SNUGPT
SNUGPTDelhi-NCR
 Back to Home
Security & Privacy

Privacy Policy

At SNUGPT, we prioritize student confidentiality. Read our exhaustive disclosures regarding data collection, vector embeddings, database encryption, and academic alignment.

Data Privacy Philosophy

SNUGPT is an educational, student-aligned intelligence utility designed specifically for the Shiv Nadar University community. We do not monetize student data, run ads, or sell information to third-party data aggregators. Every design decision—from utilizing localized serverless databases to adopting secure open-source models—is guided by a strict mission to respect academic confidentiality and student welfare.

Data Collection & Disclosures

Waitlist Declarations

When you sign up to get early access, we collect:

  • Full Name: For personalized portal access.
  • Email Address: Strictly matching university or private domains.
  • Mobile Number: For secure authentication checks.

Query & Response Ingestion

To fulfill conversational queries, our gateway processes:

  • Input Query Text: To retrieve academic policies.
  • Vector Cache Tokens: Used to track real-time context.
  • Feedback Metrics: Upvote/downvote signals to refine prompt matches.

Processing & Security Framework

Student information undergoes standard encryption workflows at every stage of the query lifecycle:

  • Transit Security (HTTPS/TLS 1.3): All requests between your browser and the FastAPI gateway are encrypted using transport-layer security protocols.
  • Rest Encryption (AES-256): Saved sessions, waitlist records, and configuration logs inside our serverless **Neon PostgreSQL** database use standard enterprise-grade AES-256 resting encryption schemas.
  • Secure Vector Pipeline: Conversational questions are converted into vector representations locally and stored in a private **Chroma** instance. Embeddings are sent only to secure, enterprise-hardened AI endpoints (NVIDIA AI Endpoints) and are never used to train global public base models.

Data Erasure & Rights

We respect your right to control your digital footprint. Any waitlist signee or beta tester can request immediate, complete removal of their personal profile, query records, and authenticated database tables by reaching out to the administrator. Data is completely wiped from active Postgres storage pools within 48 hours of verification.

Cookies & Local Browser Storage

We use standard browser `localStorage` and `sessionStorage` purely to optimize user experience and maintain active session state. This includes caching your dark theme preferences, conserving active scroll configurations, and storing anonymous navigation drawer parameters. We do not use third-party tracking pixels or persistent advertising beacons.