PRIVACY POLICY

This Privacy Policy applies to all Users who access, browse, register on, or otherwise interact with the Platform, including individuals who:

• visit or use the website;
• enroll in or participate in courses, training programs, or sessions;
• communicate with the Institute through email, phone, messaging platforms, or other channels; or
• otherwise provide personal data to the Institute in connection with its Services.

This Policy governs the collection, use, storage, processing, disclosure, and protection of personal data by the Institute in relation to the Services offered through the Platform. This Policy applies to personal data collected through both online and offline interactions with the Institute, including through the website, mobile devices, communication channels, events, and in-person engagements.

This Policy does not apply to third-party websites, platforms, or services that may be linked to or accessible through the Platform; or data collected by third parties independently of the Institute. Users are advised to review the privacy policies of such third parties before providing any personal data to them. The Institute shall not be responsible for the privacy practices, policies, or content of such third-party platforms.

The Institute may collect, receive, and otherwise process various categories of personal data and related information in the course of providing the Services. The nature, scope, and extent of such information shall depend upon the manner in which a User accesses or interacts with the Platform.

2.1. Personal Identification Information
The Institute may collect personal data that enables the identification of a User, including but not limited to: (a) full name; (b) email address; (c) mobile number; (d) residential or correspondence address, where voluntarily provided; and (e) user profile details, preferences, or other identifiers submitted by the User.

2.2. Account and Registration Information
In the course of account creation, registration, or enrollment in any course or program, the Institute may collect and maintain: (a) account credentials, including username and password; (b) registration details and account preferences; (c) enrollment and subscription information; and (d) records of participation, attendance, and engagement with the Services.

2.3. Payment and Transaction Information
In connection with payments made for Services, the Institute may collect or receive: (a) billing details and invoicing information; (b) transaction records and payment confirmations; and (c) limited payment-related data as shared by authorised third-party payment service providers. All payment transactions are processed through secure third-party payment gateways. The Institute does not store complete debit or credit card details.

2.4. Technical and Device Information
Upon access to or use of the Platform, certain technical information may be automatically collected, including: (a) Internet Protocol (IP) address; (b) device type, device identifiers, and configuration details; (c) browser type and version; (d) operating system; and (e) access logs, timestamps, and usage metadata.

2.5. Usage and Activity Information
The Institute may collect information relating to a User’s interaction with the Platform and Services, including: (a) course access, progress, and completion status; (b) duration and frequency of engagement with content or sessions; (c) interaction with educational materials and features; and (d) participation in live sessions, webinars, discussions, or other interactive formats.

2.6. Communication and Interaction Information
The Institute may collect and retain information arising from communications and interactions with Users, including: (a) emails, messages, and other correspondence; (b) customer support requests and responses; (c) feedback, reviews, and survey responses; and (d) call recordings, session recordings, and interaction logs, where such recording is undertaken in accordance with applicable law.

2.7. Information from Third-Party Sources
The Institute may receive limited information from third-party service providers engaged for operational purposes, including: (a) payment confirmations and transaction status from payment gateways; (b) analytical and usage insights from analytics service providers; and (c) referral or campaign-related data, where applicable.

The Institute collects personal data through lawful and fair means in the course of providing the Services. Such collection may occur directly from Users, automatically through the Platform, or from authorised third-party sources, depending on the nature of the User’s interaction with the Platform.

3.1. Information Provided Directly by Users
The Institute may collect personal data directly from Users when they voluntarily provide such information, including when they: (a) register or create an account on the Platform; (b) enroll in or subscribe to any course, program, or service; (c) fill out forms, submit information, or upload content on the Platform; (d) communicate with the Institute through email, phone, messaging platforms, or other communication channels; (e) participate in live sessions, webinars, discussions, or events; or (f) provide feedback, reviews, or responses to surveys.

3.2. Automatic Collection of Information
Certain information may be collected automatically when Users access or interact with the Platform. Such collection may occur through: (a) cookies and similar tracking technologies; (b) server logs and system-generated data; (c) analytics and performance monitoring tools; and (d) device and browser-based data collection mechanisms.

3.3. Information Collected Through Communications and Sessions
The Institute may collect and retain information arising from interactions with Users, including: (a) recordings of calls, online sessions, or webinars, where applicable; (b) chat logs, discussion threads, and other communication exchanges; and (c) participation data generated through interactive features of the Platform.

The Institute uses personal data for specified and lawful purposes in connection with the provision, administration, operation, and improvement of its Services, in accordance with applicable law, including the Digital Personal Data Protection Act 2023 and the Information Technology Act 2000. Such use includes, without limitation:

• creation, authentication, and management of User accounts, and enabling access to the Platform and its features;
• processing enrollments, subscriptions, and participation in courses, programs, and related services, and delivering educational content, sessions, and materials;
• communicating with Users, including providing service-related updates, notifications, administrative information, and responding to queries, requests, and support requirements;
• processing payments through authorised payment service providers, generating invoices, maintaining transaction records, and managing refunds, cancellations, or related requests;
• analysing usage patterns, user engagement, and interaction with the Platform, and monitoring, maintaining, and improving the performance, functionality, and overall user experience of the Services;
• ensuring the security and integrity of the Platform, including detecting, preventing, and investigating unauthorised access, fraud, misuse, or other prohibited activities;
• complying with applicable laws, regulations, and legal processes, responding to lawful requests from governmental or regulatory authorities;
• carrying out internal administrative functions, audit, compliance, risk management, and operational activities connected with the provision of Services;
• sending information regarding courses, services, updates, and, where permitted, promotional communications, subject to the User’s right to opt out;
• any other purpose reasonably related or incidental to the foregoing, or otherwise permitted under applicable law.

The Institute may share or disclose personal data only to the extent necessary for the purposes set out in this Policy and in accordance with applicable law. Such sharing shall be undertaken on a need-to-know basis and subject to appropriate confidentiality and data protection safeguards. Personal data may be shared or disclosed in the following circumstances:

• Service Providers: with authorised third-party service providers engaged by the Institute for operational purposes (payment processing, hosting, analytics, communications);
• Internal Personnel and Representatives: with employees, trainers, mentors, consultants, for purposes connected with service delivery and administration;
• Legal and Regulatory Requirements: where disclosure is required to comply with applicable laws, regulations, or enforceable governmental requests;
• Protection of Rights and Interests: where disclosure is necessary to enforce the Terms of Service or to protect the rights, property, or safety of the Institute;
• Business Transfers: in connection with any merger, acquisition, or transfer of business assets;
• With User Consent: where the User has expressly consented to such disclosure for a specified purpose.

The Institute retains personal data only for as long as is necessary to fulfil the purposes for which it was collected, including for the provision of Services, compliance with legal obligations, resolution of disputes, and enforcement of applicable agreements. Personal data may be retained for longer periods where required or permitted under applicable law, including for purposes such as taxation, accounting, regulatory compliance, fraud prevention, and record-keeping.

Upon cessation of the relevant purpose, withdrawal of consent (where applicable), or termination of the User’s relationship with the Institute, personal data may be deleted, anonymised, or otherwise securely disposed of, unless retention is required for legitimate business purposes or legal obligations.

Subject to applicable law, including the Digital Personal Data Protection Act 2023, Users have certain rights in relation to their personal data processed by the Institute:

• Right to Access Information: to obtain confirmation as to whether personal data is being processed and to request access to such data;
• Right to Correction and Updating: to request correction, completion, or updating of personal data that is inaccurate or incomplete;
• Right to Erasure: to request deletion or erasure of personal data where such data is no longer necessary;
• Right to Withdraw Consent: to withdraw consent previously provided at any time;
• Right to Grievance Redressal: to raise concerns or grievances in relation to the processing of personal data;
• Right to Nominate: to nominate another individual to exercise rights on the User’s behalf in the event of death or incapacity.

In accordance with the Digital Personal Data Protection Act 2023, the Information Technology Act 2000, and rules made thereunder, the details of the Grievance Officer are as follows:
Name: [●]
Address: [●]
Phone: [●]
Email: [●]

This Policy shall be governed by and construed in accordance with applicable laws of India, including the Digital Personal Data Protection Act 2023 and the Information Technology Act 2000 and rules made thereunder. Any disputes arising out of or in connection with this Policy shall be subject to the exclusive jurisdiction of the competent courts at Indore, Madhya Pradesh.