BellGoBellGo
Back to HomePrivacy & Trust

Privacy Policy

Your data. Your control. Protected by design. Effective 15 Feb 2026.

1. Introduction

Welcome to Bellgo ("Company", "we", "our", "us").

Bellgo is a cloud-based School & College ERP platform designed to support educational institutions in managing academic, administrative, payroll, attendance, and communication workflows.

This Privacy Policy explains how personal data is processed across the following Bellgo platforms:

Institutional End-User Platforms

  • Faculty Mobile Application (attendance check-in/check-out)
  • Student Mobile Application
  • Faculty Web Portal (academic & payroll management)
  • Institutional ERP Web Dashboard

Internal Administrative Platform

  • Bellgo Super Admin Application (used strictly by authorized Bellgo personnel for support and system maintenance)

The Super Admin platform is not accessible to students, parents, or faculty.

2. Data Roles & Responsibilities

For all institutional data:

  • The Educational Institution acts as the Data Controller.
  • Bellgo acts as the Data Processor, processing data strictly according to institutional instructions.

The institution determines:

  • What data is collected
  • The lawful basis for processing
  • Whether biometric attendance is enabled
  • Payroll configurations and salary structures

Bellgo processes data solely to provide contracted ERP services.

3. Categories of Data Processed

3.1 Student Mobile Application

Used by students under institutional authorization. Data processed may include: Full name, Class and section, Academic performance records, Assignment submissions, Notifications and communication logs, Attendance status (view-only, not check-in based).

Students do not perform attendance check-in or check-out.

3.2 Faculty Mobile Application (Attendance Check-In / Check-Out Only)

The Faculty Mobile App is the only platform used for attendance marking. Data processed may include: Name and designation, Attendance check-in/out timestamps, GPS verification data (if enabled), Facial recognition data (if enabled by institution).

Attendance processing is restricted to faculty and staff members.

3.3 Faculty Web Portal (Academic + Payroll Management)

Used for: Academic management, Student record management, Performance evaluations, Administrative workflows, Payroll management, Salary structuring, Payslip generation, Leave management, Financial reporting. Payroll data may include: Salary structure, Allowances and deductions, Bank details (if configured), Tax-related information, Generated payslips, Leave balance affecting payroll.

Payroll processing is performed solely on institutional instruction.

3.4 Bellgo Super Admin Application (Internal Use Only)

Restricted to authorized Bellgo personnel for: Technical support, Debugging, Infrastructure monitoring, Subscription management, Security incident response. Super Admin access is: Role-restricted, Logged and audited, Used only when necessary.

Bellgo personnel do not access payroll or student data unless required for authorized support.

3.5 Location Data (Faculty Attendance Tracking)

We may collect and process real-time location data of faculty or staff members when this feature is enabled by the respective educational institution.

Location tracking is activated only after the user marks attendance (check-in) and continues until the user marks check-out. Location data is collected only during active working sessions (check-in to check-out) and is not collected continuously in the background outside of these periods.

The purpose of collecting location data includes:

  • Attendance verification
  • Monitoring working hours
  • Ensuring institutional compliance and operational visibility

Location data is:

  • Collected only with the user's explicit device permission
  • Accessible only to authorized personnel of the respective institution
  • Not used for advertising, profiling, or unrelated tracking purposes

Users may choose to disable location permissions from their device settings; however, doing so may impact the functionality of attendance-related features.

4. Facial Recognition & Biometric Data Processing

Bellgo provides an optional facial recognition attendance feature exclusively for faculty attendance within the Faculty Mobile App.

4.1 Nature of Processing

When enabled: A facial image may be captured during check-in or check-out. The image is processed using facial recognition infrastructure. A mathematical facial embedding (vector) is generated. The embedding is used solely for identity verification. These embeddings uniquely identify individuals and are treated as sensitive personal data.

4.2 Storage Model

  • Only encrypted facial embeddings (vectors) are retained.
  • Raw facial images are not retained beyond operational necessity unless explicitly configured by the institution.
  • Embeddings cannot be reverse-engineered into original facial images.
  • Biometric data is logically segregated from payroll and academic records.

4.3 Purpose Limitation

Biometric processing is strictly limited to: Faculty attendance verification, Identity authentication, Fraud prevention.

It is not used for: Student profiling, Marketing, Behavioral analytics, Cross-institution analysis.

4.4 Consent & Institutional Responsibility

Facial recognition attendance is enabled only upon institutional instruction. The institution is responsible for obtaining necessary employee consent. Bellgo processes biometric data strictly as a Data Processor.

4.5 Automatic Deletion

When a faculty member becomes inactive or is removed, associated biometric embeddings are automatically deleted. Upon institutional termination, biometric data is permanently deleted within a defined retention period. Bellgo does not retain biometric identifiers of inactive individuals.

5. How We Use Data

Data is processed strictly to: Provide ERP services, Manage faculty attendance, Manage payroll and payslips, Manage academic records, Enable institutional communication, Generate institutional reports, Maintain system security.

We may use location data specifically for attendance-related features, where enabled by the institution. Location data is collected only during active working sessions (check-in to check-out) and is not collected continuously in the background outside of these periods.

We do not sell or commercially exploit personal, payroll, or biometric data.

6. Data Security Measures

We implement: HTTPS/TLS encryption, Encryption at rest, Role-Based Access Control (RBAC), Audit logging, Secure infrastructure hosting, Logical segregation of biometric and payroll data, Access monitoring, Automatic deletion controls. Sensitive payroll and biometric data receive enhanced access restrictions.

7. Children's Data Protection

Bellgo processes student data solely under institutional authorization. Students do not perform biometric attendance or directly provide payroll or financial data. The institution is responsible for parental notice and consent where required.

8. Data Retention

Data is retained during active subscription, according to institutional configuration, and as required by law. Inactive faculty biometric data is automatically deleted. Payroll records are retained as instructed by the institution.

9. Data Sharing

We may share data only with: Authorized institutional users, Secure cloud infrastructure providers, Payment processors for subscription billing, or if required by law. We do not share payroll, biometric, or student data for advertising.

10. Legal Compliance

Bellgo aims to comply with Digital Personal Data Protection Act, 2023 (India), Information Technology Act, 2000, and applicable employment and education data regulations. We follow privacy-by-design and data minimization principles.

11. User Rights

Students, faculty, and parents should contact their institution for data access requests, corrections, and deletion requests. Institutions may contact Bellgo for technical assistance.

12. Updates

We may update this Privacy Policy periodically. Updates will reflect a revised "Last Updated" date.

13. Account Deletion & Data Removal

13.1 Faculty Accounts

Faculty members may request account deletion by contacting their institution administrator. Deletion requests must be initiated through the institution. Upon verification, the account will be deactivated. Associated biometric embeddings (if any) are automatically deleted when the faculty member is marked inactive. Payroll records may be retained if required under applicable employment or tax laws.

13.2 Student Accounts

Student accounts are created and managed by the institution. Parents or students may request deletion by contacting the institution administrator. Upon institutional approval, the student account will be deactivated. Biometric data (if ever enabled) will be deleted. Academic records may be retained if legally required by the institution.

13.3 Super Admin Accounts

Super Admin accounts are internal and managed solely by Bellgo.

13.4 Data Retention After Deletion

When an account is deleted: Login access is immediately revoked. Active biometric embeddings are permanently deleted. Personal data is deleted unless retention is legally required. Backup systems purge deleted data within a defined retention cycle.

13.5 Direct Contact for Deletion Requests

If users are unable to contact their institution, they may contact: support@bellgo.co · +91 7696791610. We will coordinate with the institution to process the request.

14. Contact Information

For privacy and data protection inquiries, you may contact Bellgo at support@bellgo.co, by phone at +91 7696791610, or visit www.bellgo.co.

Compliance Summary

This policy clearly:

  • Separates faculty attendance from student access
  • Limits biometric to faculty mobile app
  • Covers payroll & payslip processing
  • Protects minors
  • Protects salary data
  • Protects you during audits
  • Is suitable for Indian school onboarding

Questions about privacy?

We're here to help. Reach out to our team for any data protection or compliance inquiries.

Contact Support

Secured with AES-256 Encryption