Privacy Policy — RTI Wiki — RTI Wiki Citizen Guide 2026

RTI Wiki (operating entity: bighelpers.in) is the Data Fiduciary under the Digital Personal Data Protection Act, 2023. Contact for data requests: [email protected]

Category A — when you visit the site:

• Standard server logs (IP, timestamp, browser, page requested)
• Cookies for session, preference and (where consented) advertising
• Anonymised analytics (page views, session duration)

Category B — when you create an account:

• Username, email, name (optional), password (hashed bcrypt)
• Articles you bookmark / save (My Learnings)
• Forum posts, comments, Q&A you author
• One account-onboarding email record (email, name, username, queued/sent status) so we can send your registration reference email after account creation

Category C — when you use AI tools (Drafter, AwaazRTI, etc.):

• The problem description / voice input you provide
• Your generated draft (saved only if you choose “Save to My Learnings”)
• Tool usage statistics (anonymous)

Category D — when you subscribe to newsletter or push notifications:

• Email (newsletter) or push subscription endpoint (browser-managed)
• Topic preferences (interest category — e.g. cyber safety, RTI, schemes)
• Consent timestamp (the date and time you ticked the opt-in box)

Category E — when you download a free citizen-action checklist:

• Your username and email (already on file from your account)
• The slug of the resource downloaded, an SHA-256 hash of your IP, and the timestamp — used only to show your personal download history on /account, to surface popular resources, and for abuse prevention. We do not store the contents of the checklist or anything you write into it.

We do not collect: payment data (we have no paywall); precise geolocation; biometric data; sensitive personal data per DPDP Act §2(36) without explicit opt-in.

1. Service operation — server logs to debug, prevent abuse, secure the site
2. Personalisation — remember your preferences (language, ads, notifications)
3. AI tool processing — your problem text is sent to the AI provider (Anthropic / Groq / OpenAI) to generate your draft; processing is real-time, not stored on AI provider beyond their default retention
4. Communication — one account-onboarding email after registration; Citizen Alert Weekly newsletter and push notifications only if you opted in. The newsletter checkbox is unchecked by default. Each newsletter email carries a one-click unsubscribe.
5. Free downloads — we use your account email and the download timestamp only to show your personal download history and to surface popular resources. The checklist files themselves are static content; we do not personalise them.
6. Statistics — aggregate page-view counts, tool-usage counts (no individual tracking)

We do not use your data for: cross-site tracking, profiling for advertising-buyer purposes, sale to third parties.

We use the following cookie types:

You can decline non-essential cookies via the consent banner shown on first visit.

• Google AdSense — for ads (logged-in members see fewer)
• Anthropic / Groq / OpenAI — for AI tool processing
• sansad.in / rsdoc.nic.in — official MP/bill data (we read; we do not send your data to them)
• Wikipedia — public Wikipedia API for MP bios (read-only)
• Cloud / hosting — server hosting (cPanel)

Each service has its own privacy policy. We use them with the least-data principle.

• Account data — until you delete your account, then 30 days for backup recovery, then permanent deletion
• Server logs — 90 days, then anonymised
• AI tool input/output — not stored on our servers unless you click Save (then per Account data retention)
• Saved RTI drafts — until you delete them
• Forum posts — kept indefinitely as part of the public record (but you can delete your own posts via your account)
• Account-onboarding email queue/log — kept for operational audit and duplicate prevention; it is not a newsletter subscription record.
• Newsletter subscriber list — until you unsubscribe (one-click). The consent timestamp is retained as a DPDP audit record after that.
• Download history — kept while your account exists; cleared on account deletion.

You have the right to:

1. Access the personal data we hold on you
2. Correct any inaccuracy
3. Erase your data (account deletion)
4. Withdraw consent to specific processing
5. Grievance — file with our Grievance Officer, then with Data Protection Board

To exercise: email [email protected]. We respond within 7 days.

Our service is not directed at children under 18. If you believe we have inadvertently collected data from a minor, email [email protected] for prompt deletion.

• HTTPS sitewide with HSTS
• Passwords hashed with bcrypt
• Per-user encryption of sensitive saved data
• Regular automated security scans

We do not guarantee absolute security; no internet system can. We promise to follow industry best-practice + report breaches to affected users within 72 hours as DPDP Act requires.

Data primarily stored in India. AI providers may process your input in their respective jurisdictions (US-based for Anthropic, OpenAI). We use providers with appropriate contractual safeguards.

Material changes are highlighted at the top of this page for 30 days. Last revised date is at the bottom.

• Privacy / data requests: [email protected]
• Grievance Officer: [email protected]
• Data Protection Board (per DPDP Act): https://www.meity.gov.in/data-protection

Last reviewed: 3 June 2026 — added one-time account-onboarding email disclosure; newsletter opt-in remains default-unchecked.

• How to exercise your Data Protection rights under DPDP — complete 2026 guide
• Section 8(1)(j) after DPDP 2025 — A Decision Framework for Public Information Officers