Our Commitment

At Patil Ventures, we recognize that data is trust. Across all our ventures — Dracoweb, Sahakarmitra, SahkarSetu, GenXLabs, and Advaults — we handle sensitive financial, personal, and business data. Protecting that data with the highest security standards and ensuring compliance with applicable laws is at the core of our operations.

1. Data Protection Standards

• Encryption: All sensitive data (loan records, Aadhaar/PAN details, payment information) is encrypted at rest and in transit using TLS 1.3 and AES-256 standards.

• Access Controls: Role-based access, multi-factor authentication, and activity logging for cooperative staff dashboards.

• Data Minimization: We only collect and store data that is necessary for providing the service.

• Regular Audits: Periodic security audits and penetration tests are conducted to identify vulnerabilities.

2. Compliance Framework

Indian Regulations

• DPDP Act, 2023: Fully aligned with India’s Digital Personal Data Protection Act. Consent-driven processing, retention controls, and user rights are respected.

• IT Act & IT Rules, 2011: Secure handling of sensitive personal data (SPDI).

• RBI/Cooperative Guidelines (for Sahakarmitra): Loan records and member data managed per financial compliance norms.

Global Standards

• GDPR Principles: Transparency, accountability, user consent, and data subject rights.

• PCI-DSS: For payment processing (via secure third-party gateways).

• ISO 27001 Alignment: Internal practices mapped to ISO standards for information security.

3. Venture-Specific Commitments

• Sahakarmitra:

  • Aadhaar/PAN verification only via authorized APIs.

  • Loan records processed securely with audit trails.

  • EMI reminders sent through DLT-registered SMS/WhatsApp gateways.

• SahkarSetu:

  • Purely a directory platform, no financial services provided.

  • Listings verified, but institutions remain responsible for accuracy.

  • Neutral stance, no bias or preference to any society.

• Dracoweb:

  • AI-driven campaigns are monitored for data accuracy, privacy, and ethical targeting.

  • Client websites hosted on secure, monitored infrastructure.

• GenXLabs:

  • AI outputs reviewed under Responsible AI guidelines (no harmful use cases).

  • AI prompts/logs anonymized after 12 months.

  • Human-in-the-loop approach for enterprise AI deployments.

• Advaults:

  • Template downloads secured via authentication links.

  • IP rights protected; unauthorized resale/distribution prohibited.

  • Payments processed only via PCI-DSS compliant gateways.

4. Incident Response & Recovery

• 24/7 Monitoring: All venture platforms are monitored for anomalies.

• Incident Response Plan: Security incidents investigated within 24 hours.

• Client Notifications: In case of a data breach, affected users/cooperatives will be notified within the legally required timeframe.

• Disaster Recovery: Daily backups with geo-redundant storage.

5. Responsible AI Use

• Human Oversight: All AI solutions are supervised and validated by humans.

• Bias Mitigation: Continuous monitoring to reduce bias in AI outputs.

• Prohibited Uses: AI cannot be used for misinformation, deepfakes, discrimination, or harmful applications.

6. Contact for Security & Compliance

For questions or concerns:

Security & Compliance Officer – Patil Ventures
📧 Connect@patilventures.com
📞 +91 7387997859
📍 Chavan Park, Maratha Colony, Kasaba Bawada, Kolhapur – 416003, Maharashtra, India