Privacy Policy

Section 1: Introduction & Identification

1.1 About the App

Government Exam Guru is a comprehensive educational platform dedicated to empowering students and lifelong learners. Our app serves as a centralized hub where users can discover high-quality educational articles, structured content, curated series, study guides, and video lectures.

Designed for maximum utility, the app allows users to personalize their learning experience by highlighting content, creating custom notes, and organizing articles into "Series" for structured study. A core feature of the app is its Offline Functionality: users may download articles and entire series directly to their device. This data is stored locally, allowing for uninterrupted learning without an internet connection. Users maintain full control over their local data and may delete downloaded content at any time.

Our Mission: We believe that high-quality education should be accessible to everyone. In an era where information is often gatekept by high costs, Government Exam Guru acts as a guide. We curate the best concepts, theories, and educational resources available across the web, organizing them into structured learning paths to help you master your subjects for free.

1.2 Data Fiduciary Identity

In accordance with the Digital Personal Data Protection (DPDP) Act, 2023 (India), the Data Fiduciary responsible for the collection and processing of your personal data is:

Entity Name: Indian Exam Hub

Represented By: Saurav

Location: Uttar Pradesh, India

Primary Contact: admin@governmentexamguru.com

As the Data Fiduciary, we determine the purposes and means of processing personal data in connection with the Government Exam Guru platform, ensuring that your information is handled with the highest standards of security and legal compliance.

1.3 Scope of Privacy Policy

This Privacy Policy is a comprehensive agreement that governs your use of every feature, service, and digital asset provided by Indian Exam Hub under the Government Exam Guru brand.

A. Internal Scope (What We Cover)

This policy applies to every aspect of the Government Exam Guru mobile application and the website https://governmentexamguru.com. It covers all core learning experiences such as the Home feed, Series, Law modules, Mock Tests, and Live sessions, along with productivity features like highlights, saved articles, personal notes, and video lecture interfaces. It also governs account-related activities including sign-in, sign-out, and profile settings, as well as all digital media such as text, images, and curated content published under the Government Exam Guru banner. Any direct communication, including feedback, support requests, or inquiries sent through in-app forms or official email addresses, is also included within this scope.

B. Jurisdictional Boundaries (Where Our Responsibility Ends)

While all internal APIs and communication channels are secured, this Privacy Policy does not extend to the external infrastructure used to access the services. Responsibility does not cover internet or network providers such as internet service providers, mobile data carriers, or public Wi-Fi administrators. It also does not apply to device manufacturers, including the hardware or system-level software of the device used to access the application or website.

C. External Third-Party Services

Once navigation moves away from the Government Exam Guru application or website, this Privacy Policy no longer applies. When video lectures are accessed through platforms such as YouTube, data handling is governed by YouTube’s Terms of Service and Google’s Privacy Policy. Any interaction involving advertisements, external stores such as Amazon or Shopify, or the purchase of third-party materials falls outside the scope of this policy. The same applies to any third-party websites or services linked within the content, and it is strongly advised to review their respective privacy policies before engaging with them.

Section 2: What Information Do We Collect?

In this section, we will explain what information we collect from you, how we collect it, and why it is necessary for providing our educational services. We are committed to data minimization, meaning we only collect information that is essential for the app to function properly.

2.1 Personal Information

We do not collect sensitive personal data directly. Instead, we use Firebase Authentication provided by Google to offer a secure and seamless Sign-in with Google experience. This ensures that authentication is handled by trusted, industry-leading infrastructure with enterprise-grade security.

What We Receive from Google:

When you choose to sign in with your Google account, Firebase Authentication shares limited identity information with us. This includes:

• Full Name: Your name as it appears on your Google account, used to personalize your experience and display your profile within the app
• Email Address: Your email address, used for account identification, communication about important updates, and account recovery purposes
• Profile Picture: Your Google profile photo, displayed in your app profile and account settings
• Firebase UUID: A unique, randomly generated identifier assigned by Firebase to your account

What We Never See:

Your Google account password is never visible to us, never stored on our servers, and never processed by our systems. All password management, two-factor authentication, and security measures are handled exclusively by Google's secure authentication servers. We have no access to your Google credentials.

Why We Use Firebase UUID:

To further protect your privacy, your email address is not used as a public or internal identifier within our databases. Instead, a unique Firebase UUID (Universally Unique Identifier) is assigned to your account. This UUID allows us to:

• Recognize your account across the app and website
• Personalize your learning experience
• Synchronize your data (saved series, learning progress, test scores) across devices
• Maintain your privacy by not exposing your email address in database queries or logs

Optional Contact Information:

If you choose to contact us via email (admin@governmentexamguru.com) or phone for support, customer service, or assistance, your contact details may be temporarily stored to resolve your request. To respect your privacy, this information is automatically deleted 6 months after your last interaction with us.

No Sensitive Data Collection:

We do not collect or process sensitive personal information such as:

• Financial information (credit card numbers, bank account details)
• Government-issued ID numbers (Aadhaar, PAN, passport)
• Biometric data (fingerprints, facial recognition)
• Health or medical information
• Religious or political beliefs
• Caste, race, or ethnicity information

2.2 Automatically Collected Data

When you use the Government Exam Guru app or website, certain technical and usage data is automatically collected by industry-standard services to ensure proper functionality, performance monitoring, and content delivery. This data is collected passively and does not require any action on your part.

Google Analytics:

We use Google Analytics for Firebase to measure high-level usage metrics and understand how learners interact with our platform. This includes:

• Visitor Counts: Total number of users accessing the app or website
• Feature Popularity: Which features (Series, Mock Tests, Law modules, Live sessions) are most frequently used
• Session Duration: Average time spent on the platform and within specific sections
• Navigation Patterns: How users move through the app (e.g., from Home to Series to individual articles)
• Content Engagement: Which articles, series, or video lectures receive the most views

All analytics data is aggregated and anonymized, meaning we cannot identify individual users from this data. We only see overall trends and patterns.

Google AdMob (Advertising):

To keep Government Exam Guru completely free for students, we display advertisements through Google AdMob. For this purpose, AdMob collects:

• Android Advertising ID (AAID): A unique, resettable identifier used to display relevant advertisements without revealing your personal identity
• Approximate Location: Derived from your IP address (city or region level, not precise GPS coordinates)
• Ad Interactions: Information about which ads you view or click, used for billing advertisers and preventing fraud

User Control: You can reset or delete your Android Advertising ID at any time by navigating to Settings → Google → Ads on your Android device. You can also opt out of personalized advertising entirely.

Firebase Crashlytics:

To maintain app stability and quickly fix bugs, Firebase Crashlytics automatically collects technical crash reports when the app encounters an error. These reports include:

• Device Information: Device manufacturer, model, and Android version (e.g., "Samsung Galaxy S21, Android 13")
• App Version: The version of Government Exam Guru you are using
• Crash Stack Trace: Technical error logs showing where the app crashed (code-level information, not personal data)
• Timestamp: When the crash occurred

These reports are completely anonymous and do not include your name, email, or any personally identifiable information.

Firebase Cloud Messaging (FCM):

To send you notifications about new content, series updates, or important announcements, Firebase Cloud Messaging collects:

• Device Token: A unique identifier for your device to deliver push notifications
• Notification Preferences: Whether you have enabled or disabled notifications

You can disable notifications at any time through your device settings.

Technical Data We Do NOT Collect:

We respect your privacy and do not access or monitor:

• Precise GPS Location: We do not track your exact location or movement
• Hardware Serial Numbers: We do not collect device IMEI, serial numbers, or MAC addresses
• Photos or Media: We do not access your camera, photo gallery, or media files
• Bluetooth Data: We do not scan or collect Bluetooth device information
• Local Files: We do not access files stored on your device outside the app's designated storage
• Contacts or Call Logs: We do not access your contact list or phone call history
• SMS or Messages: We do not read or collect your text messages

Internet Connection Requirement:

An active internet connection is required to deliver content through the app and website. However, once articles or series are downloaded for offline access, you can learn without an internet connection.

Third-Party Data Collection:

When you access video lectures through embedded YouTube players, YouTube or Google may collect data in accordance with their own privacy policies. This third-party data collection is outside of our control, and no such external tracking data is stored within our systems.

2.3 User Generated Content

Your learning data is treated as personal and user-owned. We follow a privacy-by-design approach for notes, highlights, and saved learning materials to ensure maximum user control and confidentiality.

Locally Stored Data (Private by Default):

The following data is stored locally on your device only and is never uploaded to our servers:

• Personal Notes: Any notes you create while reading articles or studying
• Highlights: Text you highlight within articles for future reference
• Bookmarks: Articles or content you save for later reading
• Downloaded Articles: Full article content downloaded for offline access
• Downloaded Series: Entire series downloaded to your device for offline study

Why Local Storage?

By storing this data locally, we ensure that:

• Your private study notes remain completely confidential and inaccessible to us
• You maintain full control over your learning materials
• Your data is not vulnerable to server breaches or unauthorized access
• You can delete this data at any time by clearing app data or uninstalling the app

Server-Side Data (Synchronized Features):

For features that require synchronization across devices, limited data is stored on our servers:

• Saved Series: Which series you have added to your library (stored in MongoDB)
• Learning Progress: Your progress through mock tests and law modules (stored in Supabase PostgreSQL)
• Test Scores: Your performance on mock tests and practice questions (stored in Supabase PostgreSQL)
• Preferences: App settings like theme, notification preferences, and language selection (stored in Firebase)

Important: All server-side data is linked only to your anonymous Firebase UUID, not to your email address or name. This ensures that even if our databases were accessed, your personal identity would not be exposed.

Article Engagement Metrics (Anonymous):

We measure article engagement only at an aggregate level to understand which topics are most popular:

• Total Article Views: We count how many times an article has been viewed overall (e.g., "This article has 1,500 views")
• Anonymous Tracking: We do not track which specific user viewed which article
• Server Hit Counts: View counts are incremented through anonymous server requests

This means we know that "Article X is popular" but we do not know that "User Y read Article X."

Future Cloud Synchronization:

In future updates, if we introduce cloud synchronization for features such as notes or highlights, the data will be:

• Stored securely in our AWS-hosted PostgreSQL database or Supabase
• Encrypted both in transit (TLS 1.2+) and at rest (AES-256)
• Linked only to your anonymous Firebase UUID
• Accessible only to you through your authenticated account
• Deletable at any time through account deletion (Section 6.3)

User Control:

You have complete control over your user-generated content:

• Local Data: Can be deleted by clearing app data or uninstalling the app
• Server Data: Can be deleted by requesting account deletion (Section 6.3)
• Export: You can request a copy of your server-side data at any time (Section 6.1)

Section 3: Purpose of Collection (The "Why")

We only process your data for specific, lawful purposes. We follow the principle of "Data Minimization," meaning we only ask for information that is absolutely necessary to run the App.

3.1 Core Functionality

Information is used strictly to make the learning experience function smoothly and reliably.

Account management relies on the Firebase UUID and email address to identify accounts and allow access to saved series, law modules, and preferences across multiple devices.

Content delivery uses this information to serve the exact articles, video lectures, and mock tests that are searched for or selected within the app and website.

Offline synchronization depends on technical identifiers to manage downloads and enable access to saved content without an active internet connection.

3.2 Service Improvement

To improve the app for everyone, high-level and aggregated data is analyzed to understand performance and usage patterns.

Firebase Crashlytics is used for performance monitoring to identify technical errors, crashes, or slowdowns. This helps diagnose issues quickly and improve overall stability and reliability of the app.

Feature optimization is driven by understanding which series, mock tests, or learning modules are most frequently accessed. This insight allows better prioritization of content creation and feature enhancements that align with actual learner needs.

Quality control checks ensure that video lecture links hosted on YouTube remain functional. This helps detect broken, removed, or inaccessible videos so they can be corrected or replaced promptly.

Monetization (AdMob)

To keep Government Exam Guru completely free for students, Google AdMob is used to display advertisements within the app.

Advertising data is used for ad frequency capping to ensure that the same advertisement, such as a book or merchandise promotion, is not shown repeatedly in an intrusive manner.

Fraud prevention mechanisms help detect and prevent invalid or malicious ad interactions. This protects advertisers and maintains the overall integrity and sustainability of the platform.

Contextual relevancy is applied to show advertisements that are broadly useful based on general factors such as region or content context. This is done without tracking or profiling personal identity, ensuring ads remain non-intrusive and privacy-respecting.

Legal Basis

All data processing is carried out in accordance with the Digital Personal Data Protection (DPDP) Act, 2023/2025, and is limited to clearly defined legal grounds.

Consent is obtained when you choose to sign in using Google or when you accept this privacy policy during the first launch of the app or website. This consent allows necessary data to be processed for authentication and basic functionality.

Legitimate use applies when information is voluntarily provided, such as an email address or phone number for support. In such cases, the information is used only to respond to the specific request and for no other purpose.

Contractual necessity applies to essential technical data, such as the Firebase UUID, which is required to deliver core features like saved content, series access, and synchronized learning experiences that users reasonably expect from the app.

Section 4: Third party services

To provide a high-performance educational environment, Government Exam Guru integrates several specialized third-party services. While these services help us operate, they maintain their own privacy policies. By using our App, you acknowledge that your data may be processed by these providers as described below.

4.1 Google AdMob

Google AdMob is our primary advertising delivery platform, playing a critical role in keeping all educational content completely free and accessible to students.

What Data is Processed: AdMob processes limited technical data including the Android Advertising ID (AAID) and an approximate location derived from your IP address. This information helps display advertisements that are generally relevant without directly identifying you as an individual.

Ad Performance Tracking: AdMob tracks ad impressions and click-through rates. This tracking is necessary to ensure advertisers are billed accurately and to detect and prevent fraudulent or automated bot activity that could compromise the integrity of the platform.

User Control: You maintain full control over advertising preferences. Personalized advertising can be disabled at any time through Android system settings by navigating to Settings → Google → Ads, where you can manage ad personalization options, reset your advertising ID, or opt out of personalized ads entirely.

Privacy Policy: For complete details on how Google processes advertising data, please review Google's Privacy Policy and AdMob's Data Usage.

4.2 Firebase

Firebase, provided by Google, serves as the core infrastructure powering our app and website. Multiple Firebase modules are integrated to ensure secure authentication, reliable communication, and application stability.

Firebase Authentication: This service is responsible for the "Sign-in with Google" process. It securely manages user identity and authentication while ensuring that our app never accesses or stores your Google account password. Only your Firebase UUID, email address, name, and profile picture are shared with us for account creation purposes.

Firebase Cloud Messaging (FCM): FCM is used to deliver push notifications related to new series releases, mock test updates, or important learning announcements. These notifications are informational and intended to improve your awareness of newly available content. You can disable notifications at any time through your device settings.

Firebase Crashlytics: This service monitors app stability and error reporting. In the event of an app crash, an anonymous report is generated that includes technical details such as device type, Android version, and a code stack trace. This information is used solely to diagnose issues and improve future app updates, without identifying individual users.

Data Security: All Firebase services use Google's enterprise-grade encryption for data in transit and at rest. Firebase data is subject to Google's strict security standards and compliance with the Digital Personal Data Protection (DPDP) Act, 2023.

Privacy Policy: Learn more at Firebase Privacy and Security.

4.3 Google Analytics

Google Analytics for Firebase is used to understand how users interact with our platform and how learning content is consumed.

Usage Insights: This service helps us generate insights such as which articles are read most frequently, which law modules appear to be more challenging for students, and the average amount of time spent on video lectures. These insights guide content improvements and help us focus efforts on areas where learners need the most support.

Aggregated Data Only: All analytics data is aggregated and pseudonymized. Individual user behavior is not monitored or reviewed. Instead, only overall trends are visible, such as the total number of users viewing a particular series or module, ensuring that privacy is preserved while still allowing meaningful analysis.

Data Retention: Analytics data is retained for 26 months in accordance with Google's standard retention policies. After this period, the data is automatically deleted.

Privacy Policy: For more information, visit Google Analytics Privacy Policy.

4.4 Google Play Services

Because our app is distributed through the Google Play Store, it relies on Google Play Services to support essential platform-level functionality.

Licensing and Updates: Google Play Services handles licensing verification to ensure that the installed app is a legitimate version and enables automatic background updates. This ensures that you receive the latest features, improvements, and security patches without manual intervention.

Play Protect: For security purposes, Play Protect scans are performed to help maintain a safe app environment on your device. These scans reduce the risk of malware or compromised behavior and contribute to overall platform integrity.

In-App Billing: If we introduce premium features or paid content in the future, Google Play's In-App Billing service will handle all payment processing. We do not store or have access to your credit card information or payment details.

Privacy Policy: Review Google Play's Privacy Policy for complete details.

4.5 AWS (Amazon Web Services)

AWS Relational Database Service (RDS) and related infrastructure are used to host our PostgreSQL databases that support synchronized and server-side features of the platform.

What is Stored: Our AWS-hosted databases store limited account metadata, such as your Firebase UUID and learning progress, which are required to provide continuity across sessions and devices. We also use AWS for hosting mock test batches, law module content, and synchronized series data.

Security Measures: AWS provides enterprise-grade physical and digital security protections. All data is stored on encrypted servers (AES-256 encryption at rest) and safeguarded by advanced firewall systems, DDoS protection, and intrusion detection. AWS data centers feature 24/7 monitoring, biometric access controls, and redundant power and network systems.

Data Location: Our AWS infrastructure is primarily located in the Asia-Pacific (Mumbai) region to ensure compliance with Indian data localization preferences and to provide low-latency access for our users.

Reliability: AWS ensures high availability, reliability, and uninterrupted access to synchronized data at all times through redundant systems and automatic failover mechanisms.

Privacy Policy: Learn more at AWS Privacy Notice.

4.6 Google Tag Manager

We use Google Tag Manager (GTM) on our website (governmentexamguru.com) and within the app to manage various tracking "tags" without constantly modifying the app code.

Purpose: GTM allows us to quickly update how we measure user engagement, deploy analytics tracking improvements, and manage third-party integrations efficiently. This helps us maintain accurate data collection while minimizing the need for frequent app updates.

What it Does: GTM acts as a container that manages code snippets (tags) for analytics, advertising, and other third-party services. It does not collect personal data itself but facilitates the operation of other services like Google Analytics and AdMob.

User Impact: GTM operates transparently in the background and does not affect your user experience or app performance.

Privacy Policy: For more information, visit Google Tag Manager Privacy.

4.7 Amazon Store

Our app contains direct links to our official merchandise store on Amazon, where you can purchase educational materials, books, or branded merchandise.

External Commerce: When you click a link to purchase a physical T-shirt, book, or other product, you are redirected to Amazon's platform. This is an external transaction entirely managed by Amazon.

No Data Sharing: We do not receive your credit card information, home address, phone number, or any payment details from Amazon. Your purchase is a private transaction between you and Amazon.com, Inc.

Affiliate Links: Some links may be affiliate links, meaning we may receive a small commission if you make a purchase. This does not affect the price you pay and helps support our free educational platform.

Privacy Policy: All transactions are governed by Amazon's Privacy Notice. We encourage you to review their policy before making any purchases.

4.8 Shopify

In addition to Amazon, we may utilize Shopify to host specialized educational materials, study guides, or merchandise.

Independent Platform: Shopify is an independent e-commerce platform. If you interact with our Shopify store, your data (name, billing address, shipping information, and payment details) is governed by Shopify's Privacy Policy, not ours.

Transaction Security: Shopify uses industry-standard encryption and PCI DSS compliance to protect your payment information. We use Shopify only to facilitate the safe and secure delivery of physical goods to our students.

No Direct Access: We do not have direct access to your payment card details. Shopify processes all payments securely, and we only receive order information necessary to fulfill your purchase (name, shipping address, and order details).

Privacy Policy: Review Shopify's Privacy Policy for complete details on how they handle your data.

4.9 Supabase

Supabase is our PostgreSQL database hosting provider, offering a modern, open-source alternative to traditional database services. We use Supabase to store and manage critical platform data.

What is Stored: Supabase hosts two separate PostgreSQL databases for our platform:

• Mock Test Database: Stores MCQ categories, batch tables, test questions, and user test progress
• Law Database: Stores legal acts, bare acts, law module content, and related educational materials

Data Processed: The databases store your Firebase UUID (not your email or name), learning progress, saved series, test scores, and synchronized preferences. All data is linked to your anonymous UUID, not personally identifiable information.

Security Features: Supabase provides enterprise-grade security including:

• AES-256 encryption for data at rest
• TLS 1.2+ encryption for data in transit
• Row-level security policies to prevent unauthorized data access
• Automatic backups and point-in-time recovery
• DDoS protection and firewall security

Data Location: Our Supabase databases are hosted on AWS infrastructure in the Asia-Pacific (Mumbai) region, ensuring compliance with Indian data residency requirements.

Open Source: Supabase is built on open-source technologies (PostgreSQL, PostgREST), providing transparency and avoiding vendor lock-in.

Privacy Policy: For more information, visit Supabase Privacy Policy.

Section 5: Children's Privacy (Under-18 Protection)

Government Exam Guru is an educational platform intended for students and lifelong learners. We recognize the sensitive nature of providing services to younger users and are committed to maintaining a safe, secure, and age-appropriate environment.

5.1 Age Verification

Minimum Age: Our Services are designed for users aged 10 years and older. We do not knowingly allow users under the age of 10 to create an account or provide personal information.

Verification Process: Upon first launch or account creation, we may implement an "Age Gate" to verify the user's age. If a user is identified as being between the ages of 10 and 18, we apply enhanced privacy protections in compliance with the Digital Personal Data Protection (DPDP) Act (India) and the Google Play Families Policy.

Identification of Minors: For any user under 18, we automatically restrict certain data collection features, such as behavioral tracking and personalized advertising, to ensure their digital safety.

5.2 Parental Controls

As an EdTech platform, our content is curated for academic excellence. We adhere to the following standards:

Safe Environment: We maintain a strict "Zero Tolerance" policy for pornographic content, nudity, or abusive language. Our platform is a safe space for students to learn without exposure to harmful or exploitative material.

Educational Context: To prepare students for comprehensive government exams, our materials (Articles, Series, and Video Lectures) may discuss sensitive historical or current events. This includes academic discussions on history, religious studies, political science, and past conflicts or terrorist attacks. These topics are handled with professional, academic neutrality and are intended solely for educational purposes and exam preparation.

Parental Supervision: We encourage parents and guardians to supervise the learning journey of students under the age of 18. Parents have the right to request a review of any information we have collected about their child or to request the immediate deletion of their child's account.

5.3 Data Retention for Children

We believe in "Privacy by Design" for our younger audience.

Limited Data Collection: For users under 18, we do not engage in behavioral monitoring or targeted profiling. If advertisements are shown via AdMob, they are configured as "Contextual Ads" only—meaning they are based on the content of the app, not the personal behavior or history of the child.

No Sharing: Personal information from users under 18 is never sold, traded, or shared with third parties for marketing purposes.

Strict Retention: Data for minor accounts is subject to strict retention limits. If an account remains inactive for a prolonged period, or if a parent requests deletion, all associated Firebase UUIDs and PostgreSQL records are permanently erased from our systems.

Parental Rights: If you believe we have inadvertently collected data from a user under the age of 10, please contact our Grievance Officer (Section 8) immediately so we can take swift corrective action.

Section 6: Data Rights And Management (User controls)

Under the Digital Personal Data Protection (DPDP) Act, 2023 (India), you have fundamental rights regarding your personal data. This section explains how you can exercise these rights and maintain full control over your information.

6.1: Right to Access

You have the right to know what personal data we hold about you and to receive a copy of that data in a portable, machine-readable format.

What You Can Request:

You may request access to the following information:

• Account Information: Your Firebase UUID, email address, name, and profile picture as received from Google

How to Request Access:

To request access to your personal data, please send an email to our Grievance Officer at admin@governmentexamguru.com with the subject line: "Data Access Request - [Your Name]"

In your email, please include:

• Your full name as it appears on your account
• The email address associated with your Government Exam Guru account
• Specific information you wish to access (or request "all personal data")
• Preferred format for data delivery (PDF, JSON, CSV, or Excel)

Response Timeline:

We will respond to your data access request within 30 days of receiving your request. If we require additional time due to the complexity of your request, we will notify you and provide an estimated completion date.

Data Portability:

Your data will be provided in a structured, commonly used, and machine-readable format (such as JSON or CSV) to facilitate easy transfer to another service provider if you choose to do so.

Verification:

To protect your privacy, we may ask you to verify your identity before providing access to your personal data. This may include:

• Confirming your email address through a verification link
• Answering security questions about your account
• Providing proof of identity (in rare cases involving sensitive requests)

No Charge:

The first data access request in a 2-month period is provided free of charge. If you make excessive or repetitive requests, we may charge a reasonable administrative fee to cover our costs.

6.2: Right to Correction

You have the right to correct or update any inaccurate or incomplete personal information we hold about you.

What You Can Correct:

You can request corrections to:

• Name: Update your display name if it is incorrect or outdated
• Email Address: Change your primary email address (requires re-authentication with Google)
• Profile Picture: Update your profile photo

How to Correct Your Data:

Option 1: Self-Service (Recommended)

Most personal information can be updated directly through the app:

1. Open the Government Exam Guru app
2. Navigate to Profile or Settings
3. Tap on the information you wish to update
4. Make your changes and save

Changes to your Google account information (name, email, profile picture) must be made through your Google Account settings. Once updated, the changes will automatically sync to our app within 24 hours.

Option 2: Contact Support

If you cannot update information through the app, or if you need to correct learning progress or test scores, please contact our Grievance Officer at admin@governmentexamguru.com with the subject line: "Data Correction Request - [Your Name]"

In your email, please include:

• Your full name and account email address
• The specific information that is incorrect
• The corrected information you wish to update
• Supporting documentation (if applicable, such as screenshots showing an error)

Response Timeline:

We will process your correction request within 15 days of verification. Simple corrections (name, preferences) are typically completed within 3-5 business days. Complex corrections (learning progress, test scores) may require additional verification and take up to 15 days.

Verification:

For corrections to learning progress or test scores, we may require verification to prevent fraudulent manipulation of data. This may include reviewing server logs or requesting screenshots of the error.

Automatic Sync:

If you update your Google account information (name, email, profile picture), these changes will automatically sync to our systems the next time you sign in to the app.

6.3: Right To Erasure (Account Deletion)

You have the right to request the permanent deletion of your account and all associated personal data. This is also known as the "Right to be Forgotten."

What Gets Deleted:

When you request account deletion, the following data will be permanently erased from our systems:

From Firebase:

• Your Firebase UUID
• Email address
• Name and profile picture
• Authentication tokens and session data
• Notification preferences and device tokens

From MongoDB:

• Saved series and library data
• Any server-side bookmarks or preferences
• Content engagement metadata linked to your UUID

From Supabase PostgreSQL:

• Learning progress through mock tests and law modules
• Test scores and performance history
• Synchronized preferences and settings

From AWS:

• Any backup copies of your data
• Server logs containing your Firebase UUID (after log retention period)

What Does NOT Get Deleted:

The following data is not deleted as it is either anonymous, legally required, or stored locally on your device:

• Aggregated Analytics: Anonymous usage statistics that cannot be traced back to you
• Article View Counts: Total view counts on articles (these are anonymous and not linked to your identity)
• Legal Records: Data we are legally required to retain for compliance, tax, or audit purposes (rare)
• Locally Stored Data: Notes, highlights, and downloaded articles on your device (you must manually delete these by clearing app data or uninstalling the app)

How to Delete Your Account:

Option 1: In-App Deletion (Recommended)

1. Open the Government Exam Guru app
2. Navigate to Settings → Account
3. Scroll down and tap Delete Account
4. Read the warning message carefully
5. Confirm deletion by entering your email address or password
6. Tap Permanently Delete My Account

Option 2: Email Request

If you cannot access the app, send an email to our Grievance Officer at admin@governmentexamguru.com with the subject line: "Account Deletion Request - [Your Name]"

In your email, please include:

• Your full name
• The email address associated with your account
• Confirmation statement: "I request the permanent deletion of my Government Exam Guru account and all associated personal data."

Verification:

To prevent unauthorized account deletion, we will send a verification email to your registered email address. You must click the confirmation link within 7 days to proceed with deletion.

Deletion Timeline:

• Immediate: Your account will be deactivated immediately upon confirmation, preventing further access
• Within 30 Days: All personal data will be permanently erased from our production databases (Firebase, MongoDB, Supabase)
• Within 90 Days: Backup copies and server logs will be purged according to our retention schedules

Irreversible Action:

Account deletion is permanent and irreversible. Once your data is deleted, it cannot be recovered. You will lose:

• All saved series and learning progress
• All test scores and performance history
• All app preferences and settings
• Access to any premium features or content (if applicable)

Re-Registration:

After account deletion, you may create a new account at any time using the same or a different email address. However, your previous data will not be restored.

Exceptions:

We may retain certain data if:

• Required by law (e.g., tax records, legal disputes)
• Necessary to complete a transaction you initiated before deletion
• Needed to detect or prevent fraud, security incidents, or illegal activity
• Part of anonymous, aggregated analytics that cannot identify you

In such cases, we will notify you of the specific data being retained and the legal basis for retention.

6.4: Withdrawal of Consent

You have the right to withdraw your consent for data processing at any time. Withdrawing consent does not affect the lawfulness of processing that occurred before withdrawal.

What Consent Can Be Withdrawn:

You can withdraw consent for:

• Google Sign-In: Revoke our app's access to your Google account
• Push Notifications: Disable Firebase Cloud Messaging notifications
• Personalized Advertising: Opt out of personalized ads via AdMob
• Analytics Tracking: Limit data collection by Google Analytics (limited options)
• Email Communications: Unsubscribe from promotional emails or newsletters

How to Withdraw Consent:

For Google Sign-In:

1. Visit your Google Account Permissions
2. Find "Government Exam Guru" in the list of connected apps
3. Click Remove Access
4. Confirm removal

Note: This will sign you out of the app and prevent future sign-ins unless you re-authorize access.

For Push Notifications:

Option 1: Device Settings

1. Go to Settings → Apps → Government Exam Guru
2. Tap Notifications
3. Toggle off all notification categories

Option 2: In-App Settings

1. Open the app and navigate to Settings
2. Tap Notifications
3. Disable specific notification types or turn off all notifications

For Personalized Advertising:

1. Go to Settings → Google → Ads on your Android device
2. Tap Opt out of Ads Personalization
3. Confirm your choice

Alternatively, reset your Android Advertising ID:

1. Go to Settings → Google → Ads
2. Tap Reset advertising ID

For Analytics Tracking:

Google Analytics tracking cannot be completely disabled without uninstalling the app. However, you can limit data collection by:

• Disabling personalized ads (see above)
• Using the app in offline mode (after downloading content)
• Clearing app data regularly

For Email Communications:

If we send promotional emails or newsletters in the future, you can unsubscribe by:

• Clicking the Unsubscribe link at the bottom of any email
• Sending an email to admin@governmentexamguru.com with the subject line: "Unsubscribe from Emails"

Effect of Withdrawal:

Withdrawing consent may limit or prevent certain app features from functioning:

• Withdrawing Google Sign-In: You will be signed out and unable to access synchronized features (saved series, learning progress, test scores)
• Withdrawing Push Notifications: You will not receive updates about new content, series releases, or important announcements
• Withdrawing Personalized Ads: You will still see advertisements, but they may be less relevant to your interests
• Withdrawing Analytics: May limit our ability to improve the app and fix bugs

Re-Granting Consent:

You can re-grant consent at any time by:

• Re-authorizing Google Sign-In through your Google Account settings
• Re-enabling notifications in device or app settings
• Opting back into personalized advertising in Android settings

No Penalty:

Withdrawing consent will not result in any penalty, discrimination, or loss of access to free educational content. However, certain features that require consent (such as synchronized learning progress) will be unavailable.

Contact for Assistance:

If you need help withdrawing consent or have questions about the implications, please contact our Grievance Officer at admin@governmentexamguru.com.

Section 7: Storage, Security & Retention

We implement industry-standard security measures to protect your data throughout its lifecycle. This section explains how your information is encrypted, how long it is retained, and where it is physically stored.

7.1: Encryption

All data transmitted between your device and our servers is protected using multiple layers of encryption to prevent unauthorized access or interception.

Data in Transit: Every communication between the Government Exam Guru app or website and our backend infrastructure is secured using Transport Layer Security (TLS 1.2 or higher). This encryption protocol ensures that your login credentials, learning progress, and any other data sent over the internet cannot be intercepted or read by third parties, including internet service providers or network administrators.

Data at Rest: Information stored on our servers is protected using industry-standard encryption methods. Our PostgreSQL databases hosted on AWS and Supabase use AES-256 encryption for data at rest, ensuring that even in the unlikely event of unauthorized physical access to server hardware, your data remains unreadable and secure.

Firebase Security: All authentication data managed by Firebase Authentication is encrypted both in transit and at rest using Google's enterprise-grade security infrastructure. Your Firebase UUID, email address, and profile information are protected by the same security standards that safeguard Google's own services.

Local Device Storage: Notes, highlights, and downloaded articles stored locally on your device are protected by your device's native security features, including Android's file system encryption. We strongly recommend enabling device-level encryption and using a secure lock screen to protect locally stored learning materials.

Database Connections: All connections to our MongoDB Atlas cluster and PostgreSQL databases are configured with mandatory SSL/TLS encryption. Connection strings use certificate-based authentication and encrypted channels to prevent man-in-the-middle attacks or credential theft.

7.2: Storage Duration

We retain your data only for as long as necessary to provide our services and comply with legal obligations. Different types of data have different retention periods based on their purpose and legal requirements.

Active Account Data: As long as your account remains active, your core account information (Firebase UUID, email address, name, and profile picture) is retained indefinitely to maintain your access to the platform. Your learning progress, saved series, and synchronized preferences are also preserved to ensure continuity across sessions and devices.

Inactive Accounts: If your account remains completely inactive for a continuous period of 3 years with no sign-ins, no content views, and no app launches, we reserve the right to archive or delete your account data. You will receive email notifications at 30 months and 33 months of inactivity, giving you the opportunity to sign in and preserve your account.

Support Communications: If you contact us via email or phone for support, your contact details and the content of your inquiry are retained for 6 months from the date of your last communication. After this period, all support-related personal information is automatically and permanently deleted from our systems.

Analytics Data: Aggregated and anonymized analytics data collected through Google Analytics and Firebase Analytics is retained for 26 months in accordance with Google's data retention policies. This data cannot be traced back to individual users and is used solely for understanding platform-wide trends and improving our services.

Crash Reports: Technical crash reports generated by Firebase Crashlytics are retained for 90 days. These reports contain only technical information such as device type, Android version, and error stack traces. They do not include personal identifiers and are automatically purged after the retention period.

Advertising Data: The Android Advertising ID (AAID) used by Google AdMob is not stored on our servers. This identifier is managed entirely by Google and can be reset or deleted at any time through your Android device settings. Ad interaction data is retained by Google AdMob according to their own privacy policy and retention schedules.

Deleted Account Data: When you request account deletion (see Section 6.3), all personal data associated with your Firebase UUID is permanently erased from our systems within 30 days. This includes your account profile, learning progress, and any server-side synchronized data. Locally stored notes and downloaded articles on your device must be manually deleted by you, as we do not have remote access to your device storage.

Legal Compliance: In rare circumstances, we may be legally required to retain certain data for longer periods to comply with court orders, law enforcement requests, or regulatory obligations under Indian law. In such cases, only the minimum necessary data will be retained, and you will be notified unless prohibited by law.

7.3: Data Sovereignty

We are committed to transparency about where your data is physically stored and processed. As an Indian educational platform, we prioritize compliance with Indian data protection laws while leveraging global infrastructure for reliability and performance.

Primary Data Location: The majority of your personal data is stored on servers located within India and the Asia-Pacific region. Our MongoDB Atlas cluster, which stores content, categories, series, and resource data, operates on servers in Mumbai, India, ensuring that your core learning data remains within Indian jurisdiction.

PostgreSQL Databases: Our PostgreSQL databases for mock tests, batches, and law modules are hosted on Supabase infrastructure. Supabase uses AWS data centers, and our databases are configured to use the Asia-Pacific (Mumbai) region whenever possible. This ensures compliance with data localization preferences under Indian regulations.

Firebase Services: Firebase Authentication, Cloud Messaging, and Crashlytics are global services provided by Google. While Firebase data may be processed on Google's worldwide infrastructure, all data is subject to Google's strict security and privacy standards, including compliance with the Digital Personal Data Protection (DPDP) Act, 2023.

AWS Infrastructure: For certain features, we use Amazon Web Services (AWS) with servers primarily located in the Asia-Pacific (Mumbai) region. AWS provides enterprise-grade physical security, including 24/7 monitoring, biometric access controls, and redundant power and network systems to ensure high availability and data protection.

Cross-Border Transfers: In limited cases, data may be transferred to servers outside India for specific purposes such as content delivery, analytics processing, or backup redundancy. Any such transfers are conducted in accordance with Indian data protection laws and are protected by appropriate safeguards, including encryption, contractual data protection clauses, and adherence to international security standards.

Data Residency Commitment: We do not sell, rent, or transfer your personal data to third parties located outside India for marketing or commercial purposes. Any international data processing is strictly limited to trusted service providers (Google, AWS, Supabase) who are contractually obligated to maintain the same level of data protection as required under Indian law.

Government Access: We comply with lawful requests from Indian law enforcement and regulatory authorities. If we receive a valid legal order to disclose user data, we will notify affected users unless prohibited by law. We do not provide blanket access to user data to any government or private entity.

User Control: You have the right to know where your data is stored and to request information about any cross-border transfers. If you have concerns about data sovereignty or wish to exercise your rights under the DPDP Act, please contact our Grievance Officer (Section 8).

Section 8: Grievance Redressal (Mandatory for India)

In compliance with the Digital Personal Data Protection (DPDP) Act, 2023, and the Information Technology Act, 2000, we have appointed a Grievance Officer to address any concerns, complaints, or queries related to your personal data and privacy.

8.1: Grievance Officer Details

If you have any concerns regarding the processing of your personal data, privacy violations, data breaches, or any other grievances related to our privacy practices, please contact our designated Grievance Officer:

Name: Saurav
Designation: Grievance Officer & Data Protection Officer
Organization: Indian Exam Hub (Government Exam Guru)
Email: admin@governmentexamguru.com
Location: Uttar Pradesh, India

Office Hours: Monday to Saturday, 10:00 AM to 6:00 PM IST (Excluding public holidays)

What You Can Report:

You may contact the Grievance Officer for any of the following matters:

• Privacy Violations: Unauthorized access, use, or disclosure of your personal data
• Data Breach Concerns: Suspected security incidents or data leaks
• Data Rights Requests: Access, correction, deletion, or portability requests (as detailed in Section 6)
• Consent Issues: Questions about consent withdrawal or data processing without consent
• Third-Party Concerns: Issues related to third-party service providers (Google, AWS, Supabase, etc.)
• Children's Privacy: Concerns about data collection from users under 18 years of age
• Advertising Complaints: Issues with intrusive or inappropriate advertisements
• Account Issues: Problems with account access, deletion, or data synchronization
• General Privacy Questions: Any other questions or concerns about our privacy practices

How to File a Grievance:

To ensure prompt resolution, please follow these steps when filing a grievance:

1. Send an Email to admin@governmentexamguru.com with the subject line: "Grievance - [Brief Description]"

2. Include the Following Information:

   • Your full name
   • Email address associated with your Government Exam Guru account (if applicable)
   • Phone number (optional, for urgent matters)
   • Detailed description of your grievance or concern
   • Any supporting documents, screenshots, or evidence (if applicable)
   • Preferred method of communication for resolution (email or phone)

3. Acknowledgment: You will receive an acknowledgment email within 48 hours confirming receipt of your grievance and providing a unique ticket number for tracking.

Language Support:

Grievances may be submitted in English or Hindi. If you prefer to communicate in Hindi, please mention this in your email, and we will respond accordingly.

Confidentiality:

All grievances are treated with strict confidentiality. Your personal information and the details of your complaint will not be shared with unauthorized parties and will be used solely for the purpose of resolving your grievance.

8.2: Resolution Timeline

We are committed to resolving all grievances in a timely and fair manner. The following timelines apply to different types of grievances:

Standard Grievances:

For general privacy concerns, data rights requests, or account issues:

• Acknowledgment: Within 48 hours of receiving your grievance
• Initial Response: Within 7 business days with an update on the status of your grievance
• Resolution: Within 30 days from the date of acknowledgment

If your grievance requires additional investigation or involves complex technical issues, we will notify you of the extended timeline and provide regular updates every 7 days.

Urgent Grievances:

For critical matters such as suspected data breaches, unauthorized access, or security incidents:

• Acknowledgment: Within 24 hours
• Initial Response: Within 3 business days with preliminary findings
• Resolution: Within 15 days from the date of acknowledgment

Data Rights Requests:

For specific data rights requests (access, correction, deletion):

• Right to Access: Within 30 days
• Right to Correction: Within 15 days (3-5 days for simple corrections)
• Right to Erasure: Within 30 days (immediate deactivation, full deletion within 30 days)
• Withdrawal of Consent: Immediate processing (within 24-48 hours)

Resolution Process:

1. Acknowledgment: You will receive an email acknowledging your grievance with a unique ticket number (e.g., GRV-2024-001)

2. Investigation: Our team will investigate your grievance, which may include:

   • Reviewing server logs and database records
   • Consulting with technical teams or third-party service providers
   • Verifying your identity and account details
   • Analyzing the nature and severity of the issue

3. Communication: We will keep you informed throughout the process with regular updates via email

4. Resolution: Once resolved, you will receive a detailed response explaining:

   • The findings of our investigation
   • Actions taken to address your grievance
   • Steps to prevent similar issues in the future (if applicable)
   • Your rights to escalate if you are not satisfied with the resolution

5. Closure: After resolution, we will request your confirmation that the matter has been satisfactorily addressed. If you confirm, the grievance will be closed.

Escalation Process:

If you are not satisfied with the resolution provided by our Grievance Officer, you have the right to escalate your complaint to the appropriate regulatory authorities:

Data Protection Board of India (DPBI):

Once established under the DPDP Act, 2023, you may file a complaint with the Data Protection Board of India if you believe your data rights have been violated.

Ministry of Electronics and Information Technology (MeitY):

For complaints related to the Information Technology Act, 2000, you may contact:

Website: https://www.meity.gov.in
Email: grievances@meity.gov.in

Consumer Forums:

You may also approach consumer dispute redressal forums under the Consumer Protection Act, 2019, for grievances related to deficiency in service.

Record Keeping:

We maintain records of all grievances received, including:

• Date and time of receipt
• Nature of the grievance
• Actions taken for resolution
• Date of resolution
• Outcome and user satisfaction

These records are kept for 3 years from the date of resolution for audit and compliance purposes.

No Retaliation:

Filing a grievance will not result in any penalty, discrimination, or adverse action against your account. You will continue to have full access to all free educational content and features of the Government Exam Guru platform.

Contact for Urgent Matters:

For urgent privacy or security concerns that require immediate attention (such as suspected account hacking or data breach), please mark your email as "URGENT" in the subject line, and we will prioritize your grievance accordingly.

Section 9: Update of Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our practices, legal requirements, or service offerings. This section explains how we will notify you of changes and when this policy was last updated.

9.1: Notification of Changes

We are committed to transparency and will ensure that you are informed of any material changes to this Privacy Policy.

Material Changes:

Material changes include, but are not limited to:

• Changes in the types of personal data we collect
• New purposes for which we use your data
• Changes in data sharing practices with third parties
• Modifications to data retention periods
• Changes in your data rights or how to exercise them
• Updates to security measures or data storage locations
• Changes in our contact information or Grievance Officer details

How We Will Notify You:

When we make material changes to this Privacy Policy, we will notify you through one or more of the following methods:

1. In-App Notification: A prominent notice will be displayed when you open the Government Exam Guru app, requiring acknowledgment before you can continue using the app

2. Email Notification: If you have an account with us, we will send an email to your registered email address at least 30 days before the changes take effect

3. Website Banner: A clear and conspicuous banner will be displayed on our website (governmentexamguru.com) announcing the policy update

4. Push Notification: For significant changes, we may send a push notification to your device (if you have notifications enabled)

Non-Material Changes:

For minor or non-material changes (such as clarifications, formatting updates, or corrections of typographical errors), we will update the "Last Updated Date" at the bottom of this policy. We encourage you to review this Privacy Policy periodically to stay informed of any changes.

Your Continued Use:

By continuing to use the Government Exam Guru app or website after the effective date of the updated Privacy Policy, you acknowledge that you have read, understood, and agree to be bound by the revised terms. If you do not agree with the changes, you have the right to:

• Stop using the app and website
• Delete your account (see Section 6.3)
• Contact our Grievance Officer with your concerns (see Section 8)

Version History:

We maintain a version history of this Privacy Policy for transparency. Major versions are archived and available upon request. To request a previous version of this policy, please contact our Grievance Officer at admin@governmentexamguru.com.

9.2: Last Updated Date

Last Updated: December 18, 2024
Effective Date: December 18, 2024
Version: 1.0

Summary of Current Version:

This is the initial comprehensive version of our Privacy Policy, created in compliance with the Digital Personal Data Protection (DPDP) Act, 2023 (India). This policy covers all aspects of data collection, processing, storage, and user rights for the Government Exam Guru platform.

Previous Updates:

• Version 1.0 (December 18, 2024): Initial comprehensive privacy policy published

Review Schedule:

We review this Privacy Policy at least once every 12 months or whenever there are significant changes to our data practices, legal requirements, or service offerings. The next scheduled review is planned for December 2025.

Contact for Questions:

If you have any questions about this Privacy Policy, updates, or changes, please contact our Grievance Officer:

Email: admin@governmentexamguru.com
Subject Line: "Privacy Policy Question - [Your Name]"

---

Acknowledgment:

By using the Government Exam Guru app or website, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy and any future updates made in accordance with Section 9.1.

Thank you for trusting Government Exam Guru with your educational journey. We are committed to protecting your privacy and providing you with a safe, secure, and enriching learning experience.

---

Indian Exam Hub
Government Exam Guru
Uttar Pradesh, India
Email: admin@governmentexamguru.com