Privacy Policy

SAMCO Securities Limited
Last Modified: April 30, 2026

The policy set forth below is provided in English only to avoid any misinterpretations caused by a language translation. If necessary, please seek the proper advice, or please do not use this website.

SAMCO Securities Limited ("SAMCO", "we", "us", or "our") operates the website at samco.in ("Site"). We respect the privacy of each user of the Site (referred to as "you" or "a user"), whether it's your first time or if you've visited our Site previously. This Privacy Policy gives you specific information about how we protect your privacy, how we treat information we collect on the Site that identifies an individual user ("Personal Information"), and how we use aggregated information.

BY REGISTERING FOR OR USING THE SITE, YOU SIGNIFY YOUR ACCEPTANCE OF THIS PRIVACY POLICY. IF YOU DO NOT AGREE TO THIS PRIVACY POLICY, YOU CANNOT USE THE SITE.

We reserve the right to modify this Policy at any time by posting a notice on the Site's home page. (If we consider it appropriate, we may also provide additional notice of significant changes.) Your use of the Site after the date of the last modification listed at the beginning of this Privacy Policy indicates to us that you agree to the changes.

1. Definitions and Interpretation

For the purposes of this Privacy Policy:

• "Applicable Laws" means all applicable statutes, enactments, acts of legislature, laws, ordinances, rules, regulations, guidelines, policies, directions, directives, circulars, and orders of any governmental authority, tribunal, board, court, or recognized stock exchange, including but not limited to the Securities and Exchange Board of India Act, 1992, SEBI (Stock Brokers) Regulations, 2021, SEBI (Depositories and Participants) Regulations, 2018, SEBI Master Circular for Stock Brokers (as amended from time to time), the Information Technology Act, 2000, the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, the Prevention of Money Laundering Act, 2002 ("PMLA"), and the Digital Personal Data Protection Act, 2023 ("DPDP Act").
• "KYC" means Know Your Client as per SEBI, Exchange, and PMLA requirements.
• "Officially Valid Documents (OVDs)" means documents as prescribed under PMLA Rules, including Passport, Voter's Identity Card, Driving License, Aadhaar (subject to conditions), NREGA Job Card, and any other document notified by the Central Government.
• "Personal Information" means any information that relates to an identified or identifiable natural person.
• "Sensitive Personal Data or Information (SPDI)" includes passwords, financial information (bank account, debit/credit card details), biometric data, health data, sexual orientation, and any information relating to the above categories as received under lawful contract or otherwise.

2. Scope of this Privacy Policy

This Privacy Policy applies to your use of this Site and all services offered by SAMCO, including but not limited to stock broking, depository participant services, mutual fund distribution, and research services.

This Policy does not apply to the websites of our Franchisees, Authorized Persons, or sales associates. Accordingly, this Policy does not cover a Franchisee's or Authorized Person's website or their collection, use, storage, and disclosure of your Personal Information. We encourage you to read the privacy policies of such third parties.

3. Location of Servers and Transfer of Information

The Site is hosted by servers in India. If you are located outside of India, your Personal Information will be transferred to India. By submitting your Personal Information, you consent to its transfer to India and to its storage, processing, and use there in accordance with this Privacy Policy and Applicable Laws.

4. Collection and Use of Personal Information

4.1 Information We Collect

We collect your Personal Information, and in the case of account opening, background, financial, and demographic information on the Site in order to enhance the services we offer you and to comply with regulatory requirements. Such information may include:

A. Identity Information:

• Full name (as per Officially Valid Documents)
• Date of birth
• Gender
• Photograph
• Signature (physical or electronic)
• Father's/Spouse's name
• Marital status
• Nationality/Citizenship status
• Unique Identification Number (PAN, Aadhaar as permitted)

B. Contact Information:

• Residence address (permanent and correspondence)
• Employment/Business address
• Mobile number
• Email address

C. Financial Information:

• Bank account details (account number, IFSC, bank name)
• Income details and net worth declaration
• Demat account details
• Investment experience and risk appetite
• Source of funds

D. KYC Documents:

• PAN Card
• Officially Valid Documents (OVDs) for identity and address proof
• Aadhaar (for e-KYC, offline verification, or Aadhaar Authentication, as per UIDAI and SEBI guidelines)
• Bank statement/cancelled cheque
• Income proof documents (ITR, salary slips, Form 16, net worth certificate, etc.)

E. Nomination Details:

• Nominee name, relationship, date of birth, address, and identification details
• Guardian details (if nominee is a minor)

F. Account Operation Details:

• Mode of operation (single, joint, either or survivor)
• Power of Attorney details (if applicable)
• Authorized signatory details (for non-individual accounts)

G. Regulatory and Compliance Information:

• Politically Exposed Person (PEP) status
• Related to PEP status
• FATCA/CRS declarations (tax residency, TIN, country of birth, etc.)
• Ultimate Beneficial Owner (UBO) details (for non-individual accounts)

H. Technical and Usage Information:

• IP address, browser type, device information
• Login credentials, session data
• Transaction and trading history
• Communication records (calls, emails, chats)

4.2 Purposes for Collection

We collect Personal Information from you only when you voluntarily submit it for purposes including but not limited to:

1. Account Opening and KYC Compliance: To verify your identity and comply with regulatory requirements.
2. Service Delivery: To provide trading, demat, mutual fund distribution, research, and other services.
3. Regulatory Reporting: To comply with reporting obligations to regulatory bodies.
4. Risk Management: To assess and manage trading risks, margin requirements, and exposure limits.
5. Communication: To keep you updated about products, services, regulatory changes, and account-related matters.
6. Dispute Resolution: To address complaints, grievances, and legal proceedings.
7. Fraud Prevention and Security: To detect and prevent fraud, unauthorized access, and illegal activities.
8. Analytics and Improvement: To analyze usage patterns and improve our services.
9. Legal and Compliance: For audit, inspection, and investigation by regulatory authorities.

4.3 Sensitive Personal Data or Information (SPDI)

SAMCO may collect Sensitive Personal Data or Information, including financial information, biometric information, passwords, and authentication credentials. We collect SPDI only with your explicit consent and for lawful purposes.

5. KYC and Onboarding Requirements

5.1 Central KYC Compliance

• Upload your KYC records to CKYCR and obtain a KYC Identifier.
• Fetch existing KYC records from CKYCR where available, with your consent.
• Update your KYC records with CKYCR as and when changes are made.

5.2 Aadhaar-Based Verification

We may offer Aadhaar-based verification options including Aadhaar e-KYC, offline Aadhaar verification, and Aadhaar authentication, as permitted by applicable guidelines.

Important: Submission of Aadhaar is voluntary. If you do not wish to submit Aadhaar, alternative OVDs are accepted for KYC compliance.

5.3 Video-Based Customer Identification Process (V-CIP)

• A live video interaction will be conducted by a trained official.
• Your photograph, geo-location, and OVD details will be captured.
• The video and related data will be stored securely as per regulatory requirements.

5.4 Digilocker Integration

We may allow you to fetch documents from your Digilocker account for KYC purposes. Documents fetched from Digilocker are treated as equivalent to original documents as per the Information Technology Act, 2000.

5.5 Periodic KYC Updates

As per SEBI requirements, you are required to update your KYC details periodically. Failure to update KYC may result in restrictions on your account.

6. Nomination Requirements

As per SEBI regulations, nomination is mandatory for all individual accounts. We collect nomination-related information such as nominee name, relationship, date of birth, address, identification details, guardian details if nominee is a minor, and declaration if you opt out of nomination.

You may nominate up to three persons and specify the percentage share for each. Nomination details can be updated at any time through the prescribed process.

7. Collection of Non-Personal Information

Even if you do not send us any Personal Information, we collect information about how you use our Site. This information cannot be used to identify you personally.

7.1 Cookies

A cookie is a small data file stored on your computer's hard drive. We use cookies to:

• Remember your preferences and login information
• Analyze site traffic and usage patterns
• Customize content and advertising
• Improve site functionality

You can configure your browser to accept all cookies, reject all cookies, or notify you when a cookie is sent. However, if you refuse cookies, some parts of the Site may not function properly.

7.2 Other Non-Personal Information

• IP addresses
• Browser types and versions
• Operating system
• Referring/exit pages
• Date/time stamps
• Clickstream data

8. Disclosure and Transfer of Collected Information

We do not rent, sell, or share your Personal Information with third parties except in the following cases:

8.1 With Your Consent

When you provide explicit consent for disclosure.

8.2 To Service Providers

Third-party vendors engaged to provide services on our behalf may have access to Personal Information necessary to perform their functions. They are contractually obligated to maintain confidentiality.

8.3 To Regulatory Authorities

• Securities and Exchange Board of India
• Stock Exchanges
• Depositories
• Central KYC Records Registry
• Financial Intelligence Unit – India
• Reserve Bank of India
• Income Tax authorities
• Other authorities as required by law

8.4 For Legal Compliance

• To comply with legal obligations, subpoenas, court orders, or legal process
• To enforce our Terms of Use or other agreements
• To protect our rights, property, or safety
• To prevent fraud, money laundering, or other illegal activities
• During mergers, acquisitions, or sale of assets, with appropriate safeguards

8.5 To Stock Exchanges and Depositories

As per SEBI requirements, your trading data, client details, and UCC information are shared with stock exchanges and depositories for regulatory compliance, risk management, and surveillance purposes.

8.6 Inter-Operative Transfers

In case of inter-operative demat transfers or BSDA transactions, relevant information is shared with other depositories and depository participants as per SEBI regulations.

9. FATCA and CRS Compliance

Under FATCA and CRS, we are required to collect and report certain information about account holders who are tax residents of countries other than India. This includes:

• Country of tax residence
• Tax Identification Number
• Place and country of birth
• Self-certification declarations

10. Data Retention

We retain your Personal Information for as long as necessary to provide services, comply with legal and regulatory requirements, resolve disputes, enforce agreements, and maintain records for audit and inspection purposes.

As per SEBI requirements, client records are maintained for a minimum of 8 years, or such other period as prescribed, from the date of cessation of the client relationship.

11. Data Security

We implement appropriate technical and organizational measures to protect your Personal Information against unauthorized access, alteration, disclosure, or destruction. These measures include:

• SSL/TLS encryption for data transmission
• Secure storage with access controls
• Regular security audits and vulnerability assessments
• Employee training on data protection
• Incident response procedures

However, no data transmission over the Internet can be guaranteed to be 100% secure. "Perfect security" does not exist on the Internet, and you use the Site at your own risk.

12. Your Rights

Subject to Applicable Laws, you have the following rights regarding your Personal Information:

12.1 Right to Access

You may request access to the Personal Information we hold about you.

12.2 Right to Correction

You may request correction of inaccurate or incomplete Personal Information. Certain information can only be corrected through prescribed regulatory procedures.

12.3 Right to Update

You may update your contact details, bank account, nomination, and other information through our platform or by submitting a written request.

12.4 Right to Withdraw Consent

Where processing is based on your consent, you may withdraw consent at any time. Withdrawal of consent may affect our ability to provide certain services.

12.5 Right to Grievance Redressal

You may raise concerns or complaints regarding data processing through our grievance redressal mechanism.

Important: Certain Personal Information is required for regulatory compliance and cannot be deleted even upon account closure.

13. Processing of Data Under Digital Personal Data Protection Act, 2023

13.1 Lawful Basis for Processing

• Consent: Where you have given explicit consent for specific purposes.
• Legitimate Uses: For compliance with legal obligations, performance of contracts, responding to legal claims, and other legitimate uses.

13.2 Notice and Consent

We provide clear notice about the categories of Personal Data collected, purposes of processing, and your rights before or at the time of collection.

13.3 Data Principal Rights

• Access a summary of your Personal Data and processing activities
• Correction and erasure of Personal Data, subject to legal retention requirements
• Grievance redressal
• Nominate another individual to exercise your rights in case of death or incapacity

13.4 Data Fiduciary Obligations

• Processing Personal Data only for lawful purposes
• Implementing reasonable security safeguards
• Ensuring accuracy and completeness of data
• Deleting Personal Data when required, unless retention is required by law
• Notifying the Data Protection Board and affected individuals in case of a personal data breach

14. Third-Party Links

The Site may contain links to third-party websites. When you click on these links, you will be subject to that site's privacy statement.

We are not responsible for the privacy practices of third-party websites and expressly disclaim any liability for their actions.

15. Children

This Site is not directed to children under the age of 18. Accounts for Minors may only be opened by their natural or legal guardians in accordance with applicable regulations.

16. Grievance Redressal

If you have any questions, concerns, or complaints regarding this Privacy Policy or our data processing practices, please contact:

Grievance Officer / Compliance Officer:
Name: Mahesh Morbia
Designation: Compliance Officer
Address: SAMCO Securities Limited, 1004-A, 10th Floor, Naman Midtown – A Wing, Senapati Bapat Marg, Prabhadevi, Mumbai – 400013, Maharashtra, India
Email: grievances@samco.in
Phone: +91 91222 27777

We will acknowledge your complaint within 48 hours and endeavor to resolve it within 30 days of receipt.

If you are not satisfied with our response, you may escalate the matter to:

• SEBI Complaints Redress System: https://scores.sebi.gov.in
• Relevant Stock Exchange's Investor Grievance Redressal mechanism
• Data Protection Board of India, for matters under DPDP Act

17. Changes to this Privacy Policy

This Privacy Policy is subject to change and may be updated or revised from time to time, without any prior notification to you, at the sole discretion of SAMCO.

Material changes will be communicated through:

• A notice on the Site's home page
• Email notification, where we have your email address
• In-app notification

18. Governing Law and Jurisdiction

This Privacy Policy is governed by the laws of India. Any disputes arising out of or in connection with this Privacy Policy shall be subject to the exclusive jurisdiction of the courts in Mumbai, Maharashtra, India.

19. Contact Information

SAMCO Securities Limited
Registered Address:
1004-A, 10th Floor, Naman Midtown – A Wing,
Senapati Bapat Marg, Prabhadevi,
Mumbai – 400013, Maharashtra, India
Email: info@samco.in
Phone: +91 91222 27777
Website: www.samco.in

20. Regulatory Information

SEBI Registration Numbers:

• Stock Broker: INZ000002535
• Depository Participant (CDSL): IN-DP-CDSL-443-2008
• Research Analyst: INH000005847
• Mutual Fund Distributor: ARN-120121

Exchange Memberships:

• BSE: Equity, F&O, Currency Derivatives
• NSE: Cash, F&O, Currency Derivatives
• MCX: 55190

This Privacy Policy is effective as of April 30, 2026, and supersedes all previous versions.

Note: This updated Privacy Policy incorporates requirements from the SEBI Master Circular for Stock Brokers, the Prevention of Money Laundering Act, 2002, the Information Technology Act, 2000 and related Rules, and the Digital Personal Data Protection Act, 2023.