KredMeDownload

Legal

Privacy Policy

Last updated: 12 June 2026 · Effective immediately

This Privacy Policy explains how Nouson Work Technologies Private Limited (“KredMe”, “we”, “us”, or “our”) collects, uses, shares, and protects information when you use the KredMe mobile application, website, and related services (collectively, the “Service”). By using the Service you agree to this Policy.

1. Information we collect

We collect only what we need to help you choose the best card for each purchase:

  • Account information: name, email address, phone number, and authentication identifiers when you sign up.
  • Card profile: the credit cards you choose to add (network, issuer, product name, last 4 digits where provided). We do not store full card numbers, CVVs, or PINs.
  • Usage data: in-app interactions, screens viewed, search queries, and recommendation results, used to improve the product.
  • Device data: device model, operating system, language, app version, crash logs, and approximate location (city/region only, never precise GPS unless you opt in).

2. How we use your information

  • To recommend the best card for a transaction based on MCC, caps, and offers.
  • To personalise your experience and remember your card portfolio.
  • To send product updates, security alerts, and (with consent) marketing communications.
  • To detect and prevent fraud, abuse, and security incidents.
  • To comply with applicable Indian laws and respond to lawful requests.

3. Google API services and Gmail access

KredMe’s use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

3.1 What we access

If you choose to sign in with Google, we receive your name, email address, and profile picture. If you additionally grant Gmail access, KredMe requests the gmail.readonly scope and uses it only to identify and parse credit-card statement emails (for example, statements from HDFC, ICICI, SBI Card, Axis, and similar issuers) so we can detect your cards and extract transactions and rewards.

3.2 Why we need it

  • To detect which credit cards you actually use, so we can pre-fill your card list without you typing them manually.
  • To extract recent transactions so we can show you which card earned the most rewards.
  • To track category-cap utilisation (e.g. fuel surcharge waivers, quarterly milestone caps) so recommendations stay accurate.

3.3 What we do NOT do with Google user data

  • We do not use Gmail data to serve advertisements or for any form of advertising personalisation.
  • We do not sell Gmail data, and we do not transfer it to third parties except as necessary to provide or improve user-facing features, comply with applicable law, or as part of a merger, acquisition, or sale of assets with notice to you.
  • We do not allow humans to read Gmail data, except where we have your explicit consent, where it is necessary for security purposes (such as investigating abuse), or where required by law.
  • We do not use Gmail data to develop, improve, or train generalised or non-personalised AI or machine-learning models.
  • We do not read emails outside the credit-card statement pattern.

3.4 Retention and deletion

Raw email content is processed and discarded — we keep only the structured fields we need (date, merchant, amount, card identifier, category). Parsed transaction data is stored in your KredMe account for as long as you keep the account. You can disconnect Gmail at any time from Settings → Connected accounts → Disconnect Gmail in the app, or revoke access at myaccount.google.com/permissions. When you disconnect or delete your account, we delete imported Gmail-derived data within 30 days unless we are required by law to retain it.

4. Sharing of information

We do not sell your personal data. We share limited data only with:

  • Service providers (hosting, analytics, crash reporting, customer support) under confidentiality and data-protection obligations.
  • Authorities when required by law, regulation, court order, or to protect rights and safety.
  • Successors in the event of a merger, acquisition, or asset sale, subject to this Policy.

5. Analytics and tracking technologies

Our website uses Google Analytics 4 (GA4), provided by Google and deployed through Google Tag Manager, to understand how visitors use our website and to improve our services. GA4 may collect information such as pages visited, time spent on the site, browser and device information, approximate geographic location (derived from your IP address), and interactions with site content. This information is collected through cookies and similar technologies and is used only for analytics, performance monitoring, and improving the user experience.

We use this data only in aggregate. It is not used for advertising, and it is not linked to your KredMe account, your card profile, or any Gmail-derived data. Google processes this information in accordance with the Google Privacy Policy.

You can control or delete cookies through your browser settings, or opt out of Google Analytics across all websites by installing the Google Analytics Opt-out Browser Add-on.

6. Data storage and security

Data is stored on servers operated by reputable cloud providers with industry-standard safeguards including encryption in transit (TLS) and at rest, access controls, and audit logging. No method of transmission or storage is completely secure; please use a strong password and keep your device secure.

7. Data retention

We retain account and card-profile data for as long as your account is active. You can delete your account at any time from within the app or by writing to us. After deletion, residual data may be retained in encrypted backups for up to 90 days, or longer where required by law.

8. Your rights

Subject to applicable law (including the Digital Personal Data Protection Act, 2023), you have the right to access, correct, update, or delete your personal data, withdraw consent, and lodge a complaint with the Data Protection Board of India. To exercise these rights, email nousonworktechnologies@gmail.com.

9. Children

The Service is not directed to individuals under 18. We do not knowingly collect data from children. If you believe a child has provided us with personal information, please contact us.

10. Third-party links

The Service may link to third-party websites or apps (issuers, merchants, app stores). We are not responsible for their privacy practices. Please review their policies separately.

11. Changes to this Policy

We may update this Policy from time to time. Material changes will be notified in the app or by email. The “Last updated” date at the top indicates when changes took effect.

12. Contact us

Nouson Work Technologies Private Limited
Bengaluru, Karnataka, India
Email: nousonworktechnologies@gmail.com