1Who We Are
InfoClass ("InfoClass", "we", "us", or "our") is a school management software platform operated by InfoClass, a company incorporated under the laws of India. Our platform provides educational institutions with tools to manage academics, HR, finance, attendance, examinations, and school communications.
This Privacy Policy applies to all users of the InfoClass platform, including school administrators, teachers, students, and any other authorised users (collectively, "Users") who access our services via our website at InfoClass or our Android mobile application.
2Information We Collect
We collect personal data that is necessary to provide and improve our services. The categories of information we collect include:
2.1 Information You Provide Directly
- Account Registration: Name, email address, phone number, designation, and login credentials for school administrators and staff.
- Student Records: Student name, date of birth, gender, class, roll number, attendance records, academic results, and fee information — entered by the institution.
- Contact & Inquiry Forms: Name, email, institution name, and message when you submit our contact form or request a demo.
2.2 Information Collected Automatically
- Usage Data: Pages visited, features used, session duration, and in-app actions.
- Device & Technical Data: IP address, browser type, operating system, device identifiers, and referring URLs.
- Log Data: Server logs including access times, error logs, and diagnostic data.
2.3 Information We Do Not Collect
We do not collect sensitive personal data such as biometric data, financial account credentials, or government-issued identity numbers unless specifically required by a feature and with your explicit consent.
3Android App & Permissions
The InfoClass Android application ("App") is available on the Google Play Store. This section specifically discloses the device permissions the App requests and explains why each is required, in accordance with Google Play's data safety requirements.
This page serves as the official privacy policy for both the InfoClass website and the InfoClass Android application.
3.1 App Permissions
| Permission | Purpose | Required? |
|---|---|---|
| INTERNET | Connects the App to InfoClass servers to load school data, sync records, and deliver notifications. | Required |
| ACCESS_NETWORK_STATE | Checks whether the device has an active internet connection before attempting data sync. | Required |
| POST_NOTIFICATIONS (Android 13+) | Displays push notifications for attendance updates, announcements, exam results, and fee dues. | Required |
| RECEIVE_BOOT_COMPLETED | Restarts the notification listener service automatically when the device is rebooted, ensuring uninterrupted alerts. | Required |
| VIBRATE | Vibrates the device when push notifications are received. | Required |
| READ_EXTERNAL_STORAGE / WRITE_EXTERNAL_STORAGE | Allows users to download fee receipts, result cards, and school documents to device storage. | Optional |
3.2 Data Collected by the App
In addition to the data described in Section 2, the App may collect the following device-level data:
- Device Identifiers: Firebase Cloud Messaging (FCM) token, used solely to deliver push notifications to your device. This token is not linked to any advertising ID.
- App Interaction Data: In-app actions (e.g., screens visited, features used) collected in anonymised, aggregated form for performance monitoring.
- Crash Reports: Anonymised crash logs to help us identify and fix stability issues.
3.3 Data Safety (Google Play)
- We do not collect precise or approximate location data.
- We do not access your contacts, call logs, or SMS.
- We do not use your data for advertising or share it with ad networks.
- Data collected by the App is encrypted in transit using TLS 1.3.
- You may request deletion of your account data by contacting hello@infoclass.in.
3.4 Third-Party SDKs in the App
- Firebase Cloud Messaging (Google LLC): Used to deliver push notifications. Subject to Google's Privacy Policy.
4How We Use Your Information
We use the personal data we collect for the following purposes:
| Purpose | Description |
|---|---|
| Service Delivery | To provide, operate, and maintain the InfoClass platform and its features. |
| Account Management | To create, manage, and authenticate user accounts. |
| Communications | To send service-related notifications, updates, and announcements. |
| Customer Support | To respond to inquiries, resolve issues, and provide technical assistance. |
| Security & Fraud Prevention | To monitor for and prevent unauthorised access, abuse, or security incidents. |
| Product Improvement | To analyse usage patterns and improve platform features and performance. |
| Legal Compliance | To comply with applicable laws, regulations, and lawful government orders. |
We do not use your data for targeted advertising, nor do we sell your personal data to any third party.
5Legal Basis for Processing
We process personal data on the following legal grounds under the DPDP Act, 2023, and other applicable laws:
- Consent: Where you have given explicit consent for a specific processing activity (e.g., receiving marketing communications).
- Contractual Necessity: Where processing is necessary to perform a contract with you or your institution (i.e., the InfoClass service agreement).
- Legitimate Interests: Where we have a legitimate business interest in processing your data (e.g., platform security, fraud prevention) that is not overridden by your rights.
- Legal Obligation: Where processing is required to comply with a legal obligation under Indian law.
6Data Sharing & Disclosure
We do not sell, rent, or trade your personal data. We may share your data only in the following limited circumstances:
- With the Institution: Student and staff data is accessible to authorised personnel of the respective school or institution using InfoClass.
- Service Providers: We engage trusted third-party vendors (e.g., cloud hosting, email delivery, analytics) who process data solely on our behalf and under strict data processing agreements.
- Legal Requirements: We may disclose data if required by law, court order, or a lawful request from a government authority in India.
- Business Transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred to the successor entity subject to equivalent privacy protections.
- With Your Consent: In any other case where you have provided explicit consent for such sharing.
7Data Retention
We retain personal data for as long as is necessary to fulfil the purposes for which it was collected, to provide our services, and to comply with our legal obligations.
- Active Accounts: Data is retained for the duration of the active subscription or service agreement with the institution.
- Post-Termination: Upon termination of the service agreement, we retain data for a period of 90 days to allow for data export and account reinstatement, after which it is securely deleted.
- Legal Hold: Certain data may be retained for longer periods where required by applicable Indian law or pending legal proceedings.
- Inquiry Data: Contact form submissions and demo requests are retained for up to 24 months for business correspondence purposes.
8Data Security
We implement industry-standard technical and organisational security measures to protect your personal data against unauthorised access, loss, destruction, or alteration, including:
- AES-256 Encryption for all data stored at rest.
- TLS 1.3 for all data transmitted in transit.
- Role-Based Access Control (RBAC) ensuring users can only access data relevant to their role.
- Automated Daily Backups with secure, isolated storage.
- Regular Security Assessments to identify and remediate vulnerabilities.
While we take all reasonable precautions, no system is completely immune to security risks. We encourage users to use strong, unique passwords and to report any suspected security issues to us immediately at hello@infoclass.in.
9Children's Privacy
InfoClass is a B2B platform provided to educational institutions. Student data, including data relating to minors, is collected and entered into the platform by the institution acting as the data fiduciary. We process such data solely as a data processor on behalf of the institution.
We do not knowingly collect personal data directly from children under the age of 18 without the involvement of their respective school or a parent/guardian. If you believe a child's data has been collected in error, please contact us at hello@infoclass.in and we will take prompt corrective action.
Institutions using InfoClass are responsible for obtaining appropriate consents from parents or guardians where required under the DPDP Act, 2023, or any other applicable law.
10Your Rights
Subject to applicable law, you (and/or your institution as data fiduciary) have the following rights with respect to your personal data:
- Right to Access: The right to obtain confirmation of whether we process your personal data and to receive a copy of it.
- Right to Correction: The right to request correction of inaccurate or incomplete personal data.
- Right to Erasure: The right to request deletion of your personal data, subject to legal retention obligations.
- Right to Withdraw Consent: Where processing is based on consent, the right to withdraw consent at any time without affecting the lawfulness of prior processing.
- Right to Grievance Redressal: The right to have your privacy grievances addressed in a timely manner by our designated Grievance Officer (see Section 14).
- Right to Nominate: Under the DPDP Act, 2023, the right to nominate an individual to exercise rights on your behalf in the event of your death or incapacity.
To exercise any of these rights, please submit a written request to hello@infoclass.in. We will respond within 30 days of receiving a valid request.
11Cookies & Tracking
We use cookies and similar tracking technologies to operate and improve our platform. Cookies are small text files stored on your device by your browser.
- Essential Cookies: Required for the platform to function, including session management and authentication. These cannot be disabled.
- Analytics Cookies: Used to understand how users interact with our platform to improve performance and usability. We use anonymised, aggregated data only.
- Preference Cookies: Used to remember your settings and preferences across sessions.
You may control or disable non-essential cookies through your browser settings. Disabling cookies may affect certain features of the platform.
12Third-Party Links
Our website and application may contain links to third-party websites or services. This Privacy Policy does not apply to those third-party sites. We encourage you to review the privacy policies of any third-party services you access. InfoClass is not responsible for the privacy practices or content of third-party websites.
13Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:
- Update the Effective Date at the top of this page.
- Notify institutional administrators via email or an in-platform notification.
Your continued use of the InfoClass platform after the updated policy becomes effective constitutes your acceptance of the revised terms. We encourage you to review this page periodically.
14Contact & Grievance Officer
In accordance with the Information Technology Act, 2000, the DPDP Act, 2023, and the rules made thereunder, the name and contact details of our Grievance Officer are provided below:
Email: hello@infoclass.in
Website: infoclass.in
Response Time: Within 30 days of receipt of complaint
If you have any questions, concerns, or complaints regarding this Privacy Policy or the processing of your personal data, please contact us at the above address. We are committed to resolving all grievances promptly and fairly.
Have a privacy question?
Our team is happy to clarify how we handle your data.
Email Us → hello@infoclass.in