For the purpose of performing its obligations for the provided service, OneInfinity will be required to obtain data from the Customer, which shall be used by OneInfinity for processing. OneInfinity is committed to maintaining the confidentiality, integrity and security of data and information about the Customer.

OneInfinity will not sell or rent the Customer's confidential information to any other Party, for any reason, at any time. OneInfinity uses and discloses the Customer's information as follows:

• To facilitate the processing of the transaction
• to analyze OneInfinity(ONEINFINITY) usage and improve the Service;
• to deliver to the Customer any administrative notices, money alerts and communications relevant to the Customer's use of the Service;
• to fulfill the Customer's requests for certain products and services;
• to third-party contractors that provide services to OneInfinity and are bound by these same privacy restrictions;
• to provide payment history information to the bank/financial institution providing financing or to a Credit Bureau established under the rules and regulations of the country.
• to enforce OneInfinity's Terms of Use; and
• as otherwise set forth in this Privacy and Security Policy.

Features of the ONEINFINITY Service may require registration, which involves provision to ONEINFINITY of an email address, a password and the Customer's pin code (collectively the "Registration Information"). In order to benefit from the full functionality of the Service, the Customer may also need to provide the Customer's relevant account credentials ("Account Credentials") to allow OneInfinity to access the status of the fulfillment of Transactions ("Account Information") for the purpose of transaction processing.
The transaction information including Customer data is strictly restricted to OneInfinity employees and contractors, as needed, and in accordance with specific internal procedures and safeguard governing access, in order to operate, develop or improve the Service. These individuals have been selected in accordance with OneInfinity's security policies and practices and are bound by confidentiality obligations. They may be subject to discipline, including termination and criminal prosecution, if they fail to meet these obligations.

If the Customer's Registration Information changes during the Customer's subscription to OneInfinity, the Customer may update it any time via the Service.

When the Customer visits ONEINFINITY, OneInfinity may collect technical and navigational information, such as computer browser type, Internet protocol address, pages visited, and average time spent on ONEINFINITY. This information may be used, for example, to alert the Customer to software compatibility issues, or it may be analyzed to improve ONEINFINITY design and functionality. "Cookies" are alphanumeric identifiers in the form of text files that are inserted and stored by the Customer's web browser on the Customer's computer's hard drive. ONEINFINITY may set and access cookies on the Customer's computer to track and store preferential information about the Customer. ONEINFINITY may gather information about the Customer through cookie technology. For example, ONEINFINITY may assign a cookie to the Customer, to limit the amount of times the Customer see particular information or to help better determine which information or preference settings to serve to the Customer. Please note that most Internet browsers will allow the Customer to stop cookies from being stored on the Customer's computer and to delete cookies stored on the Customer's computer. If the Customer or other users choose to eliminate cookies, the full functionality of the Service may be impaired for the Customer. ONEINFINITY's cookies are encrypted so that only ONEINFINITY can interpret the information stored in them. Third party cookies: The wesite allows cookies of social plugins of several third parties. This enables a user to share content of the Website on certain social networks. These plugins also enhance the user friendliness of the Website. For example, with the Facebook plugin on the Website, users can simply register themselves on the Website with their Facebook account details. The (use of the) data collected by these third parties via the social plugins are exclusively determined by such third party as ONEINFINITY cannot read these cookies (nor can these parties read the cookies of ONEINFINITY). For information regarding the third party cookies, please read the respective third party's policies.
Web beacons are images embedded in a web page or email for the purpose of measuring and analyzing site usage and activity. OneInfinity, or third party service providers acting on OneInfinity's behalf, may use web beacons to help us analyze Site usage and improve the Service. OneInfinity may use third party service providers to help us analyze certain online activities. For example, these service providers may help us measure the performance of OneInfinity's online campaigns or analyze visitor activity on ONEINFINITY. OneInfinity may permit these service providers to use cookies and other technologies to perform these services for ONEINFINITY. OneInfinity does not share any personal information about OneInfinity's customers with these third party service providers, and these service providers do not collect such information on OneInfinity's behalf. OneInfinity's third party service providers are required to comply fully with this Privacy

Notwithstanding the foregoing, OneInfinity reserves the right (and the Customer authorizes OneInfinity) to share or disclose the Customer's personal information when OneInfinity determines, in its sole discretion, that the disclosure of such information is necessary or appropriate:

• To enforce OneInfinity's rights against the Customer or in connection with a breach by the Customer of this Privacy and Security Policy or OneInfinity's Terms of Use;
• To prevent prohibited or illegal activities; or
• When required by any applicable law, rule regulation, subpoena or other legal process.

Credential information may, with prior intimation to the customer and upon its authorization, such authorization not to be unreasonably withheld, be transferred to a third party as a result of a sale, acquisition, merger, re-organization or other transfer (a "Transfer") involving oneinfinity, to continue processing of transactions. Should such a transfer occur, oneinfinity will use its best efforts to require that the new combined entity follow this privacy and security policy with respect to the customer's personal information, as and to the extent required by applicable law and to require that the customer receive prior notice if the customer data could be used contrary to this policy. Pending authorization from the bank/financial institution for such a transfer of credential information, the customer accepts that there could be disruption to services delivered by oneinfinity.

The customer's data belongs to the customer. The customer can remove it anytime the customer wants. When the customer requests oneinfinity to delete the customer's account for the service, the customer's data will be permanently expunged from oneinfinity's primary production servers and further access to the customer's account will not be possible. Oneinfinity will also promptly disconnect any connection oneinfinity had established to the customer's account information and delete all account credentials. However, anoymized data, consisting of aggregate data derived from the customer's account information, may remain on oneinfinity's production servers indefinitely. The customer's data may also remain on a backup server or media. Oneinfinity keeps these backups to ensure oneinfinity's continued ability to provide the service to the customer in the event of malfunction or damage to oneinfinity's primary production servers.Oneinfinity will also keep the audit data on its servers from a compliance perspective. Email communication from oneinfinity Oneinfinity may allow companies to subscribe to email newsletters and from time to time may transmit emails promoting oneinfinity. Oneinfinity subscribers have the ability to opt-out of receiving oneinfinity's promotional emails and to terminate their newsletter subscriptions by following the instructions in the emails. Opting out in this manner will not end transmission of service-related emails, such as email alerts.

Oneinfinity uses a combination of firewall barriers, encryption techniques and authentication procedures, among others, to maintain the security of the customer's online session and to protect accounts and systems from unauthorized access. When the customer registers for the service, oneinfinity requires a password from the customer for the customer's privacy and security. Oneinfinity uses industry-standard 128 bit secure socket layer (ssl) encryption to protect data transmissions between the customer's browser and oneinfinity's servers, such as the customer's registration information for oneinfinity or account credentials. Oneinfinity's servers are in a secure third party facility. Oneinfinity's databases are protected from general employee access both physically and logically. Oneinfinity stores a salted digest for the customer's service password so that the customer's password cannot be recovered even by oneinfinity. All backup drives and tapes are encrypted. However, it is important to understand that these precautions apply only to oneinfinity's site and systems. While oneinfinity will have contractual agreements with third parties around data security, oneinfinity exercises no control over how the customer's information is stored, maintained or displayed by third parties or on third-party sites.

from the time the customer submits the customer's login id and password, these communications between the customer's computer and oneinfinity are encrypted using secure sockets layer (ssl3) technology. Ssl enables customer and server applications to communicate in a way that is designed to prevent eavesdropping, tampering and message forgery.

oneinfinity uses stringent security measures to prevent loss, misuse or alteration of information under our control. If any user has sufficient reason to believe that their data has been compromised or there has been a breach of security, you may write to us immediately on the contact details given in this policy so that we may take suitable measures to either rectify the breach and inform the concerned authorities if need be.

oneinfinity maintains strict rules to help prevent others from guessing the customer's password. Oneinfinity also recommends that the customer change the customer's password periodically. The customer is responsible for maintaining the security of the customer's login id and password. The customer may not provide these credentials to any third party. If the customer believes that they have been stolen or been made known to others, the customer must contact oneinfinity immediately, but in any event the customer should change the customer's password immediately via the service. Oneinfinity is not responsible if someone else accesses the customer's account through registration information they have obtained from the customer or through a violation by the customer of this privacy and security policy or oneinfinity's terms of service. If the customer has a security related concern, it should contact oneinfinity. Oneinfinity will work closely with the customer to ensure a rapid and personal response to the customer's concerns.

oneinfinity updates this privacy & security policy periodically. Customer will be provided notice of any such modification by electronic mail or by publishing the changes on the website. By accessing oneinfinity's website and using its service, you hereby declare that you have read the privacy policy and agreed to its contents.