FMGE • NEET PG
Login

Privacy Policy

Effective Date: 15 February 2026 | Last Updated: 15 February 2026

1. Introduction

Prepvision Learning Private Limited ("Prepvision", "we", "us", "our") is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website https://prepvision.in, use our mobile application, or purchase our courses and services.

This policy complies with the Digital Personal Data Protection Act, 2023 (DPDP Act) of India, and also aligns with key requirements of the EU General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA/CPRA) for our international users [citation:3][citation:7].

2. Information We Collect

2.1 Personal Information You Provide:

  • Name, email address, phone number, date of birth
  • Educational qualifications, medical college, year of study
  • Payment information (processed securely by Razorpay/Stripe – we do not store card details)
  • Account login credentials (encrypted)
  • Communications with our support team

2.2 Information Collected Automatically:

  • IP address, browser type, device information, operating system
  • Pages visited, time spent, referring URLs, clicks, and navigation paths
  • Course progress, test scores, question attempts, and performance data

2.3 Sensitive Personal Data: We do not collect sensitive personal data (e.g., health information, caste, religion, biometric data) unless voluntarily provided with your explicit consent [citation:3].

3. How We Use Your Information

We use your information for the following purposes:

  • To create and manage your account
  • To provide access to purchased courses, QBank, PYQs, test series, and other services
  • To process payments and prevent fraud
  • To personalise your learning experience (recommendations, progress tracking)
  • To communicate important updates, new features, and promotional offers (with opt-out option)
  • To improve our platform through analytics and user behaviour research
  • To comply with legal obligations and enforce our Terms & Conditions

4. Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA), we process your data based on:

  • Contract performance: To deliver our services to you
  • Consent: For marketing communications and non-essential cookies
  • Legitimate interests: To improve our platform, prevent fraud, and ensure security
  • Legal obligation: To comply with applicable laws

5. Data Sharing and Disclosure

We do not sell, rent, or trade your personal information. We may share data with:

  • Service Providers: Payment gateways, cloud hosting (AWS/Azure), analytics (Google Analytics), email services (SendGrid). These parties are contractually bound to protect your data.
  • Legal Authorities: When required by law, court order, or to protect our legal rights.
  • Business Transfers: In case of merger, acquisition, or sale of assets (with notice to users).

6. Data Retention

We retain your personal data only as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, or reporting requirements. Typically:

  • Account information: Retained until you delete your account or after 5 years of inactivity.
  • Payment records: Retained for 7 years to comply with tax laws.
  • Analytics data: Anonymised after 26 months.

7. Your Rights

Under DPDP Act 2023 (India):

  • Right to access and obtain a summary of your personal data
  • Right to correction and erasure
  • Right to grievance redressal
  • Right to nominate a representative in case of incapacity

Under GDPR (EU):

  • Right to access, rectify, erase, and restrict processing
  • Right to data portability
  • Right to object to processing
  • Right to withdraw consent at any time

Under CCPA (California):

  • Right to know what personal information is collected
  • Right to request deletion
  • Right to opt-out of the sale of personal information (we do not sell data)
  • Right to non-discrimination for exercising your rights

To exercise your rights, please email us at [email protected]. We will respond within 30 days (as required under Indian law) [citation:3].

8. Data Security

We implement appropriate technical and organisational measures to protect your data, including:

  • SSL/TLS encryption for all data transmissions
  • Encrypted storage of passwords (bcrypt hashing)
  • Regular security audits and penetration testing
  • Access controls restricted to authorised personnel only
  • PCI DSS compliance via our payment partners

9. Children's Privacy

Prepvision is intended for users who are at least 18 years old or pursuing medical education. We do not knowingly collect data from children under 13. If you become aware that a child has provided us with personal information, please contact us immediately [citation:8].

10. Grievance Officer (Mandatory under Indian IT Rules)

In accordance with the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 and the DPDP Act 2023, we have appointed a Grievance Officer [citation:3][citation:7]:

Name: Mr. Sunil Beniwal
Designation: Co-Founder & Grievance Officer
Email: [email protected]
Address: Prepvision Learning Private Limited, Jaipur, Rajasthan – 302001
Response Time: All grievances will be acknowledged within 24 hours and resolved within 30 days.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your own. Our servers are located in India and Singapore. For users in the EEA, we ensure adequate safeguards (standard contractual clauses) are in place.

12. Changes to This Policy

We may update this Privacy Policy periodically. Material changes will be notified via email or a prominent notice on our website. Your continued use of Prepvision after such updates constitutes acceptance.

13. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights:
Email: [email protected]
WhatsApp: +91 75976 78599