Privacy Policy
Last updated January 2026
Our approach
A record that follows a child for years is our biggest responsibility, not just an asset. This policy summarises how iglu handles data today. It is a plain-language summary, not a substitute for the data processing agreement signed with your school.
Consent-first
Verifiable parental consent sits at the centre of every child record. Data is captured because a parent or guardian has agreed to it, not by default.
Who owns the data
The data belongs to the school and the parents — not to iglu. Schools can export or delete their data on request, subject to the terms agreed at onboarding.
Anonymised to govern
When data is used to power dashboards for a school system or government layer, it is aggregated and anonymised. That layer sees patterns across schools — never an individual child's identity.
Where data lives
Data is stored and processed within India, by design, and handled in line with the Digital Personal Data Protection Act, 2023 (DPDP Act).
Questions
Reach out to privacy@iglu.co.in with any questions about this policy or your school's data.