Privacy Policy

At Novexa Skills Pvt. Ltd. ("Novexa Skills", "we", "us", or "our"), your privacy is important to us. This Privacy Policy describes how we collect, use, disclose, and safeguard your information when you visit our website novexaskills.com, enrol in our courses, or use our services. Please read this policy carefully. If you do not agree with its terms, please discontinue use of our site.

1. Who We Are

Novexa Skills Pvt. Ltd. is an IT training and professional development company incorporated in India. Our registered office is at Level 4, Tech Park Tower, Whitefield, Bangalore — 560066, Karnataka, India. We operate the website novexaskills.com and deliver online, classroom, and corporate IT training programs.

For the purposes of applicable data protection law, Novexa Skills is the data controller in respect of the personal information we hold about you.

2. Information We Collect

2.1 Information You Provide Directly

• Registration & Enrolment: Name, email address, phone number, date of birth, educational qualifications, and employer/company name when you register for a course or create an account.
• Enquiry Forms: Name, phone number, email, company name, and message content submitted through our contact or enquiry forms.
• Payment Information: Billing name, address, and payment card details (processed securely by our third-party payment gateway; we do not store card numbers).
• Corporate Training Enquiries: Company name, designation, team size, and training requirements submitted by enterprise clients.
• Communications: Content of emails, chat messages, or WhatsApp messages you send to us.

2.2 Information We Collect Automatically

• Usage Data: Pages visited, time spent on pages, links clicked, and referring URL.
• Device Information: IP address, browser type and version, operating system, screen resolution, and device identifiers.
• Cookies: Session cookies, preference cookies, and analytics cookies (see Section 5).
• Log Data: Server logs including access times, error logs, and bandwidth consumption.

2.3 Information from Third Parties

• Information from social media platforms if you sign in using a social login (Google, LinkedIn).
• Analytics data from Google Analytics, including demographic and interest segments.
• Information from certification bodies (e.g., AWS, Microsoft) about your exam registration and pass status, where you have authorised such sharing.

3. How We Use Your Information

We use the information we collect for the following purposes:

• To process your course enrolment, manage your account, and deliver training services.
• To respond to your enquiries and provide customer support.
• To send you course-related communications — schedule reminders, lab access credentials, assessment results, and certificates.
• To process payments and issue invoices and receipts.
• To send you marketing communications about new courses, offers, and events — only where you have given consent or where we have a legitimate interest. You may opt out at any time.
• To personalise your experience on our website and recommend relevant courses.
• To analyse website usage and improve our services, curriculum, and user experience.
• To detect, prevent, and investigate fraudulent activity and security incidents.
• To comply with applicable legal and regulatory obligations.
• To share aggregated, anonymised data for research or reporting purposes (this data cannot identify you).

4. Sharing of Information

We do not sell, trade, or rent your personal information to third parties. We may share your data in the following limited circumstances:

• Service Providers: We engage trusted third-party companies to help us deliver our services — payment processors (Razorpay, PayU), cloud hosting (AWS), email service providers (Mailchimp), and video conferencing platforms (Zoom, MS Teams). These providers only receive the data necessary to perform their functions and are contractually obligated to protect it.
• Certification Bodies: With your consent, we may share your name, email, and exam registration details with certification partners (AWS, Microsoft, Google Cloud, CompTIA, etc.) to register you for exams.
• Corporate Clients: If you are enrolled through a corporate training programme, your completion status and assessment scores may be shared with your employer/sponsoring organisation.
• Legal Requirements: We may disclose your information if required by law, court order, or government authority, or to protect the rights and safety of Novexa Skills, our users, or the public.
• Business Transfers: In the event of a merger, acquisition, or sale of all or part of our business, your data may be transferred as part of that transaction, subject to equivalent privacy protections.

5. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your browsing experience:

• Essential Cookies: Required for the website to function correctly (e.g., session management, login state). These cannot be disabled.
• Preference Cookies: Remember your settings such as language, region, and display preferences.
• Analytics Cookies: Tools like Google Analytics help us understand how visitors use our site so we can improve it. Data is aggregated and anonymised.
• Marketing Cookies: Used to deliver relevant advertisements on third-party platforms like Google Ads and LinkedIn. You can opt out through your browser settings or the respective platform's ad preferences.

You can manage cookie preferences through your browser settings. Note that disabling certain cookies may affect website functionality. For more control, visit aboutcookies.org.

6. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected:

• Active Account Holders: Data is retained for the duration of your account plus 3 years after your last active session.
• Course Records: Enrolment history and certificates are retained for 7 years to support re-issuance requests and audit requirements.
• Payment Records: Transaction records are retained for 8 years in compliance with Indian tax and accounting regulations.
• Enquiry Data: Contact form submissions are retained for 12 months if no enrolment results.
• Marketing Consent Records: Retained for 3 years from the date of consent or last interaction.

When retention periods expire, data is securely deleted or anonymised.

7. Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, destruction, or disclosure. These measures include:

• SSL/TLS encryption for all data transmitted between your browser and our servers.
• Encrypted storage of sensitive data including passwords (hashed with bcrypt) and payment details.
• Role-based access controls — only authorised personnel can access personally identifiable data.
• Regular security audits, vulnerability assessments, and penetration testing.
• Two-factor authentication for all internal system access.
• Incident response procedures for data breaches, including mandatory notification as required by law.

However, no method of transmission over the internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

8. Your Rights

Depending on your location, you may have the following rights in respect of your personal data:

• Right of Access: Request a copy of the personal data we hold about you.
• Right to Rectification: Request correction of inaccurate or incomplete data.
• Right to Erasure: Request deletion of your personal data, subject to our legal retention obligations.
• Right to Object: Object to our processing of your data for marketing purposes at any time.
• Right to Restrict Processing: Request that we limit how we use your data in certain circumstances.
• Right to Data Portability: Receive your data in a structured, machine-readable format.
• Right to Withdraw Consent: Where processing is based on your consent, withdraw it at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, please contact our Data Protection Officer at privacy@novexaskills.com or call +91 9758996904. We will respond to your request within 30 days.

9. Children's Privacy

Our services are intended for individuals aged 16 and above. We do not knowingly collect personal information from children under the age of 16. If you believe a child under 16 has provided us with personal data, please contact us immediately at privacy@novexaskills.com and we will delete such information promptly.

10. Third-Party Links

Our website may contain links to third-party websites, platforms (such as AWS Skill Builder, Microsoft Learn, or Coursera), and social media profiles. This Privacy Policy applies only to novexaskills.com. We are not responsible for the privacy practices of third-party sites and encourage you to review their privacy policies before providing any personal information.

11. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, services, or applicable law. When we make material changes, we will notify you by email (if you have an account with us) or by displaying a prominent notice on our website at least 14 days before the changes take effect. The "Last Updated" date at the top of this page will always reflect the most recent revision. Continued use of our services after changes take effect constitutes your acceptance of the revised policy.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your personal data, please reach out to us:

• Data Protection Officer: R S Chauhan
• Email: privacy@novexaskills.com
• Phone / WhatsApp: +91 9758996904
• Address: Novexa Skills Pvt. Ltd., Level 4, Tech Park Tower, Whitefield, Bangalore — 560066, Karnataka, India

You also have the right to lodge a complaint with the relevant data protection authority in your jurisdiction.