Differences

This shows you the differences between two versions of the page.

@@ Line 1: / Line 1: @@
+{{htmlmetatags>metatag-keywords=(rti wiki privacy policy, privacy policy india, dpdp compliance, rti wiki data, cookie policy)
+metatag-description=(RTI Wiki privacy policy: what data we collect, how we use it, how long we keep it, your rights under DPDP Act 2023, contact for data requests.)}}
+====== Privacy Policy — RTI Wiki ======
+{{page>snippets:dpdp-banner}}
+<WRAP info>**Plain-English summary.** We collect the minimum necessary data to run the site. We do **not** sell your data. We do **not** share your RTI drafts or filing records with anyone other than the AI provider that processes your tool input. You can request deletion of your account at any time.</WRAP>
+===== 1. Who is the Data Fiduciary =====
+RTI Wiki (operating entity: bighelpers.in) is the **Data Fiduciary** under the Digital Personal Data Protection Act, 2023.
+Contact for data requests: **privacy@bighelpers.in**
+===== 2. What we collect =====
+**Category A — when you visit the site**:
+  * Standard server logs (IP, timestamp, browser, page requested)
+  * Cookies for session, preference and (where consented) advertising
+  * Anonymised analytics (page views, session duration)
+**Category B — when you create an account**:
+  * Username, email, name (optional), password (hashed bcrypt)
+  * Articles you bookmark / save (My Learnings)
+  * Forum posts, comments, Q&A you author
+**Category C — when you use AI tools (Drafter, AwaazRTI, etc.)**:
+  * The problem description / voice input you provide
+  * Your generated draft (saved only if you choose "Save to My Learnings")
+  * Tool usage statistics (anonymous)
+**Category D — when you subscribe to newsletter or push notifications**:
+  * Email (newsletter) or push subscription endpoint (browser-managed)
+  * Topic preferences
+We do **not** collect: payment data (we have no paywall); precise geolocation; biometric data; sensitive personal data per DPDP Act §2(36) without explicit opt-in.
+===== 3. How we use it =====
+  - **Service operation** — server logs to debug, prevent abuse, secure the site
+  - **Personalisation** — remember your preferences (language, ads, notifications)
+  - **AI tool processing** — your problem text is sent to the AI provider (Anthropic / Groq / OpenAI) to generate your draft; processing is real-time, not stored on AI provider beyond their default retention
+  - **Communication** — newsletter, push notifications (only if subscribed)
+  - **Statistics** — aggregate page-view counts, tool-usage counts (no individual tracking)
+We do **not** use your data for: cross-site tracking, profiling for advertising-buyer purposes, sale to third parties.
+===== 4. Cookies =====
+We use the following cookie types:
+| Type | Purpose | Duration |
+| Strictly necessary | Session, login, CSRF | Session / 30 days |
+| Functional | Language, theme, ad preference | 12 months |
+| Analytics | Anonymised page-view counting | 24 months |
+| Advertising (Google AdSense) | Ad personalisation (when not opted out) | Up to 24 months |
+You can decline non-essential cookies via the consent banner shown on first visit.
+===== 5. Third-party services we use =====
+  * **Google AdSense** — for ads (logged-in members see fewer)
+  * **Anthropic / Groq / OpenAI** — for AI tool processing
+  * **sansad.in / rsdoc.nic.in** — official MP/bill data (we read; we do not send your data to them)
+  * **Wikipedia** — public Wikipedia API for MP bios (read-only)
+  * **Cloud / hosting** — server hosting (cPanel)
+Each service has its own privacy policy. We use them with the least-data principle.
+===== 6. How long we keep data =====
+  * **Account data** — until you delete your account, then 30 days for backup recovery, then permanent deletion
+  * **Server logs** — 90 days, then anonymised
+  * **AI tool input/output** — not stored on our servers unless you click Save (then per Account data retention)
+  * **Saved RTI drafts** — until you delete them
+  * **Forum posts** — kept indefinitely as part of the public record (but you can delete your own posts via your account)
+===== 7. Your rights under DPDP Act 2023 =====
+You have the right to:
+  - **Access** the personal data we hold on you
+  - **Correct** any inaccuracy
+  - **Erase** your data (account deletion)
+  - **Withdraw consent** to specific processing
+  - **Grievance** — file with our Grievance Officer, then with Data Protection Board
+To exercise: email **privacy@bighelpers.in**. We respond within 7 days.
+===== 8. Children =====
+Our service is not directed at children under 18. If you believe we have inadvertently collected data from a minor, email privacy@bighelpers.in for prompt deletion.
+===== 9. Data security =====
+  * **HTTPS** sitewide with HSTS
+  * Passwords hashed with bcrypt
+  * Per-user encryption of sensitive saved data
+  * Regular automated security scans
+We do not guarantee absolute security; no internet system can. We promise to follow industry best-practice + report breaches to affected users within **72 hours** as DPDP Act requires.
+===== 10. International transfer =====
+Data primarily stored in India. AI providers may process your input in their respective jurisdictions (US-based for Anthropic, OpenAI). We use providers with appropriate contractual safeguards.
+===== 11. Changes to this policy =====
+Material changes are highlighted at the top of this page for 30 days. Last revised date is at the bottom.
+===== 12. Contact =====
+  * **Privacy / data requests**: privacy@bighelpers.in
+  * **Grievance Officer**: legal@bighelpers.in
+  * **Data Protection Board** (per DPDP Act): https://www.meity.gov.in/data-protection
+//Last reviewed: 25 April 2026.//
+===== 🔗 Related guides =====
+  * [[:exercise-data-protection-rights-dpdp-2026|How to exercise your Data Protection rights under DPDP — complete 2026 guide]]
+  * [[:pio-section-8-1-j-framework|Section 8(1)(j) after DPDP 2025 — A Decision Framework for Public Information Officers]]
+{{tag>privacy data-protection dpdp-act}}

Was this helpful? — views