Back to Home

Privacy Policy

Last Updated: November 6, 2025

Table of Contents

  1. 1. Introduction
  2. 2. About Our Software
  3. 3. Information We Collect
  4. 4. How We Use Your Information
  5. 5. Legal Basis for Processing
  6. 6. How We Share Your Information
  7. 7. Cookies and Tracking Technologies
  8. 8. Data Security
  9. 9. Your Rights and Choices
  10. 10. Data Retention
  11. 11. International Data Transfers
  12. 12. Third-Party Links
  13. 13. Contact Us and Data Protection Officers
  14. 14. Grievance Redressal and Complaints
  15. 15. Children's Privacy
  16. 16. Updates to This Privacy Policy
  17. 17. Consent

1. INTRODUCTION

Welcome to Lending Labs. This Privacy Policy describes how Lending Labs ("we," "us," or "our") collects, uses, and protects information when you visit our website at lendinglabs.io (the "Website") or interact with us through inquiries, demo requests, or other communications.

We are committed to protecting your privacy and ensuring the security of your personal data in compliance with applicable data protection laws globally, including:

  • Digital Personal Data Protection Act, 2023 (DPDP Act) - India
  • Information Technology Act, 2000 and IT Rules, 2011 - India
  • General Data Protection Regulation (GDPR) - European Union
  • California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) - United States
  • Personal Data Protection Act 2012 (PDPA) - Singapore
  • Personal Data Protection Act 2010 (PDPA) - Malaysia
  • Law No. 27 of 2022 on Personal Data Protection (PDP Law) - Indonesia

By visiting our Website or providing us with your information, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.

2. ABOUT OUR SOFTWARE

Important Note:

Lending Labs provides on-premise software solutions that are deployed and operated within our customers' own environments. We do not host, process, or have access to customer data that flows through our software. Our customers maintain full control and ownership of their data.

This Privacy Policy applies only to information we collect through our Website and business communications, not to data processed by our software in customer environments.

3. INFORMATION WE COLLECT

We collect limited information to respond to your inquiries and provide information about our products and services.

3.1 Information You Provide Directly

When you interact with us, we collect information you provide, including:

  • Contact information when you request a demo or consultation (name, email address, phone number, company name, job title)
  • Information you provide when contacting us via email or contact forms
  • Newsletter subscription information (email address)
  • Any information you choose to share in correspondence with us

3.2 Information Collected Automatically

When you visit our Website, we automatically collect certain technical information, including:

  • Device information (IP address, browser type, operating system)
  • Website usage information (pages visited, time spent, referring URLs)
  • Log data (access times, error logs)
  • Cookies and similar tracking technologies (as detailed in Section 7)

4. HOW WE USE YOUR INFORMATION

We use the information we collect for the following limited purposes:

  • Responding to your inquiries and demo requests
  • Providing information about our products and services
  • Sending newsletters and marketing communications (with your consent)
  • Improving our Website and understanding visitor behavior
  • Maintaining records of our business communications
  • Complying with legal obligations and protecting our legal rights

6. HOW WE SHARE YOUR INFORMATION

We do not sell, rent, or trade your personal information. We may share your information only in the following limited circumstances:

6.1 Service Providers

We may engage third-party service providers to perform functions on our behalf, such as:

  • Email delivery and marketing automation services
  • Website hosting and analytics providers
  • Customer relationship management systems

These service providers have access to your information only to perform specific tasks on our behalf and are obligated to protect your information.

6.2 Business Partners

With your consent, we may share your information with our authorized business partners or resellers if you have expressed interest in their services or solutions.

6.3 Legal Requirements

We may disclose your information when required by law or when necessary to:

  • Comply with legal processes or governmental requests
  • Protect our rights, property, or safety
  • Prevent fraud or security issues

6.4 Business Transactions

In connection with any merger, sale of company assets, financing, or acquisition, your information may be transferred as part of that transaction.

7. COOKIES AND TRACKING TECHNOLOGIES

We use cookies and similar tracking technologies to enhance your experience on our Website and to understand how visitors use our site.

7.1 Types of Cookies We Use

Essential Cookies

Necessary for the basic operation of our Website, such as security and network management.

Analytics Cookies

Help us understand how visitors interact with our Website by collecting and reporting information anonymously (e.g., Google Analytics).

Marketing Cookies

Used to track visitors across websites to display relevant advertisements and measure campaign effectiveness.

7.2 Managing Cookies

You can control cookies through your browser settings. Most browsers allow you to refuse or delete cookies. Please note that disabling certain cookies may affect the functionality of our Website. For more information about managing cookies, refer to your browser's help documentation.

8. DATA SECURITY

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. Our security measures include:

  • Encryption of data in transit using SSL/TLS
  • Secure storage of contact information
  • Access controls limiting data access to authorized personnel only
  • Regular security assessments and updates
  • Employee training on data protection practices

While we strive to protect your personal data, no method of transmission over the internet is completely secure. We cannot guarantee absolute security but will notify you of any data breaches as required by applicable laws.

9. YOUR RIGHTS AND CHOICES

Depending on your location, you have various rights regarding your personal data under applicable data protection laws:

9.1 Rights Under Indian Law (DPDP Act)

  • Right to access personal data
  • Right to correction of inaccurate data
  • Right to erasure of personal data
  • Right to data portability
  • Right to withdraw consent
  • Right to nominate another individual to exercise rights in the event of death or incapacity

9.2 Rights Under GDPR (European Union)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have additional rights:

  • Right of access to your personal data
  • Right to rectification of inaccurate data
  • Right to erasure (right to be forgotten)
  • Right to restriction of processing
  • Right to data portability
  • Right to object to processing
  • Right not to be subject to automated decision-making
  • Right to lodge a complaint with a supervisory authority

9.3 Rights Under CCPA/CPRA (California)

If you are a California resident, you have the following rights:

  • Right to know what personal information is collected, used, shared, or sold
  • Right to delete personal information
  • Right to opt-out of the sale or sharing of personal information (Note: We do not sell personal information)
  • Right to correct inaccurate personal information
  • Right to limit use and disclosure of sensitive personal information
  • Right to non-discrimination for exercising your rights

9.4 Rights Under Singapore PDPA

  • Right to access personal data
  • Right to correct personal data
  • Right to withdraw consent for collection, use, or disclosure

9.5 Rights Under Malaysia PDPA

  • Right to access personal data
  • Right to correct personal data
  • Right to withdraw consent
  • Right to prevent processing for direct marketing

9.6 Rights Under Indonesia PDP Law

  • Right to access personal data
  • Right to correct inaccurate personal data
  • Right to complete incomplete personal data
  • Right to erasure and destruction of personal data
  • Right to withdraw consent
  • Right to file a complaint

9.7 How to Exercise Your Rights

To exercise any of these rights, please contact us using the information in Section 13. To opt out of marketing communications:

  • Click the "unsubscribe" link in any marketing email
  • Email us at info@lendinglabs.io
  • Contact us at the details provided in Section 13

We will respond to your request within the timeframes required by applicable law (typically 30 days, or as specified by local regulations).

10. DATA RETENTION

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected:

  • Lead and contact information: Retained for 3 years from last interaction, or until you request deletion
  • Marketing communications data: Retained until you unsubscribe
  • Email correspondence: Retained for 5 years for business record purposes
  • Website analytics data: Retained for up to 26 months

When we no longer need your personal data, we will securely delete or anonymize it in accordance with applicable data protection laws.

11. INTERNATIONAL DATA TRANSFERS

While our primary operations are based in India, we may transfer your data to, and store or access it in, jurisdictions outside your country of residence, including to service providers located in other countries. When we transfer data internationally, we implement appropriate safeguards:

  • For EU data: Standard Contractual Clauses (SCCs) approved by the European Commission
  • For Singapore data: Compliance with PDPA requirements for cross-border data transfers
  • For Malaysia data: Compliance with PDPA requirements and obtaining necessary consents
  • For Indonesia data: Compliance with PDP Law requirements for cross-border transfers
  • Data processing agreements with enhanced security commitments

By using our Website and providing your information, you consent to such transfers subject to the protections described in this Privacy Policy.

12. THIRD-PARTY LINKS

Our Website may contain links to third-party websites. This Privacy Policy does not apply to such third-party sites. We encourage you to review the privacy policies of any third-party websites you visit.

13. CONTACT US AND DATA PROTECTION OFFICERS

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Lending Labs

Data Protection Officer

Email: info@lendinglabs.io

We will respond to your inquiry within 30 days of receipt, or as required by applicable law in your jurisdiction.

EU Representative (GDPR): [To be designated if required based on business operations in EU]

14. GRIEVANCE REDRESSAL AND COMPLAINTS

We are committed to resolving complaints about our collection or use of your personal data.

14.1 India (DPDP Act & IT Act)

Grievance Officer

Name: [To be designated]

Email: grievance@lendinglabs.io

Address: [Company registered address to be provided]

The Grievance Officer will acknowledge your complaint within 24 hours and resolve it within 30 days. If unsatisfied, you may file a complaint with the Data Protection Board of India.

14.2 European Union (GDPR)

You have the right to lodge a complaint with your local data protection supervisory authority. A list of supervisory authorities is available at:

https://edpb.europa.eu/about-edpb/board/members_en

14.3 Singapore (PDPA)

You may file a complaint with the Personal Data Protection Commission (PDPC) of Singapore at:

https://www.pdpc.gov.sg

14.4 Malaysia (PDPA)

You may file a complaint with the Personal Data Protection Commissioner of Malaysia. Contact information available at:

http://www.pdp.gov.my

14.5 Indonesia (PDP Law)

You may file a complaint with the Ministry of Communication and Information Technology or through the personal data protection authority once established.

15. CHILDREN'S PRIVACY

Our Website is not directed to individuals under the age of 18 (or the applicable age of consent in your jurisdiction). We do not knowingly collect personal information from children. If we become aware that we have collected information from a child, we will take steps to delete it promptly. If you believe we have collected information from a child, please contact us immediately.

16. UPDATES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of material changes by:

  • Posting the updated Privacy Policy on our Website with a revised "Last Updated" date
  • Sending an email notification if you have subscribed to our communications

Your continued use of our Website after any changes constitutes your acceptance of the updated Privacy Policy. We encourage you to review this Privacy Policy periodically.

Back to Top ↑