Privacy policy

Your data deserves care, clarity, and control.

Last Updated: 3 July 2026

Effective Date: 3 July 2026

Welcome to nilo.

nilo is a money-confidence and financial-literacy learning platform designed to help students, parents, teachers, families, and schools build practical money knowledge through lessons, activities, quizzes, missions, certificates, and guided learning experiences.

This Privacy Policy explains how Nilofin Techologies, operating as nilo (“nilo”, “we”, “us”, or “our”), collects, uses, stores, shares, and protects personal data when you use our website, student platform, school dashboard, teacher dashboard, parent features, learning materials, events, communications, and related services (collectively, the “Services”).

By using nilo, you acknowledge that you have read this Privacy Policy.

01

Who We Are

nilo is operated by:

Nilofin Techologies
Nilofin Techologies, Koramangala 8th block, Bangalore 560095, Karnataka, India

For privacy-related questions, requests, or complaints, contact us at:

Email: hello@nilofin.com
Subject line: Privacy Request

02

Who This Policy Applies To

This Privacy Policy applies to:

  • Students using nilo through a school, parent, or personal account
  • Parents and legal guardians
  • Teachers, school administrators, and school staff
  • Individuals using nilo learning tools
  • Visitors to the nilo website
  • Schools, organisations, and partners using nilo dashboards or services

For student accounts provided through a school, the school may also have its own privacy policy and data-handling responsibilities.

03

Personal Data We Collect

Depending on the Services used, we may collect the following categories of personal data.

A. Student Information

We may collect:

  • Student name
  • Grade, class, section, and school name
  • Student ID or school-issued identifier
  • Login credentials or school access code
  • Learning progress and module completion
  • Quiz answers, assessment scores, badges, and certificates
  • Responses to activities, assignments, reflections, or missions
  • Notes created within nilo learning tools
  • Questions submitted to nilo support or AI-guidance features
  • Language preference
  • Parent or guardian link, where enabled

nilo aims to collect only the minimum information needed to provide educational services.

B. Parent or Guardian Information

We may collect:

  • Parent or guardian name
  • Email address
  • Mobile number
  • Relationship to the student
  • Consent and permission records
  • Parent feedback or support requests
  • Parent access to student progress, where enabled

C. Teacher and School Administrator Information

We may collect:

  • Name
  • School name and role
  • Official school email address
  • Phone number, where provided
  • Class and student-management details
  • Dashboard usage and reporting activity
  • Teacher feedback, training, and certification information

D. Technical and Usage Information

When you use nilo, we may automatically collect limited technical information, such as:

  • Device type
  • Browser type
  • Operating system
  • IP address
  • Login time and activity logs
  • App or website interaction data
  • Error reports and security logs
  • Cookies and similar technologies

We use this information to maintain security, improve performance, understand platform usage, and fix technical issues.

E. Payment Information

If nilo introduces paid subscriptions, workbooks, teacher training, or premium family services, payment processing may be handled by a secure third-party payment provider.

nilo will not store full debit-card numbers, credit-card numbers, CVV numbers, UPI PINs, or banking passwords.

F. Comic PDF Download Experience

When a visitor downloads a public nilo comic PDF from the website, the comic reader may ask for simple social-style actions such as liking the comic, leaving a short comment, and subscribing for upcoming comic stories in the current browser session. This public website flow does not ask for the visitor’s full name, email address, or contact number to unlock the PDF.

04

Information We Do Not Intentionally Collect From Students

nilo does not require students to provide:

  • Bank-account numbers
  • Debit-card or credit-card details
  • UPI PINs or passwords
  • Aadhaar numbers
  • PAN numbers
  • Family income records
  • Investment account details
  • Demat account credentials
  • Medical information
  • Government identity documents

Students should never upload or share sensitive financial information, passwords, OTPs, PINs, or identity documents through nilo.

05

How We Use Personal Data

We may use personal data to:

  • Create and manage user accounts
  • Deliver lessons, quizzes, missions, badges, and certificates
  • Match content to a student’s grade and learning level
  • Track progress and learning outcomes
  • Generate teacher, parent, and school reports
  • Provide school dashboards and class-management tools
  • Respond to support questions and requests
  • Send service-related communications
  • Improve nilo content, platform design, and learning experiences
  • Maintain platform safety, prevent misuse, and investigate security incidents
  • Meet legal, regulatory, and contractual obligations
  • Create anonymised or aggregated reports about engagement and learning outcomes

nilo may use anonymised or aggregated information to understand whether learning modules are effective. Such reports will not identify individual students.

06

Student and Child Privacy

nilo is designed for education, not advertising, trading, banking, or financial-product selling.

We take special care when handling student data.

Our Child-Privacy Commitments

nilo will:

  • Seek verifiable parent or guardian consent where required by applicable law
  • Allow schools to assist with collecting and maintaining consent records
  • Use student data only for educational, operational, safety, and platform-improvement purposes
  • Avoid targeted advertising to students
  • Avoid selling, renting, or trading student personal data
  • Avoid behavioural advertising and commercial profiling of students
  • Keep student profiles private by default
  • Restrict access to student information based on school role and authorised parent links
  • Avoid public student leaderboards unless a school explicitly enables them with appropriate permissions
  • Avoid asking students to share sensitive financial or family information

A school may help nilo collect parent or guardian consent, but the school should ensure that it has appropriate authority and permissions to provide student information to nilo.

07

School, Teacher, and Parent Access

Depending on the school’s selected plan and settings:

Teachers may be able to view:

  • Student names
  • Grade and class information
  • Module completion
  • Quiz scores
  • Participation status
  • Learning progress
  • Certificate status

School Administrators may be able to view:

  • School-wide engagement data
  • Class-level learning progress
  • Teacher activity
  • Aggregate quiz results
  • Completion rates
  • Impact-report metrics

Parents or Guardians may be able to view:

  • Their child’s learning progress
  • Module completion
  • Quiz performance
  • Badges and certificates
  • Suggested home activities

Parents and guardians will only be given access to student information where nilo has a verified relationship, school-authorised connection, or appropriate consent.

08

AI Guidance and Student Questions

nilo may offer AI-supported educational guidance in the future.

Where enabled, AI features may process:

  • Student questions
  • Learning-topic context
  • Grade level
  • Previous lesson progress, where necessary
  • Notes or prompts voluntarily submitted by the user

AI guidance is designed to support learning and explain concepts in simple language. It is not financial, investment, tax, legal, banking, or trading advice.

Students should not enter personal contact details, bank details, passwords, OTPs, identity documents, or family financial information into AI chat features.

nilo will not intentionally use student personal data to train publicly available AI models. Any third-party AI provider used by nilo must be engaged under appropriate contractual and security controls.

09

How We Share Personal Data

We may share personal data only where necessary to provide the Services.

We may share data with:

  • The student’s school, teachers, and authorised administrators
  • Parents or guardians linked to a student account
  • Trusted technology providers that help us operate nilo
  • Hosting, database, authentication, analytics, communication, and support providers
  • Payment providers, where purchases are made
  • AI service providers, only where AI features are enabled
  • Legal authorities, regulators, or law-enforcement agencies where required by law
  • Professional advisers, auditors, or insurers where necessary
  • A successor organisation if nilo is involved in a merger, acquisition, restructuring, or sale

All third-party service providers handling personal data on our behalf must be authorised to use the data only for the specific service they provide to nilo.

We do not:

  • Sell personal data
  • Rent personal data
  • Trade student information
  • Use student information for targeted advertising
  • Share student data with advertisers for commercial profiling

10

Cookies and Similar Technologies

nilo separates storage into essential storage and optional performance and learning preferences.

A. Essential Storage

Essential storage may be required for security, authentication, password reset, session handling, form protection, and modal behaviour. These controls support core website and platform functionality.

B. Optional Performance and Learning Preferences

Optional performance preferences are used only after a visitor chooses “Allow” in the Cookie & Preferences control. They may store the last comic read, reading progress, preferred viewing format, lightweight UI preferences, and selected comic resources in browser storage or Cache Storage for faster repeat visits.

If a visitor selects “Not now,” the comic reader still works normally, but nilo does not persist reading progress beyond the active session or intentionally cache comic resources for future visits.

nilo does not use these preferences for advertising, third-party tracking, browser fingerprinting, or storing email addresses, contact numbers, or comic comments in local browser storage.

11

Data Security

We use reasonable technical and organisational safeguards designed to protect personal data against unauthorised access, misuse, loss, alteration, or disclosure.

These safeguards may include:

  • Role-based access controls
  • Secure authentication methods
  • Password protection and encryption practices
  • Controlled access to school dashboards
  • Security monitoring and logging
  • Secure hosting and backup practices
  • Vendor confidentiality obligations
  • Internal access controls and need-to-know permissions
  • Incident-response procedures

No online platform can guarantee absolute security. However, nilo works to protect personal data responsibly and continuously improve its safeguards.

12

Data Retention

We retain personal data only for as long as reasonably necessary to:

  • Provide nilo Services
  • Maintain student learning records and certificates
  • Support schools and parents
  • Meet legal, regulatory, contractual, and security obligations
  • Resolve disputes
  • Enforce agreements
  • Improve Services using anonymised information

As a general approach:

  • Student learning data may be retained for the duration of the school relationship and a reasonable period afterward.
  • Teacher and school account information may be retained while the school account remains active.
  • Consent records, security records, and audit logs may be retained for longer where needed for legal compliance or safety.
  • Data may be deleted, anonymised, or aggregated when it is no longer required.

Schools may request deletion or return of student data according to their agreement with nilo, subject to legal and security requirements.

13

International Data Transfers

nilo may use technology providers or cloud-service providers located in India or other countries.

Where personal data is transferred outside India, nilo will take reasonable steps to ensure that the transfer is permitted under applicable law and protected through appropriate contractual, technical, and organisational measures.

14

Your Privacy Rights

Subject to applicable law, you may have the right to:

  • Request access to your personal data
  • Request correction of inaccurate or incomplete data
  • Request updates to your information
  • Request deletion of personal data
  • Withdraw consent where consent is the basis for processing
  • Raise a privacy complaint or grievance
  • Ask how your data is being used
  • Nominate another person to exercise your data rights where permitted by law

For student accounts, these requests may be made by:

  • A parent or legal guardian
  • An authorised school representative
  • The student, where legally appropriate
  • An individual who has reached the age required to manage their own account rights

To make a request, email:

hello@nilofin.com
Subject: Privacy Request

Please include:

  • Your name
  • Your relationship to the student, if applicable
  • School name
  • Student account identifier, if available
  • The privacy request you want to make

We may need to verify identity before processing a request.

15

Withdrawal of Consent

Where we rely on consent to process personal data, consent may be withdrawn at any time.

Website visitors can use the Cookie & Preferences link in the footer to withdraw optional performance preferences and clear locally stored nilo comic progress and cache references where technically possible.

Withdrawal of consent may affect access to certain nilo features or services. For example, if a parent withdraws consent for a student account, nilo may need to restrict or close that student account unless another lawful basis applies.

Withdrawal of consent will not affect processing that occurred before the withdrawal.

16

Data Breach Notification

If nilo becomes aware of a personal-data breach that may affect users, we will take appropriate steps to investigate, contain, and respond to the incident.

Where required by applicable law, we will notify affected individuals, schools, parents, guardians, and relevant authorities. India’s DPDP Act requires data fiduciaries to use reasonable security safeguards and provide breach notifications in the prescribed manner.

17

Third-Party Links

nilo may contain links to third-party websites, learning resources, payment services, or school systems.

This Privacy Policy does not apply to third-party services. We encourage users to review the privacy policy of any third-party website or service before sharing personal data.

18

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect:

  • Changes in nilo Services
  • New product features
  • Changes in law
  • Security improvements
  • School partnership requirements
  • Updates to our data-handling practices

When we make material changes, we will update the “Last Updated” date and provide notice where appropriate.

19

Contact Us

For questions, privacy concerns, consent matters, deletion requests, or complaints, contact:

Privacy Contact Person / Grievance Officer Name: Sashidharan K

nilo
Email: hello@nilofin.com
Address: Nilofin Techologies, Koramangala 8th block, Bangalore 560095, Karnataka, India