Privacy Policy

Effective date: June 19, 2026 · Version 1.0

1. Introduction

Kaal (“we”, “us”, or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the Kaal application (the “App”). Please read this policy carefully. If you disagree with its terms, please discontinue use of the App.

2. Information We Collect

We collect the following categories of information:

Account information. When you create an account, we collect your email address and display name. If you sign in with Google, Apple, or Microsoft, we receive the basic profile information you authorize.
App data. Tasks, habits, goals, notes, calendar events, and other content you create in the App.
Profile photo (optional). If you choose an avatar photo, it is selected through your device’s system photo picker and stored on your device; it is uploaded only as part of your synced profile if sync is enabled.
Usage & device data. Aggregated or anonymized information about how you interact with the App, plus device type, OS version, and crash logs, used to fix bugs and improve the App.
Payment information. We do not collect or store your payment card details. All purchases are processed by the Apple App Store or Google Play Store under their respective privacy policies.

3. Google User Data & Limited Use

If you choose to connect your Google account, Kaal requests read-only access to your Google Calendar (calendar.readonly) so it can display your events alongside your plan. Kaal does not create, edit, or delete Google Calendar data. (Gmail-based inbox parsing is not enabled in this version; if it is introduced in a future release, it will request read-only Gmail access and this policy will be updated first.)

Kaal’s use and transfer of information received from Google APIs to any other app will adhere to the Google API Services User Data Policy, including the Limited Use requirements. Specifically, Google user data is used only to provide and improve the features you requested; it is not sold, not used for advertising, and not used to train generalized AI/ML models. We do not transfer this data to third parties except as necessary to provide the App, for security, or to comply with applicable law. You can disconnect Google access at any time in the App, which revokes the stored token.

4. How We Use Your Information

Provide, maintain, and improve the App.
Sync your data across your devices.
Send service-related notifications, such as reminders you set.
Respond to your support requests.
Detect and prevent fraud, abuse, and security issues.
Comply with legal obligations.

We do not use your App data (tasks, notes, habits) or Google user data for advertising, and we do not sell it to third parties.

5. Data Storage & Security

Your data is stored locally on your device and, when sync is enabled, on secured cloud servers (Supabase). We use industry-standard encryption (TLS in transit, encryption at rest). Access tokens for connected accounts are kept in your device’s encrypted secure storage. No method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

6. Third-Party Services

The App relies on the following third-party services, each with its own privacy policy:

Supabase — cloud database and authentication.
Google Sign-In / Google APIs — if you connect Google Calendar.
Apple Sign-In — if you sign in with Apple.
Microsoft Authentication — if you sign in with Microsoft.

We encourage you to review the privacy policies of these services. We are not responsible for their data practices.

7. Data Sharing

We do not sell, trade, or rent your personal information. We may share information with:

Service providers who help us operate the App (e.g., cloud hosting), bound by confidentiality obligations.
Law enforcement or government authorities when required by applicable law.
A successor entity in a merger, acquisition, or sale of assets, with prior notice to you.

8. Your Rights & Choices

Access — request a copy of the data we hold about you.
Correction — request correction of inaccurate data.
Deletion — delete your account and associated data in Profile → Edit profile. Data is deleted or anonymized within 30 days.
Portability — request an export of your data.
Disconnect — revoke any connected account (e.g., Google) in the App at any time.

To exercise these rights, contact r.official@jumbarthi.com.

9. GDPR (European Users)

If you are in the European Economic Area, our lawful bases for processing are contract performance (to provide the features you requested), legitimate interests (to improve the App and prevent fraud), and consent (for optional features such as analytics). You may lodge a complaint with your local data protection authority.

10. CCPA (California Users)

California residents have the right to know what personal information we collect, to delete it, and to opt out of its sale. We do not sell personal information. To submit a request, contact r.official@jumbarthi.com.

11. Children’s Privacy

The App is not directed at children under 13, and we do not knowingly collect personal information from them. If you believe a child under 13 has provided us information, contact r.official@jumbarthi.com and we will delete it.

12. Data Retention

We retain your data for as long as your account is active or as needed to provide the App. If you delete your account, we delete or anonymize your personal data within 30 days, except where retention is required for legal or compliance purposes.

13. Changes to This Policy

We may update this Privacy Policy periodically and will notify you of material changes via in-app notification or email before they take effect. The “Effective date” above indicates when the policy was last revised.

14. Contact Us

For questions, concerns, or requests regarding this Privacy Policy, contact:

r.official@jumbarthi.com
Kaal · Hyderabad, India