Bindaas / Stay safe / Security
Security

Your data is not our business model.

The four rules below are RBI digital lending requirements. We keep them concrete on purpose.

Four promises about your data

  • Encrypted in transit and at rest. 256-bit TLS everywhere, and encryption on our servers.
  • Stored only in India. Your data never leaves the country.
  • We never access your contacts, photos, SMS or call logs. Not once, not ever.
  • Camera and location are used once, for KYC only, and only with your consent.

What we will never ask for

  • An OTP. We will never ask you to read one out.
  • An advance fee or a "processing deposit" to release your loan.
  • Your card PIN, UPI PIN or net-banking password.
  • Payment to any personal account or UPI ID.

If anyone asks in our name, it is fraud. Report it: spot fake loan apps.

256-bit TLS Data stored in India ISO 27001:2022 SOC 2 Type II DPDP Act compliant

Responsible disclosure

Found a security flaw? Tell us privately at security@bindaas.in. We acknowledge within 48 hours and will keep you posted. We do not run a paid bug bounty, but we are grateful, and we ask that you report privately and give us time to fix before disclosing.

Certifications shown are illustrative for this prototype.

Ready when you are.

Check your offer in 2 minutes. No CIBIL impact.

Check my offer
download
bindaas.