Reference

How 8hours Handles Your Personal Data

At 8hours, we collect only what we need to run your account, process your deposits through UPI, Paytm or PhonePe, and keep your activity secure.

Data transparencyAccount securityIndia-region coverageUPI, Paytm, PhonePe contextYour rights, clearly stated
explore the lobby Read FAQ
8hours How 8hours Handles Your Personal Data
REACH OUR PRIVACY TEAM

Contact Us About Your Data

If you have a question about how your personal information is stored, want to request a data export, or need to flag a concern, our privacy support team is reachable through three…

Email Support Send your data request or privacy concern to our dedicated address. We confirm receipt within one business day and aim to resolve straightforward requests within 72 hours.
Live Chat Open the chat widget from any page while signed in. Our agents can verify your identity on the spot and escalate privacy requests directly to the data team without delay.
In-Account Request Form Log in, go to Account Settings and select 'Privacy Request'. Fill in the form and attach any supporting details. The submission is routed straight to our data-handling team.
HOW WE PROTECT YOU

Data Handling, Cookies and Account Security

Every layer of your account — from the moment you log in to the point a PhonePe withdrawal clears — is protected by encryption and access controls.

Encrypted Data Storage

All personal and financial data is encrypted at rest using industry-standard protocols. Your UPI and Paytm transaction references are stored in tokenised form, meaning raw account numbers are never held on our servers.

Cookie Policy

We use session cookies to keep you logged in and analytics cookies to understand how the lobby is used. You can manage cookie preferences from your browser settings at any time without losing access to your account.

Account Access Controls

Two-factor authentication is available for all accounts. Login attempts from unrecognised devices trigger an email or SMS alert so you are aware of any access you did not initiate.

Data Retention Schedule

Active account data is retained for the life of the account plus the statutory period required under applicable Indian financial regulations. When you close your account, non-statutory personal data is deleted within 30 days.

Who Can Access Your Data

Internal access to your personal data is restricted to staff who need it to operate your account or respond to your support requests. No external party receives your data for advertising or profiling purposes.

Requesting Changes or Deletion

You can request a correction, export or deletion of your personal data at any time through the in-account Privacy Request form or via live chat. Requests are processed subject to any legal retention obligations that may apply.

Your Privacy Questions Answered

We get a range of questions about how personal data works at 8hours — especially around payments via UPI, Paytm and PhonePe, and what happens to your information when you close an account. Here are the answers to the most common ones.

We collect your name, email address, mobile number, date of birth and a government-issued ID reference for identity verification. Device identifiers and IP address are also logged for security purposes when you sign in.

Payment references are tokenised before storage. We never hold raw UPI handles or Paytm wallet credentials in plain text. Encrypted transaction logs are kept for the period required under applicable Indian financial rules.

Yes. Log in, go to Account Settings and submit a Privacy Request. We will compile and send a structured export of your personal and transaction data within seven business days of verifying your identity.

Submit a deletion request through the in-account form or via live chat. Data that is not subject to statutory retention obligations will be removed within 30 days. We will confirm in writing once the deletion is complete.

We do not sell your data. We share it only with payment processors such as UPI and PhonePe networks to complete your transactions, and with identity-verification services required by applicable law. No data is passed to advertisers.

Non-statutory personal data is deleted within 30 days of account closure. Financial transaction records are retained for the period mandated by Indian financial regulations, after which they are securely destroyed.

Reach out via email or live chat and mark the subject as a privacy concern. Our data team will acknowledge your report within one business day and follow a formal internal review process to address the issue.

Related Pages

Jungle Stripes Sweet Bonanza FAQ About Us