Privacy Policy

Last Updated: 08/01/2026

This Privacy Policy (“Policy”) describes how THINK AND APPLY (“Company”, “we”, “us”, or “our”) collects, uses, stores, processes, and protects information in connection with access to and use of the website https://ossa.in and all related software, applications, dashboards, and services (collectively, the “Platform”).

This Policy forms an integral part of the Terms of Service and shall be read in conjunction therewith.

1. Applicability and Scope

1.1 This Policy applies solely to educational institutions (“Institutions”) that access or use the Platform and to users who access the Platform under authority granted by such Institutions.

1.2 Individual students, parents, guardians, teachers, or staff members are not independent customers of the Company.

1.3 The Platform is intended for use only within India.

2. Role of the Company

2.1 The Company acts solely as a technology service provider, facilitating digital tools for institutional management.

2.2 The Institution remains the primary controller and decision-maker with respect to what data is collected, the purpose of data usage, and who may access such data.

2.3 The Company processes data strictly on instructions received from the Institution and does not exercise independent control over such data.

3. Information Collected

3.1 Information Provided by Institutions

The Platform may process information uploaded or generated by Institutions, including:

  • student records;
  • staff and teacher details;
  • academic, attendance, and fee-related data;
  • institutional configurations and settings.

3.2 User Account Information

For authentication and access control, the Platform may process:

  • names;
  • email addresses;
  • phone numbers;
  • user roles and permissions.

3.3 Technical and Usage Information

The Platform may automatically collect limited technical data such as IP addresses, browser type, device identifiers, and access logs.

Such information is used strictly for security, monitoring, and operational purposes.

4. Children’s Information

4.1 The Platform may be accessed by students below eighteen (18) years of age solely under authorization and supervision of the Institution.

4.2 The Company does not independently collect or verify parental or guardian consent.

4.3 The Institution bears sole responsibility for obtaining all required permissions and ensuring lawful access by minors.

4.4 The Platform does not engage in behavioural tracking, profiling, or targeted advertising of minors.

5. Purpose of Data Processing

  • providing and maintaining the Platform;
  • enabling institutional operations as configured by the Institution;
  • ensuring system security and integrity;
  • troubleshooting, analytics, and performance improvement;
  • complying with lawful orders or directions issued by competent authorities.

6. Data Sharing and Disclosure

6.1 The Company does not sell, rent, or trade personal information.

6.2 Information may be shared only with the Institution and its authorized users, service providers necessary for Platform operations, or when required by law.

6.3 All third-party service providers are contractually bound to maintain confidentiality and security.

7. Data Security

7.1 The Company implements reasonable technical and organizational measures including access controls, encryption where appropriate, audit logs, and secure hosting infrastructure.

7.2 No system can be guaranteed to be completely secure.

7.3 The Company shall not be liable for unauthorized access beyond its reasonable control.

8. Data Retention

8.1 Data is retained only while the Institution maintains an active account or subscription.

8.2 Upon termination or expiry, data may be retained for up to ninety (90) days and shall thereafter be permanently deleted and irretrievable.

9. User Rights and Institutional Control

9.1 All requests relating to access, correction, or deletion of data must be routed through the Institution.

9.2 The Company shall act only upon instructions received from the Institution.

10. Cookies and Tracking Technologies

10.1 The Platform may use essential cookies solely for authentication, session management, and security.

10.2 The Platform does not use cookies for advertising or behavioural profiling.

11. Disclaimer

11.1 The Company does not warrant accuracy or completeness of data uploaded by Institutions or uninterrupted operation.

11.2 The Institution remains solely responsible for the legality and integrity of all data processed.

12. Changes to this Policy

12.1 The Company reserves the right to modify this Policy at any time.

12.2 Continued use of the Platform constitutes acceptance of the revised Policy.