Skip to main content

MTMPay – Payment Solutions For All Business

Digital Personal Data Protection (DPDP) Notice

Digital Personal Data Protection (DPDP) Notice

Digital Personal Data Protection (DPDP) Notice

Last Updated: 7 July 2026

MTM Payment Services Private Limited (“MTMPay”, “we”, “our”, or “us”) is committed to protecting your personal data and respecting your privacy.

At MTMPay, we are committed to maintaining transparency in how we collect, use, process, store, share, protect, retain, and dispose of your personal data. This Digital Personal Data Protection (DPDP) Compliance Notice explains the categories of personal data we collect, the purposes for which we process it, the measures we take to protect it, and the rights available to you under the Digital Personal Data Protection Act, 2023 (“DPDP Act”), the Digital Personal Data Protection Rules, 2025 (“DPDP Rules”), and other applicable laws of India.

This Notice should be read together with the following MTMPay policies, which collectively form our privacy, data protection, and governance framework:.

 

  1. Our Commitment

Privacy and information security are fundamental to the way MTMPay designs, develops, and delivers its services.

We are committed to:

  • Processing personal data lawfully, fairly, and
    transparently.
  • Collecting only the minimum personal data reasonably
    necessary for the requested services.
  • Using appropriate technical and organisational
    safeguards to protect personal data.
  • Respecting the rights of Data Principals.
  • Maintaining accountability in our processing
    activities.
  • Regularly reviewing and improving our privacy and
    security practices.

 

  1. Definitions

For the purpose of this Notice:

Personal Data means any data about an individual who is identifiable by or in relation to such data.

Data Principal means the individual to whom the personal data relates.

Data Fiduciary means MTM Payment Services Private Limited, which determines the purpose and means of processing personal data.

Processing includes the collection, recording, organisation, storage, use, disclosure, sharing, retrieval, transfer, correction, updating, deletion, anonymisation, or any other operation performed on personal data.

 

  1. Who We Are

Company Name
MTM Payment Services Private Limited

Brand Name
MTMPay

Corporate Website
https://mtmpay.in

Digital Services Portal

https://billpay.mtmpay.in

 

  1. Personal Data We Collect

Depending on the services you use, we may collect:

Identity Information

  • Full Name
  • Mobile Number
  • Email Address
  • Date of Birth
  • Gender

KYC Information

  • PAN Number
  • Aadhaar Verification Status
  • KYC Verification Status
  • Government-issued identity information where required by applicable law

Financial & Transaction Information

  • Payment and transaction records
  • Transaction identifiers and payment references
  • Refund, reversal, and settlement information
  • Purchase and service usage history
  • Records relating to financial, payment, banking,
    commerce, or digital services provided by MTMPay
  • Information reasonably necessary to provide current or future products and services offered by MTMPay in accordance with applicable law and this Notice.

Technical Information

  • IP Address
  • Browser information
  • Device information
  • Device identifiers
  • Operating System
  • Application version
  • Login activity
  • Security logs
  • Session information

Communication Information

  • Customer support requests
  • Email communications
  • Chat conversations
  • Feedback and complaints

 

  1. Why We Process Your Personal Data

We process personal data only for legitimate business purposes, including:

  • Account registration
  • OTP authentication
  • Identity verification (KYC)
  • Fraud detection and prevention
  • Security monitoring
  • Recharge processing
  • Bill payment services
  • Gift card delivery
  • Customer support
  • Regulatory compliance
  • Risk management
  • Service improvement
  • Analytics to improve platform performance
  • Responding to lawful requests from authorities

MTMPay does not sell or rent your personal data to third parties. Personal data is shared only where necessary to provide our services, comply with legal obligations, protect our legitimate interests, or where you have provided consent, as applicable.

 

  1. Legal Basis for Processing

We process personal data:

  • With your consent, where applicable.
  • To provide services requested by you.
  • To comply with legal and regulatory obligations.
  • To protect our platform and users against fraud and
    misuse.
  • To maintain network, system, and transaction
    security.
  • For other lawful purposes permitted under applicable
    law.

 

  1. Consent at the Time of Collection

Where consent is required, MTMPay provides a clear notice at or before the time personal data is collected.

Such notice explains:

  • What information is being collected.
  • Why the information is required.
  • How it will be used.
  • Whether it may be shared with authorised service
    providers or regulatory authorities where required.
  • How users may exercise their rights.
  • How users may contact MTMPay regarding
    privacy-related concerns.

Where permitted by applicable law, certain processing activities may be carried out without consent where another lawful basis applies.

 

8.     Data Minimisation and Purpose Limitation

MTMPay collects and processes only the personal data that is reasonably necessary to provide requested products and services, comply with applicable legal and regulatory obligations,
prevent fraud, protect users, maintain platform security, and improve service quality.

Personal data is processed only for the purposes for which it was collected or for other compatible and lawful purposes permitted under applicable law.

 

9.     Sharing of Personal Data

Personal data may be shared only where necessary with:

  • Banking partners
  • BBPS partners
  • Payment gateway providers
  • KYC verification service providers
  • Cloud infrastructure providers
  • SMS and email service providers
  • Technology service providers
  • Regulatory authorities
  • Government agencies
  • Law enforcement authorities where legally required
  • Professional advisers and auditors where necessary

All service providers are expected to implement appropriate security safeguards and process personal data only for authorised purposes.

 

10.  Data Retention

We retain personal data only for as long as reasonably necessary to:

  • Provide requested services.
  • Comply with applicable legal and regulatory
    obligations.
  • Meet taxation, audit, and accounting requirements.
  • Comply with Anti-Money Laundering (AML) and Know Your
    Customer (KYC) obligations where applicable.
  • Resolve disputes.
  • Prevent fraud.
  • Maintain security and audit records.

Where retention is no longer necessary or legally required, personal data will be securely deleted, anonymised, or otherwise disposed of in accordance with our internal policies.

 

11.  Accuracy of Personal Data Users are encouraged to ensure that the information they provide is accurate, complete, and up to date.

MTMPay may request updated information where necessary to maintain accurate records or comply with legal obligations.

 

12.  Your Rights

Subject to applicable law, you may:

  • Access your personal data.
  • Request correction of inaccurate information.
  • Update incomplete information.
  • Request deletion of personal data where legally
    permissible.
  • Withdraw consent where processing is based on
    consent.
  • Raise privacy-related grievances.

Certain information may continue o be retained where required under applicable law or regulatory obligations.

 

13.  Withdrawal of Consent Where processing is based on your consent, you may withdraw that consent using available account features or by contacting us.

Withdrawal of consent may affect your ability to use services requiring identity verification, fraud prevention, regulatory compliance, or secure transaction processing.

 

14.  Privacy by Design

MTMPay incorporates privacy and data protection considerations into the design, development, implementation, operation, and maintenance of its products, services, systems, and business
processes. We periodically review our privacy controls and security measures to reduce risks and strengthen the protection of personal data.

 

15.  Automated Security & Fraud Detection

To help protect our users and platform, MTMPay may use automated systems to identify unusual activity, detect fraud, prevent unauthorised access, and enhance platform security.

Where required by applicable law, significant decisions affecting users are subject to ppropriate review.

 

16.  Security Measures

We maintain administrative, technical, and organisational safeguards, including, where plicable:

  • Secure HTTPS communication
  • Encryption of personal data in transit
  • Encryption at rest for applicable systems
  • OTP-based authentication
  • Access controls
  • Security logging
  • Firewalls
  • Continuous monitoring
  • Periodic vulnerability assessments
  • Secure development practices

While MTMPay implements reasonable technical and organisational safeguards to protect personal data, no method of electronic transmission, storage, or processing can be guaranteed to be completely secure. Users are also responsible for maintaining the confidentiality of their account credentials, one-time passwords (OTPs), and devices.

 

17.  Children’s Privacy

Our Services are intended only for individuals who are 18 years of age or older and are legally competent to enter into a binding contract under applicable Indian law. We do not knowingly
collect, process, or store personal data of children (individuals below 18 years of age), except where expressly permitted or required by applicable law. If we become aware that we have collected personal data from a child without the necessary legal authorization, we will take appropriate steps to delete such information in accordance with applicable laws.

 

18.  Cookies and Similar Technologies

Our websites and applications may use cookies and similar technologies to:

  • Maintain secure sessions.
  • Improve performance.
  • Analyse usage.
  • Enhance user experience.
  • Improve security.

Users may manage cookie preferences through browser settings where applicable.

 

19.  Cross-Border Processing

Personal data is primarily processed and stored in India.

Where personal data is processed outside India, appropriate safeguards and applicable legal requirements will be followed.

 

20.  Business Transfers

In the event of a merger, acquisition, corporate restructuring, investment, sale of assets, or other business transaction, personal data may be transferred as part of such transaction, subject to applicable legal requirements and appropriate confidentiality and security bligations.

 

21.  Personal Data Breach Response

In the event of a personal data breach requiring notification under applicable law, MTMPay will take appropriate measures, including investigating the incident, mitigating potential risks, notifying competent authorities where required, and communicating with affected users where legally necessary.

 

22.  Third-Party Websites

Our websites or applications may contain links to third-party websites or services.

MTMPay is not responsible for the privacy practices, security, or content of third-party websites. Users are encouraged to review the privacy policies of such websites before providing personal information.

 

23.  How to Exercise Your Rights

You may exercise your privacy rights by:

  • Reviewing your profile within your MTMPay account.
  • Updating eligible information where available.
  • Contacting our Privacy or Grievance Team.
  • Requesting deletion where legally permissible.
  • Raising a privacy-related complaint.

Privacy Email: info@mtmpay.in

To protect your privacy and prevent unauthorized disclosure of personal data, MTMPay may request reasonable information to verify your identity before processing privacy-related requests.

 

24.  Grievance Officer

For privacy-related questions or complaints:

Grievance Officer
MTM Payment Services Private Limited

Email: info@mtmpay.in

Support Email: support@mtmpay.in

Website: https://mtmpay.in

We aim to acknowledge and address grievances within the timelines prescribed under applicable law.

 

25.  Updates to this Notice

This Notice may be updated periodically to reflect changes in applicable law, technology, business operations, or privacy practices.

The latest version will always be published on the MTMPay website.

 

26.  Our Privacy Commitment

MTMPay is committed to continuously strengthening its privacy, information security, and data
governance practices.

We regularly review our policies, procedures, technical safeguards, and organisational controls to align with applicable legal, regulatory, and industry requirements while maintaining the trust of our customers, partners, and stakeholders.

 

27.  Regulatory Compliance

MTMPay continuously monitors changes to applicable privacy and data protection laws. As legal and regulatory requirements evolve, including updates to the DPDP Act, DPDP Rules, or
directions issued by competent authorities, we may update our policies, operational processes, and technical safeguards to remain aligned with applicable legal obligations.

Contact Us

MTM Payment Services Private Limited

Website: https://mtmpay.in

Bill Payment Portal: https://billpay.mtmpay.in

Support: support@mtmpay.in

Privacy, Data Protection & Grievance Officer: info@mtmpay.in

Registered Office:

51/1952, Ekta Campus,
Ashwani Nagar, Sunder Nagar,
Raipur, Chhattisgarh – 492001, India

Phone: 0771-2293000

Customer Support: 022-69646426