← Back to Home

Legal

Privacy Policy

Your privacy matters to us. Learn how we protect your data.

Last Updated: 4th January 2026

Welcome to DIY (operated under the brand name DIY, including all its platforms such as diyschools.com, mobile applications, ERP systems, APIs, and related services).

DIY is committed to protecting the privacy, confidentiality, and security of personal and business information shared by its users. This Privacy Policy explains how DIY collects, uses, stores, processes, shares, and protects information when you access or use our platform.

By accessing or using DIY in any manner, you agree to the terms of this Privacy Policy. If you do not agree, you must discontinue using the platform.

1 Definitions

  • "DIY", "We", "Us", "Our" refers to DIY, its founders, directors, employees, affiliates, and authorized partners.
  • "User" refers to any individual or entity accessing DIY, including students, parents, schools, institutes, vendors, advertisers, employees, and visitors.
  • "Personal Data" means any information that identifies or relates to an identifiable individual.
  • "Sensitive Personal Data" includes financial details, identity documents, login credentials, biometric data, and other data as defined under applicable laws.
  • "Platform" refers to all websites, mobile apps, dashboards, ERP modules, and services operated by DIY.

2 Scope of This Policy

This Privacy Policy applies to:

  • Website visitors
  • Registered and unregistered users
  • Schools, colleges, coaching institutes, and vendors
  • Students, parents, and guardians
  • Leads generated, inquiries submitted, and ERP users
  • All online and offline data collected by DIY

3 Information We Collect

3.1 Personal Information

We may collect:

Full name
Email address
Mobile number
Date of birth
Gender
Address and location
Academic details
Parent/guardian info
School affiliation

3.2 Institutional & Business Information

School/institute name
Registration details
Contact persons
Business addresses
GST / PAN
Bank details

3.3 Authentication & Security Data

Login credentials (encrypted)
OTP records
Device/browser info
IP address
Session logs

3.4 Financial & Transaction Data

Payment references
Billing details
Refund records

Note: DIY does not store full card or banking credentials. Payments are processed via secure third-party gateways.

3.5 Automatically Collected Data

Cookies & tracking
Usage patterns
Clickstream data
Error logs

4 Purpose of Data Collection

DIY collects and processes data for the following purposes:

  • User registration and authentication
  • Student admissions, inquiries, and lead generation
  • School and institute verification
  • ERP and academic management services
  • Communication via SMS, email, WhatsApp, or calls
  • Customer support and grievance handling
  • Analytics, reporting, and business intelligence
  • Compliance with legal and regulatory requirements
  • Fraud detection, misuse prevention, and platform security
  • Marketing and promotional communications (with consent)

5 Legal Basis for Processing

DIY processes data under one or more of the following lawful bases:

User consent
Contractual necessity
Legal obligations
Legitimate business interests
Protection of vital interests
Public interest or regulatory compliance

6 Data Sharing & Disclosure

DIY does not sell personal data.

We may share data only with:

  • Verified schools, institutes, and vendors (as required for services)
  • Authorized service providers (SMS, email, hosting, analytics)
  • Payment gateways and banking partners
  • Government or regulatory authorities (when legally required)
  • Law enforcement agencies pursuant to valid legal orders
  • Successors in the event of merger, acquisition, or restructuring

All third parties are bound by strict confidentiality and data protection obligations.

7 Data Storage & Retention

  • Data is stored on secure servers located in India and/or compliant jurisdictions.
  • We retain data only as long as necessary for business, legal, or regulatory purposes.
  • Upon account deletion, data may be retained where legally required or anonymized for analytics.

8 Security Measures

DIY implements industry-standard security controls, including:

🔐 Encryption of sensitive data
🔑 Secure access controls
👥 Role-based permissions
🔍 Regular security audits
👁️ Unauthorized access monitoring
📱 Secure OTP authentication

Despite best efforts, no system is 100% secure. Users acknowledge and accept inherent internet risks.

9 User Rights

Users may have the right to:

📋 Access their data
✏️ Correct or update information
🚫 Withdraw consent
🗑️ Request data deletion
⏸️ Restrict or object to processing
📤 Receive data portability

Requests may be sent to the contact details below and will be handled within reasonable timelines.

10 Cookies Policy

DIY uses cookies and similar technologies to:

  • Enhance user experience
  • Track usage and performance
  • Provide personalized content
  • Improve security

Users may control cookies through browser settings. Disabling cookies may affect functionality.

11 Children's Privacy

DIY services may be used by minors under supervision of parents, guardians, or educational institutions.

DIY does not knowingly collect personal data of children without appropriate consent from parents or authorized institutions.

12 Marketing & Communication

Users may receive:

  • Service updates
  • Admission alerts
  • Platform notifications
  • Promotional communications

Users may opt-out of marketing communications at any time.

13 Third-Party Links

DIY may contain links to third-party websites. DIY is not responsible for the privacy practices, content, or security of external platforms.

14 Limitation of Liability

To the maximum extent permitted by law:

  • DIY shall not be liable for indirect, incidental, or consequential damages.
  • Users are responsible for accuracy of information provided.
  • DIY is not liable for misuse of data caused by user negligence or third-party breaches beyond reasonable control.

15 Indemnification

Users agree to indemnify and hold DIY harmless against:

  • Any false, misleading, or unlawful data submitted
  • Violations of laws or third-party rights
  • Unauthorized access due to user actions

16 Compliance With Laws

DIY complies with:

  • Information Technology Act, 2000 (India)
  • IT Rules, 2011 & applicable amendments
  • Data Protection laws applicable in India
  • GDPR principles where applicable for international users

17 Changes to This Privacy Policy

DIY reserves the right to modify this Privacy Policy at any time.

Changes shall be effective immediately upon publication on the Platform.

Continued use constitutes acceptance of the updated policy.

18 Grievance & Contact Information

For privacy concerns, complaints, or data requests:

Grievance Officer

DIY – Legal & Compliance Team

📧 Email: privacy@diyschools.com

📍 India

19 Governing Law & Jurisdiction

This Privacy Policy shall be governed by the laws of India.

All disputes shall be subject to exclusive jurisdiction of courts in Lucknow, Uttar Pradesh, India.

© 2020 - 2026 Do It Yourself Schools Pvt. Ltd. All rights reserved.