Privacy Policy

1. Introduction

Your privacy is important to us. This Privacy Policy explains how EDUSPHERIA PRIVATE LIMITED ("we", "us", "our") collects, uses, shares, and protects information when you use the Eduspheriaapp mobile application (the "App").

This policy is designed to comply with Google Play Developer Program Policies, including User Data Policy and Data Safety disclosures.

2. Owner & Contact Information

• App Name: Eduspheriaapp
• Developer/Company: EDUSPHERIA PRIVATE LIMITED
• Email: eduspheria@gmail.com
• Website: https://eduspheria.com
• Address: Omaxe Baddi, Himachal Pradesh, India (173205)

3. What This App Does

• Account login and authentication for students, parents, and staff
• Viewing institutes, courses, dashboards, timetables, and leaves
• Finding nearby institutes using location (with permission)
• Sending push notifications (e.g., alerts, updates)
• Initiating real-world school fee payments securely via our backend
• Checking for new app versions and linking to the Play Store for updates

4. Key SDKs & Libraries Used

• Firebase Core / Cloud Messaging (Google LLC): App services & notifications
• flutter_local_notifications: Local notification display
• geolocator: Device location (with your consent)
• google_maps_flutter: Map rendering (where applicable)
• dio / http: Secure API communication
• flutter_secure_storage: Secure storage for authentication tokens
• shared_preferences: Non-sensitive preferences (UI state)
• package_info_plus: App version checks

5. Permissions We Request (Android)

• Location (ACCESS_FINE_LOCATION / ACCESS_COARSE_LOCATION): To show nearby institutes; not used in background without consent
• Notifications (POST_NOTIFICATIONS): To send you alerts if you opt in
• Internet, Wake Lock, Receive Boot Completed, Vibrate: For reliable app and network operations

6. Information We Collect

6.1 Account & Profile

• Name, username, email, role (as provided by you or your institution)
• Authentication token and minimal session metadata (securely stored on-device)

6.2 Device & Diagnostics

• Device model, OS version, crash/performance logs, basic usage analytics
• Used strictly for reliability and technical support

6.3 Location (Permission-Based)

• Approximate or precise location (based on your choice) for nearby institute features
• Not permanently stored on our servers

6.4 Notifications

• FCM (Firebase Cloud Messaging) device token for notification delivery
• You may disable notifications anytime via system settings

6.5 Payments (School Fees)

• Payment intent IDs, method type, and transaction status (not card details)
• Full card/UPI data handled securely by authorized payment processors
• Example API endpoint: https://eduspheria.com/student/fees/pay/

6.6 Support Communications

Emails/messages sent to eduspheria@gmail.com and related diagnostic data

7. How We Use Information

• Authenticate and manage user sessions
• Provide educational and institute-related features
• Enable location-based results (nearby institutes)
• Deliver app notifications (when enabled)
• Improve performance, reliability, and prevent misuse
• Facilitate payments and generate receipts
• Perform version checks and update prompts
• Comply with legal and audit obligations

8. Legal Bases (Where Applicable)

• Consent: For location and notifications
• Contract: To provide app functionality to registered users
• Legitimate Interests: Security, fraud prevention, improvement
• Legal Obligations: Compliance with applicable laws

9. Sharing of Information

We do not sell personal or sensitive user data. Data may be shared only as necessary:

• Service Providers:
  • Google/Firebase (FCM, hosting, analytics)
  • Cloud, hosting, and email services used to operate our backend
• Legal/Compliance: When required by law
• Business Transfers: In mergers/acquisitions, subject to equivalent safeguards

10. Data Handling Details

• Location: Collected with permission; not stored long-term
• Notifications: Managed via FCM; can be disabled anytime
• Authentication Tokens: Encrypted, stored securely, removed on logout
• Payments: Sensitive details handled by authorized payment processors only

11. Security

• Encrypted communication using HTTPS/TLS
• Secure token storage and backend access controls
• Regular updates to maintain modern security standards

12. Data Retention

• Account/Session Data: Retained while active, and for support or legal reasons
• FCM Tokens: Retained until logout or notification disablement
• Payment Metadata: Retained for audit and financial reconciliation
• Support Emails: Retained as needed for resolution and compliance
• When no longer required, data is deleted or de-identified as per legal guidelines.

13. Your Rights & Choices

• Access/Correction: Request copies or corrections to your personal data
• Deletion: Request account deletion (subject to legal constraints)
• Permissions: Revoke location or notification access anytime via device settings
• Marketing: We do not send unrelated marketing without your consent

To exercise these rights, contact eduspheria@gmail.com.

14. Children's Privacy

• Not directed at children under 13 years old
• If data is collected from a child under 13, it will be deleted promptly
• Where the app is used by parents/guardians, the institution remains responsible for obtaining appropriate consents

15. International Data Transfers

Your data may be processed outside your country (e.g., Firebase/Google servers). We apply appropriate safeguards consistent with applicable laws (such as GDPR standards).

16. Third-Party Services & Links

• External links or integrations (e.g., Google Maps) follow their respective privacy policies.
• Google Maps usage is governed by Google's Privacy Policy: https://policies.google.com/privacy

17. Data Safety Summary (Google Play Disclosure)

• Sharing: Only with service providers; never sold
• Security: Encrypted in transit; securely stored
• Deletion: Account deletion and permission revocation available anytime

18. Policy Updates

We may update this Privacy Policy occasionally. Updates will be reflected in-app and on our website with a revised effective date. Continued use of the app indicates acceptance of the updated policy.