🔒 Privacy Policy
Document Version: 1.0 · Effective Date: April 18, 2026 · Last Revised: April 18, 2026
⚠️ This Privacy Policy describes how MedLearno.in collects, uses, stores, shares, and protects your personal information when you access or use MedLearno. By registering on or using this Platform in any manner, you acknowledge that you have read and understood this Privacy Policy and consent to the data practices described herein. If you do not agree, please discontinue use of the Platform immediately.
PART 1: INTRODUCTION AND SCOPE
1.1 Who We Are
MedLearno ("Platform") is owned and operated by MedLearno.in ("we", "us", "our"), an educational technology initiative based in Bengaluru, Karnataka, India. We are committed to protecting the privacy and security of all individuals who interact with our Platform.
This Privacy Policy applies to all registered users (faculty, students, institutions), Pilot Program participants, unregistered guests, and any person submitting data through contact forms or registration pages.
1.2 Legal Framework
This Privacy Policy is drafted in compliance with: the Information Technology Act, 2000 (India); the IT (Reasonable Security Practices) Rules, 2011; the IT (Intermediary Guidelines) Rules, 2021; the Consumer Protection Act, 2019 (India); and general data protection principles.
PART 2: INFORMATION WE COLLECT
2.1 Information You Provide Directly
Identity and Contact Information: Full name, email address, mobile phone number, profile photograph (optional), city and state of residence.
Professional Information (Faculty): Subject specialization, institution name and location, years of teaching experience, educational qualifications.
Academic Information (Students): Target examination (NEET/K-CET/JEE), current academic class, batch name or coaching institute, city of study.
Content Submissions (Faculty): Questions, answer options, correct answers, explanations, question papers.
Communications Data: Emails or messages sent to support@medlearno.in or legal@medlearno.in, feedback forms, complaints.
2.2 Information We Collect Automatically
Usage and Behavioral Data: Questions attempted, test scores, time-per-question, accuracy, chapters accessed, credits earned/redeemed, features used, and navigation paths.
Device and Technical Data: IP address, device type, operating system, browser type, screen resolution, ISP name.
Session and Log Data: Login/logout timestamps, session duration, pages visited, error logs, referral source.
Cookie and Tracking Data: Session cookies for authentication, preference cookies, analytics cookies. Refer to our Cookie Policy for full details.
2.3 Information From Third Parties
We may receive limited data from: payment gateways (transaction confirmation, not card details), email service providers (delivery status), and analytics tools (aggregated traffic data). We do not purchase personal data from data brokers.
PART 3: HOW WE USE YOUR INFORMATION
3.1 Core Platform Operations
Account management, identity authentication, personalized analytics, credit tracking, question moderation, Pilot Program management, and batch-level analytics for faculty.
3.2 Platform Improvement
We use anonymized and aggregated data to improve AI analytics accuracy, question recommendations, UI/UX design, and fix bugs. All data used for improvement is anonymized — it cannot be traced to any individual.
3.3 Communications
- Transactional: Account activation, password reset, credit notifications, payment confirmations
- Service alerts: Maintenance notices, security alerts, policy updates
- Promotional: New features, recruitment — only with consent, opt-out available
Transactional and security-related communications cannot be opted out of.
3.4 Security and Fraud Prevention
Detecting unauthorized access, investigating credit fraud, monitoring for security breaches, enforcing Terms.
3.5 Legal and Compliance
Complying with court orders, establishing legal claims, maintaining audit records.
PART 4: HOW WE SHARE YOUR INFORMATION
4.1 No Sale of Personal Data
MedLearno.in does not sell, rent, lease, or trade your personal data to any third party for commercial, advertising, or marketing purposes.
4.2 Trusted Service Providers
| Category | Purpose |
|---|---|
| Web Hosting | Server infrastructure |
| Payment Gateway | Processing transactions |
| Email Service | Sending transactional and promotional emails |
| Analytics | Aggregated, anonymized usage analytics |
| SMS/WhatsApp | OTPs, notifications, alerts |
4.3 Legal Disclosure
We may disclose data to government authorities if required by a legally valid court order, to investigate suspected law breaches, or to protect MedLearno.in's rights, safety, or property. We will notify you where legally permitted.
4.4 Business Transfers
In the event of a merger, acquisition, or sale, your data may be transferred. You will be notified prior to transfer.
4.5 Aggregated Data
We may share de-identified data publicly or with partners for research/reporting from which no individual can be identified.
PART 5: DATA STORAGE AND SECURITY
5.1 Security Measures
| Measure | Description |
|---|---|
| Encryption | HTTPS/SSL/TLS for all data in transit |
| Access Controls | Need-to-know basis for authorized personnel only |
| Authentication | Password + OTP for sensitive operations |
| Database Security | Parameterized queries to prevent SQL injection |
| Session Management | Time-limited sessions, invalidated on logout |
| Monitoring | Continuous activity monitoring for threats |
Despite these measures, no system is completely impenetrable. MedLearno.in cannot guarantee absolute security.
5.2 Data Breach Response
If a breach occurs, MedLearno.in will: contain and investigate immediately, notify affected users within 72 hours, report to relevant authorities per the IT Act, and take steps to prevent recurrence.
PART 6: DATA RETENTION
| Data Category | Retention Period |
|---|---|
| Account and identity data | Account duration + 2 years post-closure |
| Test scores and analytics | Account duration + 2 years post-closure |
| Credit transaction records | Account duration + 3 years post-closure |
| Faculty-contributed questions | Indefinitely (Platform property post-submission) |
| Payment transaction records | 7 years (financial/tax compliance) |
| Communication and support logs | 2 years |
| Security and IP logs | 90 days rolling |
Account Deletion
Upon valid deletion request: personal data permanently deleted within 30 days; approved faculty-contributed questions retained as Platform content; credits permanently forfeited; test results anonymized and retained in aggregated form.
PART 7: YOUR RIGHTS
- Right to Access: Request a summary of your data by emailing support@medlearno.in. Responded within 15 working days.
- Right to Correction: Update inaccurate data via your profile or by email request.
- Right to Deletion: Request deletion at any time. Processed within 30 days. Some data must be retained per legal requirements.
- Right to Opt Out: Opt out of promotional communications via unsubscribe link or email. Transactional communications cannot be opted out of.
- Right to Data Portability: Request a machine-readable copy of your data. Provided within 15 working days.
PART 8: CHILDREN'S PRIVACY
This Platform is not directed at children under 13. MedLearno.in does not knowingly collect data from children under 13. If discovered, the account will be terminated and data deleted. Parents/guardians should contact support@medlearno.in immediately.
PART 9: CHANGES TO THIS POLICY
MedLearno.in reserves the right to update this Privacy Policy. Significant changes will be communicated via email at least 7 days before taking effect. Continued use after the effective date constitutes acceptance.
PART 10: CONTACT AND GRIEVANCE
In accordance with the IT Act, 2000, MedLearno.in designates a Grievance Officer. Acknowledgment: within 24 hours. Resolution: within 15 days.
Email (General): support@medlearno.in
Email (Legal/Privacy): legal@medlearno.in
Website: https://qb.medlearno.in/
Jurisdiction: Bengaluru, Karnataka, India
Support Hours: Monday–Saturday, 10:00 AM – 6:00 PM IST
© 2026 MedLearno.in — MedLearno. All Rights Reserved.