Privacy Policy

1. INTRODUCTION

Drishta Vidya LLP (“Company”, “we”, “our”, “us”) respects your privacy and is committed to protecting your personal data. This Privacy Policy (“Policy”) describes how we collect, use, disclose, and safeguard personal information when you interact with our in‑person, virtual, and online training programmes, websites (including https://drishtavidya.com), mobile applications, and any other services we operate (collectively, the “Services”).

This Policy is published in compliance with the applicable Indian laws.

By accessing or using any part of the Services, you acknowledge that you have read, understood, and agree to the practices described in this Policy.

2. DEFINITIONS

• “Personal Data” means any data about an individual who is identifiable by or in relation to such data, as defined under the DPDP Act.
• “Data Principal”, “Data Fiduciary” and other capitalised terms shall have the meaning assigned to them under the DPDP Act.
• “Cookies” are small text files placed on your device to store preferences and usage information.

3. PERSONAL DATA WE COLLECT

3.1 Information You Provide

• Registration data: name, email address, phone number, postal address, organisation, designation, password.
• Transaction data: payment method, UPI ID, partial card information, billing address, GSTIN, invoices.
• Profile data: photograph, biography, areas of interest, feedback, survey responses.
• Communication data: emails, chat messages, support requests, grievance submissions.

3.2 Information We Collect Automatically

• Technical data: IP address, browser type, operating system, device identifiers, time‑zone settings.
• Usage data: pages visited, session duration, clickstream, referring URLs.
• Cookies and similar technologies: (see Section 9).

3.3 Information from Third Parties

Payment gateways, social‑login providers, marketing partners, analytics providers may supply confirmation of payments, tokenised identifiers, or lead information, subject to their privacy policies.

4. LEGAL BASES & PURPOSES OF PROCESSING

We process Personal Data only when permitted by law, including:

• Consent: when you expressly agree (e.g., newsletter opt‑in, marketing).
• Performance of a contract: to enrol you in a programme, provide course content, issue certificates.
• Compliance with legal obligation: tax, accounting, KYC, fraud prevention, lawful requests.
• Legitimate interests: improving Services, troubleshooting, analytics, protecting security.

Specific Purposes include: delivering training content; personalising learning paths; processing payments and refunds; issuing certificates; sending transactional notices; improving and securing our platforms; marketing similar products (until you opt out); and handling grievances.

5. DISCLOSURE OF PERSONAL DATA

We disclose Personal Data only on a need‑to‑know basis:

• Service providers: cloud hosting, LMS, payment gateway, analytics, email service, SMS gateway—bound by confidentiality agreements.
• Instructors and mentors engaged by us, under NDA.
• Government authorities or law enforcement: when required by law or pursuant to a lawful order.
• Business transfers: in connection with any merger, acquisition, or reorganisation, subject to confidentiality.

We do not sell or rent your Personal Data.

6. INTERNATIONAL TRANSFERS

Our servers may be located in India or other jurisdictions offering comparable data protection. Whenever we transfer Personal Data outside India, we ensure such transfer is permitted under the DPDP Act and implement appropriate safeguards.

7. DATA RETENTION

We retain Personal Data only for as long as necessary to fulfil the purposes stated in this Policy, comply with legal obligations, resolve disputes, and enforce our agreements. Backup copies may persist for a limited period but will be erased or anonymised in accordance with our retention schedule.

8. DATA SECURITY

We employ administrative, technical, and physical safeguards such as encryption in transit, access controls, secure coding practices, regular security audits, and employee training. No system is 100% secure; we therefore cannot guarantee absolute security.

9. COOKIES & TRACKING TECHNOLOGIES

We use session and persistent cookies, web beacons, and similar technologies to:

• Authenticate users and prevent fraudulent logins;
• Remember preferences and settings;
• Analyse traffic and usage patterns;
• Deliver personalised content and advertisements.

You can disable cookies via your browser, but some features may not function.

10. YOUR RIGHTS

Subject to verification of your identity, you have the following rights under the DPDP Act:

• Right to access: know what Personal Data we hold.
• Right to correction and erasure.
• Right to withdraw consent.
• Right to grievance redressal.
• Right to nominate another person in case of incapacity or death.

To exercise these rights, email us at privacy@drishtavidya.com.

11. CHILDREN

Our Services are not directed to children under 13. If we learn that Personal Data of a child has been collected without appropriate consent, we will delete it promptly.

12. CHANGES TO THIS POLICY

We may update this Policy periodically. Material changes will be notified by email or prominent notice on our website. Your continued use of the Services after such notice constitutes acceptance.

13. CONTACT US

For questions about this Policy or our privacy practices, please email privacy@drishtavidya.com or write to our registered office address mentioned on our website.