Your Security is Our Priority at Freo

Experience the confidence of secure banking with Freo. Our cutting-edge security practices ensure your data is protected every step of the way.

At Freo, we prioritise the safety and security of your data. We implement rigorous security practices to protect your information and are dedicated to maintaining the highest standards of data protection and transparency. This page details our commitment to these standards.

Security Measures

To protect your information and maintain the highest security standards, we have implemented the following measures:

●  ISO 27001 Certified

We adhere to the rigorous standards set by ISO 27001, an internationally recognised information security management system. This certification demonstrates our commitment to protecting your data and maintaining confidentiality, integrity, and availability.

● Regular RBI-Compliant Audits

Our systems undergo regular audits by external Cert-In empanelled auditors, as mandated by the Reserve Bank of India. These audits help us maintain compliance and identify potential vulnerabilities.

● Partner Trust

We collaborate with trusted partners and vendors who conduct regular audits of our systems and procedures. This ensures that the highest security standards are maintained across our entire ecosystem.

● Vulnerability Assessment and Penetration Testing (VAPT)

We conduct regular VAPT tests to identify and address potential security weaknesses. This proactive approach helps us stay ahead of emerging threats.

● Information Security Committee (ISC)

Our ISC, led by the CISO and senior management, oversees the implementation of information security practices. This committee ensures that our security measures are robust and aligned with industry best practices.

● Data Privacy

We handle customer consent and personally identifiable information (PII) with the utmost care. Our data handling practices adhere to stringent regulations to protect your privacy.

● Modern Secure Cloud Infrastructure

We host our website on AWS, ensuring secure, scalable, and compliant infrastructure with AWS best practices. Communication is encrypted with 256-bit HTTPS, and strict network segmentation enhances cybersecurity.

FAQs

1. What security measures are in place to safeguard my data?

Freo adheres to the rigorous standards set by ISO 27001 and our systems undergo regular audits by external Cert-In empanelled auditors, as mandated by the Reserve Bank of India.

2. What information does Freo collect?

Freo collects the following information to facilitate loan applications, underwriting, loan disbursement, UPI transactions, Fixed Deposits, and other financial services on the platform:

● Personal Information: Name, Mobile Number, Email ID, PAN, KYC Details, and Photo/Selfie Image.

● Financial Information: Bank Account Number.

● Device and Usage Data: Device Information, Location Data, and SMS Permissions.

This data is essential to ensure a seamless experience and to meet regulatory and service requirements on the Freo platform.

3. How can I request access to or deletion of my data?

You have the option to delete your personal data at any time. If you wish to do so, please reach out to us at hello@freo.money. Upon receiving your request from your registered email address, we will proceed with the deletion of your personal information.

Please note that if you have an active loan, data deletion requests can only be processed once all EMIs have been paid and there are no outstanding dues on your account.

4. Is my data accessible to anyone at Freo?

No, only relevant stakeholders have access through the RBAC (Role-Based Access Control) mechanism.

5. How can I contact Freo regarding data security concerns?

Please write to us at infosec@freo.money.