The website (www.karvcapital.in) and the Karv Capital mobile application are owned and operated by Karvesta LLP, a Limited Liability Partnership incorporated on November 13, 2025, in India. Our registered office is located at Ward No. 6, Joda Ki Dhani, Gothra, Khetri Nagar, Khetri, Jhunjhunu, Rajasthan – 333504, India.
Karv Capital is committed to protecting your privacy and managing your digital personal data with the highest standards of transparency and security. By using our services, you consent to the collection and processing of your information as described in this policy.
We collect only the information necessary to provide financial planning, investment advisory, and mutual fund distribution services.
- Identity Information :Full legal name, father's/spouse's name, date of birth, gender, and photograph.
- Verification Data : Permanent Account Number (PAN), KYC status, and Aadhaar (masked or via e-KYC).
- Contact Details : Mobile number, email address, and mailing/postal address.
- Financial Profile : Bank account details (Account number, IFSC), income range, net worth, and risk profile assessment.
- Digital / Device Data : IP address, device identifier (IMEI/UUID), browser type, and cookies used to maintain session security.
Your personal data is processed for the following lawful purposes:
- Onboarding and KYC: To fulfill statutory requirements under the Prevention of Money Laundering Act (PMLA) and SEBI regulations.
- Investment Services: To execute transactions in mutual funds and other securities and provide tailored financial advice.
- Security: To detect and prevent fraudulent activities and unauthorized access to your account.
- Communication: To send transaction alerts, regulatory updates, and account statements.
Karv Capital does not sell or rent your personal data to third parties. We share information only with:
- Regulatory Bodies: SEBI, RBI, tax authorities, and judicial bodies when required by law.
- Market Intermediaries: Asset Management Companies (AMCs), KYC Registration Agencies (KRAs), and exchanges to facilitate your investments.
- Service Providers: Trusted vendors for data hosting, encryption, and SMS/email services, all of whom are contractually bound to maintain strict confidentiality.
We implement robust technical and organizational measures, including SSL encryption, firewalls, and role-based access controls, to protect your data from unauthorized access or breaches. In the event of a data breach, we will notify the Data Protection Board of India and affected individuals without undue delay.
- Purpose-led Retention: We retain your data as long as the purpose for its collection is served or as required by law.
- Statutory Mandate: Under SEBI and PMLA norms, transaction records and communication logs must be maintained for at least 5 years after the termination of the client relationship.
- Erasure: We will erase your data once the statutory retention period ends or upon your request, provided there is no legal obligation to retain it.
Under the DPDP Act 2023, you have the right to:
- Access: Request a summary of the personal data we hold about you.
- Correction / Completion: Update inaccurate or incomplete information.
- Erasure: Request deletion of your data, subject to legal retention mandates.
- Nomination: Designate an individual to exercise your rights in the event of death or incapacity.
- Withdrawal of Consent: Withdraw your consent for data processing at any time, noting that this may limit our ability to provide services.
If you have any concerns or complaints regarding your privacy or data protection, you may contact our Grievance Officer:
We aim to resolve all grievances within 21 days. If you remain unsatisfied, you may escalate the matter to SEBI via the SCORES portal (www.scores.sebi.gov.in) or the Data Protection Board of India.