PrivacyPolicy

To provide you with personalized financial services, we collect various types of personal and sensitive information:

Account Information

• Name, contact number, email address, mailing address, age, gender, marital status

• National ID or government-issued documents for identity verification

• Employment details, financial documentation, and income data

• Credit and loan application history

Financial Data

• Bank account or mobile wallet information

• Transactional SMS data from financial institutions (with explicit consent)

Usage Information

• App usage behavior, interaction logs, and preferences

• Log files and metadata related to your use of Dana's mobile apps or services

Device Information

• Device type, IMEI, SIM details, IP address, OS version, device settings

Information from Third Parties

• Credit bureaus, mobile operators, partner MFIs, or lenders

• Public or government sources

• Analytics and marketing partners under confidentiality agreements

Your information powers Dana's financial services, matchmaking, and educational tools:

• Personalized Credit Matchmaking: Match users with suitable financial products or institutions

• Financial Education & Rewards: Deliver gamified learning content and reward management

• Identity & Credit Assessment: Verify identity and assess creditworthiness

• AI-Driven Insights: Analyze financial behavior and suggest improvements

• Compliance & Security: Fulfill legal requirements (e.g., KYC, AML) and manage fraud risks

• Marketing & Updates: Send promotional materials and service alerts (with permission)

• Internal Improvement: Enhance services, algorithms, and customer experience using anonymized data

Dana prioritizes the protection of your information using best-in-class security practices:

Encryption

• 256-bit AES encryption at rest and TLS 1.3 encryption in transit

Zero-Knowledge Architecture

• Wherever applicable, data is processed without revealing raw user inputs

Compliance

• Adheres to SOC 2 Type II, GDPR, and relevant Bangladeshi data protection laws

Monitoring & Controls

• Continuous monitoring, regular vulnerability assessments, internal access controls

Dana respects your privacy. We do not sell or rent your personal data.

We only share data under specific, controlled circumstances:

• With Financial Partners: MFIs, lenders, and credit bureaus for matchmaking and validation

• With Service Providers: Technology partners (hosting, analytics, SMS gateways) under strict confidentiality

• With Legal Authorities: Upon lawful request from regulatory or tax authorities

• For Corporate Activity: During mergers, restructuring, or acquisition

• With Your Consent: Explicit approval for any other sharing

As a user, you retain control over your personal data under applicable laws:

👁️ Access – Request your data record

✏️ Rectification – Correct inaccurate information

🗑️ Erasure – Request data deletion (where legally allowed)

📦 Portability – Export your data

⏸️ Restriction – Limit specific data uses

🚫 Objection – Opt out of marketing or certain processing

To exercise your rights: Email us at privacy@dana.money or use in-app privacy controls. We will respond within 30 days.

We retain data only as long as necessary for operational and legal reasons:

• Active Account Data: Retained during account use and up to 7 years after closure

• Transaction Data: Anonymized after 18 months for AI training

• Analytics Data: Aggregated and retained for service improvement

• Marketing Data: Deleted upon unsubscribe or deactivation

Your data may be processed in countries outside Bangladesh, including the US and EU.

Our Safeguards Include:

• Standard Contractual Clauses (SCCs)

• Adequacy decisions (where applicable)

• Binding Corporate Rules

• Regular audits of international processors

Dana reserves the right to take appropriate enforcement actions to protect the integrity of our platform:

Account Suspension: We may suspend or permanently ban any user or sales officer who violates our terms, community guidelines, or internal policies.

Chat Monitoring: Dana may access and review person-to-person chat interfaces within our app environment for the purposes of:

• Monitoring compliance with platform rules

• Resolving disputes or complaints

• Investigating fraud, abuse, or misconduct

All such actions are conducted strictly under internal access controls and in accordance with applicable laws.

We may revise this policy periodically. In case of material changes, we will notify you through:

• Email to your registered address

• In-app alerts

• Updated policy on our website

Continued use of Dana services after changes are effective constitutes acceptance.

If you have questions or concerns regarding your data or this Privacy Policy, reach out to us: