Your personal data is processed in accordance with the Digital Personal Data Protection Act 2023 (DPDPA), the Information Technology Act 2000 and the IT (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules 2011 for Polymarket users in India.
This Privacy Policy describes how polymarket-in.in collects, uses and protects your personal data in connection with Polymarket prediction market services, including all wallet and payment features, customer support and communications available to users in India.
All data processing is carried out in full compliance with the Digital Personal Data Protection Act 2023 (DPDPA), the Information Technology Act 2000 (IT Act), the IT (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules 2011 (SPDI Rules), the Prevention of Money Laundering Act 2002 (PMLA), the Foreign Exchange Management Act 1999 (FEMA), RBI guidelines on digital payments and the regulations of the Securities and Exchange Board of India (SEBI).
Depending on your use of polymarket-in.in, the following categories of data may be collected:
| Processing Purpose | Legal Basis (DPDPA 2023 / IT Act) |
|---|---|
| Account management & identity verification | Consent + Contract performance (DPDPA S.6 / S.7) |
| Payment processing in INR โน / USDC | Contract + Legal obligation (DPDPA S.7 / PMLA) |
| Anti-money laundering (PMLA 2002 / FIU-IND) | Legal obligation โ PMLA 2002 (DPDPA S.7(b)) |
| Fraud prevention & account security | Legitimate use (DPDPA S.7 / IT Act S.43A) |
| Optimisation of the Polymarket platform | Legitimate use (DPDPA S.7) |
| Marketing & personalised offers | Explicit consent (opt-in) (DPDPA S.6) |
Payment service providers โ for secure transaction processing in INR โน via UPI, IMPS, NEFT or USDC
KYC partners โ for identity verification pursuant to PMLA 2002, FEMA 1999 & RBI KYC Master Directions
Technical infrastructure providers โ for secure hosting of the Polymarket platform
Indian authorities โ MeitY, RBI, FIU-IND, SEBI, ED (Enforcement Directorate) when legally required
Data is retained only as long as necessary (5 years under PMLA 2002; 8 years under Indian Income Tax Act for financial records). After the retention period, data is securely anonymised or deleted pursuant to DPDPA 2023 S.8(7).
SSL/TLS Encryption 256-bit
For all data transmissions on polymarket-in.in
Role-Based Access Control
Multi-factor authentication for all internal access
Regular Security Audits
Independent penetration tests per IT Act S.43A & SPDI Rules
Data Breach Notification
Mandatory report to CERT-In within 6 hours (CERT-In Directions 2022) & Data Protection Board under DPDPA 2023
Under the Digital Personal Data Protection Act 2023 (DPDPA) and the IT Act 2000, you have the following rights as a Data Principal:
Right of Access
DPDPA S.11
Right to Correction
DPDPA S.12
Right to Erasure
DPDPA S.12
Right to Grievance Redressal
DPDPA S.13
Right to Withdraw Consent
DPDPA S.6(4)
Right to Nominate
DPDPA S.14
For all requests regarding your personal data on polymarket-in.in, contact our Data Protection Officer (DPO). We will respond within 30 days as required by the DPDPA 2023 and IT Act 2000.
โ๏ธ Right to Lodge a Complaint: You may file a complaint with the Data Protection Board of India (DPBI) once operational under the DPDPA 2023, or with MeitY (Ministry of Electronics & Information Technology) at meity.gov.in. For IT Act grievances, contact the Adjudicating Officer under the IT Act 2000 or the IT Appellate Tribunal (ITAT).
On polymarket-in.in, the protection of your personal data is our absolute priority. We are committed to the highest standards of transparency and DPDPA 2023 compliance for all Polymarket users in India.