कल सेन्टर फोन

[email protected]

NP

NP EN

EPF Mobile App Privacy Policy

Last Updated: June 17, 2025

Employees Provident Fund (EPF, formerly Karmachari Sanchaya Kosh – KSK) is committed to protecting your privacy. This policy explains what information the EPF Mobile App collects, how it is used, and how we protect it, in compliance with applicable laws and Google Play’s User Data Policy.

Information We Collect

When you use the EPF Mobile App, you must log in with your EPF account (KSK iPortal) credentials. We use this information solely to authenticate you and retrieve your personal EPF account details, such as your total contributions, loans, account statements, and KYC profile data. After logging in, the app displays your provident fund balance, loan balances, interest rates, and KYC information to you.

Information Collected while Using the Application

While using the EPF Mobile App, to provide its features, EPF may collect, with your prior permission:

Information regarding Your location
Pictures and other information from Your device’s camera and photo library

This information is used to provide, improve, and customize the Service. The data may be uploaded to EPF’s servers and/or a Service Provider’s server, or it may be stored locally on your device.

You can enable or disable access to this information at any time through your device settings.

Types of Data Collected

While using the EPF Service, we may collect the following personally identifiable information that can be used to contact or identify you. This may include, but is not limited to:

Email address
First name and last name
Phone number
Address, State, Province, ZIP/Postal code, City

We collect this information only with your consent and use it strictly to provide and improve our services.

Usage Data

Usage Data is collected automatically when you use the Service.

This may include information such as Your device’s Internet Protocol (IP) address, browser type and version, the pages of the EPF Service that You visit, the time and date of Your visit, time spent on those pages, unique device identifiers, and other diagnostic data.

When you access the Service via a mobile device, EPF Mobile App may automatically collect certain information including, but not limited to, the type of mobile device You use, Your device’s unique ID, the IP address of Your device, Your mobile operating system, mobile Internet browser type, unique device identifiers, and other diagnostic data.

EPF Mobile App may also collect information that your browser sends whenever You visit the Service or access it through a mobile device.

Use of Your Personal Data

EPF may use Your Personal Data for the following purposes:

To provide and maintain our Service: Including monitoring the usage of our Service.

To manage Your Account: To manage your registration as a user of the Service. The Personal Data You provide enables You to access different functionalities available to registered users.

For the performance of a contract: To develop, comply with, and fulfill the purchase contract for the products, items, or services you have purchased, or any other contract with EPF through the Service.

To contact You: By email, telephone calls, SMS, or other equivalent electronic communication (such as mobile app push notifications) regarding updates, informative communications about functionalities, products, contracted services, including security updates, when necessary or reasonable.

To provide You with news, special offers, and general information: About other goods, services, and events offered by EPF that are similar to those You have purchased or enquired about, unless You opt out of receiving such information.

To manage your requests: To attend to and manage Your requests directed to EPF.

For business transfers: EPF may use Your information to evaluate or conduct mergers, divestitures, restructuring, reorganizations, dissolutions, or other sales or transfers of some or all of EPF’s assets, whether as a going concern or part of bankruptcy, liquidation, or similar proceedings. Personal Data held by EPF about Service users is among the assets that may be transferred.

For other purposes: Such as data analysis, identifying usage trends, determining the effectiveness of promotional campaigns, improving functionality, and fixing bugs and to evaluate and improve our Service, products, marketing, and your overall experience.

Data Sharing and Third Parties

EPF does not sell or share your personal data with external parties for marketing purposes. We only share information in the following limited cases:

With service providers: We may engage in trusted third-party services only when necessary. For example, if the app integrates a payment gateway or banking API for loan payments, only the minimum required details (such as your account number and payment amount) are shared with the payment service. These providers are contractually obligated to keep your data secure and confidential.
Legal requirements: We may disclose your information if required by law, court order, or to cooperate with government authorities (for example, under Nepali laws or regulations).
Internal use: Authorized EPF staff may access your information as needed to provide and improve the app’s services.
Service monitoring and communication: We may share data with service providers to monitor and analyze the use of our Service, and to contact you as needed.
Business transfers: In connection with, or during negotiations of, any merger, sale of EPF assets, financing, or acquisition of all or part of EPF’s business, your personal data may be transferred to the new entity.
With affiliates: EPF may share your information with its affiliates, requiring them to comply with this Privacy Policy. Affiliates include EPF’s regulatory bodies, subsidiaries, joint venture partners, or other companies controlled by or under common control with EPF.
With other users: If you share personal information or otherwise interact in public areas of the Service, that information may be visible to all users and publicly distributed.
With your consent: EPF may disclose your personal information for any other purpose with your explicit consent.

In general, EPF does not share user data with unauthorized third parties. We maintain strict control over your information and do not allow unrelated parties to access your data.

Retention of Your Personal Data

Employees Provident Fund (EPF) will retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy. We may also retain your data to the extent required to:

Comply with applicable legal and regulatory obligations,
Resolve any disputes, and
Enforce our agreements and policies.

Usage Data may be stored for a shorter period, unless it is used to enhance the security of the Service, improve functionality, or where we are legally required to preserve it for a longer duration.

Transfer of Your Personal Data

Your information, including Personal Data, may be processed at EPF’s main office and in other locations where the parties involved in processing such data are based. This means your information could be transferred to — and stored on — servers or systems located outside your province, state, or even your country, where data protection laws may differ from those in your jurisdiction.

By using our Service and submitting your information, you consent to this transfer.

EPF will take all these reasonable steps to ensure that your data is handled securely and in line with this Privacy Policy. We will not transfer your Personal Data to any organization or country unless adequate safeguards are in place to protect your personal information and ensure its security.

Children Under 13

The EPF Mobile App is intended for users who are 18 years of age or older. We do not knowingly collect personal data from children under 13. If we learn that we have inadvertently gathered information from a child under 13, we will delete it immediately. In accordance with COPPA (Children’s Online Privacy Protection Act) and Nepali regulations, children under 13 should not use this app.

Your Rights

You have certain rights regarding your personal data:

Access: You can request a copy of the personal information we hold about you (for example, your profile data from EPF).
Correction: If your personal information is incorrect or outdated, you can request that EPF update or correct
Deletion: You may request deletion of your personal data that EPF holds, subject to any legal retention
Withdrawal of consent: If you believe EPF is using your data in a way that requires your consent, you can withdraw that consent at any time.
Complaint: You have the right to file a complaint with a data protection authority or raise concerns with EPF if you feel your data is misused.

Disclosure of Your Personal Data

Business Transactions

If EPF becomes involved in a merger, acquisition, or sale of assets, your Personal Data may be transferred to the new entity. In such cases, you will be notified prior to any transfer and before your data becomes subject to a different privacy policy.

Law Enforcement

In specific situations, EPF may be legally required to disclose your Personal Data in response to valid legal processes, such as court orders or requests from government authorities.

Other Legal Requirements

EPF may disclose your Personal Data in good faith when such action is necessary to:

Comply with legal obligations
Protect and defend the rights or property of EPF
Preventing or investigating possible misconduct related to the Service
Ensure the personal safety of users or the public
Protect against legal liability

Security of Your Personal Data

Employees Provident Fund (EPF) places the highest priority on protecting your personal data. We implement commercially reasonable technical and organizational measures to safeguard your information. However, please be aware that no method of transmission over the Internet or electronic storage is completely secure. While we strive to use industry’s best practices, we cannot guarantee absolute security.

We are taking the following measures to protect your information:

Encryption: All data exchanged between your device and EPF servers is encrypted using HTTPS/SSL, ensuring that your login credentials and account details are secure during transmission.

Secure servers: Your EPF account information is stored on secure EPF servers with robust access controls. We do not store your password on your device.

Access controls: Only authorized EPF personnel have access to the EPF database. Our staff undergoes privacy training and is required to adhere to strict confidentiality policies.

App security: The EPF Mobile App is developed following standard security practices to prevent unauthorized access or tampering. We regularly review and update these security measures to address emerging threats.

Although no system can guarantee 100% security, we are committed to protecting your information and will promptly investigate any suspected data breaches.

Children’s Privacy

Our services are not intended for individuals under the age of 13. EPF does not knowingly collect personally identifiable information from children under 13. If you are a parent or guardian and you become aware that your child has provided us with Personal Data, please contact us immediately.

If we discover that we have collected such data without verified parental consent, we will promptly delete it from our systems. If local regulations require parental consent for processing children’s data, we will request such consent before collecting and using the information.

Payment Data

When you make payment, we may collect the information necessary to process your payment, such as your payment instrument number and the security code associated with it. Please note that all payment data is securely stored and processed by connectIPS.

Changes to this Privacy Policy

EPF may update this Privacy Policy occasionally to reflect changes in our practices or legal requirements. We will inform you of any significant updates by posting the revised Privacy Policy on this page.

Additionally, we may notify you via email and/or display a prominent notice within our Service before any changes take effect. The “Last updated” date at the top of this Privacy Policy will be revised accordingly.

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information. All updates become effective immediately upon posting on this page.