GryorkGryork
Get FundedPartner Login (EPC / NBFC)

Privacy Policy

Last updated: January 2026

1. Introduction

Gryork ("we," "our," or "us") respects your privacy and is committed to protecting your personal data. This privacy policy explains how we collect, use, disclose, and safeguard your information when you use our bill discounting platform and services.

2. Information We Collect

2.1 Personal Information

We may collect the following types of personal information:

  • Identity Data: Name, username, date of birth, PAN number, Aadhaar number (as permitted by law)
  • Contact Data: Email address, phone number, business address
  • Financial Data: Bank account details, GST registration, business financial statements
  • Transaction Data: Details of bills, invoices, and transactions processed through our platform
  • Technical Data: IP address, browser type, device information, login data

2.2 Business Information

For Sub-Contractors, EPCs, and NBFCs, we collect business registration documents, GST certificates, RBI registration (for NBFCs), and other compliance-related documentation.

3. How We Use Your Information

We use your information to:

  • Provide and maintain our bill discounting services
  • Process transactions and send related notifications
  • Verify your identity and prevent fraud
  • Comply with legal and regulatory requirements
  • Communicate with you about our services
  • Improve our platform and develop new features
  • Conduct risk assessment and credit analysis (with consent)

4. Information Sharing

We may share your information with the following parties for legitimate business purposes:

  • NBFC Partners: To facilitate bill discounting transactions and risk assessment
  • EPC Companies: For bill validation and confirmation
  • Service Providers: Third-party vendors who assist in our operations (payment processors, cloud services, etc.)
  • Regulatory Authorities: As required by applicable laws and regulations

5. Data Security

We implement appropriate technical and organizational measures to protect your personal data, including:

  • End-to-end encryption for data transmission
  • Secure data storage with access controls
  • Regular security audits and assessments
  • Employee training on data protection
  • Incident response procedures

6. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, or reporting requirements. Transaction data is typically retained for 8 years as per Indian financial regulations.

7. Your Rights

Subject to applicable laws, you have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Request deletion of your data (where applicable)
  • Object to processing of your data
  • Data portability
  • Withdraw consent

8. Cookies and Tracking

We use cookies and similar tracking technologies to enhance your experience on our platform. You can manage cookie preferences through your browser settings. Essential cookies required for platform functionality cannot be disabled.

9. Third-Party Links

Our platform may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies.

10. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date.

11. Contact Us

If you have questions about this privacy policy or our data practices, please contact us:

  • Email: privacy@gryork.com
  • Address: Bangalore, Karnataka, India

12. Grievance Officer

In accordance with Information Technology Act 2000 and rules made thereunder, the name and contact details of the Grievance Officer are provided below:

  • Name: Grievance Officer
  • Email: grievance@gryork.com
  • Address: Bangalore, Karnataka, India