Effective: June 1, 2025
Welcome to Medha ("we", "our", "us"), a service operated by BVK Investment and Advisory. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, install our Progressive Web App, or play our quizzes. Please read this policy carefully. By using Medha, you consent to the practices described below.
a. Account information: When you sign up, we collect your name, email address, and a hashed password. We do not store passwords in plain text.
b. Gameplay data: We store your quiz history, scores, coins earned, XP, streaks, leaderboard positions, transactions, and referral activity.
c. Device & usage: We may collect anonymous device info (browser type, OS, screen size), IP address, and interaction events to improve performance and detect abuse.
d. Cookies & local storage: We use browser local storage to keep you logged in (JWT) and to remember preferences. We do not use third-party tracking cookies beyond what AdSense places (see Section 4).
To keep quizzes fair, we log behavior such as tab-switching during a quiz, time taken per question, and answer patterns. Scores are validated entirely on our server — clients cannot self-report scores. Repeated suspicious activity may result in reduced rewards or account suspension.
a. Google AdSense: We display ads via Google AdSense. Google and its partners may use cookies and similar technologies to serve ads based on your prior visits to this and other websites. You may opt out of personalized advertising by visiting Google Ads Settings or aboutads.info.
b. AI providers: Quiz questions may be generated dynamically via AI providers (OpenAI, Google Gemini, Anthropic) routed through an Emergent Universal LLM proxy. Only the topic and difficulty are sent — no personally identifying information is included in prompts.
c. MongoDB Atlas: Your account and gameplay data are stored in a managed MongoDB database.
d. Hosting: Medha is hosted on Emergent's managed Kubernetes platform.
To play a quiz, you may be asked to view a short advertisement. In exchange, you receive bonus in-app coins. Coins are virtual items with no real-world monetary value and cannot be exchanged for cash or transferred outside the Medha platform. We employ cooldown limits to prevent abuse of ad-watch rewards.
Medha is not directed to children under 13 years of age (or the equivalent minimum age in the relevant jurisdiction). We do not knowingly collect personal information from children under 13. If you become aware that a child has provided us with personal information, please contact us so we can take appropriate action.
We retain your account information for as long as your account is active. If you request account deletion, we will remove personally identifying information within 30 days, while retaining aggregated, anonymized analytics for service improvement. Backup copies may persist for up to 90 days.
To exercise any of these rights, email us at [email protected].
We implement industry-standard security measures including HTTPS/TLS encryption in transit, bcrypt password hashing, server-side score validation, JWT-based session management with expiration, and isolated database connections. However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.
Your information may be transferred to and processed in countries other than your country of residence. By using Medha, you consent to such transfers, subject to appropriate safeguards.
We may update this Privacy Policy from time to time. We will notify you of material changes by posting the new policy on this page with an updated effective date. Continued use of Medha after changes constitutes acceptance.
If you have any questions about this Privacy Policy or our data practices, contact us at:
Medha is operated by BVK Investment and Advisory.