Privacy Policy

This Privacy Policy explains how Risklity ("We", "Us", or "Our") collects, uses, and shares information when you use our mobile application. By using the App, you agree to the collection and use of information in accordance with this policy.

1. Definitions

• App: Refers to the Risklity mobile application.
• Personal Data: Information that can be used to identify you, such as your name and email address.
• User Content: Text, images, or other media you upload to the App for scanning.
• Service Provider: Third-party companies (e.g., Google) employed to facilitate our Service.

2. What Information We Collect

We collect different types of information to provide and improve our Service.

A. Personal Information

When you sign in using your Google Account, we collect the following basic profile information:

• Full Name
• Email Address
• Profile Picture

B. User Content (Scanned Data)

To perform risk and scam detection, you may provide us with:

• Screenshots or images for scanning.
• Text content or links.

C. Advertising Data

To support our free services via advertisements, we and our partners may collect:

• Device Identifiers: Such as the Android Advertising ID (AAID).
• Advertising Interactions: Information about your interactions with ads (e.g., clicks, impressions).

D. Usage & Diagnostics Data

To improve app stability and user experience, we collect:

• Crash Logs: Data sent when the app crashes (e.g., stack traces, device state).
• Performance Metrics: App launch time, screen rendering time, and network request latencies.
• Usage Analytics: Information on how you use the app, such as screens visited and features used.

E. Purchase & Transaction Information

If you make purchases (such as Premium subscriptions), we process purchase history and subscription validity. Note: We do not store or process your actual payment details (e.g., credit card numbers). Payment transactions are handled securely by Google Play.

3. How We Use Your Information

We use the collected data for the following purposes:

• Authentication: To verify your identity and manage your account via Google Sign-In.
• Service Provision: To scan your User Content using Artificial Intelligence (Google Gemini API or OpenAI models) to detect potential scams or risks.
• Payments & Subscriptions: To validate purchase receipts, manage subscription status, and sync premium features via RevenueCat.
• Analytics & Stability: To monitor app performance, detect and fix crashes (Crashlytics), and understand user behavior to improve features.
• Advertising: To display personalized or non-personalized advertisements via Google AdMob to support the App's maintenance.
• Communication: To contact you regarding updates, security alerts, or support.

4. Data Retention & Deletion

We value your privacy and limit data retention to the strict minimum required for operation:

• User Content: Images and text uploaded for scanning are processed temporarily. Due to system processing requirements, this content is automatically deleted from our servers within 24 hours of upload. We do not permanently store your scanned content.
• Personal Data: Account information is retained as long as your account remains active. You may request account deletion at any time.
• Analytics Data: Log data and analytics are typically retained for a limited period (e.g., 2 to 14 months) as defined by Firebase policies, after which it is aggregated or deleted.

5. Third-Party Services & Data Sharing

We do not sell your personal data. However, we share data with trusted third-party providers to operate the App. These services have their own privacy policies which we encourage you to review:

• Google Analytics for Firebase: Collects usage data to help us understand how users interact with the app.
  Google Analytics for Firebase Terms
• Firebase Crashlytics: Collects crash reports and stack traces to help us fix bugs.
  Firebase Crashlytics Privacy
• Google Cloud Platform: Provides the underlying secure infrastructure.
  Google Cloud Privacy Notice
• RevenueCat: Manages in-app subscriptions and purchase validation.
  RevenueCat Privacy Policy
• Google Gemini API: User Content is sent to Google's AI servers for scanning. Data processed via the paid API is generally not used by Google to train their models.
  Google Privacy Policy
• OpenAI API: User Content is sent to OpenAI servers for scanning. Data processed via the paid API is generally not used by OpenAI to train their models.
  OpenAI Privacy Policy
• Google AdMob: Uses device identifiers to serve ads.
  Google AdMob & Ad Technology

6. European General Data Protection Regulation (GDPR)

If you are a resident of the European Economic Area (EEA), you have certain data protection rights. Risklity aims to take reasonable steps to allow you to correct, amend, delete, or limit the use of your Personal Data.

Your rights include:

• The right to access: You can request copies of your personal data.
• The right to rectification: You can request that we correct any information you believe is inaccurate.
• The right to erasure: You can request that we delete your personal data ("Right to be forgotten").
• The right to data portability: You can request that we transfer the data that we have collected to you.

To exercise these rights, please contact us using the details provided in the "Contact Us" section below.

7. Indian Digital Personal Data Protection Act, 2023 (DPDP Act)

If you are a resident of India, we process your personal data in accordance with the Digital Personal Data Protection Act, 2023. As a Data Principal, you have the following rights:

• Right to Access: You may request a summary of the personal data we process and the identities of other Data Fiduciaries with whom we have shared your data.
• Right to Correction and Erasure: You have the right to request correction of inaccurate data or deletion of your personal data, subject to retention required by law.
• Right to Grievance Redressal: You may contact us to register a grievance regarding the processing of your data.
• Right to Nominate: You have the right to nominate an individual to exercise your rights in the event of death or incapacity.

To exercise these rights, please contact us using the details provided in the "Contact Us" section below.

8. Security of Data

The security of your data is important to us. We use commercially acceptable means, including encryption and secure protocols (HTTPS), to protect your Personal Data. However, no method of transmission over the Internet is 100% secure.

9. Children's Privacy

Our Service does not address anyone under the age of 13. We do not knowingly collect personally identifiable information from anyone under the age of 13. If you are a parent or guardian and you are aware that your child has provided us with Personal Data, please contact us.

10. About the Developer

Risklity is developed, owned, and operated by an individual developer based in India. We are committed to transparency and the ethical use of technology.

11. Governing Law

This Privacy Policy shall be governed and construed in accordance with the laws of India, without regard to its conflict of law provisions.

12. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date at the top.

13. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your data rights, please contact us at:

• Email: legal@risklity.com
• Visit our Contact Page for more details.
• Visit Account Deletion page to delete account.