Our Commitment to Your Security

We use modern, multi-layered security infrastructure to ensure your data is protected at all stages:

• Encryption in Transit & at Rest: All sensitive data, including your UPI ID, email, and mobile number, is encrypted using SSL/TLS protocols while being transmitted and stored.
• Secure Cloud Infrastructure (Firebase): All data is hosted on Google Firebase, known for its industry-grade security, authentication, and encryption. Data is stored on servers compliant with India’s local data residency and protection laws.

To prevent unauthorized access and misuse:

• Device Session Monitoring: We monitor logins and usage patterns to detect suspicious behavior.
• Auto Logout: Inactive sessions are automatically logged out to protect against unauthorized access.
• Anomaly Detection: Multiple login attempts or usage from unusual locations may trigger security warnings or lockouts.

Your data is only accessible by authorized personnel and only for legitimate operational reasons:

• Role-Based Access Control (RBAC): Only specific team members (e.g., support, verification) have access to user data based on their role.
• Zero Excess Privilege: Employees can only access data necessary to perform their job duties. All access is logged and monitored.
• Mandatory Security Training: All employees undergo training in data protection, fraud awareness, and ethical data handling.
• Routine Security Audits: We perform regular internal reviews and penetration tests to identify and fix vulnerabilities before they can be exploited.

As a platform built on rewards and real earnings, fraud protection is a top priority:

• AI-Based Behavioral Monitoring: Jalifan uses intelligent systems to detect unusual activity such as task spamming, bot usage, or fake referrals.
• Multi-Stage Task Verification: Tasks involving high payouts or critical functions (like UPI withdrawals) are manually reviewed or flagged for checks.
• Proof Verification System: User-uploaded screenshots, PDFs, or other documents are temporarily stored and reviewed before payouts.
• Referral System Monitoring: Our algorithms detect and block self-referrals, duplicate accounts, or any misuse of our referral rewards.

We follow all security and data protection regulations applicable in India, including:

• Information Technology Act, 2000
• IT (Reasonable Security Practices and Sensitive Personal Data) Rules, 2011
• RBI Guidelines for digital payment systems and UPI data
• Digital Personal Data Protection Act, 2023 (DPDP Act)

Jalifan ensures all technical and organizational safeguards meet or exceed legal requirements.

We believe user control is essential for security. You can:

• Change or reset your password at any time
• View and manage your login history
• Revoke consent for data use via your profile settings
• Request deletion of your account and data
• Report suspicious activity to our Grievance Officer

If a data breach or suspicious activity is detected, we:

• Immediately isolate the affected systems
• Notify affected users (if applicable)
• Investigate the root cause
• Resolve the issue using technical and procedural updates
• Cooperate with law enforcement and data protection authorities where required

If you have any concerns about your account’s security or wish to report a problem:

• Grievance Officer: Ruskar Khatoon
• Email: ruskarkhatoon@jalifan.in
• Address: Ibne Yusuf – Ansari House, Ward No.12, Village Parrahi, Kansar, Belsand, Sitamarhi, Bihar 843316
• Response Time: Within 30 working days

We may update this Security Policy to reflect improvements in our systems or changes in legal requirements. All updates will be posted here with the "Last Updated" date.