Privacy Policy
How Hackgenix Tech Private Limited collects, uses, stores and protects your personal information.
1. Introduction
Hackgenix Tech Private Limited ("Hackgenix", "we", "us"), a private limited company incorporated under the Companies Act, 2013, with its registered office at 67/1, Thiyagi Nadesan Street No. 3, Ammapettai, Salem, Tamil Nadu 636003, India, operates the HackGRU platform. We are the data fiduciary responsible for the personal data described in this policy.
This Privacy Policy explains what we collect, why we collect it, who we share it with, and the rights you have. It applies to our website, learning platform, mobile applications and all related services. It is published in accordance with the Information Technology Act, 2000, the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and the Digital Personal Data Protection Act, 2023.
By using the Platform you consent to the practices described here. If you do not agree, please do not use the Platform.
2. Information we collect
2.1 Information you give us
| Data | When | Why |
|---|---|---|
| Name, email, phone | Registration, enquiry forms | Create your account, contact you, deliver the course |
| Password (hashed) | Registration | Authenticate you securely |
| Institution, track of interest, bio | Profile, enquiry | Personalise recommendations and support |
| Assessment answers and scores (SSAT) | Taking an assessment | Generate your skill map and roadmap |
| Coursework, projects, submissions | During a course | Evaluate progress, give feedback, issue certificates |
| Support and communication records | When you contact us | Resolve your query and improve service |
2.2 Information collected automatically
- Usage data — pages viewed, lessons completed, progress, time spent, session attendance.
- Device and log data — IP address, browser type, operating system, device identifiers, timestamps.
- Cookies and similar technologies — see section 7.
2.3 Payment information
We do not collect or store your card number, CVV, UPI PIN or net-banking credentials. All payments are processed directly by Razorpay Software Private Limited, a PCI-DSS compliant payment gateway. We receive only a transaction reference, payment status, amount and a masked instrument descriptor — enough to confirm your enrolment and issue an invoice.
2.4 Children
The Platform is not directed at children under 13. We do not knowingly collect personal data from children under 13. Learners aged 13–18 must use the Platform with the consent and supervision of a parent or legal guardian. If you believe we hold data of a child without proper consent, contact us and we will delete it.
3. How we use your information
We process your personal data to:
- Create and administer your account and authenticate you;
- Deliver the courses you purchase — live sessions, recordings, materials, certificates;
- Process payments, issue invoices, and handle refunds;
- Generate your SSAT skill map and personalised learning roadmap;
- Provide learner support and respond to your enquiries;
- Send service communications — schedule changes, session links, progress updates;
- Send marketing communications where you have opted in (you can opt out any time);
- Improve our curriculum, platform and services through aggregated analysis;
- Detect, prevent and address fraud, abuse and security incidents;
- Comply with legal, tax and regulatory obligations.
We do not sell your personal data to anyone.
4. Our basis for processing
- Performance of a contract — to deliver the course you purchased.
- Consent — for marketing communications and non-essential cookies. You may withdraw consent at any time.
- Legitimate interests — securing the Platform, preventing fraud, improving our services.
- Legal obligation — retaining financial records under tax law.
6. How we protect your data
We implement reasonable security practices appropriate to the sensitivity of the data, including:
- Passwords hashed with industry-standard algorithms — never stored in plain text;
- Encrypted transmission over HTTPS/TLS;
- Token-based authentication with expiry;
- Role-based access control — staff access is limited to what their role requires;
- Rate limiting and standard protections against common web attacks;
- Payment data isolated with a PCI-DSS compliant gateway.
No method of transmission or storage is completely secure. While we work hard to protect your data, we cannot guarantee absolute security. If a breach affects your personal data, we will notify you and the relevant authorities as required by law.
8. How long we keep your data
- Account and learning data — while your account is active, and for up to 3 years after your last activity, so you retain access to certificates and recordings.
- Financial records — for the period required under Indian tax and company law (currently 8 years).
- Support records — up to 3 years.
- Marketing data — until you withdraw consent.
After the retention period we delete or irreversibly anonymise your data.
9. Your rights
Subject to applicable law, you have the right to:
- Access — request a copy of the personal data we hold about you;
- Correction — have inaccurate or incomplete data corrected (you can edit most of this yourself under Dashboard → Settings);
- Erasure — request deletion of your data, subject to our legal retention obligations;
- Withdraw consent — opt out of marketing at any time via the unsubscribe link or by writing to us;
- Data portability — request your data in a structured, machine-readable format;
- Grievance redressal — raise a complaint with our Grievance Officer, and escalate to the relevant authority.
To exercise any right, write to grievance@hackgru.com. We will verify your identity and respond within 30 days.
10. International transfers
Your data is primarily stored and processed in India. Some of our service providers may process data outside India. Where that happens, we take steps to ensure a comparable level of protection through contractual safeguards, consistent with applicable Indian law.
11. Grievance Officer
In accordance with the Information Technology Act, 2000 and the rules made thereunder, the contact details of our Grievance Officer are:
- Name: TODO: Officer name
- Designation: Grievance Officer
- Email: grievance@hackgru.com
- Phone: +91 95665 83650
- Address: 67/1, Thiyagi Nadesan Street No. 3, Ammapettai, Salem, Tamil Nadu 636003, India
- Hours: Monday – Saturday, 9:00 AM – 7:00 PM IST
We acknowledge grievances within 24 hours and aim to resolve them within 15 days.
12. Changes to this policy
We may update this Privacy Policy to reflect changes in our practices or the law. The updated version will be posted here with a new "last updated" date. Material changes will be notified by email or an in-platform notice. Please review it periodically. Your continued use after an update constitutes acceptance.
Contact us
Questions about this policy? Reach Hackgenix Tech Private Limited at info@hackgru.com or +91 95665 83650.
Hackgenix Tech Private Limited
67/1, Thiyagi Nadesan Street No. 3, Ammapettai
Salem, Tamil Nadu 636003, India