Privacy Policy

This Privacy Policy explains how Credx ("we", "us", "our") collects, uses, discloses, and safeguards personal information when you use our lending management platform and related services (the "Service").

1. Information We Collect

  • Account Data: Name, email address, authentication data, role/permissions.
  • Operational Data: Debtor and guarantor details, loan records, payment schedules, collateral information, branch and collector assignments, uploaded documents.
  • Usage & Device Data: Logs, IP address, device/browser type, pages viewed, timestamps, and diagnostic data.
  • Support Communications: Messages sent via the contact form or support channels.

2. Lawful Bases for Processing

  • Contract: To provide and operate the Service you requested.
  • Legitimate Interests: To secure, maintain, and improve the Service; prevent fraud; analyze performance.
  • Legal Obligations: To comply with applicable laws, including financial and consumer protections.
  • Consent: Where required (e.g., certain marketing or optional features), which you may withdraw at any time.

3. How We Use Information

  • Provide, maintain, and improve the Service and its features (e.g., loan terms, dashboards, document verification).
  • Authenticate users; manage roles and permissions.
  • Communicate with you about updates, security alerts, and service changes.
  • Monitor and enhance safety, security, and fraud prevention.
  • Comply with legal and regulatory requirements.

4. Sharing and Disclosure

  • Service Providers: We may share data with vendors who process data on our behalf under confidentiality and security obligations.
  • Legal Requests: We may disclose data when required by law or to protect rights, property, or safety.
  • Business Transfers: In connection with a merger, acquisition, or asset sale, data may be transferred, subject to this Policy.

5. Data Retention

We retain personal information for as long as necessary to fulfill the purposes described in this Policy, to comply with legal obligations, and to resolve disputes. Retention periods may vary by data category and legal requirements.

6. Security

We implement administrative, technical, and organizational safeguards designed to protect personal information. No method of transmission or storage is completely secure; we cannot guarantee absolute security.

7. International Transfers

Personal information may be processed in jurisdictions other than your own. Where applicable, we implement appropriate safeguards (e.g., contractual protections) consistent with legal requirements.

8. Your Rights

Subject to applicable law, you may have rights to access, correct, update, restrict, object to, or delete your personal information, and to data portability. You may also have the right to lodge a complaint with a data protection authority.

9. Children’s Privacy

The Service is not directed to children under the age of 13 (or the age of majority in your jurisdiction). We do not knowingly collect personal information from children.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via the Service or email, with the updated effective date.

11. Contact Us

For questions, requests, or complaints about this Policy or our data practices, please contact us via the Contact form.