Opening Hours : Monday to Friday - 10:30 AM to 6:10 PM        Office No. +91 63560 37680   

  • admission@kaushalyaskilluniversity.ac.in
  • Log In
Logo

KAUSHALYA: THE SKILL UNIVERSITY

Privacy Policy & Student Data Usage Notice

Effective Date: June 1, 2026 | Last Updated: June 2026

Policy Owner Registrar's Office, Kaushalya: The Skill University
Applicable Law Digital Personal Data Protection (DPDP) Act, 2023 (India); IT Act, 2000; UGC Guidelines
Governing Jurisdiction Gujarat, India
Data Protection Officer sysadmin@kaushalyaskilluniversity.ac.in
Website https://kaushalyaskilluniversity.ac.in
Review Cycle Annual (or upon regulatory change)

Introduction

Kaushalya: The Skill University (hereinafter referred to as "KSU" or "the University") is a State University established by the Government of Gujarat under the Kaushalya: The Skill University Act, 2021. The University is committed to protecting the privacy and personal data of all students, faculty, staff, applicants, and website visitors.

This Privacy Policy is issued in compliance with the Digital Personal Data Protection (DPDP) Act, 2023, the Information Technology Act, 2000, and other applicable regulations issued by the University Grants Commission (UGC) and the Ministry of Education, Government of India.

By using our website, portals, or services, you acknowledge that you have read and understood this policy.

1. Website Usage & Information Collection

When you visit and interact with our official website (https://kaushalyaskilluniversity.ac.in) and associated portals, we collect information to improve user experience, manage admissions, and secure our digital infrastructure.

A. Data You Provide Voluntarily

  • Admissions & Inquiry Forms: Name, email address, phone number, academic transcripts, and personal statement data submitted via portals.
  • Student/Faculty Portals: Login credentials (usernames, passwords), official communications, and profile details.
  • Event Registrations/Newsletters: Contact details for campus events or university updates. Subscription to newsletters is optional and can be withdrawn at any time.

B. Automated Data Collection (Cookies & Analytics)

  • Log Files: IP addresses, browser type, Internet Service Provider (ISP), date/time stamps, and referring/exit pages — collected for network security and server diagnostics only.
  • Essential Cookies: Used to maintain user sessions on our Learning Management System (LMS) and student portals. These are strictly necessary and cannot be disabled.
  • Analytics Cookies (Optional): Used to analyze website traffic and improve our services. You may opt out of analytics cookies via the cookie preference banner when you first visit our website.
  • No third-party advertising cookies are placed on our website.

C. Third-Party Links

Our website may contain links to affiliated institutes, partner organizations, and external bodies. KSU is not responsible for the privacy practices of these external websites. We encourage you to review their privacy policies before submitting any personal data.

2. Student Data Usage & Protection

The University processes student personal and academic data solely for educational, administrative, and statutory purposes in accordance with the DPDP Act, 2023.

A. Purpose of Processing Student Data

We collect and process data regarding enrollment, academic performance, and campus life to:

  • Administer admissions, registration, examinations, and grading.
  • Provide campus services including library access, hostel allotments, IT services, and Wi-Fi access.
  • Facilitate training, placements, and career counseling services.
  • Issue official degrees, transcripts, certificates, and diplomas.
  • Comply with mandatory regulatory reporting to UGC, Ministry of Education, and the Government of Gujarat.
  • Respond to RTI (Right to Information) requests as required by law.

B. Categories of Student Data Managed

  • Identifiable Information: Date of birth, gender, nationality, Aadhaar number, and Passport number (where applicable).
  • Academic Records: Enrollment numbers, course registrations, attendance logs, internal assessments, and final examination results.
  • Financial Data: Fee payment history, scholarship applications, and bank account details for refunds — processed under strict security protocols.
  • Health/Medical Data (if applicable): Only collected where required for healthcare services, disability accommodations, or laboratory training programs. Handled with extra care as sensitive personal data under the DPDP Act.

C. Processing of Minor Students' Data

In compliance with Section 9 of the DPDP Act, 2023, for students who are minors (under 18 years of age at the time of admission), the University will:

  • Obtain verifiable consent from a parent or lawful guardian before processing personal data.
  • Not engage in behavioral monitoring or targeted advertising directed at minors.
  • Apply additional safeguards to ensure the welfare and privacy of minor students.

3. Legal Basis for Processing (DPDP Act, 2023)

The University processes personal data on the following legal grounds as recognized under the Digital Personal Data Protection Act, 2023:

  • Consent: For optional services such as newsletters, placement tracking, and non-mandatory communications.
  • Legitimate Use for State Functions: Processing necessary to perform functions of the State and for compliance with laws — applicable to examination management, regulatory reporting, and statutory obligations.
  • Legal Obligation: Processing required to comply with orders from government authorities, courts, or law enforcement agencies.
  • Vital Interests: In emergency situations involving the health or safety of a student or staff member.

4. Data Sharing and Disclosure

The University does not sell, rent, or trade personal data to any third party. Data is shared only under the following strictly defined conditions:

  • Statutory & Regulatory Bodies: Mandatory reporting to UGC, Ministry of Education, AICTE, Government of Gujarat, and verification authorities.
  • Authorised Service Providers: Trusted vendors managing IT infrastructure, payment gateways, or LMS software — under binding confidentiality and data processing agreements.
  • Placement & Recruitment: Sharing relevant academic profiles with potential employers during official campus placement drives, subject to written student consent and opt-in.
  • Legal Requirements: When required by a valid court order, law enforcement request, or applicable statute — disclosures are limited to the minimum necessary.
  • Emergency Disclosures: In situations involving immediate risk to life or campus security, data may be shared with relevant authorities without prior consent.

Any third-party service provider receiving personal data is contractually bound to process such data only for the specified purpose, maintain confidentiality, and implement appropriate security measures.

5. Data Security Architecture

The University implements robust administrative, technical, and physical security measures to protect personal and academic data against unauthorized access, loss, alteration, or disclosure.

  • Encryption: SSL/TLS encryption is used for all data transmission across portals, including during fee payments and login.
  • Access Control: Role-Based Access Control (RBAC) ensures that student records are accessible only to authorized staff and faculty for official duties.
  • Incident Response: In the event of a personal data breach that is likely to harm affected individuals, the University will notify the Data Protection Board of India as required under the DPDP Act, 2023, and will inform affected data principals without undue delay.
  • Data Minimisation: Only data that is necessary for the stated purpose is collected and retained.

Data Retention

  • Student Academic Records: Retained permanently as historical records for degree verification and alumni purposes.
  • Application Data (Non-admitted Candidates): Purged securely within 12 months of the conclusion of the relevant admissions cycle.
  • Website Log Files: Retained for up to 90 days for security monitoring, then deleted.
  • Cookie/Analytics Data: Retained for up to 12 months.

6. Your Rights as a Data Principal (DPDP Act, 2023)

Under the Digital Personal Data Protection Act, 2023, students and users have the following rights regarding their personal data:

  • Right to Access Information: You may request a summary of the personal data we hold about you and how it has been processed.
  • Right to Correction & Erasure: You may request correction of inaccurate or incomplete data, or erasure of data that is no longer necessary for the purpose it was collected — subject to statutory retention requirements.
  • Right to Grievance Redressal: You have the right to have your grievance addressed by our Data Protection Officer within a reasonable timeframe.
  • Right to Nominate: You may nominate another individual to exercise your rights in the event of your death or incapacity.
  • Right to Consent Withdrawal: For services based on your consent (such as newsletters or optional placement tracking), you may withdraw consent at any time. Withdrawal will not affect lawfulness of processing prior to withdrawal.
  • Right to Complain: If your grievance is not resolved satisfactorily, you have the right to escalate your complaint to the Data Protection Board of India.

7. Data Protection Officer (DPO)

In accordance with the DPDP Act, 2023, Kaushalya: The Skill University has designated a Data Protection Officer to oversee compliance with this policy and to address data-related grievances.

Designation Data Protection Officer (DPO)
Office Registrar's Office, Kaushalya: The Skill University
Email sysadmin@kaushalyaskilluniversity.ac.in
Address Block-3, VGEC Campus, Chandkheda, Ahmedabad – 382424, Gujarat, India
Response Time Within 30 days of receipt of a written request

You may also submit a grievance via the Student Grievance Redressal Cell available on our website.

8. Changes to This Policy

The University reserves the right to update or modify this Privacy Policy at any time to reflect changes in law, regulatory guidance, or our data practices. When material changes are made:

  • The updated policy will be published on our website with a revised "Last Updated" date.
  • For significant changes affecting students' rights, a notice will be sent to registered email addresses and posted on the student portal.
  • Continued use of our services after the effective date of any update constitutes acceptance of the revised policy.

We encourage all students and visitors to review this policy periodically.

9. Governing Law & Jurisdiction

This Privacy Policy is governed by and construed in accordance with the laws of the Republic of India, including the Digital Personal Data Protection Act, 2023, the Information Technology Act, 2000, and applicable UGC and Ministry of Education guidelines. Any disputes arising under this policy shall be subject to the jurisdiction of the courts in Ahmedabad, Gujarat, India.

Contact Information

For questions or concerns regarding this policy, please contact:

Email: sysadmin@kaushalyaskilluniversity.ac.in

Phone: +91 63560 37680

Website: kaushalyaskilluniversity.ac.in

↑ Back to Top