Privacy Policy
Last updated: 13 June 2026
Student Counseling Portal (SCP) is an initiative of Noble Cause Society (NCS). Personal information collected during psychometric evaluations is processed by NCS.
Student Counseling Portal ("we", "our", or "the platform"), powered by Noble Cause Society, is committed to protecting the personal data of students. This policy explains how we collect, use, store, and protect your information in compliance with the Digital Personal Data Protection (DPDP) Act, 2023.
1. Data We Collect
We collect only the minimum data necessary to provide the career assessment service:
- •APAAR ID — used only to link your assessment to your academic record. The raw ID is never stored; we store only a one-way cryptographic hash (SHA-256).
- •State & District codes — your state and district of residence, used for regional analytics.
- •Assessment responses — your answers to the psychometric questions, used to calculate your career profile.
- •Time-spent data — milliseconds spent on each question, used for cognitive scoring.
We do not collect your name, mobile number, email address, or any other contact information unless you voluntarily provide it for counselling booking.
2. How We Use Your Data
- •To compute your RAISEC, reasoning, and behavioral assessment scores.
- •To generate personalized career recommendations and roadmaps.
- •To produce anonymized, aggregated district-level and state-level analytics for educational planning. Individual data is never shared.
- •To prevent duplicate test attempts using the hashed APAAR token.
3. Data Retention
Your assessment data is retained for 3 years from the date of completion, in line with DPDP Act requirements. After this period, all identifiable data is automatically deleted. Aggregated, anonymized analytics may be retained indefinitely for research purposes.
4. Data Security
We implement industry-standard security measures:
- •All data is transmitted over HTTPS/TLS encryption.
- •APAAR IDs are hashed with SHA-256 before storage — the original ID cannot be recovered.
- •Session tokens are signed JWTs with a 24-hour expiry.
- •Database access is protected by Row Level Security (RLS) policies.
5. Your Rights (DPDP Act 2023)
Under the DPDP Act, you have the right to:
- •Access — request a summary of data we hold about you.
- •Correction — request correction of inaccurate data.
- •Erasure — request deletion of your data before the 3-year retention period ends.
- •Grievance redressal — raise concerns with our Data Protection Officer.
To exercise any of these rights, contact us at privacy@noblecausesociety.org
6. Consent
By entering your APAAR ID and taking the assessment, you consent to the collection and use of your data as described in this policy. This consent is voluntary and may be withdrawn at any time by requesting data erasure.
7. Third Parties
We use the following third-party services, each bound by their own privacy policies:
- •Supabase — encrypted database hosting (servers in India region where available).
- •Vercel — application hosting and delivery.
- •Razorpay (coming soon) — payment processing for counselling sessions. No card data is stored on our servers.
We do not sell, rent, or share your personal data with any advertiser or third party for marketing purposes.
8. Changes to This Policy
We may update this policy periodically. Significant changes will be communicated via a notice on the platform. Continued use of the platform after changes constitutes acceptance of the updated policy.
Contact / Data Protection Officer
For privacy-related queries, erasure requests, or grievances:
Email: privacy@noblecausesociety.org
We aim to respond within 7 business days.