourage you to review this policy periodically. Continued use of the Platform after changes constitutes acceptance of the revised policy.
12. Grievance Officer & Contact
In accordance with the DPDP Act, 2023, the details of our Grievance Officer are as follows:
Grievance Officer: Amitsagar Kandpal
Organization: Treishvaam Group
Email: [email protected]
Address: Bangalore, Karnataka, India
We will acknowledge your grievance within 24 hours and resolve it within 30 days of receipt.