Privacy Policy – Naksh Foundation

Last updated: 12 March 2026

Naksh Foundation (“we”, “us”, “our”) is a non‑profit organization based in India working to promote cyber safety, digital literacy, and cybercrime awareness, including through our flagship initiative Project CyberShield. This Privacy Policy explains how we collect, use, store, and protect personal information when you interact with us through our websites and online platforms.

This Privacy Policy applies to:

  • naksh.org
  • nakshfoundation.org
  • projectcybershield.in
  • projectcybershield.org (and any other subdomains we may operate)

By using our websites or submitting information to us, you agree to the practices described in this Privacy Policy.

1. Information We Collect

We may collect the following categories of information:

  • Contact information: name, email address, phone number, postal address, organization/college/school name, designation, and city/state.
  • Program and event information: details you provide when registering for webinars, workshops, courses, competitions, or awareness sessions (for example, class/semester, stream, college/university, age group, and areas of interest related to cyber safety).
  • Donor and supporter information: name, contact details, donation amount and date, preferred causes, and communication preferences; payment card details are handled by our secure payment gateway providers and are not stored in full on our systems.
  • Volunteer and partner information: information provided in volunteer sign‑up forms, partnership forms, or collaboration proposals.
  • Technical information: IP address, browser type, device information, pages visited, time and duration of visit, and referring URLs, collected through cookies and similar technologies.
  • Communications: content of emails, feedback forms, surveys, or other messages you send to us.

We do not intentionally collect personal information from children under 18 without appropriate consent from a parent, guardian, or responsible institution (such as a school). Where our programs involve school students, data is generally collected through teachers, schools, or parents, not directly from children.

2. How We Use Your Information

We use personal information for the following purposes:

  • To register you for webinars, workshops, training programs, and events, and to share access details and certificates.
  • To manage and acknowledge donations, issue receipts, maintain statutory records, and share impact updates with donors.
  • To send cyber awareness content, newsletters, program updates, and invitations to future initiatives, where you have opted to receive such communications.
  • To coordinate volunteers, speakers, academic partners, and institutional collaborations.
  • To respond to your queries, feedback, or support requests.
  • To operate, maintain, and improve our websites, including monitoring usage patterns and preventing misuse or security incidents.
  • To comply with applicable laws and regulations, including accounting, audit, and data protection requirements.

We will not use your personal information for purposes that are materially different from those described here without informing you and, where required, obtaining your consent.

3. Legal Basis and Consent

Where Indian data protection law requires a legal basis, we process your personal information based on one or more of the following:

  • Your consent, for example when you subscribe to our mailing list or submit optional information in forms.
  • Performance of a contract or to take steps at your request, such as processing a registration or donation.
  • Compliance with legal obligations, including obligations under Indian law related to records, taxation, and regulatory reporting.
  • Our legitimate interests as a non‑profit organization, such as running awareness programs, managing supporters and volunteers, ensuring cyber security, and improving our services, balanced against your rights and expectations.

Where we rely on consent, you may withdraw your consent at any time by contacting us or using the unsubscribe mechanism provided.

4. Donor and Supporter Privacy

We value the trust of our donors and supporters and are committed to protecting their information.

  • We do not sell, rent, or trade donors’ or supporters’ personal information with any other organization.
  • We do not send mailings to our donors on behalf of other organizations.
  • If donations are processed through third‑party payment service providers, donor information is used only for purposes necessary to process the donation and comply with law.

You may contact us at any time to update your donor information or to request that we limit certain types of communication.

5. How We Share Your Information

We limit sharing of personal information to what is necessary and proportionate.

We may share information in the following situations:

  • Service providers: with trusted third‑party vendors who perform services for us, such as payment processing, email delivery, event registration tools, website hosting, or analytics. These service providers are expected to protect your information and use it only to provide services to us.
  • Partners and collaborators: limited information may be shared with institutional partners (for example, colleges, schools, event co‑hosts) where necessary for managing a joint program, issuing certificates, or complying with reporting requirements, and only to the extent reasonably necessary.
  • Legal and compliance: when required by law, regulation, court order, or government authority, or when we believe disclosure is necessary to protect our rights, safety, or that of others.

We do not permit third parties to use your personal information for their own marketing purposes without your explicit consent.

6. Cookies and Analytics

Our websites may use cookies and similar technologies to:

  • Enable core site functionality and security.
  • Remember your preferences and improve user experience.
  • Understand how visitors use our sites so we can improve our content and design.

We may use third‑party analytics tools (such as Google Analytics) that collect aggregated information about website usage. These tools operate under their own privacy policies and may set their own cookies.

Most web browsers allow you to control cookies through settings. If you disable cookies, some website features may not work as intended.

7. Data Security

We use reasonable physical, technical, and organizational measures to protect personal information from unauthorized access, loss, misuse, or alteration. These may include:

  • Use of secure servers and encryption (such as HTTPS) for data transmission.
  • Role‑based access controls and limited access to personal data on a need‑to‑know basis.
  • Internal awareness on data protection and responsible handling of personal data, aligned with our cyber safety mission.

Despite our efforts, no method of transmission or storage is completely secure. We cannot guarantee absolute security, but we strive to follow good practices recommended for nonprofits and Indian organizations.

8. Data Retention

We retain personal information only as long as necessary for the purposes described in this Privacy Policy or as required by Indian law (for example, for financial record‑keeping, audit, and taxation).

When personal information is no longer needed, we will delete it or anonymize it, subject to any legal obligations to retain records for a longer period.

9. Your Rights and Choices

Depending on applicable law and your relationship with us, you may have the right to:

  • Request access to the personal information we hold about you.
  • Request correction of inaccurate or incomplete information.
  • Request deletion of your information in certain circumstances.
  • Object to or restrict certain kinds of processing, such as direct email communications.
  • Withdraw consent where processing is based on your consent.

To exercise these rights or update your information, you can contact us using the details in the “Contact Us” section below. We may need to verify your identity before responding to your request.

You may also opt out of our email communications at any time by clicking the “unsubscribe” link in our emails or writing to us.

10. Third‑Party Websites and Social Media

Our websites may link to third‑party websites, tools, or social media platforms (such as YouTube, LinkedIn, or event registration platforms). These external sites are governed by their own privacy policies, and we are not responsible for their practices.

We encourage you to review the privacy policies of any external websites you visit.

11. International Transfers

Our primary operations and servers are located in India. If we use service providers or tools that process data outside India, your information may be transferred to and processed in those countries, which may have different data protection standards.

Where required, we will take steps to ensure that any such transfers comply with applicable Indian law and that appropriate safeguards are in place.

12. Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in law, technology, or our activities. When we do so, we will revise the “Last updated” date at the top of this page.

In case of significant changes, we may also provide a more prominent notice on our websites.

13. Contact Us

If you have any questions, concerns, or requests about this Privacy Policy or how we handle your personal information, please contact:

Naksh Foundation
Email: hello@naksh.org
Website: naksh.org | nakshfoundation.org | projectcybershield.in | projectcybershield.org