Privacy Policy for Dronashala Safe Kids App

 

Effective Date: October 10, 2025

 

1. Introduction

 

Welcome to the Dronashala Safe Kids App (“Dronashala,” “we,” “us,” or “our”).
Dronashala is a child safety and self-defense learning platform created to provide a safe and educational experience for young learners (“learner,” “you,” or “user”) through institutions such as schools, self-defense academies, or non-governmental organizations (collectively, the “Institution”).

This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our App. Our commitment is to uphold the highest standards of privacy, safety, and transparency, in compliance with – 

• The Information Technology Act, 2000 and IT (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011,

• The Digital Personal Data Protection Act, 2023 (DPDP Act), and

• The EU General Data Protection Regulation (GDPR), where applicable.

Access to the Dronashala Safe Kids App is provided through the Institution that has subscribed to our services. That Institution is responsible for obtaining any necessary parental consent for a Student to use our App and for the collection of data described herein. This policy should be read in conjunction with the privacy policy of your Institution.

 

2. Our Role: Data Processor

 

Under applicable data protection laws:

• Your Institution acts as the Data Controller, determining the purpose and lawful basis for processing your data.

• Dronashala acts as the Data Processor, processing learner information solely on behalf of and at the direction of the Institution.

We do not independently determine how your data is used; our use is strictly governed by our agreement with the Institution.

​

3. Information We Collect

 

We follow a strict data minimization policy, collecting only what is necessary to verify identity, enable secure access, and operate the App.

 

A. Information Provided by the Institution or Learner

When your Institution registers you for the Dronashala Safe Kids App, or when you log in, we collect the following limited personal information:

• First Name and Last Name – used for identification within the learning system.

• Gender – collected to personalize educational content and ensure inclusivity.

• Mobile Number – used solely for One-Time Password (OTP) authentication and account security.

• Learning and Performance Data: We track which lessons and modules have been started and completed and badges earned. This is essential for the core functionality of the learning platform

​

B. Information We Do NOT Collect

We do not collect, store, or track any of the following:

• Location data (GPS or otherwise);

• Photos, videos, or voice recordings;

• Device information beyond basic connection metadata (e.g., IP address for session security);

• Browsing activity, app usage analytics, or behavioral data;

• Financial, biometric, or health information.

​

4. Purpose and Legal Basis of Processing

 

We process learner information only for the following limited purposes:

• User Authentication and Access: To verify identity using mobile number and OTP.

• Account Setup: To create and maintain learner access accounts.

• Operational Communication: To send necessary security or login-related notifications.

• Compliance and Safety: To meet legal obligations and ensure platform integrity.

We do not use learner data for marketing, profiling, advertising, or any unrelated purposes.

Under the DPDP Act and GDPR, our lawful bases for processing are:

• Consent (obtained via your Institution and/or parent/guardian), and

• Performance of a Contract (to provide the Dronashala services through your Institution).

​

5. How We Share & Use Learner Information

 

We do not sell, rent, or trade learner data. Data sharing occurs only under these limited circumstances:

• With the Institution: Your Institution has access to your name and account-related data to manage your participation.

• With Service Providers: We use secure, vetted cloud infrastructure and communication service providers solely for hosting and OTP verification. These providers are bound by strict confidentiality and data protection obligations.

• For Legal or Safety Reasons: We may disclose limited data when required by law or when necessary to protect the safety of users or the public.

• In Business Transfers: In the event of a merger or acquisition, the Institution will be notified, and all existing protections will remain in effect.

​

We Use Learner Information for -

• The information is used exclusively for educational purposes at the direction of the Institution. Specifically, we use it to:

• Provide and Operate the App: To authenticate logins, deliver educational content, and track learning progress.

• Support Student Learning: To allow learners to learn at their own pace and receive recognition (badges) for their achievements.

• Report to the Institution: To provide the Institution with data on learner progress, completion rates, and overall engagement.

• Maintain and Improve Our Service: To analyze usage trends (in an aggregated, anonymous form) to enhance our platform, fix bugs, and develop new features.

• Ensure Security: To protect the safety and security of our users and our platform.

​

6. Data Security

 

We implement reasonable security practices and procedures as mandated by Indian law and international standards, including:

• Encryption of personal data during transmission and at rest,

• Restricted access based on role and necessity,

• Regular security audits and monitoring, and

• Data hosting within secure, access-controlled environments (preferably within India or GDPR-compliant regions).

While we employ rigorous safeguards, no digital platform is completely immune from risk. In the unlikely event of a data breach, we will promptly notify the affected Institution and relevant authorities as required by law.

 

7. Data Retention and Deletion

 

We retain learner data only as long as necessary to provide the service to the Institution.

Upon termination of the Institution’s agreement or when a deletion request is received through the Institution:

• All personal data (name, gender, mobile number) will be securely deleted or anonymized; and

• OTP logs are automatically purged after verification or within a short retention period mandated for audit security.

​

8. Parental and Learner Rights

 

Under applicable privacy laws, learners and their parents/guardians have the right to:

• Access their personal data which is full name & gender. There is no other personal data processed by us.

• Withdraw consent (through the Institution), and

• Request correction or deletion

All such requests should be directed to the Institution, which will coordinate with Dronashala to fulfill them.

 

9. International Data Transfers

 

If any data is transferred outside India (for secure hosting or backup), such transfer will:

• Occur only to jurisdictions offering adequate data protection under the DPDP Act and GDPR, or be governed by legally binding data transfer agreements ensuring equivalent protection.

​

10. Changes to This Privacy Policy

 

We may revise this Privacy Policy periodically to reflect operational, legal, or regulatory updates.
Substantial changes will be communicated to Institutions, which will in turn notify parents or guardians as appropriate.

The most current version will always be available in the App and on our website.

​

For general privacy questions or to exercise your data rights, please contact:

Dronashala Safe Kids App – Data Protection Office
Email: dronashalasafekids@gmail.com
Subject: “Privacy Inquiry – Dronashala Safe Kids App”