Reference

How sm40 Handles Your Personal Data

This Privacy Policy explains exactly what personal data sm40 collects when you open an account, how we use it, and the rights you hold over that data at…

Data Collected Only As NeededNo Third-Party Sale of Your DataAccount Holder Rights RespectedIndian Law Compliant PostureSecure Data Storage
Explore Lobby Read FAQ
sm40 How sm40 Handles Your Personal Data
PRIVACY CONTACT PATHS

Reach Us About Your Data

Email Privacy Team Send a written data request to our dedicated privacy address at sm40.asia. We acknowledge all privacy emails within 48 hours and provide a full response within seven working days of receiving your request.
Live Chat Support Our live chat channel at sm40.asia connects you with a support agent who can log a formal data query, escalate to the privacy team, and confirm receipt — available through standard support hours every day.
Account Settings Panel Log in and navigate to Account Settings to download a copy of the personal data tied to your profile, update contact details, or submit a deletion request directly without needing to contact support first.
DATA HANDLING PRACTICES

How We Manage Your Data Day to Day

sm40 has put specific technical and process controls in place so that your personal data is handled with care at every stage — from the moment you open your account through to…

Data We Collect

We collect only what is needed to run your account: name, contact details, date of birth for age verification, device identifiers, and transaction records from UPI, Paytm or PhonePe payments. We do not collect data we have no use for.

Cookie and Tracking Policy

We use session cookies to keep you logged in, analytics cookies to understand how pages perform, and preference cookies so the lobby remembers your settings. You can manage or reject non-essential cookies through the cookie banner on your first visit.

Account Security Measures

Your account password is hashed and never stored in plain text. We use HTTPS across all pages, apply rate-limiting on login attempts, and offer two-factor authentication via SMS or an authenticator app to reduce unauthorised access risk.

Data Retention Timeline

We keep your account data for as long as your account is active and for a defined period after closure as required by applicable law. Once the retention window closes, data is deleted or anonymised so it can no longer be linked back to you.

Who Sees Your Data

Your data is shared only with payment processors (UPI networks, Paytm, PhonePe), fraud-prevention partners, and regulatory bodies where law requires disclosure. We do not sell, rent or trade your personal data to advertisers or unrelated third parties.

Requesting Changes or Deletion

You may request access to, correction of, or deletion of your personal data at any time via the Account Settings panel or by writing to our privacy team. We action verified requests within seven working days and confirm completion by email.

Privacy Policy Questions Answered

Below are the questions account holders in India ask most frequently about how sm40 handles personal data, cookies and contact information. If your question is not here, use the live chat or email route described above.

We collect your name, email address, phone number, date of birth, device identifiers and payment transaction records from UPI, Paytm or PhonePe. We collect only what is necessary to operate your account and verify your identity as required by applicable law.

We share data only with payment processors needed to clear your UPI, Paytm or PhonePe transactions, fraud-detection partners and regulatory bodies where disclosure is legally required. We do not sell or trade your personal data to advertisers or unrelated companies.

We retain your account data for a legally defined period after account closure. Once that window passes, your records are either permanently deleted or anonymised so no personal identifier links back to you.

Yes. Log in to Account Settings and use the data download option, or send a written request to our privacy email address at sm40.asia. We acknowledge requests within 48 hours and deliver a full data export within seven working days.

Submit a deletion request through your Account Settings panel or by emailing our privacy team. We verify the request against your account, process the deletion within seven working days and send a confirmation email once your data has been removed.

We use session cookies for login continuity, analytics cookies to track page performance and preference cookies to remember lobby settings. Non-essential cookies can be rejected or withdrawn at any time through the cookie preferences banner on our site.

Passwords are hashed before storage, all pages run on HTTPS, login attempts are rate-limited, and two-factor authentication is available via SMS or authenticator app. These controls are reviewed regularly to address new security considerations.

Related Pages

sm40 App Olympus Glory About Us 32 Cards