Privacy Policy

Zenisk Insurance Brokers Pvt. Ltd. (“Zenisk”, “we”, “us” or “our”) respects your privacy and is committed to protecting the personal information you share with us. This Privacy Policy explains how we collect, use, disclose, store and protect personal information across our websites, mobile applications, portals and other platforms (collectively, the “Platforms”), and when you otherwise interact with us.

Zenisk is a Direct Insurance Broker (Life & General) registered with the Insurance Regulatory and Development Authority of India (IRDAI). Our registered office is: 8th Floor, SRB Tower, Infocity Square, KIIT, Bhubaneswar – 751024, Odisha, India. By using our Platforms or providing information to us, you consent to the collection, use and disclosure of your information as described in this Policy.

Definitions

Personal Data / Personal Information: Any information that identifies you or can reasonably be used to identify you, either alone or together with other information.

Sensitive Personal Data: Information such as health/medical details, biometric data, or other categories defined as sensitive under applicable law.

Service Providers / Processors: Third-party vendors engaged to provide services on our behalf (technology, payment gateway, analytics, customer support, etc.).

Platforms: Zenisk websites, dashboards, mobile apps and other digital tools used to deliver services.

Information We Collect

Information You Provide Directly

• Name, email, phone, postal address
• Date of birth, gender, marital status
• KYC documents (PAN, Aadhaar, passport)
• Employment / employer details
• Health/medical details (for insurance underwriting)
• Bank/payment details (tokenised only, no raw card storage)
• Claim-related documents
• Resume/CV if applying for a job

Information Collected Automatically

• IP address, device identifiers, OS, browser
• Clickstream, logs, usage analytics
• Cookies & tracking pixels

Information From Third Parties

• Insurers, hospitals, garages, TPAs
• Verification agencies, banks, employer
• Medical practitioners, surveyors

How We Use Your Information

We use personal information for the following lawful purposes:

• To assess insurance requirements, obtain quotations and place policies with insurers
• To administer policies, renewals, endorsements and claims processing
• To verify identity and comply with legal, regulatory and KYC/AML obligations
• To process premium payments, refunds and related financial reconciliation (through authorised payment gateways)
• To provide customer support and respond to queries, complaints and grievance handling
• To send transactional communications (policy documents, renewal reminders, claim status updates)
• For analytics, product development, research and to improve our Platforms and services
• For marketing (only where you have provided consent or as permitted by law); you may opt out at any time
• To protect our legal rights, investigate fraud, safeguard confidentiality and security, and prevent misuse of our services

We will not use your information for purposes incompatible with the original purpose of collection without informing you and, where required, obtaining your consent.

Legal Bases for Processing (where applicable)

Processing of personal data is carried out on lawful grounds such as:

• Performance of a contract (e.g. policy servicing)
• Compliance with legal or regulatory obligations (IRDAI, tax, KYC/AML laws)
• Legitimate interest (fraud prevention, business operations, service improvement)
• Your consent (for marketing or other optional processing)

Sharing and disclosure of information

We may share personal information with:

• Insurers, reinsurers, TPAs, surveyors and other entities directly involved in underwriting or claim settlement
• Service providers (cloud hosting, payment gateways, analytics, CRM, legal and professional advisors) who process data on our behalf under contractual commitments to protect your data
• Employers or corporate clients when services are provided through an employer-sponsored group program
• Regulatory, tax or law enforcement authorities where required by law or court order
• Acquirers or other parties in the event of merger, reorganisation, sale or transfer of business assets (with appropriate safeguards)
• Any other party with your explicit consent

We do not sell your personal information to third parties for their independent use.

International Transfers

We may transfer and process your personal information outside India where our service providers or partners are located. In such cases we will ensure appropriate safeguards (contracts, standard contractual clauses, or other measures) to protect your personal data in accordance with applicable laws.

Retention of Data

We retain personal information only as long as necessary to fulfil the purposes described in this Policy, to comply with legal, tax or regulatory obligations, or to resolve disputes and enforce our agreements. Where applicable, certain records may be retained for statutory or regulatory periods (for example, accounting and tax records) which commonly run up to seven (7) years, unless a longer retention period is required by law. After the retention period expires, we will securely delete or anonymise data.

Cookies, Tracking and Analytics

We and our authorised partners use cookies, web beacons and similar technologies to collect usage information to operate and improve our Platforms. Cookies help provide a better user experience (session management, preferences) and anonymous analytics.

You may disable cookies via your browser settings, but doing so may affect your ability to use certain features on the Platforms.

Security

We implement administrative, technical and physical safeguards designed to protect personal information from unauthorised access, loss, misuse or alteration. These measures include access controls, encryption (where applicable), network security and secure data storage. While we use reasonable security measures, no system is completely secure; we cannot guarantee absolute security of information transmitted to us.

Data Subject Rights

Subject to applicable law and verification of your identity, you may have the right to:

• Request access to the personal data we hold about you
• Request correction or updating of inaccurate or incomplete data
• Request deletion/erasure of personal data (where retention is not required by law)
• Object to or restrict processing in certain circumstances
• Request portability of your data in a commonly used machine-readable format (where applicable)
• Withdraw consent where processing is based on consent (withdrawal will not affect processing prior to withdrawal)

To exercise any of the above rights, contact us using the details in "Grievances, complaints and contact"Section. We may require verification of identity and may refuse requests where permitted by law (for example, for regulatory or legal reasons).

Children and Minors

Our Platforms are not intended for children under 18 years. We do not knowingly collect personal information from minors. If we learn that we have collected data from a minor without parental consent, we will take steps to delete such data.

Third-party Websites and Links

Our Platforms may contain links to third-party websites, products or services. This Policy does not apply to third-party sites. We are not responsible for the privacy practices or content of third parties. Please review their privacy policies before providing personal information.

Grievances, Complaints and Contact

If you have questions, requests, complaints or wish to exercise your data rights, please contact our Data Protection Officer / Compliance Officer through the following channels:

• Email: service@zenisk.in
• Alternate / Grievance: grievance@zenisk.in
• Phone: 0674 4057 902
• Postal: Zenisk Insurance Brokers Pvt. Ltd., 8th Floor, SRB Tower, Infocity Square, KIIT, Bhubaneswar – 751024, Odisha, India.

We will acknowledge your enquiry and respond within a reasonable timeframe consistent with applicable law and internal processes.

Changes to this Policy

We may update this Policy from time to time to reflect changes in our practices, legal or regulatory requirements, or Platform features. Where required by law, we will obtain your consent to material changes. The “Effective date” at the top indicates when the Policy was last updated. Please review this page periodically.

Governing Law & Jurisdiction

This Policy and any disputes arising out of it are governed by the laws of India. The courts at Bhubaneswar, Odisha shall have exclusive jurisdiction for any disputes arising hereunder

Miscellaneous

• Insurance is the subject matter of solicitation. Please read policy documents, product brochures and terms carefully before purchasing.
• Use of payment gateways is subject to the terms and security policies of the respective payment service providers. We do not store full credit card numbers unless expressly authorised and tokenised by a certified payment partner.
• We will cooperate with regulatory authorities (including IRDAI) and legal processes as required.