10% off on all eligible courses - no code needed; checkout shows the discount before payment.

GoEducated

Privacy Policy

Last updated: 6 May 2026

Key information

  • SPPS Fly High Edutech Pvt. Ltd. (GoEducated.com) is the data fiduciary for personal data we process about you, in line with the Digital Personal Data Protection Act 2023 (DPDPA) and applicable Indian law.
  • We collect identity, contact, academic, payment, preference, and usage information when you register, browse, enroll, pay fees, or communicate with us and our partner institutions.
  • We use your data to operate the platform, deliver courses, process payments, connect you with partners (including AICerts and BIA), improve security, send transactional messages, and—with your consent—marketing communications.
  • You have rights to access, correct, erase, withdraw consent, nominate a representative, and seek grievance redressal. Contact us at reachus@goeducated.com or our Grievance Officer as described below.

This Privacy Policy describes how we collect, use, store, disclose, and protect your personal information. You can jump to any section using the table of contents.

This Privacy Policy explains how GoEducated.com (operated by SPPS Fly High Edutech Pvt. Ltd.) collects, uses, stores, discloses, and protects your Personal Information. It is compliant with the Information Technology Act 2000, the IT (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules 2011, and the Digital Personal Data Protection Act 2023 (DPDPA).

GoEducated.com is an online and offline education aggregator platform owned and operated by SPPS Fly High Edutech Pvt. Ltd. (hereinafter referred to as "GoEducated", "we", "us", or "our"). We are incorporated under the Companies Act 2013 and have our registered office at The Nook, #8/1, 3rd Floor, Venkatrama Layout, Jaibharath Nagar, Maruthi Sevanagar Post, Bangalore North, Karnataka, India, 560033.
Corporate Office & Institute Address: WeWork, Global Tech Park #37, Cunningham Road, Vasanth Nagar, Bengaluru – 560001, Karnataka, India.

For the purposes of the Digital Personal Data Protection Act 2023, GoEducated acts as a Data Fiduciary in respect of all Personal Data processed through this platform.

This Privacy Policy applies to:

  • All visitors, registered users, students, prospective learners, corporate clients, institutional partners, and channel partners who access or use the GoEducated.com website and all associated sub-domains, mobile applications, and learning management system portals.
  • Personal data collected via our website, phone, email, WhatsApp, in-person counselling sessions, and partner integrations.
  • Data processed in connection with all course categories offered on the platform, including AICerts programmes, Boston Institute of Analytics (BIA) courses, foundation and competitive exam coaching, undergraduate and postgraduate programmes, diploma pathways, study-abroad services, and career counselling.

If you are a minor (below 18 years of age), please ensure that a parent or legal guardian has reviewed and accepted this Privacy Policy on your behalf before you use our platform.

3.1 Information You Provide Directly

  • Identity Data: Full name, date of birth, gender, nationality, photograph.
  • Contact Data: Email address, mobile number, WhatsApp number, residential and mailing address, city, state, PIN code.
  • Academic Data: Educational qualifications, mark sheets, certificates, entrance exam scores, institution name, year of passing.
  • Financial Data: Billing name, billing address, GST number (for corporate learners); partial payment card information handled exclusively by PCI-DSS-compliant gateways (Razorpay); UPI transaction references.
  • Preference Data: Course interests, preferred learning mode (online/offline/blended), language preference, specialisation selected.
  • Identity Verification Documents: Government-issued IDs (Aadhaar, PAN, Passport) collected solely where required for institutional enrolment, university admission, or study-abroad documentation.
  • Career and Employment Data: Current employer, designation, annual income range, career goals (collected during counselling sessions).

3.2 Information Collected Automatically

  • Device and Technical Data: IP address, browser type and version, device type, operating system, screen resolution, referring URL.
  • Usage Data: Pages visited, courses viewed, search queries, time spent on each page, click-path data, wishlist and cart actions.
  • Cookie and Tracking Data: Session cookies, persistent cookies, analytics tags, pixel tracking identifiers. (See Cookie Policy for details.)
  • Location Data: Approximate city/region-level location inferred from IP address; precise GPS location only if expressly granted via the mobile application.

3.3 Information from Third Parties

  • Partner Institutions: Academic records and progress data shared by Boston Institute of Analytics, AICerts, and other partner universities.
  • Social Login Providers: If you log in via Google or LinkedIn, we receive your name, email, and profile picture as permitted by your privacy settings on those platforms.
  • Payment Processors: Razorpay and other payment gateways share transaction status, reference numbers, and fraud-screening results.
  • Referral Partners and Channel Partners: Name and contact data of referred learners submitted by our channel partner network.

We process your Personal Data only where one or more of the following lawful bases apply:

  • Consent: You have given clear, free, specific, informed, and unambiguous consent, including for receiving marketing communications.
  • Contractual Necessity: Processing is necessary to enrol you in a course, process payment, issue certificates, or deliver any service you have purchased.
  • Legal Obligation: We are required to process data to comply with applicable Indian laws (tax, education regulation, anti-money laundering).
  • Legitimate Interests: We process certain data to improve platform security, prevent fraud, conduct internal analytics, and manage our business operations, where such interests do not override your fundamental rights.
  • Vital Interests: In rare circumstances, where processing is necessary to protect life.

GoEducated uses your Personal Data for the following purposes:

  • Account creation, authentication, and platform access.
  • Processing enrolments, course registrations, and fee payments.
  • Facilitating communication between learners and partner institutions.
  • Delivering course content, learning materials, assessments, and certificates.
  • Providing career counselling, study-abroad guidance, and placement support.
  • Sending transactional communications: payment receipts, enrolment confirmations, course schedules, exam alerts.
  • Sending promotional and marketing communications (subject to your consent and opt-out rights).
  • Platform improvement: conducting A/B tests, usability research, and internal analytics.
  • Fraud prevention, risk management, and platform security monitoring.
  • Regulatory compliance: responding to lawful requests from government authorities, courts, or regulators.
  • Corporate training and B2B client management, including employee progress reporting to employer clients.
  • Generating anonymised, aggregated data for industry research and publication (no individual is identifiable).

6.1 Within the GoEducated Group

Your data may be shared with directors, employees, and authorised personnel of SPPS Fly High Edutech Pvt. Ltd. on a need-to-know basis.

6.2 Partner Institutions and Universities

When you enrol in a programme offered by Boston Institute of Analytics, AICerts, or any other partner university, your name, contact details, educational background, and payment status will be shared with that institution to the extent required to deliver the programme.

6.3 Service Providers and Processors

We share data with carefully vetted third-party service providers acting as Data Processors:

  • Cloud Infrastructure: Amazon Web Services (AWS) — servers located in the ap-south-1 (Mumbai) region.
  • Payment Gateway: Razorpay Software Pvt. Ltd.
  • CRM: EspoCRM (self-hosted on AWS infrastructure).
  • Analytics: Google Analytics (anonymised and pseudonymised data).
  • Email and Communication: Transactional email providers and WhatsApp Business API operators.
  • LMS Platforms: Moodle and Canvas (integrated for course delivery).

All processors are contractually bound to process data only on our instructions, maintain confidentiality, and implement appropriate security measures.

6.4 Legal and Regulatory Disclosures

We may disclose your information when legally required to do so by any court, tribunal, law enforcement agency, or government authority in India or, where applicable law so mandates, in another jurisdiction.

6.5 Business Transfers

In the event of a merger, acquisition, restructuring, or sale of all or part of our business, your data may be transferred to the successor entity, subject to equivalent privacy protections.

6.6 No Sale of Personal Data

We do not sell, trade, or rent your Personal Data to any third party for their own marketing purposes.

We retain your Personal Data only for as long as necessary to fulfil the purposes described in this Policy or as required by applicable law:

  • Active account data: Retained for the duration of your account plus 3 years after closure.
  • Financial and transaction records: 8 years from the date of transaction (as required under the Income Tax Act 1961 and GST laws).
  • Academic records and certificates: 5 years from course completion.
  • Marketing consent records: 3 years from consent or until withdrawal.
  • Cookie and analytics data: As specified in the Cookie Policy (maximum 24 months for non-essential cookies).
  • Government ID documents: Deleted within 30 days of successful verification unless retention is legally mandated.

Upon expiry of the applicable retention period, data is securely deleted or irreversibly anonymised.

As a Data Principal under the Digital Personal Data Protection Act 2023, you have the following rights, which you may exercise by contacting our Grievance Officer:

  • Right to Access: Obtain a summary of the Personal Data we hold about you and information on how it has been processed.
  • Right to Correction and Erasure: Request correction of inaccurate or incomplete data, or erasure of data that is no longer necessary (subject to legal retention obligations).
  • Right to Grievance Redressal: Have your grievances addressed by our Grievance Officer within the timelines prescribed under applicable law.
  • Right to Withdraw Consent: Withdraw consent at any time without affecting the lawfulness of processing prior to withdrawal. Withdrawal may limit your access to certain platform features.
  • Right to Nominate: Nominate an individual to exercise your rights on your behalf in the event of your death or incapacity.

We will respond to all verified requests within 30 days. Complex requests may take up to 45 days, in which case we will notify you of the extension. We do not charge a fee for the first request in any 12-month period.

GoEducated implements industry-standard technical and organisational security measures to protect your Personal Data against unauthorised access, alteration, disclosure, or destruction:

  • Transport Layer Security (TLS 1.2 or higher) for all data in transit.
  • AES-256 encryption for sensitive data at rest on AWS infrastructure.
  • Role-based access controls (RBAC) limiting data access to authorised personnel.
  • Multi-factor authentication (MFA) for administrative systems.
  • Regular security audits and vulnerability assessments.
  • AWS security groups, VPC isolation, and CloudTrail audit logging.
  • Incident response and data breach notification procedures compliant with DPDPA 2023.

In the event of a personal data breach that is likely to result in a risk to your rights, we will notify the Data Protection Board of India and, where required, affected Data Principals, in accordance with the timelines prescribed under the DPDPA 2023.

Certain categories of information are classified as Sensitive Personal Data or Information (SPDI) under the IT (SPDI) Rules 2011. GoEducated collects the following SPDI only where expressly necessary and with your explicit consent:

  • Financial information (bank account details, payment card information — processed exclusively by Razorpay and never stored on our servers).
  • Biometric data (where applicable for identity verification in specific programmes — collected only with explicit consent and deleted post-verification).

We do not collect, process, or retain health data, sexual orientation, or political/religious opinions unless you voluntarily disclose such information in counselling sessions, in which case it is treated with the highest degree of confidentiality.

GoEducated offers foundation courses targeted at students of Classes 8 to 10 (typically aged 13 to 16). In compliance with applicable Indian law:

  • For users under 18 years of age, we require verifiable parental or guardian consent before collecting or processing Personal Data.
  • We do not knowingly collect Personal Data from children under 13 without parental consent.
  • Parents/guardians may review, correct, or request deletion of their child’s data by contacting our Grievance Officer.
  • Marketing communications are not directed at minors.

Your Personal Data is primarily stored and processed within India (AWS ap-south-1, Mumbai). Some of our service providers (e.g., Google Analytics, AICerts) may process data in other jurisdictions. Where data is transferred outside India, we ensure:

  • Adequate safeguards are in place (Standard Contractual Clauses or equivalent mechanisms).
  • The transfer is for the purpose you originally consented to.
  • Compliance with Section 16 of the DPDPA 2023 and any transfer regulations notified by the Central Government.

In accordance with the Information Technology Act 2000 and the DPDPA 2023, we have appointed a Grievance Officer:

Name: Joel Sumanth Raj
Designation: CEO & Director, SPPS Fly High Edutech Pvt. Ltd.
Email: reachus@goeducated.com
Phone: +91 91106 88226
Address: WeWork, Global Tech Park #37, Cunningham Road, Vasanth Nagar, Bengaluru – 560001, Karnataka, India
Working Hours: Monday to Friday, 9:00 AM to 6:00 PM IST

All complaints will be acknowledged within 48 hours and resolved within 30 days of receipt.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or business operations. We will notify you of material changes by posting the updated policy on our website with a revised Effective Date and, where required, by sending an email notification. Your continued use of the platform after the updated policy is posted constitutes your acceptance of the changes.