Introduction
This Privacy Policy describes how KSN Credence Commodities Trading Private Limited ("Company", "We", "Us", or "Our") collects, uses, processes, stores, and protects personal information of clients and users.
We are a registered stockbroker and commodities trading entity and a member of the National Stock Exchange of India (NSE), Bombay Stock Exchange (BSE), Multi Commodity Exchange of India (MCX), and a Depository Participant with Central Depository Services Limited (CDSL).
Applicable Laws & Regulations
- Information Technology Act, 2000 and SPDI Rules
- SEBI (Stock Brokers) Regulations and circulars
- Exchange bye-laws and regulations (NSE, BSE, MCX)
- Depository regulations (CDSL/NSDL)
- Prevention of Money Laundering Act, 2002 (PMLA)
- SEBI KYC Registration Agency (KRA) Regulations
- Digital Personal Data Protection Act, 2023 (DPDP Act), as applicable
Scope
This Policy applies to:
- Clients opening or maintaining trading and/or Demat accounts
- Users of our website, mobile applications, and platforms
- Prospective customers undergoing onboarding or KYC
- Authorized representatives acting on behalf of clients
Data Fiduciary & Definitions
For the purpose of this Policy:
- Company refers to the Data Fiduciary responsible for processing personal data
- Client / User refers to the Data Principal whose data is processed
- Grievance Officer refers to the designated officer for handling privacy concerns
Consent
We collect and process personal data only with explicit, informed, and specific consent.
By submitting your information or availing our services, you:
- Provide consent for KYC/AML verification and regulatory compliance
- Authorize sharing of information with regulators and intermediaries as required by law
- Acknowledge that certain processing is mandatory for account opening and trading services
Information We Collect
We collect only such data as is necessary for lawful and regulatory purposes.
Personal
- Full name & DOB
- PAN, Aadhaar, Passport
- Photograph & Signature
- Address, Email, Phone
Financial
- Bank account & IFSC
- Income & Net worth
- Investment objectives
- Demat holdings
Regulatory / KYC
- FATCA/CRS declarations
- PEP status
- AML risk classification
- CKYC/KRA records
Transactional
- Trade orders & execution
- Margin & ledger balances
- Settlement info
- Payout details
Technical
- IP address & device ID
- Browser type
- Login & session logs
- Cookies & usage data
Purpose of Data Processing
We process personal data for:
- Account opening and onboarding
- KYC and regulatory compliance
- Execution of trades across NSE, BSE, and MCX
- Clearing, settlement, and depository operations
- Risk management and surveillance
- Fraud detection and prevention
- Regulatory reporting and audits
- Customer support and grievance handling
Data Sharing and Disclosure
7.1 Regulatory Authorities
We may share data with:
- Securities and Exchange Board of India (SEBI)
- Stock exchanges (NSE, BSE, MCX)
- Depositories (CDSL/NSDL)
- KYC Registration Agencies (KRA)
- Financial Intelligence Unit (FIU-IND)
- Income Tax Department and other statutory authorities
7.2 Service Providers
- Banks and payment gateways
- Clearing corporations
- Technology and cloud service providers
- KYC verification agencies
7.3 Legal Requirements
- Pursuant to legal obligations or court orders
- For fraud detection or investigation
- To enforce legal rights
Data Security Measures
We implement robust technical and organizational safeguards:
Data Retention
Personal data is retained only for as long as required under applicable laws, including SEBI, Exchange, Depository, and PMLA regulations.
Data may be retained for longer periods where required for:
- Legal proceedings
- Regulatory audits
- Dispute resolution
Data Principal Rights
Subject to applicable law, you have the right to:
Access your personal data held by us
Request correction or updates to your data
Withdraw consent where applicable
Request deletion where legally permissible
Lodge complaints regarding data usage
Nominate a representative for data rights
Cookies and Tracking
We use cookies and similar technologies for:
- Authentication and session management
- Security and fraud prevention
- Analytics and system performance
Third-Party Links
Our platforms may contain links to third-party websites. We are not responsible for their privacy practices or content. We encourage you to review the privacy policies of any third-party sites you visit.
Cross-Border Data Transfer
Personal data may be processed or stored outside India only where:
- Adequate safeguards are in place
- Such transfer complies with applicable Indian laws and SEBI regulations
Data Breach and Incident Response
In the event of a data breach, we will:
- Take immediate containment and mitigation measures
- Conduct an internal investigation
- Notify affected users and relevant regulatory authorities as required under applicable law
- Implement corrective actions to prevent recurrence
Grievance Redressal
For privacy-related concerns or to exercise your rights, please contact our Grievance Officer:
Grievances will be addressed within timelines prescribed under applicable law.
Policy Updates
This Policy may be updated periodically due to:
- Regulatory changes
- Operational requirements
- Business updates
Governing Law & Dispute Resolution
This Policy shall be governed by and construed in accordance with the laws of India. Any disputes arising out of or in connection with this Policy shall be subject to the exclusive jurisdiction of the courts at Lucknow.
Contact Information
For any questions or concerns regarding this Privacy Policy: