The National Human Rights Commission (NHRC) has issued notices to several central ministries as well as to all states and union territories after serious concerns were raised about the protection of children’s personal data in an Artificial Intelligence-based education programme. The Commission has asked the Union Ministry of Electronics and Information Technology, the Department of School Education and Literacy, and the Department of Higher Education to respond to the allegations. It has also directed all Chief Secretaries and Union Territory Administrators to look into the matter and submit reports.

The action was taken by a Bench headed by NHRC Member Priyank Kanoongo. The Commission took cognisance of a complaint submitted by NAMO Foundation, which is a Section 8 non-profit company. The complaint expressed concern over possible risks to children’s privacy arising from a collaboration between a United States-based Artificial Intelligence company, Anthropic, and the NGO Pratham. According to the complaint, this partnership involves the use of an AI-driven system called the “Anytime Testing Machine (ATM).” The system is designed to scan and process children’s handwritten answers and academic records.

The complainant alleged that the use of this AI-based system could expose minors to serious risks related to the collection, processing, storage, and even cross-border transfer of their personal data. It was further claimed that such activities may raise concerns under the Digital Personal Data Protection (DPDP) Act, 2023. The complaint suggested that without strong safeguards, children’s sensitive data could be mishandled or transferred outside India without adequate legal protection.

The complainant also referred to a report titled “Children’s Privacy at Stake? Assessing Data Breach Risks in the Pratham-Anthropic AI Collaboration under India’s DPDP Act.” This report reportedly highlighted the possibility that weak data protection measures could put children’s safety and personal information at risk.

In its plea before the Commission, the complainant sought immediate intervention. It requested that the NHRC examine the potential risks to children’s data privacy and ensure that proper safeguards are put in place. The appeal stressed the need to protect minors from any possible misuse of their personal and academic information. It also underlined the importance of ensuring that all actions related to the project comply fully with Indian data protection laws.

After reviewing the complaint, the NHRC observed that the allegations, if found to be true, “prima facie indicate violations of human rights relating to privacy and protection of minors.” Taking note of the seriousness of the issue, the Commission issued notices under Section 12 of the Protection of Human Rights Act, 1993. Through these notices, the NHRC has sought detailed responses from the concerned authorities.

The Commission has directed all Chief Secretaries of states and Administrators of Union Territories to conduct inquiries into the allegations. It has asked them to ensure that any data collected by Pratham, Central Square Foundation, or any NGO working with or for governments is not misused. The Commission specifically instructed that such data handling must not violate the provisions of the DPDP Act, 2023, or any other Indian law. The state governments have also been told to review any Memoranda of Understanding (MoUs) or partnerships they have entered into with such organisations. This review is meant to check whether adequate data protection safeguards are included in these agreements.

Separate notices have also been issued to the Secretary of the Union Ministry of Electronics and Information Technology, the Secretary of the Department of Higher Education, and the Secretary of the Department of School Education and Literacy. The Commission has asked these departments to provide reports detailing the safeguards that are currently in place for the use of AI systems in the education sector. It wants to know what steps have been taken to ensure that children’s personal data is protected when such technologies are introduced in schools and educational programmes.

The NHRC has asked all concerned authorities to submit Action Taken Reports (ATRs) within two weeks. These reports will be examined by the Commission to determine whether children’s data privacy is being properly safeguarded and whether further action is required. The matter is being treated seriously in view of the possible impact on minors’ rights and privacy. The Commission’s intervention highlights growing concerns about the use of Artificial Intelligence in education and the need to balance technological advancement with strong legal and ethical protections for children.