Trust Center

Last updated: April 27, 2026

DhanRakh is built for financial trust. This page explains how we protect your data, your money records, and your account access.

1. Security Controls

• Database row-level security (RLS) on user-owned data
• TLS encryption in transit and encrypted storage at rest
• PIN + optional biometric lock for sensitive app actions
• Edge-function authorization for internal-only operations
• Rooted-device detection and sensitive-action restriction

2. Privacy & Consent

• DPDPA-aligned consent collection and withdrawal support
• No sale of personal financial data
• Account deletion with data cleanup workflows
• Export and portability options for user data

3. India Data Residency

• Persistent storage of regulated personal, financial, and payment datasets is restricted to India-hosted systems
• Runtime host allowlists and fail-closed checks block non-compliant storage endpoints in India mode
• Cross-border processing is permitted only for controlled transient flows and not for persistent regulated storage

4. Payments & Subscriptions

• Payment processing through certified gateway partners
• No card data stored directly in the DhanRakh app backend
• Server-side verification for subscription status and webhooks

5. Responsible AI

• AI features run through secure edge workers
• No direct API key exposure in mobile clients
• Advisory outputs include product disclaimers where required

6. Incident Response

Security incidents are triaged immediately. If a user-impacting incident occurs, affected users are notified with next steps and remediation status.

7. Report a Problem

• Support: support@dhanrakh.in
• Security: security@dhanrakh.in
• Grievance: grievance@dhanrakh.in