Privacy Policy

1. Introduction

Welcome to SCOPE AI HUB. We are committed to protecting your personal data and ensuring transparency in how we handle it. This Privacy Policy details the types of information we collect when you enroll in our career guidance programs, visit our campus, or use our digital platforms.

While SCOPE AI HUB is headquartered in Chennai, India, our website is accessible globally. We strive to handle personal data in accordance with applicable Indian data protection laws, including the Information Technology Act, 2000, and the Digital Personal Data Protection Act, 2023. For visitors from other jurisdictions, we endeavor to follow internationally recognized data protection principles.

2. Information Collection

We collect data necessary to provide educational and placement services:

• Personal Identity: Name, Date of Birth, and Government ID (for certification).
• Contact Details: Phone Number, Email Address, and Residential Address.
• Academic Records: Educational qualifications, mark sheets, and portfolio projects.
• Attendance & Performance: Daily attendance logs, assessment scores, and project submissions.

3. Website Data Collection

When you visit our website or interact with our online services, we may automatically collect additional technical information:

• IP Address: Your IP address is recorded when you submit enquiry or application forms. This is used for security purposes, including rate limiting and fraud prevention.
• Device & Browser Information: We collect user-agent strings (browser type, operating system) to ensure compatibility and for security monitoring.
• reCAPTCHA Interaction Data: Our forms use Google reCAPTCHA v2, which may collect browser interaction data and cookies to distinguish legitimate users from bots. This data is processed by Google in accordance with their Privacy Policy.
• Live Chat Data: If you use our Tawk.to live chat widget, your chat messages, browser information, and interaction data may be collected and processed by Tawk.to in accordance with their privacy policy.
• Error Monitoring: We use Sentry for error monitoring to improve website reliability. Sentry may collect error traces and browser information; however, all personally identifiable information (PII) is scrubbed before transmission.
• Font Delivery: Our website loads fonts from Google Fonts, which may result in your IP address being transmitted to Google servers.

4. Utilization of Data

Your information is strictly used for:

• Academic Administration: Creating student profiles, tracking progress, and issuing course completion certificates.
• Placement Services: We share your resume and technical portfolio with our hiring partners (MNCs and Startups) for recruitment purposes.
• Communication: Sharing class schedules, holiday alerts, and workshop notifications via WhatsApp or Email.
• Certification: Submitting necessary internal evaluation data for the issuance of the Official SCOPE AI HUB Certification.

5. Automated Data Processing

We use certain automated processes to ensure the security and integrity of our platform:

• Bot Detection: Google reCAPTCHA v2 is used on all forms to distinguish legitimate submissions from automated spam. This involves automated analysis of your browser interaction.
• Rate Limiting: We implement IP-based rate limiting on our servers to prevent abuse of our enquiry and application systems.
• Automated Email Responses: Upon successful form submission, automated acknowledgement emails are sent via our email service provider (Brevo/Sendinblue). These are transactional emails only — we do not send unsolicited marketing communications.
• Input Sanitization: All data submitted through our forms is automatically sanitized to prevent malicious content injection and to protect data integrity.

6. Data Sharing & Third Parties

We do not sell your personal data. However, we may share specific information with:

• Hiring Partners: To facilitate interview scheduling and job offers.
• Payment Gateways: For processing tuition fees securely (e.g., Razorpay, Stripe).
• Legal Authorities: If required by law or to protect our rights and safety.

7. International Data Transfers

To provide our services, your data may be processed by third-party service providers located outside of India. These transfers are necessary for the following services:

• Brevo (Sendinblue): Our email service provider, which processes contact data on servers located in the European Union.
• Google (reCAPTCHA & Fonts): Bot protection and font delivery services operated by Google, with data processed on servers in the United States.
• Sentry: Our error monitoring service, which may process anonymized technical data on servers in the United States.
• Supabase: Our database provider, which stores enquiry and application data on cloud infrastructure.

We select service providers who maintain appropriate data protection standards. Some of our trusted service providers operate secure systems in regions such as Europe and the United States. As part of providing our services, your information may be securely processed through these systems.

8. Cookies & Tracking Technologies

Our website uses cookies and similar technologies for security, functionality, and performance purposes. For detailed information about the specific cookies we use and how to control them, please refer to our Cookie Policy.

In summary, we use the following categories of cookies and local storage:

• Strictly Necessary: Google reCAPTCHA cookies for form security.
• Functional: Local storage for theme preference (dark/light mode).
• Performance: Sentry error monitoring for website reliability.
• Third-Party: Tawk.to live chat widget cookies and Google Fonts delivery.

9. Student Rights

As a student, you have the right to request access to your academic records, correct any inaccuracies in your profile, and request the deletion of your data post-completion (subject to retention required for official verification purposes).

Additionally, in accordance with applicable data protection laws, you may exercise the following rights by contacting us via email:

• Right to Access: Request a copy of the personal data we hold about you.
• Right to Correction: Request correction of inaccurate or incomplete personal data.
• Right to Erasure: Request deletion of your personal data, subject to legal retention requirements.
• Right to Data Portability: Request a copy of your data in a commonly used, machine-readable format.
• Right to Withdraw Consent: Where processing is based on your consent, you may withdraw it at any time by contacting our administrative office.

10. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, unless a longer retention period is required by law:

• Website Enquiries: Retained for up to 2 years from the date of submission.
• Trainer Applications: Retained for up to 1 year from the date of submission.
• Academic Records: Retained for 5 years after course completion for certification verification purposes.
• Financial Records: Retained as required by applicable tax and accounting regulations.

After the applicable retention period, personal data is securely deleted or anonymized.

11. Data Security

We implement a range of technical and organizational measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction:

• Encryption in Transit: All data transmitted between your browser and our servers is encrypted using HTTPS with HTTP Strict Transport Security (HSTS).
• Content Security Policy: We enforce a strict Content Security Policy (CSP) to prevent cross-site scripting and other code injection attacks.
• Input Sanitization: All user-submitted data is sanitized server-side to prevent injection attacks and ensure data integrity.
• PII Protection: Personally identifiable information is automatically scrubbed from error monitoring data before it is transmitted to third-party services.
• Rate Limiting: Server-side rate limiting protects against brute-force attacks and spam submissions.
• Access Controls: Access to personal data within our systems is restricted to authorized personnel on a need-to-know basis.

12. Media & Testimonials

During events, workshops, or classes, we may capture photographs or videos. We reserve the right to use these visuals for marketing purposes on our website and social media. If you wish to opt-out, please notify the management in writing during enrollment.

13. Changes to This Policy

We reserve the right to update or modify this Privacy Policy at any time. Any changes will be posted on this page with a revised "Last Updated" date. We encourage you to review this policy periodically. Your continued use of our website and services after any changes constitutes your acceptance of the updated policy.

For material changes that significantly affect how your personal data is processed, we will make reasonable efforts to notify you via email or through a prominent notice on our website.