Back to Home

Privacy Policy

Last updated: March 11, 2025

Your privacy is important to us. This policy explains how QuiZA collects, uses, and protects your personal information.

1. Information We Collect

Personal Information

  • Registration Data: Name, email address, username, and Google account information (when using OAuth)
  • Profile Information: Username, profile picture, and study preferences
  • Contact Information: Email for verification, password resets, and platform notifications

Usage Data

  • Practice Activity: Questions answered, accuracy rates, attempts, time spent
  • Performance Metrics: Subject and chapter-wise accuracy, difficulty level performance
  • Streak & Session Data: Daily streaks, session durations, study patterns
  • Bookmark & Flag Data: Questions bookmarked or flagged for review
  • Mock Test Results: Scores, rankings, and performance in shared tests

Community & Interaction Data

  • Forum Posts: Questions asked, replies posted, and discussions participated in
  • @Mentions: Tags in forum posts and notifications received
  • Votes & Reactions: Upvotes, downvotes, and accepted answers
  • Telegram Integration: Notification preferences, Telegram ID, username, and interaction history with the QuiZA bot
  • Mock Tests: Created tests, share codes, and participant attempts

Technical Data

  • Device Information: Browser type, operating system, device type
  • IP Address: Used for rate limiting and security purposes
  • Cookies: Session management and preferences
  • Usage Analytics: Page views, feature interactions

Payment Information

We do not store payment card details. All transactions are processed securely through Razorpay, our payment gateway provider. We only retain:

  • Transaction IDs and payment confirmation
  • Subscription purchase history
  • Subscription expiration dates
  • Attempt labels (e.g., "May 2026", "September 2026")

2. How We Use Your Data

Your data is used to provide, maintain, and improve the QuiZA platform. We are committed to using your information responsibly and transparently.

Primary Uses

  • Service Delivery: Providing access to MCQs, mock tests, performance tracking, and all platform features
  • Personalization: Customizing your study experience, question recommendations, and progress tracking
  • Performance Analytics: Generating charts, graphs, and insights about your preparation journey
  • Streak & Gamification: Tracking daily streaks, achievements, and leaderboard rankings
  • Community Features: Enabling forum discussions, @mentions, and collaborative learning

Communication

  • Account Management: Email verification, password resets, and security notifications
  • Platform Updates: Feature announcements, improvements, and service notifications
  • Discussion Activity: Forum reply notifications, @mention alerts, and accepted answer confirmations
  • Telegram Notifications: Daily practice reminders, forum activity alerts, and quiz notifications via Telegram bot
  • Educational Content: Study tips, preparation strategies, and CA Final exam updates
  • Subscription Reminders: Expiration notices, renewal options, and payment confirmations

Improvement & Research

  • Platform Enhancement: Understanding feature usage to improve user experience
  • Question Quality: Analyzing question performance to maintain and improve content quality
  • Learning Analytics: Studying learning patterns to optimize study recommendations
  • Difficulty Calibration: Using aggregate data to refine question difficulty levels

Aggregated Analytics

We analyze anonymized, aggregated data to:

  • Calculate global accuracy percentiles and cutoffs
  • Generate global leaderboards and rankings
  • Determine question difficulty tiers
  • Identify common knowledge gaps among students

This data is completely anonymized and cannot be traced back to individual users.

3. Information Sharing

We respect your privacy and do not sell, rent, or trade your personal information. We only share data when necessary to provide our services or when legally required.

When We Share Information

  • Service Providers: Payment processors (Razorpay), email delivery services (Resend/ZeptoMail), and hosting providers only receive data necessary to perform their services
  • Legal Compliance: When required by law, court order, or government regulations
  • Platform Protection: To protect against fraud, security threats, or violation of our Terms of Service
  • Business Transfer: In the event of a merger, acquisition, or sale of assets (with notice to users)

Public & Community Data

Some information is publicly visible and shared with other users:

  • Public Profile: Username, profile picture, join date, and statistics (questions answered, accuracy rate)
  • Leaderboard Data: Ranking position, accuracy percentage, and performance metrics
  • Forum Posts: Questions asked, replies posted, and discussion contributions
  • Votes & Reactions: Upvotes/downvotes and accepted answers (anonymized stats)

Important: Do not share personal information in public forum posts that you wish to keep private.

What We NEVER Share

  • Email addresses (except with email service providers for delivery)
  • Payment card details (processed securely through Razorpay)
  • Passwords or authentication tokens
  • Individual performance data in identifiable form

4. Data Security

We implement comprehensive security measures to protect your data from unauthorized access, disclosure, or misuse.

Security Measures

  • Encrypted HTTPS connections (TLS 1.3)
  • Bcrypt password hashing (12 rounds)
  • JWT-based secure session management
  • Rate limiting to prevent brute force attacks
  • Database encryption at rest
  • Regular security audits and monitoring

Payment Security

All payments are processed through Razorpay, a PCI-DSS compliant payment gateway. We do not store or have access to:

  • Credit/debit card numbers
  • CVC/CVV codes
  • Expiry dates
  • Bank account details

Data Breach Protocol

In the unlikely event of a data breach:

  • We will notify affected users within 72 hours
  • Provide clear information about what data was compromised
  • Take immediate steps to contain and remediate the breach
  • Report to relevant authorities as required by law

Important Limitation

While we implement industry-standard security measures, no digital transmission or storage system is 100% secure. By using QuiZA, you acknowledge and accept inherent digital security risks.

5. Data Retention

We retain your data only as long as necessary for the purposes outlined in this policy, or as required by law.

Retention Periods

Data TypeRetention PeriodReason
Account InformationUntil account deletionTo maintain your profile and preferences
Question Attempts24 months after last activityTo provide performance history and prevent repetition
Performance Analytics24 months after last activityTo provide long-term progress tracking
Subscription Records7 years after expirationLegal and accounting requirements
Forum PostsUntil account deletion or post removalTo maintain community knowledge base
Anonymized AnalyticsIndefinitelyPlatform improvement and research

Account Deletion

You can request account deletion at any time by contacting us. Upon deletion:

  • Your profile and personal information will be removed within 30 days
  • Your forum posts will be anonymized (attributed to "Deleted User")
  • Some data may be retained in anonymized form for analytics
  • Data required for legal compliance will be retained as specified above

Data Portability

You can request an export of your data at any time. We provide your information in a structured, commonly used format (JSON/CSV) including:

  • Profile information and preferences
  • Question attempt history
  • Performance metrics and analytics
  • Subscription and payment records
  • Forum posts and contributions

6. Your Rights

Depending on your jurisdiction, you have certain rights regarding your personal data. We respect these rights and provide mechanisms to exercise them.

Your Data Rights

Right to Access

Request a copy of your personal data we hold

Right to Correction

Update inaccurate or incomplete personal information

Right to Deletion

Request deletion of your account and personal data

Right to Portability

Export your data in a machine-readable format

Right to Object

Opt-out of certain data processing activities

Right to Restrict Processing

Limit how we process your personal data

GDPR Compliance

For users in the European Economic Area (EEA), we comply with GDPR regulations:

  • Lawful basis for processing: Contract, Consent, Legitimate Interests
  • Data Protection Officer: Contact us via the methods below
  • Right to lodge a complaint with supervisory authorities

CCPA Compliance

For California residents, we comply with CCPA requirements:

  • You can request disclosure of data collection and sharing practices
  • You can request deletion of personal information (with certain exceptions)
  • You can opt-out of the sale of personal information (we do not sell data)
  • Non-discrimination for exercising CCPA rights

How to Exercise Your Rights

To exercise any of these rights:

  • Use the "Delete Account" feature in your profile settings
  • Contact us through the discussion forums or support channels
  • Email us at: support@quiza.in

We will respond to your request within 30 days. Identity verification may be required for security purposes.

7. Cookies & Tracking

We use cookies and similar tracking technologies to enhance your experience on QuiZA. By using our platform, you consent to their use.

Types of Cookies We Use

Essential Cookies

  • • Authentication & authorization
  • • Session management
  • • Security features

Functional Cookies

  • • Theme preferences (dark/light mode)
  • • Language settings
  • • Notification preferences

Performance Cookies

  • • Page load times
  • • Feature usage analytics
  • • Error tracking (anonymized)

Local Storage

  • • Quiz session state and progress
  • • Theme preferences (dark/light mode)
  • • Form inputs for auto-save

Managing Cookies

You can control cookie preferences through:

  • Browser settings (block or delete cookies)
  • QuiZA settings page (manage preferences)

Disabling essential cookies may prevent you from using certain features of the platform.

Third-Party Tracking

We do not use third-party advertising or tracking cookies. All tracking is limited to improving platform functionality.

8. Contact Us

We're here to help with any privacy-related questions or concerns. Our team is committed to addressing your inquiries promptly.

Contact Methods

Contact

For all inquiries:

support@quiza.in

General Support

For general questions:

support@quiza.in

In-App Support

Fastest response via discussion forums:

Visit Community Forum →

Response Time

  • General inquiries: Within 2 business days
  • Privacy-related requests: Within 30 days (as required by law)
  • Security incidents: Immediate response for verified threats

Data Protection Officer

For users in the EU/EEA, our Data Protection Officer can be reached at:

QuiZA Privacy Team
Email: dpo@quiza.in
Subject: DPO Request

⭐ Quick Tips

  • • Include your username for faster service
  • • Clearly describe your request or concern
  • • For data export requests, specify the data you need
  • • For deletion requests, confirm you understand the consequences

We're Committed to Your Privacy

QuiZA is designed as a privacy-first platform. We collect only what's necessary to provide exceptional service, protect your data with industry-standard security measures, and give you control over your information. Your trust is our most valuable asset.