CONTENTS
- 1. Company Overview
- 2. Scope and Applicability
- 3. Key Definitions
- 4. Updates to this Statement
- 5. Geographic Scope and Region-Specifi c Disclosures
- 6. Categories of Personal Information Collected
- 7. Sources of Personal Information
- 8. Use of Personal Information
- 9. Legal Basis of Processing
- 10. Disclosure of Personal Information
- 11. Cookies and Tracking Technologies
- 12. Data Retention and Deletion
- 13. Children’s Privacy
- 14. Your Data Rights and Choices
- 15. How We Protect Your Personal Information
- 16. Third-Party Services and External Links
- 17. Updates to this Privacy Statement
- 18. Contact Us
- 1. Acceptance and Scope
- 2. Definitions
- 3. Eligibility and Account Responsibilities
- 4. Counselor Conduct and Professional Responsibilities
- 5. User Conduct and Communication
- 6. Prohibited Activities
- 7. User-Generated Content and Intellectual Property
- 8. Compliance and Enforcement
- 9. Termination
- 10. Disclaimers and Limitation of Liability
- 11. Force Majeure
- 12. Modifications to these Terms
- 13. Governing Law and Dispute Resolution
- 14. Contact Us
- 1. Purpose and Scope
- 2. Authorized Virtual Meeting Platforms
- 3. Meeting Access Controls
- 4. Meeting Recording and Transcription
- 5. Participant Conduct and Responsibilities
- 6. Data Security and Privacy Measures
- 7. Secure Meeting Confi guration Practices
- 8. Active In-Meeting Security Management
- 9. Access and Sharing of Recorded Meetings
- 10. Prohibited Activities and Security Enforcement
- 11. Monitoring and Compliance
- 12. Amendments and Policy Review
- 13. Contact Us
This Statement applies to all individuals who access or interact with the Platform, including but not limited to learners, students, parents or guardians, counselors, educators, mentors, institutional representatives, visitors.
By accessing or using the Platform, you acknowledge and consent to the collection and processing of your Personal Information in accordance with this Statement and the applicable Terms of Use. This Statement governs the handling of your Personal Information across all channels through which Catalystia operates its digital services.
- Platform” refers to all Catalystia-owned or managed digital assets including, but not limited to, https://catalystia.org, https://engage.catalystia.org, https://elevate.catalystia.org, associated sub-domains, mobile applications, related services.
- “User” refers to any individual accessing or interacting with the Platform, including:
- Students – Individuals enrolled in or exploring Catalystia’s learning or counseling programs;
- Parents or Guardians – Representatives supporting student Users;
- Counselors, Mentors, Educators – Certifi ed professionals offering guidance services via the Platform;
- Visitors – Individuals browsing publicly available content;
- Partner Institutions – Entities accessing the Platform for the benefi t of their members.
- “Personal Information” or “Personal Data” means any data relating to an identifi ed or identifi able natural person, as defi ned under applicable data protection laws, including but not limited to name, contact information, demographic details, educational records, technical identifi ers, preferences.
- “Counselor” (“Catalyst”) refers to an individual certifi ed or authorized by Catalystia to offer career, academic, or life counseling services through the Platform, in accordance with Catalystia’s Terms of Use and other applicable policies.
We may revise this Statement periodically to refl ect changes in our privacy practices, regulatory updates, or operational modifi cations. The “Last Updated” date at the top of this Statement denotes the effective date of the most recent revisions.
We encourage you to review this Statement regularly. Continued use of the Platform following any modifi cations shall constitute deemed acceptance of such changes to the extent permissible under applicable law.
Catalystia operates in multiple jurisdictions and adheres to applicable privacy laws of countries including, but not limited to, India, the United States, the United Kingdom, European Union member states, the United Arab Emirates, African nations.
While the core principles of this Statement apply globally, specifi c regional disclosures may supplement this Statement depending on your location. These supplements provide jurisdiction-specifi c information regarding your rights and our obligations and should be read in conjunction with this Statement.
Catalystia acts as the Data Controller for Personal Information processed in relation to your use of the Platform, to the extent such processing falls within the scope of GDPR or UK GDPR.
Data Protection Contact:
- Email: support@catalystia.org
We process Personal Information on the following legal grounds, in accordance with Article 6 of GDPR and its UK equivalent:
- Performance of a Contract: To provide Platform access or perform obligations arising from any contractual engagement.
- Legitimate Interests: For operational, analytical, enhancement, information security purposes, provided such interests are not overridden by your fundamental rights.
- Consent: For specifi c activities including marketing communications and use of non-essential cookies. You may withdraw consent at any time without affecting the lawfulness of processing prior to withdrawal.
- Legal Obligation: Where processing is necessary to fulfi ll statutory or regulatory obligations.
- Vital Interests: In exceptional scenarios, to safeguard life or physical integrity.
Subject to applicable laws, data subjects in the EU, EEA, UK have the following rights:
- Right to access your Personal Information
- Right to rectifi cation of inaccurate or incomplete data
- Right to erasure (“right to be forgotten”)
- Right to restrict processing
- Right to data portability
- Right to object to processing, including for direct marketing
- Right to withdraw consent, where applicable
- Right to lodge a complaint with a Supervisory Authority
To exercise your rights, you may contact us at:
- Email: support@catalystia.org
We may request additional information to verify your identity prior to processing any rights request.
Where Personal Information is transferred outside the EU/EEA/UK, Catalystia ensures compliance with applicable transfer mechanisms, including:
- European Commission/UK-approved Standard Contractual Clauses (SCCs)
- Adequacy decisions
- Contractual obligations under Data Processing Agreements (DPAs)
- Identifi ers (e.g., name, email address, IP address)
- Educational and professional background
- Internet or Platform usage data
- Approximate geolocation
- Payment and transactional details
- Communication preferences and interaction records
- Directly from you via forms, registrations, or communication
- Automatically through cookies and tracking tools
- Indirectly through third-party platforms such as payment gateways or customer support systems
We use Personal Information for the following business purposes:
- To deliver and manage Platform services
- To create and manage user accounts
- To provide customer support and technical assistance
- To personalize content and user experience
- To conduct marketing (subject to prior consent)
- To ensure data and system security
- To perform analytics and improve service performance
- To comply with legal obligations
Under CCPA/CPRA, California residents are entitled to:
- Right to Know: Categories and specifi c pieces of Personal Information collected, used, disclosed, or shared
- Right to Delete: Personal Information subject to applicable exceptions
- Right to Correct: Inaccurate Personal Information
- Right to Opt-Out: From sale or sharing of Personal Information (Note: Catalystia does not sell Personal Information)
- Right to Limit Use of Sensitive Personal Information: Not applicable, as we do not process such data under CPRA
- Right to Non-Discrimination: No adverse treatment for exercising rights
- Right to Opt-In for minors under 16: Catalystia does not sell or share Personal Information of minors
To exercise your rights under the CCPA/CPRA, please contact:
- Email: support@catalystia.org
We may verify your identity before processing any request. Authorized agents must provide signed authorization or proof of registration with the California Secretary of State.
Upon receipt of a verifi able request:
- Acknowledgment will be provided within 10 business days
- Request fulfi llment within 45 calendar days
- If an extension is required, an additional 45 calendar days may be taken with notice
Personal Information may be disclosed to authorized service providers for legitimate business purposes. These include:
- Cloud infrastructure and hosting providers
- Payment and transaction processors
- Communication tools and support platforms
- Marketing and analytics providers
All service providers are contractually bound to use Personal Information only for the defi ned purposes and in accordance with applicable data protection requirements.
- Consent: Freely given, informed, specifi c, unambiguous.
- Legitimate Uses: Includes legal compliance, medical emergencies, employment-related processing, service delivery.
Consent may be withdrawn at any time, unless processing is mandated by applicable law.
Subject to applicable law, Data Principals may exercise the following rights:
- Right to access, correction, erasure
- Right to grievance redressal
- Right to nominate a representative in case of incapacity or death
- Limitation to specifi ed purpose
- Provision of notice and ensuring transparency
- Implementation of appropriate technical and organizational safeguards
- Notification of Personal Data breaches to affected users and the Data Protection Board of India
- Erasure of data post-fulfillment of processing purpose or withdrawal of consent, unless otherwise legally mandated
Permitted to jurisdictions not restricted by the Government of India, subject to compliance with lawful safeguards.
Email: support@catalystia.org
Unresolved concerns may be escalated to the Data Protection Board of India or the appropriate appellate tribunal.
- Explicit consent
- Contractual necessity
- Legal obligation
- Public interest
- Legitimate interest (where such interest does not override individual rights)
- Right to access, rectify, erase Personal Information
- Right to restrict or object to processing
- Right to data portability
- Right to breach notifi cation
- Right to fi le a complaint with the UAE Data Offi ce
Permitted under the following conditions:
- Adequate level of protection in the destination country
- Contractual and technical safeguards
- Explicit consent
- Compliance with Article 23 of the Federal Decree-Law
Email: support@catalystia.org
- South Africa: Protection of Personal Information Act, 2013 (POPIA)
- Kenya: Data Protection Act, 2019
- Nigeria: Nigeria Data Protection Regulation (NDPR), 2019
- Other jurisdictions: As per respective national privacy or cybersecurity laws
- Freely given and informed consent
- Contractual necessity for service provision
- Legal or regulatory compliance
- Legitimate interest, provided such interest does not override data subject rights
- Right to access, rectifi cation, erasure
- Right to restrict or object to processing
- Right to withdraw consent
- Right to lodge a complaint with the local Data Protection Authority
Permitted where supported by:
- Legal transfer mechanisms such as standard contractual clauses or DPAs
- Explicit consent (where applicable law permits)
- Regulatory clearance (where required)
Email: support@catalystia.org Expected timelines for resolution:
- 21 days (under POPIA)
- 30 days (under NDPR)
Escalation of unresolved complaints may be made to the respective Data Protection Authority
6. Categories of Personal Information Collected
We may collect the following Personal Information:
- Full name, date of birth, gender, nationality
- Contact details including email address, phone number, mailing address, geographic identifi ers (city, state, country)
- Login credentials including username and securely encrypted passwords
- Profile photograph (where voluntarily provided)
- Academic institutions enrolled in or attended
- Educational qualifi cations, certifi cations, academic performance
- Areas of study, standardized test scores, honors, recognitions
- Employment history including organization names, designations, durations
- Industry-specifi c roles, certifi cations, licenses, career milestones
- Declared career objectives, preferred roles, institutions
- Desired industries or locations for further studies or employment
- Personal statements and other goal-aligned submissions
- Extracurricular activities, hobbies, leadership roles
- Learning style preferences, interaction patterns
- Program preferences and usage confi guration data
- Attendance logs, assignment submissions, course completion status
- Survey responses, support interactions, feedback forms
- Audio/video recordings (where such features are enabled and subject to consent)
- AI-generated insights on engagement behavior and learning progression
- Details of connected counselors, educators, mentors, or parents
- Referral metadata and participation in collaborative programs
To ensure platform security and system integrity, we collect:
- Device type, operating system, browser specifi cations
- IP address, session ID, user-agent string, approximate geolocation
- Clickstream data, cookies, related session telemetry
- Subscription preferences for communications and newsletters
- Interaction data such as open rates and click-through metrics
- Participation records in campaigns, events, promotional activities
- Consent status for receiving marketing communications
For the facilitation of paid services:
- Billing address and masked payment identifi ers
- Transaction timestamp, payment amount, service or product metadata
- Unique transaction ID for record-keeping purposes
Note: All payment processing is managed by third-party providers. Catalystia does not store full card numbers or sensitive fi nancial information on its servers.
Information submitted through:
- Account creation and profi le confi guration
- Participation in programs or interaction with assigned counselors and mentors
- Support channels including chat, email, helpdesk submissions
- Feedback surveys, quizzes, content upload portals
- Event registrations, public/private messaging, engagement via forms or social media
Such data may include contact details, identifi ers, educational/professional background, personal preferences.
We use cookies, system logs, similar technologies to collect:
- IP address, device type, operating system, browser version
- Session duration, click patterns, navigation behavior, error diagnostics
- Referral sources, interaction timestamps, performance data
Personal Information may be processed to:
- Deliver personalized learning, mentoring, counseling services
- Match users with suitable mentors, programs, or resources
- Track academic or engagement progress and optimize learning paths
- Facilitate payments, subscription management, access to purchased services
- Analyze usage trends to refi ne content and improve service delivery
Personal Information may be processed for:
- Internal analytics, business reporting, research
- Diagnostic efforts, performance monitoring, platform optimization
- Customer support and resolution of helpdesk tickets
- Testing and rollout of new functionalities
With your explicit consent, or where permitted under applicable laws, we may:
- Share newsletters, announcements, event invitations
- Customize communication based on Platform usage and expressed interests
- Monitor engagement with our communications
We may process Personal Information to:
- Comply with applicable laws, regulations, or contractual obligations
- Respond to lawful requests from competent authorities
- Prevent, detect, or investigate fraudulent or unlawful activities
- Protect the legal rights, property, or safety of Catalystia, its users, or others
Where required by law, processing will be undertaken only upon receipt of your explicit consent, including for:
- Participation in surveys, studies, or user research
- Sharing of information with partner institutions
- Publication of testimonials, case studies, or success narratives
Catalystia may utilize AI and algorithmic systems to:
- Recommend relevant programs, mentors, or resources
- Personalize dashboard content and learning paths
- Generate behavioral and performance-based insights
Processing is undertaken based on your consent in scenarios such as:
- Marketing communications
- Participation in surveys or research
- Data sharing with institutional partners
- Publication of success stories or testimonials
Processing is necessary to:
- Create and maintain user accounts
- Deliver training, mentoring, educational services
- Facilitate payment and subscription management
- Issue certifi cations and academic records
Processing may be required to:
- Meet statutory requirements relating to taxation, audit, or reporting
- Comply with legal mandates in jurisdictions of operation
- Adhere to specifi c laws governing education, data privacy, consumer protection
- Align with international data protection frameworks (e.g., GDPR, CCPA, DPDP Act)
Where permitted under applicable law, Catalystia may process data for purposes of legitimate interest, including:
- Securing and improving Platform infrastructure and systems
- Conducting diagnostics, audits, analytics
- Preventing misuse or unauthorized access
- Sending important service notifi cations
A legitimate interest assessment is conducted to ensure that such processing does not override your data protection rights.
In exceptional cases, Personal Information may be processed to:
- Address emergencies during live sessions
- Contact emergency responders to ensure user safety
We may share limited Personal Information with affi liated institutions, internship facilitators, mentoring networks for purposes such as:
- Academic participation tracking and engagement analytics
- Review and assessment of submitted work
No passwords or fi nancial information are shared. Data shared is limited to the purpose intended and subject to consent where required.
Third-party vendors may receive Personal Information for:
- Hosting, infrastructure, technical operations
- Email communication and marketing services
- Analytics and performance assessments
- Identity verifi cation and fraud management
- Payment processing via authorized PCI-DSS-compliant gateways
- Survey tools and user feedback platforms
- Legal, regulatory, or compliance consulting
Catalystia may disclose Personal Information to comply with:
- Court orders, legal proceedings, law enforcement requests
- Regulatory inspections and supervisory authority requests
- Enforcement of platform policies or user agreements
- Fraud prevention or safeguarding public interest
Such disclosures are limited to the minimum data required and justifi ed by applicable law.
Personal Information may be processed outside your country of residence, including in jurisdictions such as India, the United States, the United Arab Emirates. Where such transfers occur, Catalystia ensures appropriate safeguards, which may include:
- European Commission/UK Standard Contractual Clauses (SCCs)
- Binding Corporate Rules (BCRs)
- Transfer mechanisms recognized under applicable national laws
These safeguards ensure an adequate level of protection consistent with applicable privacy regulations.
In addition to cookies, Catalystia may use the following tracking technologies:
- Pixel Tags / Web Beacons – For monitoring content engagement, including emails and website pages
- Log Files – To capture access, usage, diagnostics, system performance information
- Local Storage – To preserve session state and confi guration preferences
- Session and Persistent Cookies – To facilitate seamless navigation and maintain login continuity
Catalystia provides multiple options for users to manage their cookie preferences:
- Cookie Consent Tool: On fi rst access, a consent banner allows the management of preferences for non-essential cookies
- Browser Settings: Users may confi gure their browser to block or delete cookies or to alert them when cookies are used
Third-Party Opt-Out Tools: Users may manage third-party tracking preferences via industry-standard opt-out portals (e.g., Network Advertising Initiative, Google Ads settings)
Note: Disabling or rejecting certain cookies may impact Platform features or availability.
Retention timelines are defi ned based on the nature of the data and corresponding obligations:
- Account Information: Retained for the active lifecycle of the user account, for a reasonable period thereafter to address support, compliance, or account reactivation needs
- Course and Certification Records: Retained to support training verifi cation and certifi cation authenticity
- Payment and Transaction Data: Retained in accordance with fi nancial, tax, fraud prevention obligations, even after account termination
All retention periods are subject to periodic review and may be updated in line with legal or regulatory developments.
Once retention is no longer justified:
- Personal Information will be securely deleted from all production and backup systems
- Or, data will be irreversibly anonymized such that it no longer identifies any individual
All disposal or anonymization activities are undertaken in accordance with Catalystia’s data governance protocols and industry-standard security practices.
Users may submit a request for deletion of their Personal Information, subject to applicable legal and operational exceptions.
Submission of Request:
- Email: support@catalystia.org
Process and Response: - The request will be reviewed for scope and eligibility
- User identity will be verifi ed to prevent unauthorized processing
- A response will be provided within 5 to 7 business days
- Data will be deleted or anonymized unless legally required to retain it
Where retention is legally or operationally justifi ed, access will be restricted, processing limited strictly to the minimum required for compliance or legitimate interests.
The minimum age for lawful digital consent varies by jurisdiction. Catalystia adheres to the most protective standard applicable in the country or region of the child user’s residence. This includes but is not limited to:
- India: Under the Digital Personal Data Protection Act, 2023 (DPDP Act), individuals under the age of 18 require verifi able parental or guardian consent.
- United States: Under the Children’s Online Privacy Protection Act (COPPA), users under 13 require verifiable parental consent. Under the California Consumer Privacy Act (CCPA), users aged 13–17 may require guardian acknowledgment.
- United Arab Emirates: Under UAE civil law, individuals under the age of 21 are considered minors and require guardian authorization.
- Africa (e.g., South Africa, Kenya, Nigeria): Under POPIA, Kenya’s DPA 2019, Nigeria’s NDPR, individuals under 18 are deemed minors.
- European Union: In accordance with Article 8 of the GDPR, the age of digital consent ranges from 13 to 16 depending on the Member State. Catalystia defaults to an age of 16, except where local regulations permit a lower threshold (not below 13).
- The data will be securely deleted
- Guardians will be notifi ed where feasible
- Access to the Platform will be suspended or limited
- Internal processes will be reviewed and strengthened
Catalystia implements appropriate controls such as age-gating, consent workfl ows, guardian confi rmation mechanisms to:
- Determine user eligibility
- Obtain and document verifi able consent
Parents or legal guardians may:
- Request access to, correction, or deletion of their child’s Personal Information
- Request restriction of processing
- Withdraw consent at any time
- Email: support@catalystia.org
Note: Withdrawal of consent may result in restricted access to certain Platform features as required for compliance.
For sessions involving minors that may be recorded (e.g., video, audio, screen sharing), Catalystia ensures:
- Prior notification to guardians and affected participants
- Verifiable guardian consent is obtained before initiating any recording
- Access controls are enforced, recordings are used solely for training, quality monitoring, or safety-related purposes
Catalystia aligns its children’s data protection practices with the most stringent applicable standards, including but not limited to:
- Children’s Online Privacy Protection Act (COPPA – United States)
- General Data Protection Regulation Article 8 (GDPR – European Union)
- Digital Personal Data Protection Act, 2023 (b)
- Protection of Personal Information Act (POPIA – South Africa), Data Protection Act, 2019 (Kenya), Nigeria Data Protection Regulation, 2019 (NDPR – Nigeria)
- UN Convention on the Rights of the Child
In jurisdictions where guidance is ambiguous, Catalystia defaults to the strictest interpretation to ensure compliance and child safety. These practices are periodically reviewed and updated to refl ect evolving regulatory obligations and global best practices.
Subject to applicable law, you may be entitled to the following rights:
- Access: To request details of the Personal Information maintained by Catalystia
- Correction: To rectify inaccurate, outdated, or incomplete data
- Deletion: To request deletion of your Personal Information, subject to legal, regulatory, or operational retention obligations
To exercise these rights: - Email: support@catalystia.org
Identity verifi cation may be required to process your request. Catalystia aims to respond within 5 to 7 business days. Where full deletion is not feasible due to statutory or contractual obligations, you will be notifi ed of the basis for such limitation.
Users may control cookie preferences through:
- Browser confi guration settings to manage or block cookies
- Platform-provided cookie consent banners for non-essential cookie management
- Industry-standard opt-out tools such as Digital Advertising Alliance or Google Ads Settings
Note: Disabling certain cookies may affect the availability or performance of Platform functionalities.
Where you have consented to receive marketing communications, you may:
- Unsubscribe using links provided in marketing emails
- Contact us to update your preferences or opt out of promotional communications
- Object to direct marketing where processing is based on legitimate interest (in applicable jurisdictions)
Unsubscribing from promotional communications does not affect transactional or service-related communications.
Where the processing of Personal Information is based on your consent, including, but not limited to:
- Participation in partner programs or collaborations
- Inclusion in session recordings or research initiatives
- Delivery of personalized Platform experiences
You may withdraw your consent at any time by emailing support@catalystia.org. Such withdrawal shall not affect the lawfulness of any processing conducted prior to the withdrawal but may impact access to services reliant on such consent.
Subject to applicable laws, you may request:
- A copy of your Personal Information in a structured, commonly used, machine-readable format
- Transfer of such data to another data controller or service provider, where technically feasible
- Temporary restriction of processing under certain circumstances (e.g., during verifi cation or dispute)
Your rights may differ depending on the jurisdiction in which you reside:
- European Union, EEA, UK, Switzerland: Under the GDPR and UK GDPR, you may object to processing, request data portability, restrict processing, fi le complaints with your local Data Protection Authority. Refer to Section 2.2 – GDPR/UK Compliance.
- California, United States: Under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), you may request access, deletion, correction, opt out of the sale or sharing of Personal Information. You are entitled to exercise these rights without discrimination. Refer to Section 2.3 – California Compliance.
- India, UAE, African Jurisdictions: Rights such as consent withdrawal, access through data fi duciaries or consent managers, grievance redress are governed by national laws (e.g., DPDP Act, UAE PDPL, POPIA, NDPR). Refer to Section 2.4 – Country-Specifi c Disclosures.
To submit any privacy-related request or to exercise your data rights:
- Contact us: support@catalystia.org
Catalystia may request additional information to verify your identity and eligibility prior to processing. You will not be subjected to retaliation or discriminatory treatment for exercising your rights under applicable privacy laws.Where feasible, certain preferences may also be managed directly through your Catalystia account settings.If you believe your rights have been infringed, you may escalate your concerns to your local Data Protection Authority.
Catalystia’s information security framework incorporates the following measures:
- Encryption of data in transit and at rest, including protocols such as HTTPS, TLS, AES
- Data minimization practices to collect and retain only information necessary for identifi ed purposes
- Role-based access controls and enforcement of multi-factor authentication (MFA)
- Use of secure infrastructure for data storage, backup, business continuity
- Periodic vulnerability assessments and penetration testing
- Continuous monitoring for unauthorized access, threats, or anomalies
- Mandatory employee training and awareness programs on data protection and cybersecurity
These practices are aligned with industry standards such as ISO/IEC 27001 and the NIST Cybersecurity Framework, where applicable.
Third-party service providers engaged by Catalystia are contractually required to adopt comparable or stronger data security measures. Compliance with such standards is subject to periodic validation and audit.
In the event of a data breach or unauthorized access involving Personal Information, Catalystia will:
- Initiate its incident response protocol without undue delay
- Assess and determine the nature, scope, potential impact of the breach
- Notify affected individuals via email and/or Platform notifi cations, where required
- Inform the relevant regulatory authorities in accordance with applicable law (e.g., GDPR, DPDP Act, CCPA)
- Provide guidance to affected individuals, including any steps recommended for personal protection
Catalystia maintains a formal incident response plan to ensure a timely, transparent, legally compliant remediation process.
Users are jointly responsible for securing their accounts and safeguarding their own information. Catalystia recommends that users:
- Create strong, unique passwords and update them periodically
- Avoid sharing login credentials
- Log out after use, especially on shared or public devices
- Refrain from accessing the Platform through unsecured public networks
- Promptly report any suspicious or unauthorized activity to: support@catalystia.org
User awareness and proactive security hygiene are critical to maintaining a secure digital environment.
Catalystia’s websites may include:
- Links to third-party educational content and external resources
- Embedded media, login integrations, social media components
- Interactions with third-party platforms such as Facebook, LinkedIn, Instagram, Threads, YouTube
Engagement with such platforms may involve the transfer of Personal Information directly to those third parties, such processing is subject to the third party’s privacy policy and terms. Catalystia disclaims liability for the content, security, or data practices of external sites.
Catalystia engages trusted third-party service providers to enable Platform functionality and deliver services. These include, but are not limited to:
- Payment Processors: Stripe, Razorpay, PayPal
- Analytics Platforms: Google Analytics, Mixpanel
- Video Conferencing Tools: Google Meet, Microsoft Teams
- Hosting, Marketing, Customer Support Services
Such vendors process Personal Information only under Catalystia’s explicit instructions and are contractually bound by Data Processing Agreements (DPAs) or equivalent safeguards. They are prohibited from using user data for independent purposes and are evaluated for security and compliance alignment.
Certain third-party tools may utilize technologies such as cookies, pixels, SDKs, or iframes. Where required by applicable law (e.g., GDPR, ePrivacy Directive), user consent is obtained prior to the activation of such technologies.
When accessing or interacting with third-party services outside of Catalystia’s environment:
- Personal Information is subject to the respective third party’s privacy policy
- Catalystia is not responsible for the manner in which external parties collect, process, or store data
- Submission of Personal Information to third-party platforms (e.g., social login, embedded forms) is voluntary and at the user’s discretion
Catalystia advises users to review the privacy policies and security practices of any third-party service before interacting with or submitting data through such platforms.
Where material revisions are made to this Privacy Statement, Catalystia will:
- Update the “Last Updated” date at the beginning of this Statement
- Notify users through appropriate channels, which may include email, in-platform alerts, or website banners
- Provide a summary of material changes and, where required by applicable law (e.g., GDPR, CCPA/CPRA), obtain prior affirmative consent
Editorial or non-material updates, such as clarifi cations or internal operational changes, may be implemented without formal notifi cation.
Your continued access or use of the Platform after the effective date of any update to this Privacy Statement constitutes your acknowledgment and acceptance of the revised terms, unless affi rmative consent is specifi cally required under applicable regulations.
If you do not agree to the revised terms, you are advised to discontinue use of the Platform and may contact support@catalystia.org to exercise your applicable data rights, including the option to request account deletion.
For any inquiries, concerns, or requests related to this Privacy Statement or Catalystia’s data protection practices, you may contact us at:
- Email: support@catalystia.org
- Response Time: Typically within 5 to 7 business days
If you are located in a jurisdiction that provides a right of recourse, you may also contact your local Data Protection Authority in the event of a concern regarding the processing of your Personal Information.
CATALYSTIA COMPLIANCE POLICY
This Policy applies to all individuals and entities accessing or using the Services, including but not limited to students, parents, counselors, educators, mentors, institutional partners. Continued use of the Platform constitutes your acknowledgment and agreement to the terms set out herein and to any associated supplemental codes of conduct, policies, or procedures issued by Catalystia from time to time.
For the purposes of this Policy:
- User: Any individual or legal entity accessing or utilizing the Services
- Counselor: Any individual providing mentoring, advisory, or training services via the Platform
- Content: Any material submitted, uploaded, shared, or accessed through the Platform
- Platform: Catalystia’s owned or operated websites, mobile applications, learning portals, associated services
By accessing the Platform, you confirm that:
- You are of legal age and have the capacity to enter into binding agreements under applicable law
- The information provided during registration is accurate, complete, current
- You are solely responsible for maintaining the confi dentiality of your account credentials
- You shall not permit unauthorized individuals to access your account
- You shall notify Catalystia immediately at support@catalystia.org in the event of unauthorized access or account compromise
Users are fully accountable for all activities conducted through their account.
Counselors and mentors operating through the Platform are required to:
- Provide accurate, ethical, evidence-based guidance in a responsible manner
- Adhere to confi dentiality obligations and uphold the privacy rights of Users
- Accurately represent their credentials, qualifi cations, experience
- Refrain from providing advice or services requiring regulatory or legal licensure unless duly authorized
Catalystia does not assume liability or responsibility for any advice, recommendation, or services provided by Counselors. Counselors remain independently responsible for the legality, accuracy, impact of their conduct and content.
Counselors shall indemnify and hold harmless Catalystia, its affi liates, offi cers, personnel against any claims, liabilities, losses, or legal proceedings arising out of or in connection with their use of the Platform.
Users of the Platform are expected to adhere to the following standards:
- Maintain professional, respectful, courteous communication
- Refrain from discriminatory, offensive, defamatory, or harassing behavior
- Avoid uploading or sharing content that is illegal, infringing, misleading, or harmful
- Not engage in impersonation, fraud, or misuse of Platform functionality
Catalystia may monitor user activity for compliance, safety, service quality. Certain interactions may be recorded with prior notice and, where applicable, user consent.
Users are expressly prohibited from engaging in activities that:
- Violate applicable laws, this Policy, or Catalystia’s Terms of Use
- Involve deception, abuse, or fraudulent use of the Platform
- Transmit or deploy malware, viruses, or conduct unauthorized penetration testing
- Attempt to access restricted systems, accounts, or data without authorization
- Circumvent security protocols or abuse platform tools for unintended purposes
- Promote or distribute content that is violent, unlawful, or extremist in nature
Violations may result in immediate suspension or termination of access to the Services. Catalystia reserves the right to report unlawful activity to competent legal authorities and to cooperate with investigations as required by law.
By submitting any content to the Platform, you confirm that:
- You own, or otherwise possess the legal rights and permissions required to submit such content
- You grant Catalystia a non-exclusive, royalty-free, worldwide, perpetual license to use, reproduce, adapt, publish, display such content for purposes including, but not limited to, educational delivery, platform operations, promotional activities
- You retain ownership of your original intellectual property unless otherwise agreed upon in writing
Catalystia reserves the right to remove any content that, in its sole discretion, violates applicable laws, regulations, or these Terms.
You agree to access and use the Platform strictly in accordance with all applicable local, national, international laws and regulatory frameworks.
Catalystia reserves the right to:
- Investigate suspected violations of these Terms or related policies
- Suspend or terminate user access with or without notice, where justifi ed
- Disclose relevant user data or activity logs to regulatory or law enforcement authorities where required to comply with applicable laws
Users remain solely responsible for their conduct and any consequences arising from their actions. Catalystia disclaims liability for content generated or published by users or third parties.
Catalystia may suspend or permanently revoke access to the Platform and Services, with or without prior notice, under circumstances including but not limited to:
- Breach of these Terms or Catalystia’s applicable policies
- Engagement in unlawful, fraudulent, or harmful activity
- Operational, security, or system integrity considerations
Upon termination: - User access to the Platform will be deactivated
- Data may be retained in accordance with applicable laws or Catalystia’s data retention policies
- Licenses granted to Catalystia under these Terms shall survive termination
Catalystia provides the Services on an “as is” and “as available” basis. To the maximum extent permitted by applicable law:
- Catalystia makes no express or implied warranties regarding the accuracy, completeness, timeliness, merchantability, or fi tness for a particular purpose of the Services
- Catalystia disclaims all liability for indirect, incidental, consequential, or punitive damages arising from your use of, or inability to use, the Services
Catalystia shall not be liable for any failure or delay in the performance of its obligations due to events beyond its reasonable control, including but not limited to:
- Natural disasters
- War, terrorism, or civil disturbances
- Failures of internet infrastructure or telecommunications networks
- Actions or restrictions imposed by governmental authorities
- Public health emergencies, pandemics, or similar disruptions
Catalystia reserves the right to amend these Terms at any time. In the event of material modifi cations, Catalystia will:
- Update the “Last Updated” date indicated at the beginning of this Policy
- Notify users via email, in-platform alerts, or banners displayed on Catalystia’s offi cial website
- Request affi rmative consent where required under applicable data protection or consumer laws Continued use of the Platform after such modifi cations become effective shall constitute deemed acceptance of the revised Terms. Users are encouraged to review these Terms periodically.
These Terms shall be governed by the laws of the jurisdiction in which Catalystia is legally incorporated or maintains its principal place of business, excluding any conflict of law provisions.
Disputes arising under these Terms shall be addressed through the following mechanism:
- Initial resolution through good-faith negotiation between the parties
- Failing resolution, disputes may be referred to binding arbitration or, where legally permissible, a court of competent jurisdiction
These provisions are subject to any overriding rights under applicable consumer protection laws.
For legal notices or inquiries relating to this Policy or its enforcement:
- Email: support@catalystia.org
CATALYSTIA VIRTUAL MEETING SAFEGUARDING POLICY
This Policy applies to all virtual meetings hosted or facilitated by Catalystia across any approved platform. The scope includes:
- Protection of session confi dentiality and participant data
- Implementation of appropriate technical and procedural safeguards
- Conduct expectations for all meeting participants
Catalystia reserves the right to enhance or revise these provisions in response to regulatory developments or emerging best practices in virtual engagement security.
Virtual sessions shall be conducted exclusively on secure, vetted platforms that meet established international data protection and cybersecurity standards. These include, but are not limited to:
- Zoom
- Google Meet
- Microsoft Teams
Platform selection is based on the availability of features such as end-to-end encryption, access controls, session authentication, audit capabilities. Catalystia periodically evaluates approved platforms and may update the list based on compliance, risk, performance criteria.
Catalystia enforces access control mechanisms to preserve the exclusivity and security of virtual sessions.
- Access to meetings is restricted to verifi ed individuals through password protection or secure authentication protocols
- Access credentials shall be distributed solely to authorized participants and must not be shared, reused, or forwarded
Meeting hosts maintain administrative control and are responsible for:
- Admitting only verifi ed attendees from virtual waiting rooms
- Removing unverifi ed or disruptive individuals immediately
- Locking sessions post-entry where applicable to prevent unauthorized access
- Participants will receive prior notice of any intended recording or transcription
- Recording will proceed only upon receipt of explicit participant consent
- Individuals not consenting may opt to exit the session
- Only designated meeting hosts are authorized to initiate recordings
- All recordings and transcripts are encrypted and stored in secure, access-controlled environments
- Access is restricted to authorized personnel or expressly permitted individuals
- Data handling practices are aligned with Catalystia’s Data Retention Policy and applicable legal requirements
Participants must:
- Communicate in a respectful and professional manner
- Refrain from discriminatory, harassing, or otherwise offensive behavior
- Maintain the confi dentiality of session content and participant contributions
- Not record, disseminate, or repurpose any session content without explicit authorization
Violations may result in immediate removal from the session and may be subject to disciplinary action, including suspension or termination of platform access.
All virtual communications are secured through:
- End-to-end encryption of video and audio streams
- Use of secure protocols such as Transport Layer Security (TLS) for data transmission and retrieval
- Encryption of meeting-related content, including chat messages, transcriptions, shared files
These measures are designed to prevent unauthorized access and uphold session confi dentiality.
6.2 Data Retention Alignment
Data generated during virtual sessions is retained in accordance with Catalystia’s Data Retention Policy and relevant regulatory requirements (e.g., GDPR, CCPA).
- Meeting recordings and associated metadata are retained solely for the duration necessary to fulfi l educational or operational purposes
- Upon request and subject to applicable laws, such data may be securely deleted or anonymized
- Users may contact support@catalystia.org with queries relating to data retention or deletion
Catalystia applies standardized confi gurations across all hosted virtual sessions to ensure secure operation:
- Waiting Rooms: Participants are individually admitted by the session host
- Meeting Passcodes: Unique session-specifi c passcodes are issued to authorized attendees only
- Screen Sharing Controls: Defaulted to host-only; participant access is granted upon explicit approval
- Authenticated Access: Enabled where feasible to restrict entry to verifi ed users
- Participant Entry Mute: Default setting to maintain session order and minimize disruptions
- File Transfer: Disabled by default; enabled only when operationally necessary
- Unique Meeting IDs: All sessions use system-generated, non-repeating meeting IDs; personal meeting IDs are restricted
Designated hosts and co-hosts are responsible for real-time enforcement of session security, including:
- Locking sessions after commencement to prevent unauthorized access
- Managing participant audio and video to ensure orderly engagement
- Moderating in-session communication tools, including chat, to prevent misuse
- Removing disruptive or unauthorized individuals immediately
- Adjusting screen sharing permissions based on session context and participant roles
Catalystia enforces strict controls on the access and sharing of recorded sessions:
- Access is restricted to authorized users and/or individuals granted explicit approval
- All recordings are secured with password protection and may require authenticated login credentials
- Unauthorized downloading, redistribution, or external publication of recordings is strictly prohibited
Violations of this policy may result in disciplinary action, account suspension or termination, , where applicable, legal escalation.
Catalystia adopts a zero-tolerance approach to misuse of its virtual meeting environments. The following conduct is expressly prohibited:
- Unauthorized access, identity impersonation, or account compromise
- Distribution or display of explicit, illegal, misleading, or abusive content
- Promotion of extremist views, hate speech, or criminal behavior
- Sharing of copyrighted, confi dential, or proprietary content without authorization
Violations may result in immediate removal from the session, suspension of platform access, account deactivation, reporting to legal or regulatory authorities.
Catalystia reserves the right to monitor and, where applicable, record virtual sessions for the purposes of training, quality assurance, compliance.
- Participants will be notifi ed in advance of any recording
- Recordings are stored securely and are accessible only to authorized personnel
- Retention and access to such data is governed by Catalystia’s Data Retention Policy
Catalystia may engage external guests or speakers for sessions. While all guests are vetted, Catalystia does not assume responsibility for personal views expressed. Users are advised to exercise independent judgment and verify information before acting on any advice received.
All reported violations will be investigated and addressed in accordance with Catalystia’s disciplinary and compliance protocols.
Catalystia may revise this Policy at its discretion to refl ect legal, operational, or technological updates.
- Material changes will be communicated through Catalystia’s offi cial communication channels, including website announcements and direct email notifi cations
- Users are responsible for reviewing and adhering to the most current version of this Policy
CATALYSTIA PAYMENT POLICY
This Payment Policy (“Policy”) governs all fi nancial transactions related to Catalystia’s digital services. By accessing or purchasing Catalystia offerings, you agree to be bound by this Policy, which forms an integral part of the Terms of Use and applies to all users globally.
Catalystia operates in multiple jurisdictions including India, the United States, the UAE, Africa. This Policy is designed to align with fi nancial regulations and consumer protection requirements applicable in each region.
3.1 Authentication and Identification
Each participant bears responsibility for safeguarding the privacy and confi dentiality of shared information. Unauthorized disclosure, whether intentional or negligent, of sensitive or personal data is strictly prohibited and may result in sanctions, civil liability, or regulatory reporting, as applicable.
6.1 Encryption Protocols
All virtual communications are secured through:
- End-to-end encryption of video and audio streams
- Use of secure protocols such as Transport Layer Security (TLS) for data transmission and retrieval
- Encryption of meeting-related content, including chat messages, transcriptions, shared files
These measures are designed to prevent unauthorized access and uphold session confi dentiality.
For billing inquiries, refund requests, or payment disputes, contact:
- Email: support@catalystia.org
CATALYSTIA PAYMENT & REFUND FAQS
To request a refund, submit an email to support@catalystia.org with the following details:
- Payment confi rmation or invoice
- Transaction ID or reference number
- Brief explanation of the reason for the request
Refund requests are typically acknowledged within 5–7 business days.
Catalystia operates in multiple jurisdictions including India, the United States, the UAE, Africa. This Policy is designed to align with fi nancial regulations and consumer protection requirements applicable in each region.
Approved refunds may be subject to deductions for:
- Payment gateway or bank transaction fees
- Administrative or handling charges
- Currency conversion or international processing fees
- Convenience fees applied at the time of original payment
Refund eligibility is determined as follows:
- Partially eligible: If requested before service delivery but after preparatory actions
- Not eligible: After login, access, or participation in live sessions, downloads, or usage of any digital service
6. Chargebacks and Unauthorized Reversals
Include the following in your email:
- Payment confi rmation or invoice
- Transaction reference or ID
- Brief summary of the issue experienced
In such cases:
- Your account may be suspended pending investigation
- Resolution timelines may range from 30 to 60 business days
- Users are strongly advised to contact Catalystia support prior to initiating a formal dispute
Initiating a chargeback without engaging Catalystia may be treated as a breach of the Payment Policy.
Delayed or partial payments may result in:
- Temporary suspension of access
- Administrative processing fees
- Service delivery delays
Timely payment is essential to ensure uninterrupted service access.
To request cancellation, contact support@catalystia.org. While cancellation does not imply refund eligibility, Catalystia will review each case and may offer:
- Account credit
- Service deferral
- Session rescheduling
13. How are foreign currency payments handled?
Payments made in non-USD currencies are subject to:
- Exchange rates applied by the user’s fi nancial institution
- Applicable international transaction or conversion fees
Catalystia does not assume responsibility for rate discrepancies or third-party currency fees.