1. Introduction

DigiGyan Academy is operated by DigiGyan EdTech OPC Pvt Ltd, a company registered under the Companies Act 2013, with MSME (Udyam) registration and DPIIT Startup India recognition. We are a computer training institute located at Boral, South Kolkata, West Bengal.

This Privacy Policy explains how we collect, use, store, and protect personal information of our students, parents/guardians, and website visitors. It is prepared in compliance with India’s Digital Personal Data Protection Act, 2023 (DPDPA) and the DPDP Rules, 2025.

By using our website, enrolling in our courses, or contacting us, you agree to the practices described in this Policy.

2. What Personal Data We Collect

2.1 From Students and Parents/Guardians (during admission)

• Full name of the student
• Date of birth and age
• School name, class, and board (CBSE / ICSE / State Board)
• Parent or guardian’s name
• Contact phone number (parent and/or student)
• Residential address
• Email address (if provided)
• Photograph (for ID card and records)
• Fee payment details (amount, mode, receipt number)

2.2 Academic and Attendance Records

• Course enrolled, batch timings, and attendance
• Internal test scores and progress reports
• Course completion and certification details

2.3 From Website Visitors

• Name, phone number, and email submitted via our contact or enquiry form
• General browsing data (via cookies — see Section 7)

2.4 Staff-Only — Biometric Data

Fingerprint data collected through our biometric attendance system is used exclusively for staff (faculty and administrative employees). Biometric data of students is NOT collected. Staff biometric data is stored securely and used only for attendance tracking purposes.

3. Why We Collect Your Data (Purpose of Processing)

We collect and use personal data only for the following specific purposes:

• Admission, enrollment, and student registration
• Issuing fee receipts, ID cards, and course completion certificates
• Communicating course schedules, test dates, and academic updates to parents
• Sending monthly progress reports to parents/guardians
• Responding to enquiries submitted through our website or phone
• Compliance with legal obligations (e.g., MSME, tax, affiliation requirements)
• Internal academic administration and record-keeping

We do NOT use student or parent data for advertising, profiling, or selling to third parties.

4. Special Provisions for Children’s Data

A significant portion of our students are minors (under 18 years of age). We take additional care with children’s data as required under the DPDPA 2023.

• All data collected for students under 18 is processed with the knowledge and consent of a parent or legal guardian, obtained through our signed admission form.
• We do not use children’s personal data for any behavioural tracking, targeted advertising, or profiling.
• Student photographs are used only for internal purposes (ID cards and records) unless separate written consent is obtained from parents for promotional use (social media, brochures, website).
• Promotional photo consent is entirely optional and is not a condition of admission.

In accordance with DPDP Rules 2025, educational institutions are permitted to process student data for legitimate educational administration purposes without requiring separate parental consent for each routine administrative act. However, for any use beyond education delivery, we always obtain explicit consent.

5. Who We Share Your Data With

We do not sell, rent, or trade your personal data to any third party.

We may share data in limited, specific circumstances only:

• Government or regulatory authorities: If required by law, court order, or applicable regulation (e.g., NIELIT affiliation, tax audit).
• Affiliated certification bodies: Limited student data (name, course, score) may be shared with NIELIT or other affiliating bodies solely for the purpose of issuing recognized certificates.
• Service providers: We may use trusted third-party tools for communication (WhatsApp Business, email). These providers are not permitted to use your data for any other purpose.

In all cases, data is shared only to the extent necessary and under appropriate confidentiality obligations.

6. How We Store and Protect Your Data

Your data is stored in the following ways:

• Physical admission forms and records are stored in locked cabinets at our centre premises.
• Digital records are stored in password-protected systems accessible only to authorised staff.
• Staff biometric data is stored within our on-premises biometric system and is not transmitted to any external server.

We implement reasonable security practices including restricted access, password protection, and physical security to protect against unauthorised access, loss, or misuse of personal data.

In the event of a data breach that is likely to affect your rights, we will notify you and the Data Protection Board of India as required under the DPDPA 2023.

7. Cookies and Website Data

Our website (www.digigyan.co.in) may use standard web cookies — small text files stored on your browser. These are used to:

• Ensure the website functions correctly
• Understand how visitors use the site (e.g., pages visited)

We do not use cookies for advertising or behavioural profiling. You may disable cookies through your browser settings, though some website features may not function correctly if you do.

8. How Long We Keep Your Data

We retain personal data only for as long as necessary for the stated purpose:

• Active student records are retained throughout the duration of enrollment plus 3 years after course completion (for certificate verification purposes).
• Enquiry records (website forms, phone calls) are retained for up to 6 months if no enrollment follows.
• Financial records (fee receipts) are retained for 7 years as required under Indian tax law.
• Staff records, including biometric data, are retained for the duration of employment and deleted within 30 days of separation.

After the retention period, data is securely deleted or anonymised.

9. Your Rights Under the DPDPA 2023

As a student, parent, or website visitor, you have the following rights regarding your personal data:

• Right to Access: Request a summary of personal data we hold about you.
• Right to Correction: Request correction of any inaccurate or incomplete data.
• Right to Erasure: Request deletion of your data (subject to legal retention obligations).
• Right to Withdraw Consent: Withdraw consent for optional uses such as promotional photography at any time.
• Right to Grievance Redressal: Raise a complaint about how your data is being handled.

To exercise any of these rights, please contact us using the details in Section 11. We will respond within a reasonable time and no later than 30 days.

10. Third-Party Links

Our website may contain links to external websites (e.g., YouTube, Google Maps). This Privacy Policy applies only to www.digigyan.co.in. We are not responsible for the privacy practices of any external websites. We encourage you to read their privacy policies before providing any personal data.

11. Contact Us for Privacy Matters

If you have any questions about this Privacy Policy, wish to exercise your rights, or want to raise a privacy concern, please contact us:

DigiGyan EdTech OPC Pvt Ltd

Address: Boral, Kolkata – 700154, West Bengal, India

Email: admin@digigyan.co.in

Phone: +91 6291539778

Website: www.digigyan.co.in

Working Hours: Monday to Saturday, 8:00 AM – 8:00 PM

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable law. The updated policy will be published on our website with a revised ‘Last Updated’ date. We encourage you to review this policy periodically.

Continued use of our website or services after any changes constitutes your acceptance of the updated policy.