Home/Privacy Policy
Data Protection · Compliance · Your Rights

Privacy Policy

How Axel Public School collects, uses, and protects personal data of students, parents, and website visitors — in compliance with the Digital Personal Data Protection Act, 2023 and the Information Technology Act, 2000.

Effective Date1 June 2025
Last Reviewed20 May 2026
Governing LawRepublic of India
Section 01

Who We Are

Axel Public School ("the School", "we", "us", or "our") is a K-12, English-medium, co-educational school affiliated with the Central Board of Secondary Education (CBSE Affiliation No. 230102), operated by Axel Public Society (Registration No. RS/KAM/240/A-9/714), located at Lokhra, Guwahati, Assam 781040, India.

For the purposes of the Digital Personal Data Protection Act, 2023 (DPDP Act) and the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 (SPDI Rules), the School is the Data Fiduciary in respect of personal data collected through this website (axelpublicschool.org) and through our admissions and enrolment processes.

This policy applies to all personal data we process about prospective students, enrolled students, parents and guardians, alumni, job applicants, and visitors to our website.

Section 02

Data We Collect

We collect only the data necessary for the purposes described in this policy. This includes:

CategoryExamplesApplies To
Identity data Full name, date of birth, gender, photograph, Aadhaar number (where required by CBSE) Students, parents/guardians
Contact data Address, phone number, email address, emergency contact details Students, parents/guardians, website enquirers
Academic data Previous school records, mark sheets, transfer certificates, examination results, progress reports Students
Financial data Fee payment history, bank details for refunds, scholarship eligibility documents Parents/guardians
Health & medical data SENSITIVE Medical history, allergy information, disability status, vaccination records — collected solely to ensure student welfare and safety Students
Behavioural & disciplinary data Attendance records, conduct records, co-scholastic assessments as required under CBSE CCE guidelines Students
Technical data IP address, browser type, pages visited, cookies — collected automatically when you browse our website Website visitors
Communication data Enquiry forms, emails, WhatsApp messages, telephone call records Any person who contacts us

We do not collect caste, religion, political opinion, or biometric data except where explicitly mandated by applicable law or CBSE regulations, and only with your informed consent.

Section 03

How We Collect Personal Data

We collect personal data through the following channels:

  • Admissions forms — paper and online forms submitted during the enquiry, application, and enrolment process.
  • Website contact & enquiry forms — when you submit a query via our website.
  • WhatsApp & telephone — when you contact us directly through our published channels.
  • CBSE-mandated systems — data uploaded to CBSE's Student Registration Portal and other regulatory portals as required by law.
  • School management software — attendance, fee, and academic records maintained in our internal systems.
  • Cookies and analytics — automatically collected when you visit our website (see Section 10).
  • Photographs and videos — taken during school events, sports days, annual functions, and other activities, with prior notice to parents.
Section 04

Purpose & Legal Basis for Processing

We process personal data only for specific, lawful purposes. Under the DPDP Act, 2023, our legal bases for processing are consent and legitimate uses (including compliance with legal obligations and the exercise of legal rights).

PurposeLegal Basis
Processing admissions applications and managing enrolment Consent; legitimate use
Maintaining student academic records and issuing certificates Legal obligation (CBSE regulations, RTE Act 2009)
Fee collection and financial administration Legitimate use; legal obligation
Ensuring student health, safety, and welfare on campus Legitimate use; vital interest
Communicating with parents/guardians about school activities, notices, and events Consent
Submitting mandatory data to CBSE, government, and regulatory authorities Legal obligation
Publishing photographs on the school website and social media Consent (opt-out available)
Responding to enquiries from prospective families Consent
Improving our website through analytics Consent (via cookie preference)
Alumni relations and school newsletters Consent (opt-out available)

We will not use your personal data for any purpose other than those stated above without obtaining fresh consent or having a legitimate legal basis to do so.

Section 05

Children's Data

All students enrolled at Axel Public School are children (under 18 years of age). Processing of a child's personal data is done only with the verifiable consent of a parent or legal guardian, as required under Section 9 of the Digital Personal Data Protection Act, 2023.

As a school, we are permitted under the DPDP Act to process children's data for the purposes of education and safeguarding, subject to the following safeguards:

  • We do not process a child's data in a manner that is detrimental to the child's wellbeing.
  • We do not track, monitor, or behaviorally target children for commercial purposes.
  • We do not serve targeted advertising to children or share their data with advertisers.
  • Photographs of students are published on our website and social media only with parental consent. Parents may withdraw this consent at any time by writing to our Grievance Officer.
  • Our website is not directed at children for independent use; all online interactions are mediated through parents or guardians.
Section 06

Sharing & Disclosure of Personal Data

We do not sell, rent, or trade personal data. We share personal data only in the following circumstances:

  • CBSE and regulatory bodies — We are legally required to submit student registration data, examination enrolment, and school performance data to the Central Board of Secondary Education and, where applicable, to the Government of Assam and the Ministry of Education.
  • Programme partners — Accredited partners such as PhysicsWallah (academic coaching), DaOne Sports (sports training), and the British Council (language programmes) may receive relevant student data strictly for programme administration, under data processing agreements that obligate them to comply with applicable law.
  • National Cadet Corps (NCC) — Student data for NCC cadets is shared with the relevant NCC Directorate as required for cadet registration.
  • Emergency services and healthcare providers — Medical and contact information may be shared with hospitals, doctors, or emergency services to protect the vital interests of a student.
  • Law enforcement and courts — We will disclose data where required by law, court order, or a lawful government demand.
  • Service providers — Cloud hosting, email, and school management software providers may process data on our behalf. They are bound by contractual obligations to process data only on our instructions and to maintain appropriate security.

We do not transfer personal data outside India except where required by CBSE's own international examination processes, and only to the extent permitted under applicable law.

Section 07

Data Retention

We retain personal data only for as long as necessary for the purposes for which it was collected, or as required by law:

  • Student academic records — Retained permanently (or for the period specified by CBSE) as these form the basis of certificates and transcripts that students may require throughout their lives.
  • Admissions applications (unsuccessful) — Retained for one academic year after the application cycle, then securely deleted.
  • Financial records — Retained for eight years from the date of last transaction, as required under Indian accounting and tax law.
  • Health and medical records — Retained for the duration of enrolment and for three years thereafter.
  • Website enquiry and contact data — Retained for two years or until the purpose of the enquiry is fulfilled, whichever is earlier.
  • Website technical/analytics data — Retained for thirteen months and then deleted or anonymised.

When data is no longer required, we securely delete or anonymise it.

Section 08

Data Security

We implement reasonable security practices and procedures as required under Rule 8 of the IT (SPDI) Rules, 2011, including:

  • Password-protected access to internal systems, with role-based access controls so that staff can only access data relevant to their duties.
  • Encrypted transmission of data over our website (HTTPS/TLS).
  • Regular review of our data storage and handling practices.
  • Staff training on data confidentiality and information security.
  • Physical security measures on our campus to prevent unauthorised access to paper records.

In the event of a personal data breach that is likely to result in harm to Data Principals, we will notify the Data Protection Board of India and affected individuals as required under the DPDP Act, 2023.

No method of transmission over the internet is completely secure. While we take all reasonable steps to protect your personal data, we cannot guarantee absolute security.

Section 09

Your Rights as a Data Principal

Under the Digital Personal Data Protection Act, 2023, you (or your parent/guardian if you are a minor) have the following rights in relation to personal data we hold about you:

Right to Access

Request a summary of the personal data we hold about you and the processing activities undertaken.

Right to Correction & Erasure

Request correction of inaccurate or incomplete data, or erasure of data that is no longer necessary or held without a valid legal basis.

Right to Withdraw Consent

Withdraw consent for processing at any time, where processing is based solely on consent. Withdrawal does not affect lawfulness of prior processing.

Right to Grievance Redressal

Lodge a complaint with our Grievance Officer. If unresolved within 30 days, you may appeal to the Data Protection Board of India.

Right to Nominate

Nominate another individual to exercise your rights on your behalf in the event of your death or incapacity.

Right to Data Security

Expect that your data is processed with appropriate technical and organisational security measures at all times.

To exercise any of these rights, please write to our Grievance Officer (see Section 11). We will respond within 30 days of receiving your request. We may request proof of identity before processing your request.

Please note that certain rights are subject to legal exceptions — for example, we cannot erase student academic records that we are legally required to maintain under CBSE regulations or the Right to Education Act, 2009.

Section 10

Cookies & Website Analytics

Our website uses cookies — small text files stored on your device — to help the site function correctly and to understand how visitors use it.

  • Strictly necessary cookies — Required for the website to work (e.g., navigation, form submission). These cannot be disabled.
  • Analytics cookies — We may use a privacy-respecting analytics tool to understand page visits and user journeys in aggregate. No personally identifiable information is collected for analytics purposes. You may opt out by declining analytics cookies when prompted, or by using your browser's cookie settings.
  • Third-party embeds — Our website may embed content such as Google Maps. These third-party services may set their own cookies. We do not control these cookies; please refer to the relevant third party's privacy policy.

We do not use advertising or tracking cookies, and we do not share cookie data with advertisers.

Section 11

Grievance Officer & Contact

In accordance with Rule 5(9) of the IT (SPDI) Rules, 2011 and the DPDP Act, 2023, we have designated a Grievance Officer to address any concerns about the processing of your personal data.

Grievance Officer — Axel Public School

Name Principal / Designated Data Officer
Address Axel Public School, Lokhra, Guwahati, Assam 781040
Email info@axelpublicschool.org
Phone +91 986 42 64412
Hours Monday to Saturday, 9:00 am – 4:00 pm (school days)
Response time Within 30 days of receipt of complaint

If your grievance is not resolved to your satisfaction within 30 days, you have the right to approach the Data Protection Board of India established under the DPDP Act, 2023, once it is operationalised by the Central Government.

Section 12

Changes to This Policy

We review this Privacy Policy at least once a year and whenever there is a significant change in our data processing activities or in applicable law. The effective date at the top of this page reflects the most recent revision.

Where a change materially affects how we process data of enrolled students or their parents, we will notify you via the contact details we hold. For other changes, the updated policy will be published on this page.

Continued use of our website or our services after the effective date of a revised policy constitutes acceptance of the revised terms.

This Privacy Policy is published in compliance with the Information Technology Act, 2000, the IT (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and the Digital Personal Data Protection Act, 2023.

Questions about your data?

Our Grievance Officer is available on school days to address any concerns about how we handle personal information.

Email the School Legal Declarations