Last updated: 21 April 2026 · Version: 3.0

The Site is owned and operated by BigHelpers Software & Solutions Private Limited (the “Publisher”, “we”, “us”, “our”), a company incorporated in India.

• Registered office: India (address available on request to the Grievance Officer).
• Grievance Officer and Data Protection contact: admin@bighelpers.in
• DPDP Consent Manager notice: This Site does not use a third-party Consent Manager. Consent is obtained and recorded directly on-site; see Section 6.

Under the DPDP Act, 2023, the Publisher acts as a Data Fiduciary. Under the GDPR, the Publisher acts as a Data Controller for the limited personal data described in this policy.

This policy covers personal data processed via:

• The website at https://righttoinformation.wiki and its sub-paths.
• The site's feedback, subscription, save-article, and RTI-drafting features.
• Emails sent by you to admin@bighelpers.in or any other staff address.

It does not cover third-party websites you may visit by clicking external links. Each third-party site has its own privacy policy. See the Disclaimer.

We deliberately collect the minimum personal data needed to operate the Site. Categories:

• Newsletter subscription: your email address, if you subscribe to the monthly RTI digest.
• Feedback / correction forms: content you type, and optionally an email for follow-up.
• RTI drafting tool input: the free-text you paste or type into the drafter.
• Email to admin@bighelpers.in: whatever you include in your message.

• Technical log data: IP address, user-agent string, HTTP referrer, timestamp — held in standard web-server logs.
• Anonymised engagement counters: page views, “like”, “love”, “save”, “subscribe” clicks. These are stored as aggregate counts per page and do not identify individual users.
• Locally-stored data (your browser only): Save article, My Learnings dashboard state, reading-streak counters, theme preference (dark / light), font-size setting. This data lives in your browser's localStorage and never leaves your device unless you choose to share it.

• No account registration is required to read content.
• We do not sell, rent, or trade personal data to any third party.
• We do not collect biometric, financial, health, or children's data.
• We do not use session-recording or keystroke-tracking technologies.

Under the DPDP Act, 2023 (§7 — legitimate uses) and GDPR Article 6, we process personal data for:

• Delivering the service you asked for — showing a page, replying to an email, sending the digest you subscribed to.
• Operational analytics — understanding which pages are read most, to improve editorial priorities (anonymous, aggregated).
• Security — detecting and preventing abuse, attacks, and fraud.
• Legal compliance — complying with lawful demands from courts, regulators, and law-enforcement.

We do not profile users for advertising or behavioural targeting beyond what our ad networks do under their own policies (see Section 8).

Depending on the data and the user's location, our lawful basis is:

• DPDP Act, 2023 (India): §6 (consent) for newsletter and feedback, and §7(f)–(i) (legitimate uses) for server logs, security, and compliance.
• GDPR (EU / EEA visitors): Article 6(1)(a) (consent) for newsletter and feedback, Article 6(1)(f) (legitimate interest) for technical logs and analytics, and Article 6(1)© (legal obligation) for compliance processing.
• UK GDPR: mirrors EU GDPR.
• CCPA / CPRA (California visitors): “business purpose” under §1798.140(e) for service delivery, security, and short-term transient use.

• By using the Site, you consent to the placement of strictly-necessary cookies (for example, theme preference, CSRF tokens) and to the minimal log processing described above.
• For AdSense personalisation and analytics cookies, a cookie-consent banner collects your explicit consent on first visit. You may revoke consent any time by clearing cookies or using Google's Ads Settings at adssettings.google.com.
• To withdraw consent for newsletter emails, click the unsubscribe link in any digest, or email admin@bighelpers.in.
• To withdraw consent for feedback data, email with a subject line “Delete my feedback data” along with the approximate date of your submission.

We use cookies and similar technologies in three categories:

• DokuWiki session cookies (session login, if you sign in as an editor).
• CSRF protection cookies.
• Cookie-consent choice record.

These cannot be disabled without breaking basic site functionality.

• Theme (light/dark) and font-size preferences — set by JavaScript, stored in localStorage. No cross-site tracking.
• My Learnings dashboard state — stored in localStorage, never transmitted.

• Google AdSense (publisher ID: pub-3082882621726443) — places cookies to show contextual ads, limit ad frequency, and measure performance.
• Google Fonts — if enabled, fetches font files from fonts.googleapis.com.
• Google Translate widget — if you opt-in to translate a page.

You can manage these via the cookie-consent banner, your browser settings, or Google Ads Settings (adssettings.google.com). Opting out of personalised ads does not remove ads; it only makes them generic.

See Section 8 for detailed ad-network disclosure.

The Site participates in the Google AdSense programme. In plain English:

• Third-party vendors, including Google, use cookies to serve ads based on a user's prior visits to this website or other websites.
• Google's use of advertising cookies enables Google and its partners to serve ads to users based on their visit to this Site and other sites on the Internet.
• Users may opt out of personalised advertising by visiting Google Ads Settings at adssettings.google.com or www.aboutads.info/choices (the Digital Advertising Alliance's opt-out portal).
• Third-party ad serving is governed by Google's own policies: policies.google.com/technologies/partner-sites and policies.google.com/privacy.
• DoubleClick DART cookie / equivalent: may be used by Google to serve ads to our users based on their visit to our Site and other sites on the Internet.
• EU / UK / Swiss users: AdSense automatically restricts personalised advertising and requires a consent banner under the ePrivacy Directive — ours is displayed on first visit to the Site.

To report an advertisement displayed on the Site that you believe is harmful, deceptive, or inappropriate, email admin@bighelpers.in with a screenshot and the page URL.

The ads.txt file at /ads.txt identifies the Site's authorised ad sellers in line with the IAB's Authorised Digital Sellers standard.

• Service providers (processors): our hosting provider and CDN, for the sole purpose of delivering the Site.
• Advertising partners: Google LLC (AdSense), subject to Google's policies.
• Legal and regulatory authorities: when required by law, regulation, court order, or lawful government request.
• Prospective buyers: in the event of a merger, acquisition, or asset transfer, personal data may be transferred as part of the deal, subject to continuing privacy protections.

We do not:

• Sell or rent personal data.
• Share personal data for independent marketing by third parties.
• Share personal data with the Government of India, any state government, any political party, or any advocacy organisation, except pursuant to a lawful order.

Some service providers (including Google) are located outside India and the EU/UK. When personal data is transferred internationally, we rely on:

• Standard Contractual Clauses (SCCs) adopted by the European Commission.
• UK IDTA (International Data Transfer Agreement), where applicable.
• DPDP Rules 2025 provisions on cross-border transfer, which currently permit transfer to any country not specifically restricted by the Central Government.

If you are an EU/UK/EEA resident and wish to see the SCC template used by our hosting provider, email admin@bighelpers.in.

• Server logs: 30 days, for security and debugging.
• Newsletter email: until you unsubscribe, plus 90 days for administrative and audit purposes.
• Feedback content: up to 2 years from submission, or until you request deletion.
• Anonymous page counters: indefinitely, as aggregated metrics.
• Locally-stored data (localStorage): controlled by your browser; clearing site data deletes it.

Retention periods may be extended where required by Indian law (for example, IT Act, 2000 rules for intermediaries).

Under the DPDP Act, 2023, GDPR, and CCPA, you have the following rights (subject to exceptions):

• Right to access — request confirmation that we hold data about you and a copy of that data.
• Right to correction — correct inaccurate data.
• Right to erasure — ask us to delete your data, subject to legitimate retention exceptions.
• Right to withdraw consent — where consent is the lawful basis.
• Right to grievance redressal — under DPDP, first to us; if unresolved, to the Data Protection Board of India.
• Right to portability — receive your data in a commonly-used, machine-readable format (limited applicability given the minimal data we hold).
• Right to nominate — under §14 of the DPDP Act, 2023, you may nominate another individual to exercise these rights in case of your death or incapacity.
• Right to object — to processing based on legitimate interest (GDPR Article 21).
• Right to opt-out of sale (CCPA): we do not sell personal data, so no action is needed.

To exercise any right, email admin@bighelpers.in with “Data rights request” in the subject line. We respond within 30 days (DPDP) or 1 month (GDPR), whichever is shorter.

If you are dissatisfied with our response, you may:

• India: complain to the Data Protection Board of India under §27 of the DPDP Act, 2023.
• EU/EEA: complain to your national supervisory authority (e.g., CNIL in France, Garante in Italy, Datatilsynet in Denmark).
• UK: complain to the Information Commissioner's Office (ICO) at ico.org.uk.
• California: complain to the California Privacy Protection Agency at cppa.ca.gov.

• The Site is a general-audience information resource and is not directed at children under 18.
• We do not knowingly collect personal data of children under 18 (DPDP Act definition).
• If you are under 18, please do not subscribe to the newsletter or submit feedback without the consent of a parent or legal guardian.
• If you believe a child has submitted data to us, email admin@bighelpers.in and we will delete it promptly.

• Data in transit is protected by HTTPS with TLS 1.2+.
• Strict-Transport-Security, Content-Security-Policy, and X-Frame-Options headers are applied site-wide.
• Access to the server is restricted to authorised personnel and uses multi-factor authentication where available.
• We run routine security reviews and patch promptly when critical vulnerabilities are disclosed.
• Despite these measures, no system is perfectly secure. In the unlikely event of a data breach affecting personal data, we will notify affected users and the Data Protection Board of India within the timeline prescribed by the DPDP Rules, 2025 (currently 72 hours).

• The Site honours the Global Privacy Control (GPC) signal where transmitted by your browser, treating it as a CCPA opt-out request.
• We do not currently recognise the legacy “Do Not Track” HTTP header, which is not standardised.

• We may update this policy when the law changes, when Site features change, or for clarity.
• Material changes will be highlighted at the top of this page with a new “Last updated” date.
• If you subscribed to the newsletter, we will email you before any material change takes effect.
• Continued use of the Site after a material change signifies acceptance of the revised policy.

For all privacy-related questions, requests, consent management, and grievances:

• Grievance Officer and Data Protection contact: admin@bighelpers.in
• Response SLA: 30 days under DPDP Act, 2023; 1 month under GDPR.

For advertising enquiries, editorial corrections, and general communications, the same address applies: admin@bighelpers.in.

• Disclaimer
• Editorial Policy
• Editor
• What is RTI Wiki?
• Press / Media Kit

This Privacy Policy is drafted to reflect the Digital Personal Data Protection Act, 2023 (India), the DPDP Rules, 2025, the Information Technology (Reasonable Security Practices) Rules, 2011, the General Data Protection Regulation (EU) 2016/679, the UK Data Protection Act, 2018, the California Consumer Privacy Act / California Privacy Rights Act, 2020, the ePrivacy Directive 2002/58/EC (as amended), and prevailing guidance from Google's Publisher Policies. Readers are advised to consult qualified legal counsel for compliance with the law applicable to their specific facts.