Privacy Policy
Effective date: 15 June 2026 · Last updated: Not applicable
RitamAI Learning Academy (OPC) Pvt. Ltd. (“RitamAI,” “we,” “us,” or “our”) respects your privacy. This policy explains what personal data we collect through www.ritamailearning.academy (the “Website”) and our workshops and services, how we use and protect it, and the choices and rights you have.
We process personal data in accordance with the Digital Personal Data Protection Act, 2023 and the Digital Personal Data Protection Rules, 2025 (together, the “DPDP law”), and, to the extent applicable, the Information Technology Act, 2000 and the rules made under it. For the purposes of the DPDP law, RitamAI is the Data Fiduciary that determines the purpose and means of processing your personal data, and you are the Data Principal.
On this page
- Personal data we collect
- How and why we use it
- Consent and your choices
- Children’s personal data
- Cookies and analytics
- When we share data
- Transfers outside India
- How long we keep data
- How we protect data
- Your rights
- Contacting us about your data
- Data breaches
- Changes to this policy
- Governing law
- Contact us
1. Personal data we collect
We collect only the personal data we need to respond to you and to provide our workshops and services.
a. Information you give us
- Contact and enquiry details — when you use our contact form, register your interest in a workshop, or email or call us: your name, email address, phone number, the audience you identify with (parent, teacher, or school), and the contents of your message.
- Workshop participation details — information needed to enrol you in or deliver a workshop or course, such as the participant’s name and, where relevant, the age group of the child the workshop relates to.
- Chat conversations — messages you send through our website chat (powered by Zoho SalesIQ), and the contact details you choose to share there.
b. Information collected automatically
- Usage and device data — such as your IP address, browser type, device information, pages visited, and referring links, collected through cookies and similar technologies (see Section 5).
- Analytics data — aggregated, mostly de-identified information about how visitors use the Website, collected via Google Analytics.
c. Payment information
When paid workshops go live, payments are processed by our payment gateway, Razorpay. Your card or banking details are entered on and handled by the gateway — we do not collect or store full payment-card details on our systems. We may receive limited confirmation data such as your name, the amount, and a transaction reference.
2. How and why we use your personal data
We use your personal data for the following purposes, each based on your consent or another lawful ground recognised under the DPDP law:
- To respond to your enquiries and provide the information you ask for;
- To register your interest in, enrol you in, and deliver our workshops, courses, and curriculum support;
- To process payments and send related confirmations and receipts;
- To send you service communications about workshops you have signed up for;
- With your consent, to send you occasional updates about new workshops or offerings (you can opt out at any time);
- To operate, secure, maintain, and improve the Website and our services;
- To comply with applicable law and to establish, exercise, or defend legal claims.
We will not use your personal data for a new purpose that is incompatible with the above without informing you and, where required, obtaining your consent.
3. Consent and your choices
Where we rely on your consent, that consent is sought through a clear, affirmative action and is limited to the purposes described in the notice shown to you at the time. You may withdraw your consent at any time by writing to us at the contact details in Section 15. Withdrawing consent is as easy as giving it, and will not affect the lawfulness of processing carried out before withdrawal. If you withdraw consent, we may no longer be able to provide the related service.
4. Children’s personal data
RitamAI works in the field of AI education for school-age learners, and we take the protection of children’s data seriously.
- Our Website and registration forms are directed to adults — parents, guardians, teachers, and school administrators — and not to children.
- We do not knowingly collect personal data of a child (an individual under 18 years of age) directly from the child through the Website.
- Where processing the personal data of a child is necessary (for example, the age group of a participating child), we do so only with the verifiable consent of the child’s parent or lawful guardian, as required under the DPDP law.
- We do not undertake tracking or behavioural monitoring of children, and we do not direct targeted advertising at children.
5. Cookies and analytics
We use cookies and similar technologies to make the Website work, remember your preferences, and understand how it is used. These include:
- Essential cookies needed for the site and the chat widget to function;
- Analytics cookies (Google Analytics) that help us measure and improve the Website.
You can control or delete cookies through your browser settings, and you can opt out of Google Analytics using Google’s opt-out tools. Blocking some cookies may affect how the Website works.
6. When we share your personal data
We do not sell your personal data. We share it only as needed, and only with:
- Service providers (Data Processors) who help us run our business under contract and on our instructions — for example, our hosting provider (Hostinger), chat and CRM tools (Zoho), analytics (Google), and our payment gateway (Razorpay);
- Authorities or other parties where we are required to do so by law, court order, or to protect our legal rights and the safety of others.
We require our processors to protect your personal data and to use it only for the purposes we specify.
7. Transfers outside India
Some of our service providers may store or process personal data on servers located outside India. Where this happens, we take reasonable steps to ensure your data remains protected, and we carry out such transfers in accordance with the DPDP law and any restrictions the Government of India may notify from time to time.
8. How long we keep your personal data
We keep your personal data only for as long as needed for the purposes described in this policy, or as required to comply with legal, accounting, or reporting obligations. When it is no longer needed, we delete it or anonymise it. If you ask us to delete your data and we are not required to keep it, we will erase it.
9. How we protect your personal data
We implement reasonable technical and organisational security safeguards to protect personal data against unauthorised access, disclosure, alteration, or loss. While we work hard to protect your information, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.
10. Your rights as a Data Principal
Subject to the DPDP law, you have the right to:
- Access a summary of the personal data we process about you and how we process it;
- Correct, complete, or update your personal data;
- Erase your personal data where it is no longer needed for the purpose it was collected;
- Withdraw consent at any time (see Section 3);
- Grievance redressal — to readily raise a complaint with us about how we handle your data;
- Nominate another individual to exercise your rights in the event of your death or incapacity.
To exercise any of these rights, contact us (Section 11). We may need to verify your identity before acting on your request, and we will respond within the time period prescribed under applicable law. If you are not satisfied with our response, you may complain to the Data Protection Board of India.
11. Contacting us about your data
For any questions, requests, or complaints about your personal data or this policy, please contact us:
RitamAI Learning Academy (OPC) Pvt. Ltd.
E-309, Crystal Plaza, Andheri (W), Mumbai 400053, India
We will acknowledge and respond to your request within a reasonable timeframe.
12. Data breaches
In the event of a personal data breach, we will take prompt steps to address it and will notify the Data Protection Board of India and affected Data Principals where and as required under the DPDP law.
13. Changes to this policy
We may update this policy from time to time to reflect changes in our practices or in the law. We will post the updated version here with a revised “Last updated” date, and where the changes are significant we will take reasonable steps to bring them to your attention.
14. Governing law and jurisdiction
This policy is governed by the laws of India. Subject to applicable law, the courts at Mumbai, Maharashtra shall have jurisdiction over any disputes arising in relation to it.
15. Contact us
RitamAI Learning Academy (OPC) Pvt. Ltd.
E-309, Crystal Plaza, Andheri (W), Mumbai 400053, India