Privacy Policy

This Privacy Policy explains how ADM Institute (“we,” “us,” “our”) collects, uses, shares, and safeguards the personal information you provide when you engage with our digital-marketing content, register for our free webinars, or interact with our Facebook Lead Ads and related Meta technologies. It is designed to satisfy:

• Meta’s Lead Ads Terms, Business Tools Terms, and Advertising Standards

• India’s Digital Personal Data Protection Act 2023 (DPDP Act)

• Applicable global frameworks such as the GDPR (EU/UK) and California’s CCPA/CPRA for cross-border audiences

By submitting your information via our website, webinar platforms, or Facebook/Instagram instant forms, you acknowledge that you have read and understood this Policy.

How and Why We Use Your Information

• Webinar Fulfilment – confirming your seat, sending reminders, distributing slide decks and certificates.

• Marketing Communications – delivering curated digital-marketing tips, course announcements, and special offers. You may opt out at any time via the unsubscribe link.

• Ad Targeting & Measurement – using Meta Pixel, Conversions API and custom audiences to serve relevant ads and track campaign performance.

• Analytics & Product Improvement – analysing aggregated trends to refine our curriculum and user experience.

• Legal & Compliance – maintaining records to comply with DPDP Act, tax regulations, or to defend legal claims.

Cookies & Tracking Technologies

We use first-party cookies and similar technologies (pixels, SDKs) to:

1. Remember your preferences and login state.

2. Analyse site traffic through tools such as Google Analytics.

3. Enable retargeting ads on Facebook/Instagram and partner networks.

A banner on first visit gives you clear choices to accept, reject, or customise non-essential cookies, fulfilling EU/UK GDPR and India’s forthcoming DPDP Rules on consent

Sharing and Disclosure

We never sell your personal data. We share it only with:

• Meta Platforms Ireland & Meta Inc. – to process lead forms and serve ads.

• Cloud Service & CRM Providers – secure email automation, webinar hosting, and analytics (all GDPR- & DPDP-compliant with Data-Processing Agreements).

• Regulators or Law-Enforcement – when legally required to satisfy court orders or prevent imminent harm.

All vendors are contractually bound to process data solely on our instructions and apply industry-standard security measures. 

International Data Transfers

Because we operate globally, your information may be stored on servers in India, the European Economic Area, or the United States. We rely on:

• Adequacy decisions or Standard Contractual Clauses (GDPR Chapter V) for EU transfers.

• Contractual safeguards plus DPDP Act obligations for outbound transfers from India

 Data Retention

• Leads & webinar records: 36 months from last engagement, unless you request earlier deletion.

• Cookie/Pixel data: 180 days (Meta default) then removed or anonymised.

• Transactional records: 8 years to meet statutory accounting duties.

Retention periods are reviewed annually per our documented policy to ensure we store data only as long as necessary for the purposes outlined

Your Privacy Rights

Depending on your jurisdiction, you may:

1. Access the personal data we hold about you.

2. Correct inaccurate or outdated information.

3. Withdraw consent or object to certain processing (e.g., email marketing, retargeting).

4. Delete your data (“right to erasure/forgetting”).

5. Request portability of your contact details.

To exercise any right, email privacy@adminstitute.in or submit the form at adminstitute.in/privacy-request. We will verify and respond within the timeframe mandated by DPDP Act (within 30 days) or GDPR (within one month)

 Children’s Data

Our content is directed to professionals aged 18+. We do not knowingly collect data from children under 18. If a parent or guardian believes we have inadvertently processed such data, please contact us for prompt deletion

Data Security

We implement technical and organisational measures including:

• TLS/SSL encryption in transit

• AES-256 encryption at rest

• Role-based access controls and multi-factor authentication

• Regular penetration testing and backup encryption

These controls align with ISO 27001 best practices and the DPDP Act’s “reasonable security safeguards” requirement

Third-Party Links

Our webinars or emails may reference external resources. Clicking those links is voluntary; their privacy practices are governed by their own policies, which we encourage you to review.

 Policy Updates

We may amend this Privacy Policy to reflect legal or technological changes. Material changes will be notified via email and a banner on our homepage at least 7 days before they take effect. Continued use of our services after that date constitutes acceptance.