Effective Date: 01/04/2023
Institution: Jatiya Vidyalaya, Sipajhar
Principal: Kanak Ch. Nath
This Privacy Policy explains how Jatiya Vidyalaya, Sipajhar ("School", "we", "us") collects, uses, discloses, and protects personal information processed through our official website and mobile application (together, the “Services”). It applies to information related to students, parents/guardians, staff, and visitors who interact with the Services.
This Policy is intended to comply with applicable Indian laws, including the Information Technology Act, 2000, the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 ("SPDI Rules"), and—where applicable—the Digital Personal Data Protection Act, 2023 ("DPDP Act").
We collect and process the following categories of personal information through the Services:
Student Identification Data: Full name, photograph, date of birth, gender (if provided), class/section, admission/roll number.
Contact Data: Student/parent email address(es), mobile number(s), and postal address.
Fee & Transaction Data: Amounts payable/paid, invoice/receipt details, payment status, payment mode, transaction IDs, and timestamps. We do not store full card, UPI PIN, or net-banking credentials. Such data is collected and processed securely by our payment gateway provider(s).
Technical Data (when using our website/app): IP address, device information, app version, pages/screens visited, time/date stamps, cookies or similar identifiers.
Special note about children’s data: Because our Services are used by and for students (minors), we obtain consent from parents/guardians for processing a student’s personal data, wherever required by law.
We use personal information to:
Manage admissions, student records, classes, and examination administration.
Communicate with students and parents/guardians (alerts, notices, timetables, results, events, academic updates).
Provide and improve our website/app features and security.
Administer fee billing, collection, receipts, refunds (where applicable), and statutory reporting.
Maintain safety, prevent fraud, enforce policies, and comply with legal obligations.
Generate de-identified/aggregated statistics to improve School operations.
Depending on the context, we rely on one or more of the following bases:
Consent: from the parent/guardian for processing a student’s personal data, including image/photograph where required.
Performance of a task in the public interest/School function and legitimate interests related to delivering education and ensuring campus safety.
Legal obligation: to maintain records and provide information to education authorities or as otherwise required by law.
You may withdraw consent at any time (see Your Rights), but this will not affect processing already carried out and may limit access to certain Services.
Online fee payments are processed via reputable third‑party payment gateways integrated with our app/website.
We receive limited transaction metadata (e.g., payment status, amount, transaction ID).
We do not collect or store full payment instrument details such as complete card numbers, CVV, UPI PIN, or net‑banking passwords.
Payment gateways operate under RBI and card network rules and maintain their own privacy and security practices. Please refer to the payment provider’s privacy notice presented at checkout.
Our website/app may use cookies, local storage, and similar technologies to:
Keep you signed in and remember preferences.
Measure usage and improve performance.
Enhance security and prevent fraud.
You can control cookies through your browser/app settings; disabling cookies may limit certain features.
We do not sell personal information. We may share data only with:
Service providers/Processors (e.g., IT hosting, payment gateways, SMS/email delivery, analytics, secure backups) under contracts that require confidentiality and security.
Education boards/authorities and other bodies when legally required.
Law enforcement or regulators when necessary to comply with law or protect rights, safety, or property.
Successors in connection with any organizational restructuring in compliance with law.
We retain personal information for as long as necessary to fulfill the purposes described in this Policy, including to meet legal, accounting, or reporting requirements. Typical retention periods:
Student academic records: for the duration of enrollment and thereafter as required by applicable education/records laws.
Financial/fee records: usually 7–10 years (or longer if legally required).
Technical logs: typically 6–24 months, unless needed for security or legal reasons.
When data is no longer required, we will securely delete, anonymize, or archive it per our retention schedule.
We implement reasonable technical and organizational measures, such as:
Encryption in transit (HTTPS/TLS) and at rest where applicable.
Access controls, role‑based permissions, and secure authentication.
Regular backups and limited data access on a need‑to‑know basis.
Vendor due‑diligence and contractual safeguards with service providers.
No system is 100% secure; users should also protect their credentials and report suspected incidents immediately.
Subject to law (including the DPDP Act and SPDI Rules), you may have rights to:
Access information about how your data is processed.
Correct/Update inaccurate or incomplete personal data.
Delete/Erase personal data where no longer necessary (subject to legal obligations).
Withdraw consent for processing dependent on consent.
Grievance redressal and, if applicable, nominate another individual to exercise rights under the DPDP Act.
To exercise these rights, please contact us (see Contact & Grievance Officer below). We may need to verify your identity and relationship to the student.
For student users who are minors, we obtain and rely upon parent/guardian consent for the collection and use of personal data where required by law. Parents/guardians may review, direct deletion (subject to legal retention), or withdraw consent by writing to us.
We primarily process data within India. If data is transferred or stored outside India by our service providers, we will ensure appropriate safeguards and compliance with applicable laws.
Our Services may contain links to third‑party websites or services (including payment gateways). We are not responsible for their privacy practices. Please review their privacy policies before engaging with them.
We may update this Policy from time to time to reflect changes in law or our practices. When we make material changes, we will update the “Effective Date” above and provide additional notice where required.
If you have questions, requests, or complaints regarding this Policy or our data practices, please contact our designated Grievance Officer:
Name: [Enter Grievance Officer’s Name]
Designation: Grievance Officer / Data Protection Contact
Address: Jatiya Vidyalaya, Sipajhar, [Insert Full Postal Address, District, State, PIN]
Email: [grievance@jvssipajhar.itind.in]
Phone: +91 97067 50745
Working Hours: Monday–Friday, 10:00–16:00 IST
By using our website/app, submitting forms, or completing a fee transaction, you acknowledge that you have read and understood this Policy. For students who are minors, parents/guardians provide consent on their behalf where required.
