Privacy Policy

We collect information that you provide directly to us:

• Account Information: Name, email address, password, college name, and profile details when you register
• Event Data: Event registrations, submissions, and participation history
• Payment Information: Transaction details processed securely through Razorpay (we do not store card details)
• Usage Data: How you interact with our platform, pages visited, and time spent
• Device Information: IP address, browser type, operating system, and device identifiers
• API Platform Data: API keys, event configurations, registration forms, and judge assignments for platform users

We use the collected information for the following purposes:

• To provide, maintain, and improve our services
• To manage your account and provide customer support
• To process event registrations and payments
• To send you updates, security alerts, and support messages
• To personalize your experience and deliver relevant content
• To monitor and analyze trends, usage, and activities
• To detect, investigate, and prevent fraudulent transactions and security breaches
• To comply with legal obligations and enforce our terms
• For API Platform users: To facilitate event management, judge scoring, and analytics

If you are in the European Economic Area (EEA), our legal basis for processing your data includes:

• Contract Performance: Processing necessary to fulfill our agreement with you
• Legal Obligation: Processing required by law (e.g., tax records)
• Legitimate Interests: Processing for our legitimate business interests
• Consent: Processing based on your explicit consent (which you may withdraw at any time)

We do not sell your personal information. We may share your data with:

• Service Providers: Third-party vendors who perform services on our behalf (hosting, payment processing via Razorpay, analytics)
• Event Organizers: When you register for an event, relevant information is shared with organizers
• Judges: For evaluation purposes in hackathons and competitions
• Legal Requirements: When required by law or to protect rights and safety
• Business Transfers: In connection with a merger, acquisition, or sale of assets

We implement appropriate technical and organizational measures to protect your data:

• Encryption in transit using HTTPS/TLS protocols
• Secure storage with industry-standard encryption
• Regular security audits and vulnerability assessments
• Access controls and authentication mechanisms
• Razorpay PCI-DSS compliant payment processing
• API key rotation and secure token management for platform users
• Employee training on data protection best practices

Note: No method of transmission over the Internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

You have the following rights regarding your personal information:

• Access: Request a copy of your personal data
• Correction: Update or correct inaccurate information
• Deletion: Request deletion of your data (subject to legal obligations)
• Portability: Receive your data in a structured, machine-readable format
• Opt-Out: Unsubscribe from marketing communications
• Restriction: Limit how we process your data
• Object: Object to certain processing activities

To exercise these rights, contact us at privacy@hackbytecodex.com

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place:

• Standard Contractual Clauses approved by regulatory authorities
• Adequacy decisions for countries with equivalent data protection laws
• Binding corporate rules for intra-group transfers

We retain your personal information for as long as necessary to:

• Provide our services and maintain your account
• Comply with legal obligations (typically 7 years for financial records)
• Resolve disputes and enforce our agreements

When data is no longer needed, we securely delete or anonymize it.

Our services are not directed to individuals under 18. We do not knowingly collect personal information from children. If we discover we have collected data from a child without parental consent, we will delete it promptly.

We may update this Privacy Policy periodically. We will notify you of material changes by:

• Posting the updated policy on our website
• Sending an email notification
• Displaying a notice on our platform

The "Last Updated" date at the top of this page indicates when changes were made.

For questions, concerns, or complaints about this Privacy Policy or our data practices, contact us:

• Email: privacy@hackbytecodex.com
• Address: HackByteCodex Privacy Team, [Your Business Address]
• Grievance Officer: [Name], Email: grievance@hackbytecodex.com

Last Updated: March 1, 2026