Privacy Policy

At CogniDarn Therapeutics International Pvt Ltd (“CogniDarn,” “we,” “us,” or “our”), we are deeply committed to safeguarding the privacy, dignity, and personal data of every individual who interacts with us — especially the children and families we serve. This Privacy Policy explains how we collect, use, store, share, and protect your personal information when you visit our website, purchase our products, or engage with our clinical and educational services.

​

This Policy is compliant with the Digital Personal Data Protection (DPDP) Act, 2023 (India), the Information Technology Act, 2000, and applicable rules thereunder. By using our website or services, you acknowledge that you have read and understood this Privacy Policy and consent to the practices described herein.

​

If you do not agree with this Policy, please discontinue use of our website and services.

This Privacy Policy applies to:

• Visitors to our website (www.cognidarn.com)

• Parents, guardians, and caregivers who purchase our digital products or enrol in our programs

• Participants in our live and recorded workshops, webinars, and short courses

• Clients who engage with our clinical services, including assessments, consultations, and neural integration planning

• Children whose developmental data is shared with us by their parent or guardian for the purpose of clinical services

Where information is provided about a minor (any individual under 18 years of age), we treat such data with the highest level of sensitivity and protection, as described in Section 7 of this Policy.

We collect personal data in two ways: directly from you, and automatically through your use of our website.

​

2.1 Information You Provide Directly

When you register, purchase, or communicate with us, you may provide:

• Identity & Contact Information: Your full name, email address, phone number, city/state, and postal address.

• Account Information: Username and password if you create an account on our platform.

• Payment Information: Billing name, billing address, and payment method details (processed securely via third-party payment gateways; we do not store full card details).

• Child & Developmental Information: Details about your child including their name, date of birth, gender, diagnosed or suspected conditions, developmental history, behavioural patterns, therapy history, school environment, and sensory profile — shared by you for the purpose of assessments, reports, or program enrolment.

• Communication Records: Messages, emails, intake forms, feedback forms, and any correspondence you send us.

• Event Participation Data: Registration details, attendance records, and any information shared during group workshops or webinars (noting that recording by attendees is strictly prohibited under our Terms and Conditions).

2.2 Information Collected Automatically

When you visit our website, we may automatically collect:

• Technical Data: IP address, browser type, operating system, device type, and screen resolution.

• Usage Data: Pages visited, time spent on pages, links clicked, and navigation paths within our website.

• Cookie Data: Information collected through cookies, pixels, and similar tracking technologies (see Section 9 for our Cookie Policy).

We use this information to improve our website, understand user behaviour, and ensure technical performance.

CogniDarn uses the personal data we collect for the following specific and lawful purposes:

​

3.1 Delivery of Products & Services

• Processing your purchase and granting access to digital products (e-books, video series, music series, courses).

• Scheduling, confirming, and delivering workshop, webinar, or program participation.

• Conducting clinical assessments and preparing Neuro-Sensory Reports and Neural Integration Plans.

• Facilitating consultations between you and our clinical team.

3.2 Account & Communication Management

• Creating and managing your account on our platform.

• Sending transactional communications: purchase confirmations, booking confirmations, invoices, and service updates.

• Responding to your enquiries, feedback, or support requests.

3.3 Clinical & Therapeutic Purposes

• Reviewing and interpreting developmental histories and assessment data to prepare clinical documents.

• Tracking progress where applicable across multi-session programs or follow-up consultations.

• Sharing relevant clinical information internally among authorised CogniDarn clinicians involved in your case.

3.4 Service Improvement & Research

• Analysing anonymised, aggregated usage data to improve our website, content, and service quality.

• Conducting internal research and program evaluation using de-identified data to improve therapeutic outcomes. No identifiable personal data is used in any publishable research without explicit, separate written consent.

3.5 Legal & Compliance Obligations

• Maintaining records as required by applicable law.

• Responding to lawful requests from regulatory or governmental authorities.

• Protecting the rights, safety, and interests of CogniDarn, our clients, and the public.

Under the Digital Personal Data Protection (DPDP) Act, 2023, we process your personal data on the following lawful bases:

​

• Consent: You have explicitly consented to the collection and use of your data when using our website, completing intake forms, or purchasing our services. You may withdraw consent at any time, subject to the conditions in Section 10.

• Contractual Necessity: Processing is necessary to fulfil the products and services you have purchased from us.

• Legitimate Interests: We process certain data (such as anonymised usage analytics) where it is in our legitimate interest to improve our services, provided this does not override your rights.

• Legal Obligation: We may process your data to comply with applicable laws, court orders, or regulatory directives.

CogniDarn does not sell, rent, or trade your personal data to third parties. We share your information only in the following limited and necessary circumstances:

​

5.1 Service Providers & Technology Partners

We work with trusted third-party vendors to operate our business. These include:

• Payment gateway providers (for secure transaction processing)

• Email and communication platforms (for transactional and operational communications)

• Website hosting and cloud storage providers

• Learning management system (LMS) or course platform providers

All such vendors are contractually obligated to process your data only as instructed by us, maintain appropriate security standards, and not use your data for their own purposes.

5.2 Clinical Collaboration

In some cases, and only with your explicit prior consent, we may share relevant clinical summaries or reports with:

• External therapists, paediatricians, or educators nominated by you to form part of your child’s broader support team.

We will never share clinical information with any external party without your knowledge and consent.

5.3 Legal Requirements

We may disclose your personal data if required to do so by law, court order, or governmental authority, or if we believe in good faith that such disclosure is necessary to:

• Comply with a legal obligation

• Protect and defend the rights or property of CogniDarn

• Prevent or investigate possible wrongdoing in connection with our services

• Protect the personal safety of users or the public

5.4 Business Transfers

In the event of a merger, acquisition, restructuring, or sale of assets, your personal data may be transferred to the relevant successor entity. You will be notified in advance of any such transfer and of any changes to this Privacy Policy that may result.

6.1 Where Your Data Is Stored

Your personal data is stored on secure servers located in India. Where any data is processed or stored by third-party vendors located outside India, we ensure appropriate data transfer safeguards are in place in accordance with applicable law.

6.2 How We Protect Your Data

We implement industry-standard technical and organisational security measures to protect your personal data from unauthorised access, disclosure, alteration, or destruction. These include:

• SSL/TLS encryption for data transmitted via our website

• Encryption of stored sensitive clinical data, particularly information relating to minors

• Role-based access controls, ensuring only authorised clinical and administrative personnel can access personal or clinical data

• Regular security reviews and staff data protection training

While we take all reasonable precautions, no method of transmission or storage over the internet is entirely secure. We cannot guarantee absolute security, but we are committed to notifying you promptly in the event of a data breach that affects your personal data.

6.3 Data Retention

We retain your personal data for as long as is necessary to fulfil the purposes described in this Policy, or as required by law. Specific retention periods include:

• Transactional & Account Data: Retained for a minimum of 3 years following your last transaction or account activity, as required for financial and legal compliance.

• Clinical Data (including child developmental records): Retained for a minimum of 7 years from the date of last clinical engagement, in accordance with best practice standards for therapeutic records. For records relating to minors, data may be retained until the child reaches the age of 25, or for 7 years from last contact, whichever is later.

• Marketing & Communication Preferences: Retained until you withdraw your consent or unsubscribe.

• Website Usage & Analytics Data: Retained in anonymised form for up to 2 years.

Once data is no longer required, it is securely deleted or anonymised.

CogniDarn serves children with neurodevelopmental conditions. As such, the protection of children’s personal and clinical data is of paramount importance to us.

​

• All clinical information pertaining to a child — including their name, date of birth, diagnosis, developmental history, sensory profile, and assessment findings — is classified as sensitive personal data and handled with the highest standard of confidentiality and care.

• Data about a child is collected only from, and shared only with, their parent or legal guardian. We do not solicit data directly from children.

• Children’s clinical data is encrypted in storage, accessible only to authorised clinical team members with a direct therapeutic role in that child’s care.

• Children’s data is never used for marketing, profiling, advertising, or shared with any third party without explicit written parental or guardian consent.

• In group settings (workshops, webinars), participants are reminded of their obligation to maintain confidentiality regarding information shared about other children. CogniDarn itself will not disclose any child’s information to other group participants.

Where you share information about your child with us, you confirm that you are the child’s parent or legal guardian and have the authority to provide such consent on their behalf.

Under the Digital Personal Data Protection (DPDP) Act, 2023, and other applicable data protection laws, you have the following rights with respect to your personal data:

​

• Right to Access: You have the right to request a copy of the personal data we hold about you and to receive information about how it is being used.

• Right to Correction: You have the right to request that inaccurate or incomplete personal data be corrected or updated.

• Right to Erasure: You have the right to request deletion of your personal data where it is no longer necessary for the purposes for which it was collected, subject to our legal retention obligations (see Section 6.3).

• Right to Withdraw Consent: Where processing is based on your consent, you may withdraw your consent at any time. Withdrawal of consent will not affect the lawfulness of processing based on consent before its withdrawal.

• Right to Grievance Redressal: You have the right to raise a complaint or concern regarding the handling of your personal data. We will respond to all grievances within a reasonable timeframe (see Section 12).

• Right to Nominate: Under the DPDP Act, 2023, you may nominate another individual to exercise your data rights on your behalf in the event of death or incapacity.

To exercise any of the above rights, please contact our designated Data Grievance Officer (see Section 12).

9.1 What Are Cookies?

Cookies are small text files placed on your device when you visit a website. They allow the website to recognise your device and remember certain information about your visit.

9.2 How We Use Cookies

We use the following types of cookies on our website:

• Essential Cookies: Required for the basic functioning of our website (e.g., maintaining your login session or shopping cart). These cannot be disabled.

• Analytics Cookies: Used to understand how visitors interact with our website (e.g., pages viewed, time on site). This data is collected in anonymised, aggregated form using tools such as Google Analytics.

• Preference Cookies: Allow our website to remember your settings and preferences (e.g., language, region).

• Marketing Cookies: Used to deliver relevant content or communications where you have consented to receive marketing from us.

9.3 Managing Cookies

You can manage or disable cookies through your browser settings at any time. Please note that disabling certain cookies may affect the functionality of our website. For more information on how to manage cookies, please refer to your browser’s help documentation.

You may withdraw your consent to data processing at any time by contacting us at the details provided in Section 12. Please be aware of the following:

• Withdrawal of consent will not affect the lawfulness of processing carried out prior to withdrawal.

• If you withdraw consent for data processing that is necessary to deliver a product or service you have purchased, we may no longer be able to fulfil that service, and no refund will be due on that basis alone.

• To unsubscribe from any marketing or newsletter communications, please use the unsubscribe link provided in each communication, or contact us directly. We will process such requests within 10 business days.

• Requests for deletion of clinical records relating to minors may be subject to mandatory retention periods as described in Section 6.3.

Our website may contain links to external websites, partner organisations, or embedded content (such as social media). This Privacy Policy applies solely to CogniDarn’s website and services. We are not responsible for the privacy practices or content of any third-party websites. We encourage you to review the privacy policies of any external sites you visit.

In accordance with the Digital Personal Data Protection (DPDP) Act, 2023, and the Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Rules, 2021, we have designated a Data Grievance Officer to address any concerns, complaints, or requests relating to your personal data.

​

Data Grievance Officer

Name: Niranjan Kulkarni

Organisation: CogniDarn Therapeutics International Pvt Ltd

📧 Email: nkulkarni@cognidarn.com

🌐 Website: https://www.cognidarn.com

📍 Address: Pune, Maharashtra, India

​

We will acknowledge your grievance within 3 business days and endeavour to resolve it within 30 business days of receipt.

CogniDarn reserves the right to update or revise this Privacy Policy at any time. Any changes will be posted on this page with a revised “Last Updated” date. For material changes that affect how we handle your personal data, we will notify you via email or a prominent notice on our website prior to the change taking effect. Your continued use of our website or services after any changes constitutes your acceptance of the revised Policy.

We encourage you to review this Policy periodically to stay informed about how we are protecting your information.