Skip to content
TalentGro Global

Privacy Policy

Effective Date: 1st June, 2026

Introduction and Identity

This Privacy Policy is published by TalentGro Global Private Limited ("TalentGro," "we," "us," or "our"), a company incorporated under the laws of India (CIN: U85304PB2023PTC058632), registered with DPIIT (Startup India Certificate No. DIPP138393), with its registered office at Mohali, Punjab, India.

We operate talentgroglobal.com, app.talentgroglobal.com (the Portal), and all associated subdomains, mobile applications, and digital services (collectively, the "Platform").

This Privacy Policy governs the collection, use, storage, disclosure, and transfer of personal data we collect from users of our Platform. It is prepared in compliance with:

  • The Digital Personal Data Protection Act, 2023 (DPDP Act) and the DPDP Rules, 2025
  • The Information Technology Act, 2000 and the IT (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011
  • The Consumer Protection Act, 2019
  • The EU General Data Protection Regulation (GDPR) — applicable to users who are residents of the European Economic Area

By using the Platform, you consent to the practices described in this Policy. If you do not agree, please discontinue using the Platform.

Personal Data We Collect

We collect the following categories of personal data:

1. Identity and Contact Data — Full name, email address, mobile phone number, date of birth, gender, city and state of residence.

2. Academic and Professional Data — Educational stream (Science, Commerce, Arts, BTech, MBA, etc.), specialisation, college or school name, institution affiliation, current class or year, work experience (if any), career interests.

3. Assessment and Programme Data — Responses to career assessments (HPPC, Personality Report, Strength Finder), aptitude test results, assignment submissions, attendance records, session participation data, project work, and generated reports.

4. Payment and Transaction Data — Transaction ID, amount paid, payment method type (card/UPI/netbanking), billing name. We do not store full card numbers or bank account details. Payments are processed by Razorpay (PCI-DSS Level 1 certified).

5. Account and Authentication Data — Username, hashed password, Google OAuth token (if Google sign-in is used), session tokens, two-factor authentication data.

6. Device and Usage Data — IP address, browser type and version, operating system, device identifiers, pages visited, features used, session duration, click patterns, referral source, and error logs.

7. Communications Data — Support tickets, chat messages sent through the Platform's support widget, WhatsApp messages sent to our official number, email correspondence with our team.

8. Media and Content — Profile photographs, documents uploaded (certificates, ID proof if required), assignment files.

We collect only the data necessary for the purpose for which it is collected. You may choose not to provide certain optional data, though this may limit access to some features.

How We Collect Your Data

We collect personal data through the following means:

  • Registration and Enrollment Forms — When you create an account, enroll in a course, apply for an internship, or register for a programme.
  • Lead Capture Forms — When you submit a query, request a callback, or download a brochure on our marketing website.
  • Authentication — When you sign in using Google OAuth, we receive your name, email, and profile photo from Google.
  • Programme Participation — Through attendance tracking, assignment submissions, live class recordings (where applicable), and assessment completions.
  • Payment Gateway — When you make a payment through Razorpay, transaction metadata is shared with us.
  • Cookies and Tracking — When you browse our Platform (see Section 10: Cookies).
  • Support and Chat — When you contact our support team via the chat widget, email, or phone.
  • Third-Party Sources — We may receive data from our institutional partners (schools, colleges, universities) when they enroll their students in our programmes, with the institution's authorization.

Purposes of Processing

We process your personal data for the following specific purposes:

  • Service Delivery — To provide career counselling, training programmes, internship facilitation, vocational courses, AI-powered career assessments, live classes (via Zoom), and placement assistance.
  • Account Management — To create and manage your account, verify your identity, and maintain your programme history.
  • Communication — To send you programme updates, session reminders, assignment notifications, fee receipts, certificate issuance confirmations, and important policy changes.
  • Marketing and Promotional — To send you newsletters, promotional offers, and updates about new programmes, subject to your consent.
  • Assessment and Reporting — To generate personalised career assessment reports (HPPC, Personality Report) based on your inputs.
  • Analytics and Improvement — To analyse usage patterns, diagnose technical issues, and improve the Platform experience.
  • Legal and Regulatory Compliance — To comply with Indian laws including GST obligations, court orders, or requests from government authorities.
  • Fraud Prevention and Security — To detect, investigate, and prevent fraudulent use of the Platform.
  • Certificate and Offer Letter Issuance — To generate and maintain records of certificates and internship offer letters.

Data Sharing and Disclosure

TalentGro Global does not sell your personal data to any third party. We may share your data in the following circumstances:

1. Service Providers — We share data with trusted processors who assist in operating our Platform, including:

  • Razorpay — Payment processing (India)
  • Supabase — Database and authentication (servers may be in the US/EU)
  • Vercel — Website and application hosting (US)
  • Zoom Video Communications — Live class delivery (US)
  • Resend — Transactional email delivery
  • PostHog — Usage analytics (with your analytics consent)
  • Sentry — Error monitoring and performance tracking
  • Google — OAuth authentication; Google Gemini AI features

2. Institutional Partners — If you enroll through a school, college, or university partner, we share your programme progress, attendance, and assessment results with that institution as part of the agreed service.

3. Certification and Accreditation Bodies — For programmes affiliated with NSDC, MESC, or partner universities, required data is shared for certification purposes.

4. Potential Employers (Placement Assistance) — With your explicit prior consent, we may share your profile data and resume with prospective employers as part of placement assistance.

5. Legal and Regulatory Requirements — We may disclose your data when required by Indian law, court orders, or requests from competent government authorities.

6. Business Transfers — In the event of a merger, acquisition, or sale of TalentGro Global's assets, your data may be transferred to the acquirer, who will be bound by this Privacy Policy or provide you equivalent protection.

All service providers are bound by data processing agreements and are required to maintain confidentiality and security standards consistent with this Policy.

Cross-Border Data Transfers

Some of our service providers operate infrastructure outside India. Your data may be transferred to and processed in countries including the United States and the European Union. We ensure such transfers comply with applicable law through:

  • Data processing agreements with service providers incorporating standard contractual clauses or equivalent data transfer safeguards.
  • Using services where the provider has certified adequacy (e.g., EU-US Data Privacy Framework participants).

A list of countries where your data may be processed: United States (Vercel, Zoom, Google, Resend), European Union (varies by Supabase region). We continuously review these transfers to ensure compliance with evolving DPDP and GDPR requirements.

Data Retention

We retain your personal data for the minimum period necessary to fulfil the purpose for which it was collected, plus any legally mandated retention period:

  • Account and Profile Data — Retained for the duration of your active account plus 5 years after closure, to support re-enrollment, certificate verification, and alumni services.
  • Assessment Reports and Career Data — Retained for 7 years from generation to allow historical access and longitudinal tracking.
  • Payment and Transaction Records — Retained for 8 years as required by the GST Act and Income Tax Act.
  • Certificates and Offer Letters — Retained permanently as they are official documents that may need to be verified at any time.
  • Marketing Consent Records — Retained until consent is withdrawn plus 3 years for audit purposes.
  • Support and Chat Communications — Retained for 3 years.
  • Cookie Consent Logs — Retained for 3 years for compliance audit.

After retention periods expire, data is securely deleted or anonymised so that it can no longer identify you.

Data Security

TalentGro Global implements appropriate technical and organisational security measures to protect your personal data, including:

  • Encryption in Transit — All data transmitted between your browser and our servers is encrypted using TLS 1.2+ (HTTPS). Our platform is HTTPS-only.
  • Encryption at Rest — Database records containing sensitive personal data are encrypted at rest on Supabase infrastructure.
  • Access Controls — Row-Level Security (RLS) on our database ensures that each user can only access their own data. Admin access is role-restricted.
  • Authentication Security — Passwords are hashed using industry-standard algorithms; we support two-factor authentication for admin accounts.
  • Vendor Security — Our payment processor Razorpay is PCI-DSS Level 1 certified. We do not store payment card details.
  • Regular Audits — We conduct periodic security reviews and vulnerability assessments.

Despite these measures, no Internet transmission is 100% secure. If you believe your account has been compromised, contact us immediately at [email protected].

Your Rights

Under the DPDP Act 2023 and other applicable laws, you have the following rights regarding your personal data:

  • Right to Information — Request a summary of the personal data TalentGro holds about you and how it is processed.
  • Right to Correction and Completeness — Request correction of inaccurate or incomplete personal data.
  • Right to Erasure — Request deletion of your personal data. We will comply unless retention is required by law (e.g., GST records, certificate records) or is necessary to fulfil a contracted service.
  • Right to Withdraw Consent — Withdraw consent for marketing communications or optional analytics at any time. Withdrawal does not affect the lawfulness of processing done before withdrawal.
  • Right to Nominate (DPDP Act) — Designate another individual to exercise your data rights in the event of death or incapacity.
  • Right to Grievance Redressal — Lodge a complaint with our Grievance Officer (see below) and receive a resolution within 30 days.
  • Right to Data Portability — Request a copy of your account and assessment data in a structured, machine-readable format.

For users in the European Economic Area, additional GDPR rights apply including the right to restrict processing, object to processing, and lodge a complaint with your national data protection authority.

To exercise any right, email [email protected] with your registered email address and the specific right you wish to exercise. We will verify your identity and respond within 7 working days.

Cookies and Tracking Technologies

We use cookies and similar technologies on our Platform. You can manage your preferences through our Cookie Consent banner and through the Cookie Settings link in our website footer.

Essential Cookies (no consent required) — Necessary for the Platform to function: session authentication tokens, login state, security tokens, language preferences, and CSRF protection.

Analytics Cookies (consent required) — Help us understand how users interact with the Platform. We use PostHog and Google Analytics. These cookies are loaded only after you grant analytics consent.

Payment Cookies — Razorpay sets cookies at the checkout step; these are considered functionally essential for payment processing.

You may withdraw cookie consent at any time via the Cookie Settings link in the footer. Withdrawing analytics consent will disable PostHog and Google Analytics tracking. Essential cookies cannot be disabled as they are required for the Platform to function.

For a full list of all cookies used, including their name, purpose, duration, and third-party owner, see our Cookie Policy.

Children's Privacy

TalentGro Global serves students across multiple age groups, including school students (Class 3 onwards). We take children's privacy very seriously.

Minimum Age for Self-Enrollment — Users must be at least 16 years old to independently create an account and enroll in a programme.

Under-16 Users — Students under 16 may only use the Platform through their school or educational institution, or with verifiable parental/guardian consent. We require educational institutions enrolling minor students to obtain appropriate consents on our behalf.

Special Protections — We do not serve targeted advertising to users we know to be under 18. Assessment data for minors is subject to heightened access controls. We do not publish or share identifiable information about minors without explicit institutional and parental consent.

If you believe we have collected data from a child without appropriate consent, please contact [email protected] and we will promptly delete the data.

Grievance Officer

In accordance with the Information Technology Act, 2000 and the rules made thereunder, and the Digital Personal Data Protection Act, 2023, the name and contact details of the Grievance Officer are provided below:

Name: Rishabh Chauhan
Designation: Grievance Officer
Organisation: TalentGro Global Private Limited
Email: [email protected]
Phone: +91 98888 77722
Address: Mohali, Punjab 140603, India

If you have any concerns or complaints regarding the processing of your personal data, please contact the Grievance Officer. We will endeavour to address your complaint within 30 days of receiving it.

If your grievance is not resolved satisfactorily, you may approach the Data Protection Board of India (once constituted) or the applicable court of competent jurisdiction.

Changes to This Policy

We may update this Privacy Policy from time to time. For material changes (changes that affect how we collect, use, or share your data), we will:

  • Send an email notification to your registered email address at least 30 days before the change takes effect.
  • Display a prominent notice on the Platform.
  • Where required by law, seek fresh consent.

The 'Last Updated' date at the top of this Policy reflects the most recent revision. Your continued use of the Platform after the effective date of a revised Policy constitutes your acceptance of the changes.

Contact Us

For any privacy-related questions, requests, or concerns, please contact:

Business hours: Monday–Friday, 9:00 AM–6:00 PM IST; Saturday–Sunday, 10:30 AM–2:00 PM IST.