iglu
Legal

Privacy Policy

Last updated January 2026

Our approach

A record that follows a child for years is our biggest responsibility, not just an asset. This policy summarises how iglu handles data today. It is a plain-language summary, not a substitute for the data processing agreement signed with your school.

Consent-first

Verifiable parental consent sits at the centre of every child record. Data is captured because a parent or guardian has agreed to it, not by default.

Who owns the data

The data belongs to the school and the parents — not to iglu. Schools can export or delete their data on request, subject to the terms agreed at onboarding.

Anonymised to govern

When data is used to power dashboards for a school system or government layer, it is aggregated and anonymised. That layer sees patterns across schools — never an individual child's identity.

Where data lives

Data is stored and processed within India, by design, and handled in line with the Digital Personal Data Protection Act, 2023 (DPDP Act).

Questions

Reach out to privacy@iglu.co.in with any questions about this policy or your school's data.