PRIVACY POLICY

As used in this Privacy Policy, "BOSE EINSTEIN INVEST 2 LIMITED" refers to the services provided via the website https://dinolab.com (the “Website”) and the Dinolab mobile application (the “Mobile App”), including their features and content. These services are provided and the information is collected by BOSE EINSTEIN INVEST 2 LIMITED and our partner in India, Uolo EdTech Private Limited, established under the laws of the Republic of India, having its place of business at 85, Sector 44, Gurugram, Haryana 122003.

This Privacy Policy explains how we collect, use, store, and disclose information from users who access Dinolab through either the Website or the Mobile App (collectively, the “Service”). By using the Service, you agree to the terms of this Privacy Policy and consent to the collection, processing, and use of your information as described herein.

If you do not agree with the terms of this Privacy Policy, please refrain from using the Service.

Date of issue of this Privacy Policy: 25.06.2025

1. The Collection of Information and How We Use It

The main reason why we collect information is to provide and improve Dinolab, to administer your membership and to enable users to enjoy Dinolab and easily navigate it.

2. What Types of Information We Collect?

We collect information when you register on our website, subscribe to our newsletter, respond to a survey, fill out a form or use our software and services.

The information collected may include but is not limited to: mobile phone number, email address, last name, first name, chosen screen name, chosen password, language, answer to security question (together, the "Personal Information").

If you fail to provide us with the correct email address and/or phone number, we will not be able to deliver our services and support to you.

3. Automatic Information

We automatically collect certain technical information about your device and usage patterns when you use Dinolab, whether through the Website or the Mobile App, regardless of whether you have registered for an account.

This data may be collected directly by Dinolab or through trusted third-party tools such as Firebase Analytics or Crashlytics. No personally identifiable information is collected automatically unless explicitly provided by you.

4. How Do We Use Your Information?

We use other information about you for the following general purposes:

to register your account;

to fulfill your requests;

to manage your account;

5. Use of Cookies and Tracking Technologies

Like many digital platforms, Dinolab uses cookies and similar technologies to enhance user experience, analyze usage patterns, and improve our Service.

On the Website, we use cookies—small data files stored on your browser—to remember login information, enable key features, and analyze website traffic. You may choose to disable cookies through your browser settings; however, some features of the Website may not function properly as a result.

In the Mobile App, we may use equivalent technologies (such as local storage or device identifiers) for similar purposes, including session management, analytics, and performance monitoring.

We may also use web beacons (small graphic images) in emails to track open rates and engagement.

Disabling cookies or similar technologies may limit your ability to fully use our Service.

6. How Do We Protect Your Information?

We want you to feel confident about using Dinolab. For that reason, we have implemented reasonable technical and organizational measures designed to secure your information from accidental loss and from unauthorized access, use, alteration or disclosure:

- All data is transferred only via HTTPS

- Production environment is located in a private network and fully isolated from other company systems.

- We utilize Google Cloud Platform which meets rigorous privacy and compliance standards that test for data safety, privacy, and security: https://cloud.google.com/security/compliance

However, the Internet is an open system and we cannot guarantee that unauthorized third parties will never be able to defeat those measures or use your information for improper purposes.

Keep the information confidential.

If you communicate with us by email, you should note that the secrecy of Internet e-mail is uncertain. By sending sensitive or confidential email messages or information which are not encrypted you accept the risk of such uncertainty and possible lack of confidentiality over the Internet.

Also, Dinolab does not encourage minors to make personal information publicly available. In the event we become aware of an unauthorized disclosure or data breach:

7. Disclosure of Information to Third Parties

We do not transfer to outside parties your Personal Information. This does not include trusted third parties who assist us in operating our website, conducting our business, or servicing you, so long as those parties agree to keep this information confidential.

We may also send information about you to other companies or people when: a) we have your consent to share the information; or

b) we need to share your information to provide the product or Service you have requested; or c) we respond to subpoenas, court orders or legal process; or

8. Business Transfer

We may sell, transfer or otherwise share some or all of our assets, including your Personal Information, in connection with a merger, acquisition, reorganization or sale of assets or in the event of bankruptcy. Your consent to this Privacy Policy followed by your submission of Personal Information represents your explicit agreement to that transfer. 

9. Phishing

Identity theft and the practice currently known as "phishing" are of great concern to BOSE EINSTEIN INVEST 2 LIMITED. Safeguarding information to help protect you from identity theft is a top priority. We do not and will not, at any time, request your credit card information, your account ID, login password, or national identification numbers in a non-secure or unsolicited email or telephone communication.

10. Your Right to Access Information

You are entitled to see the information held about you. If you wish to do this, please contact us using information at the end of this page. We may require you to provide verification of your identity and to pay an administration fee to provide a copy of the information we hold. Please note that, in certain circumstances, we may withhold access to your information where we have the right to do so under current data protection legislation.

11. Updating Your Information

You may review, correct, update or change your Personal Information at any time by accessing your account on dinolab.com. If you would like us to delete your record in our system, please contact us using information at the end of this page and we will accommodate your request, if we do not have any legal obligation to retain the record.

After the product is no longer in use by the school, we will:

- delete all students’ personally identifiable information we and our trusted third parties hold within 1 year after June 30th of the current calendar year.

- upon request, as explained in our terms of services, we will delete students’ personally identifiable information within 5 days from our website and within 60 days from our trusted third parties.

Upon request by the school, we can transfer any students’ personally identifiable information we held to the school or its designated third party. Schools can request such a transfer not more than once a year.

12. Links to Other Sites

If any part of Dinolab links to other Websites, those Websites do not operate under this Privacy Policy. If you choose to click on another third party link, you will be directed to that third party’s website. We do not exercise control over third party websites and therefore recommend you to examine the privacy statements posted on these other Websites to understand their procedures for collecting, using and disclosing Personal Information.

13. Our Policy towards Minors

Minors are only allowed to use our Service with the consent of a parent, legal representative, or authorized school personnel. This requirement applies to both the Website and the Mobile App. BOSE EINSTEIN INVEST 2 LIMITED adheres strictly to the Indian Contract Act, 1872, and does not knowingly collect or store personal data from children without appropriate consent.

Parents and schools retain control over student data. We do not use personally identifiable information in student records for behavioral or targeted advertising, nor for any purposes not directly related to educational delivery, performance reporting, or system improvement.

If a legal representative becomes aware that a minor has provided us with personal information without their consent, they may contact us using the information provided below. We will delete such data within 5 working days of verification.

14. Mobile Application Permissions and Third-Party Technologies

The Mobile App may also use third-party services and SDKs, including but not limited to:

These third-party services may collect and process limited user data, such as anonymized usage statistics or crash diagnostics, to help us improve the stability and usability of the Service. No personally identifiable student data is shared with advertising platforms.

We do not use your mobile data for tracking outside the scope of the educational features or for any form of behavioral advertising.

If you deny or disable any requested permissions, some features of the Mobile App may not function as intended.

15. Changes to this Privacy Policy

This policy may be amended from time to time. If we amend the Privacy Policy in any way we will:

- place an updated version on this page, and/or update the Privacy Policy issue date; - place an announcement on dinolab.com for 2 weeks from the Privacy Policy issue date.

In case the changes to the Privacy Policy include new or additional data collection, or changes that would lessen the previously noted protections around student data privacy, we will notify in advance the appropriate person in the school or school district who has purchased the valid school-wide or district-wide Dinolab access.

16. Jurisdiction and Applicable Law

This policy and all matters arising out of or related to this policy shall be governed by the laws of the Republic of India.

Any controversy, claim or dispute between you and BOSE EINSTEIN INVEST 2 LIMITED arising out of or relating to this policy shall be subject to the exclusive jurisdiction of the Courts in Delhi, India. 

17. DISCLAIMER

We cannot ensure that all of your private communications and other personal information (including sensitive information like credit card information and bank account number) will never be disclosed in ways not otherwise described in this Privacy Policy. Therefore, although we are committed to protecting your privacy, we do not promise, and you should not expect, that your personal information will always remain private. As a user of the Website, you understand and agree that you assume all responsibility and risk for your use of the Website, the internet generally, and the documents you post or access and for your conduct on and off the Website.

18. Your Consent

By using Dinolab, you expressly consent to our Privacy policy.

19. Questions or Suggestions

If you have any questions or suggestions about this Privacy Policy or your Personal Information, please contact us using information below:

Email: support@dinolab.com.

20. Contact Information of the Data Controller

The data controller responsible for your personal information is:
BOSE EINSTEIN INVEST 2 LIMITED
Incorporated in Cyprus
Registered office: Dimitriou Karatasou, 15, Strovolos 2024, Nicosia, Cyprus

For India-specific data concerns, our local partner is:
Uolo EdTech Private Limited
85, Sector 44, Gurugram, Haryana 122003, India

21. Children’s Privacy

Our Service is intended for use by children only under the guidance, supervision, and consent of a parent, teacher, or school administrator. We do not knowingly collect personal information from children without appropriate authorization.

Parents and schools retain full control over student data. We do not use such data for targeted advertising. If we become aware that a child has provided personal data without proper consent, we will delete it within 5 working days of verification.