Legal

Privacy Policy

Effective date: 15 June 2026  ·  Last updated: Not applicable

RitamAI Learning Academy (OPC) Pvt. Ltd. (“RitamAI,” “we,” “us,” or “our”) respects your privacy. This policy explains what personal data we collect through www.ritamailearning.academy (the “Website”) and our workshops and services, how we use and protect it, and the choices and rights you have.

We process personal data in accordance with the Digital Personal Data Protection Act, 2023 and the Digital Personal Data Protection Rules, 2025 (together, the “DPDP law”), and, to the extent applicable, the Information Technology Act, 2000 and the rules made under it. For the purposes of the DPDP law, RitamAI is the Data Fiduciary that determines the purpose and means of processing your personal data, and you are the Data Principal.

1. Personal data we collect

We collect only the personal data we need to respond to you and to provide our workshops and services.

a. Information you give us

b. Information collected automatically

c. Payment information

When paid workshops go live, payments are processed by our payment gateway, Razorpay. Your card or banking details are entered on and handled by the gateway — we do not collect or store full payment-card details on our systems. We may receive limited confirmation data such as your name, the amount, and a transaction reference.

2. How and why we use your personal data

We use your personal data for the following purposes, each based on your consent or another lawful ground recognised under the DPDP law:

We will not use your personal data for a new purpose that is incompatible with the above without informing you and, where required, obtaining your consent.

Where we rely on your consent, that consent is sought through a clear, affirmative action and is limited to the purposes described in the notice shown to you at the time. You may withdraw your consent at any time by writing to us at the contact details in Section 15. Withdrawing consent is as easy as giving it, and will not affect the lawfulness of processing carried out before withdrawal. If you withdraw consent, we may no longer be able to provide the related service.

4. Children’s personal data

RitamAI works in the field of AI education for school-age learners, and we take the protection of children’s data seriously.

If you believe a child has provided us personal data without parental consent, please contact us (Section 11) and we will take steps to delete it.

5. Cookies and analytics

We use cookies and similar technologies to make the Website work, remember your preferences, and understand how it is used. These include:

You can control or delete cookies through your browser settings, and you can opt out of Google Analytics using Google’s opt-out tools. Blocking some cookies may affect how the Website works.

6. When we share your personal data

We do not sell your personal data. We share it only as needed, and only with:

We require our processors to protect your personal data and to use it only for the purposes we specify.

7. Transfers outside India

Some of our service providers may store or process personal data on servers located outside India. Where this happens, we take reasonable steps to ensure your data remains protected, and we carry out such transfers in accordance with the DPDP law and any restrictions the Government of India may notify from time to time.

8. How long we keep your personal data

We keep your personal data only for as long as needed for the purposes described in this policy, or as required to comply with legal, accounting, or reporting obligations. When it is no longer needed, we delete it or anonymise it. If you ask us to delete your data and we are not required to keep it, we will erase it.

9. How we protect your personal data

We implement reasonable technical and organisational security safeguards to protect personal data against unauthorised access, disclosure, alteration, or loss. While we work hard to protect your information, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

10. Your rights as a Data Principal

Subject to the DPDP law, you have the right to:

To exercise any of these rights, contact us (Section 11). We may need to verify your identity before acting on your request, and we will respond within the time period prescribed under applicable law. If you are not satisfied with our response, you may complain to the Data Protection Board of India.

11. Contacting us about your data

For any questions, requests, or complaints about your personal data or this policy, please contact us:

RitamAI Learning Academy (OPC) Pvt. Ltd.

E-309, Crystal Plaza, Andheri (W), Mumbai 400053, India

Email: contact@ritamailearning.academy

We will acknowledge and respond to your request within a reasonable timeframe.

12. Data breaches

In the event of a personal data breach, we will take prompt steps to address it and will notify the Data Protection Board of India and affected Data Principals where and as required under the DPDP law.

13. Changes to this policy

We may update this policy from time to time to reflect changes in our practices or in the law. We will post the updated version here with a revised “Last updated” date, and where the changes are significant we will take reasonable steps to bring them to your attention.

14. Governing law and jurisdiction

This policy is governed by the laws of India. Subject to applicable law, the courts at Mumbai, Maharashtra shall have jurisdiction over any disputes arising in relation to it.

15. Contact us

RitamAI Learning Academy (OPC) Pvt. Ltd.

E-309, Crystal Plaza, Andheri (W), Mumbai 400053, India

Email: contact@ritamailearning.academy