Privacy Policy

01Who We Are

RAZO (Rise Above Zero) is a civic-tech educational platform based in Maharashtra, India. We provide online courses, AI-powered learning tools, and digital resources focused on leadership, governance, communication, and village development for Indian youth.

We are not affiliated with any political party, government body, or commercial entity outside the scope of education technology.

02Information We Collect

We collect the following types of information to provide and improve our services:

2.1 Information You Provide Directly:

• Full name, email address, and mobile number during registration
• Profile information such as state, district, and occupation (optional)
• Payment details processed through secure third-party payment gateways (we do not store card/UPI credentials)
• Messages, queries, or feedback submitted through contact forms or RAZO AI
• User-generated content such as quiz responses, assignment submissions, and community posts

2.2 Information Collected Automatically:

• Device information: model, operating system, device ID, app version
• IP address and approximate geographic location (city/state level only)
• Usage data: pages visited, courses accessed, time spent, lessons completed
• Crash reports and performance data to improve app stability
• Cookies and similar tracking technologies on our website

2.3 Information from Third Parties:

• Social login data (if you sign in with Google) — name, email, and profile picture only
• Payment confirmation data from our payment gateway partners

03How We Use Your Information

We use your personal data only for legitimate educational and operational purposes:

• To create, manage, and maintain your RAZO learner account
• To provide access to purchased courses and educational content
• To personalise your learning experience and track your progress
• To process payments and send transaction confirmations
• To send course updates, new programme announcements, and important notifications
• To provide customer support and resolve technical issues
• To improve our platform, features, and content quality
• To operate RAZO AI responses relevant to your learning context
• To comply with applicable Indian laws and legal obligations
• To detect fraud, abuse, or violations of our Terms of Service

04Data Sharing & Third Parties

We may share your data only in the following limited circumstances:

• Payment Gateways: Razorpay / PayU — for processing course purchases securely. These partners are bound by their own privacy and security policies.
• Cloud Infrastructure: Hosting and database providers (e.g., AWS, Firebase) that store your data on our behalf with strict security agreements.
• Analytics: Google Analytics / Firebase Analytics — for understanding app usage trends in aggregate, anonymised form.
• Communication Services: Email and SMS providers used to deliver account-related notifications.
• Legal Requirements: We may disclose your information if required by Indian law, a court order, or government authority.

All third-party partners are contractually required to protect your data and use it only for the purposes we specify.

05Data Retention

We retain your personal data for as long as your account is active or as needed to provide services. Specifically:

• Account and profile data: retained while your account is active, deleted within 30 days of account deletion request
• Course progress and completion records: retained for 5 years for certificate issuance purposes
• Payment records and transaction history: retained for 7 years as required under Indian financial regulations (GST Act, Income Tax Act)
• Support communications: retained for 2 years after resolution
• Crash and analytics data: retained in anonymised form for up to 3 years

06Data Security

We implement industry-standard security measures to protect your information:

• SSL/TLS encryption for all data transmitted between your device and our servers
• Passwords are stored using one-way cryptographic hashing (bcrypt)
• Payment data is handled by PCI-DSS compliant payment gateways — we never store your full payment credentials
• Access to personal data is restricted to authorised RAZO team members only
• Regular security audits and vulnerability assessments

Despite these measures, no digital platform can guarantee absolute security. In the event of a data breach that affects your rights, we will notify you within 72 hours as per applicable regulations.

07Your Rights

As a RAZO user, you have the following rights regarding your personal data:

• Access: Request a copy of personal data we hold about you
• Correction: Update or correct inaccurate information in your profile
• Deletion: Request deletion of your account and associated personal data (see Account Deletion Policy)
• Opt-out: Unsubscribe from marketing emails at any time using the link in any email
• Portability: Request your data in a portable format upon account closure
• Objection: Object to specific processing activities where applicable

To exercise any of these rights, contact us at connect.razo@gmail.com with subject line: "Data Rights Request — [Your Name]". We will respond within 30 days.

08Children's Privacy

RAZO is intended for users aged 13 years and above. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal data without consent, please contact us immediately at connect.razo@gmail.com and we will delete such information promptly.

Users between 13–18 years of age must have parental/guardian consent to use RAZO and make purchases on the platform.

09Cookies & Tracking

Our website uses cookies to improve your browsing experience. Types of cookies we use:

• Essential Cookies: Required for login sessions and core functionality — cannot be disabled
• Analytics Cookies: Help us understand how users navigate the site (Google Analytics)
• Preference Cookies: Remember your language and display preferences

You can manage cookie preferences through your browser settings. Disabling non-essential cookies will not affect core app functionality.

10Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices, legal requirements, or platform features. When we make significant changes:

• The "Last Updated" date at the top of this page will be revised
• We will notify registered users via email or in-app notification
• Continued use of RAZO after changes constitutes acceptance of the updated policy

11Governing Law

This Privacy Policy is governed by the laws of India, including but not limited to:

• Information Technology Act, 2000 and its amendments
• Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011
• Digital Personal Data Protection Act, 2023 (DPDP Act) — provisions as notified

Any disputes arising under this policy shall be subject to the exclusive jurisdiction of courts in Maharashtra, India.