Legal
Privacy Policy
Last updated: 1 July 2026
This Privacy Policy explains what personal data we collect when you use BankerBro, why we collect it, how it is stored, who it is shared with, and the rights you have as a Data Principal under India's Digital Personal Data Protection Act, 2023.
This page is maintained by the BankerBro team. It reflects current app-visible controls and operator practices. It is not a legal certification or third-party audit. For questions, email hello@bankerbro.com.
1. Who we are
BankerBro (“we”, “us”) operates the website at bankerbro.com. We are the Data Fiduciary for personal data you submit while using the platform. Contact: hello@bankerbro.com.
2. Data we collect
- Account data: name, email, phone (optional), professional email, bank/employer, designation, experience, state, language, interests.
- Verification data: one-time codes sent to your professional email, and (only if you choose HR-letter verification) the document you upload.
- Content you create: posts, comments, votes, chat messages, uploaded files, marketplace listings, profile updates.
- Usage data: pages viewed, clicks, device type, browser, approximate location derived from IP, and error logs, used to keep the service reliable.
- Cookies: session, preference, and privacy-friendly analytics cookies. See our Cookie Policy.
3. Why we use it (purposes)
- Create and secure your account, authenticate sessions, and prevent abuse.
- Show you communities, courses, news and marketplace items relevant to your bank and role.
- Verify professional identity for the Verified Banker badge (OTP or HR letter).
- Send transactional emails (OTP, receipts, security alerts) and, only with consent, product updates.
- Comply with law and enforce our Terms.
4. Legal basis
We process personal data on the basis of your consent (given at sign-up and at specific steps such as HR-letter upload), for the performance of the service you asked for, and to meet our legal obligations.
5. Sharing & processors
- We do not sell personal data.
- We use trusted processors to host and operate the service: Supabase (database, auth, storage), Cloudflare (edge hosting, CDN), Google Cloud (AI inference for BankAI), and an email delivery provider for transactional email from notify.bankerbro.com.
- We may disclose data if required by a lawful order from an Indian authority.
6. Storage & retention
Data is stored on encrypted infrastructure with row-level access controls. We keep account data for as long as your account is active and for up to 90 days after deletion for backup, audit and legal-hold purposes. Verification documents are deleted within 30 days of a successful review.
7. Your rights (DPDP Act)
- Right to access, correct and erase your personal data.
- Right to withdraw consent at any time.
- Right to nominate another person to exercise your rights.
- Right to grievance redressal — see DPDP notice for our Grievance Officer.
8. Children
BankerBro is not intended for anyone under 18. We do not knowingly collect data from minors.
9. Changes
We will post any material change to this policy on this page and, where required, notify you by email.
