Last Updated: December 11, 2025

Privacy Policy

Zero Data Collection

DPDPA Knowledge Hub operates as a purely academic and educational platform.We do not collect, store, or process any personal data.

Executive Summary

Zero Data Collection: We do not collect, store, or process any personal data or user information.

No Cookies or Trackers: This platform does not use cookies, analytics, or any tracking technologies.

Academic Purpose: All content and tools are provided solely for educational and research purposes.

No User Accounts: We do not require user registration, login credentials, or account creation.

1. Scope and Applicability

This Privacy Policy applies to the DPDPA Knowledge Hub website ("Platform"), an academic and educational resource dedicated to providing information about the Digital Personal Data Protection Act 2023 (DPDPA) and DPDP Rules 2025.

The Platform is operated exclusively for academic, educational, and research purposes. It is not a commercial service, does not offer professional legal advice, and does not engage in any form of data processing activities as defined under applicable data protection laws.

2. No Data Collection Policy

2.1 Personal Data

We do not collect, store, or process any personal data. This includes, but is not limited to:

  • Names, email addresses, phone numbers, or contact information
  • IP addresses, device identifiers, or browser fingerprints
  • Location data, geolocation information, or demographic details
  • Behavioral data, usage patterns, or browsing history
  • Any information entered into compliance assessment tools or calculators

2.2 Technical Data

We do not log or store technical data. The Platform operates on a stateless architecture with no server-side session management, request logging, or data retention mechanisms. All computations performed by compliance tools (DPDPA Readiness Assessment, DPIA Readiness Tool, HR Data Privacy Toolset, Policy Analyzer, Templates Generator) occur entirely within your browser and are never transmitted to our servers.

2.3 User-Generated Content

No user-generated content is stored. Any information you input into assessment tools, questionnaires, or form fields is processed locally in your browser's memory and is immediately discarded upon page refresh or navigation. We have no infrastructure to receive, store, or access this information.

3. No Cookies or Tracking Technologies

3.1 Cookies

This Platform does not use cookies. We do not set, read, or process any cookies—neither first-party nor third-party. There are no session cookies, authentication cookies, preference cookies, or analytics cookies of any kind.

3.2 Analytics and Tracking

No analytics or tracking technologies are deployed. This Platform does not integrate with Google Analytics, Facebook Pixel, or any third-party analytics services. We do not track page views, user interactions, conversion rates, or any behavioral metrics. Your activity on this Platform is entirely private and unmonitored.

3.3 Third-Party Scripts

No third-party tracking scripts are loaded. The Platform does not embed external scripts for advertising, social media widgets, or user profiling. All content is served directly from our infrastructure without reliance on external tracking networks.

4. Data Processing Activities

This Platform performs no server-side data processing. All compliance tools and calculators operate using client-side JavaScript executed within your web browser. Specifically:

  • DPDPA Readiness Assessment: Questionnaire responses and compliance scores are calculated locally and never transmitted.
  • DPIA Readiness Tool: Risk assessments and mitigation recommendations are generated in-browser without server interaction.
  • HR Data Privacy Toolset: Employee privacy notices and retention schedules are created locally.
  • Policy Analyzer: Privacy policy audits are performed entirely within your browser.
  • Templates Generator: DPIA templates and compliance documents are generated without server-side processing.

No data from these tools leaves your device, and we have no technical capability to access or monitor tool usage.

5. Third-Party Services and Data Sharing

We do not share data with third parties because we do not collect data. This Platform does not:

  • Sell, rent, or trade user information to advertisers, marketing agencies, or data brokers
  • Share data with analytics providers, cloud storage services, or third-party processors
  • Transfer data to affiliates, subsidiaries, or business partners
  • Disclose information to government agencies, except as legally required (though no data exists to disclose)

The Platform is hosted on secure infrastructure, but this infrastructure does not have access to user-specific data as none is collected or transmitted.

6. Data Security

No data security measures are necessary because no data is collected. However, we implement industry-standard security practices for the Platform infrastructure:

  • HTTPS encryption for all web traffic to protect data in transit between your browser and our servers
  • Secure hosting infrastructure with regular security updates and vulnerability patching
  • No database infrastructure to eliminate data breach risks
  • Stateless architecture that prevents session hijacking or unauthorized access to user data

Since all tool computations occur locally in your browser, the security of any data you input is determined by your device's security posture, not our infrastructure.

7. User Rights Under Data Protection Laws

Traditional data subject rights are not applicable because no personal data is processed. Under DPDPA 2023, GDPR, and similar data protection frameworks, individuals have rights such as:

  • Right to access personal data
  • Right to correction or erasure of data
  • Right to data portability
  • Right to withdraw consent

These rights are inherently fulfilled by our zero data collection policy. Since we do not collect, store, or process personal data, there is no data to access, correct, erase, or port. No consent is required because no data processing occurs.

8. Children's Privacy

This Platform is suitable for all age groups. Since we do not collect any personal data, there are no child-specific privacy concerns or parental consent requirements under laws such as DPDPA 2023 (which prohibits processing of children's data for targeted advertising) or international frameworks like COPPA (Children's Online Privacy Protection Act).

The educational content is designed for legal professionals, compliance officers, and students studying data protection law, but the Platform does not impose age restrictions on access.

9. International Data Transfers

No international data transfers occur. Since this Platform does not collect or process personal data, concerns about cross-border data transfers under DPDPA Section 16, GDPR Chapter V, or other territorial data protection regimes are not applicable. The Platform is accessible globally, but no user data crosses international boundaries.

10. Changes to This Privacy Policy

We reserve the right to update this Privacy Policy to reflect changes in legal requirements or Platform functionality. Any material changes will be prominently displayed on this page with an updated "Last Updated" date.

However, our fundamental commitment to zero data collection will not change. If we ever decide to collect personal data in the future, we will provide clear notice and obtain appropriate consent before doing so, in compliance with all applicable data protection laws.

11. Contact Information

If you have questions or concerns about this Privacy Policy or the Platform's data practices, please contact us:

Platform Name: DPDPA Knowledge Hub

Purpose: Academic and Educational Resource

Governance: Powered by AMLEGALS

For general inquiries, please visit our Contact Page.

12. Governing Law and Jurisdiction

This Privacy Policy is governed by the laws of India, including the Digital Personal Data Protection Act 2023 (DPDPA) and DPDP Rules 2025. Any disputes arising from this Privacy Policy or the Platform's operations shall be subject to the exclusive jurisdiction of courts in India.

However, given that no personal data is collected or processed, disputes related to data protection are unlikely to arise.

Acknowledgment

By using this Platform, you acknowledge that you have read, understood, and agree to this Privacy Policy. You further acknowledge that:

  • This Platform does not collect, store, or process any personal data
  • No cookies or tracking technologies are used
  • All compliance tools operate locally within your browser
  • The Platform is provided for academic and educational purposes only

Your privacy is inherently protected by our zero data collection architecture.

← Return to Homepage