Privacy Protocol
DATA
GOVERNANCE.
VERSION: 1.0.0 // SECURED
LAST_SYNC: APRIL 01, 2026
1.0 Dynamic Data Ingestion
AIRA operates on a zero-trust data acquisition framework. We ingest high-fidelity identity markers essential for the orchestration of multi-channel AI-driven assessments.
[0] SYSTEM_IDENTITY
Legal Name, Institutional Email, RBAC Role (Student/University/Recruiter), and preferred session identifiers.
[1] TELEMETRY_MATRIX
Browser fingerprinting, IP geolocation for regional pricing localization, and behavioral assessment telemetry.
2.0 AI Assessment Entropy
Candidate responses and difficulty-scaling algorithms generate transient assessment logs. This data is utilized strictly for performance mapping and is never shared beyond the authorizing institution.
// RETENTION_PROTOCOL: ACTIVE_PENDING
Assessments results are retained for a period of 12 months for institutional longitudinal analysis, after which they are moved to high-durability archival storage or purged upon institutional request.
3.0 Financial Fulfillment (Strict Threshold)
All transactions via the Razorpay gateway are governed by a specialized synchronization window:
Refund requests are only eligible for processing within 48 hours of the successful payment transaction.
After the 48-hour threshold has elapsed, the fulfillment state is considered locked. No refunds will be issued once the assessment round has been initiated or dispatched.
4.0 Cryptographic Perimeter
Data security is not a feature; it is an invariant. AIRA implements a multi-layer cryptographic perimeter:
- AES-256-GCM E2EEAll outbound and inbound assessment payloads are encrypted with authenticated symmetry.
- AWS Cognito SRPAuthentication utilizes the Secure Remote Password protocol; plaintext passwords never leave the end-user's device.
5.0 Institutional Data Integrity
AIRA maintains a zero-sharing policy for cross-institutional datasets. Your assessment benchmarks and performance distributions are protected by institutional isolation barriers. We do not sell, rent, or lease candidate identifiers to any third-party marketing entities.
SECURITY CONTACT: security@aira.io
INQUIRY_ROUTING: hello@aira.io