This Privacy Policy explains how Zickr (“we”, “us”, “our”) collects, uses, stores, and protects your information when you use the Zickr mobile application and related services (collectively, the “App”), including our website at zickr.app. By using the App, you agree to the practices described here.
If you do not agree, please do not use the App.
1. Who we are
Zickr operates a mobile platform for discovering events, hosting gatherings, joining communities, messaging, and related social features. The App is built with Flutter and uses Supabase for authentication, database, storage, and server-side functions. For privacy questions, contact support@zickr.app.
2. Information we collect
2.1 Account and profile
- Username, email, phone number (if provided), profile photo, age, gender, city, and other profile fields you choose to add
- Sign-in data from authentication providers (e.g. email/password, Google, Facebook) managed through Supabase Auth
- App role and host-related details where applicable (e.g. host payout information you submit for settlements)
2.2 Content you provide
- Events you create or join, including descriptions, pricing, capacity, visibility (public/private), and custom questions
- Approval “vibe” videos, event posts, images, and other media uploaded to our storage buckets
- Messages in event and community chats, follow requests, and in-app notifications
- Community membership and private-event access preferences
2.3 Location
- City, address details, and coordinates you enter or confirm for events
- Device location only when you grant permission and a feature requires it (e.g. nearby discovery)
2.4 Usage and technical data
- App interactions, feature usage, crash logs, and diagnostics
- Device type, OS version, app version, IP address, and timestamps
- QR check-in / event entry records where hosts scan tickets
- Squad preview views and approval video view counts where those features are enabled
2.5 Payments
- Ticket purchases are processed by Razorpay (or other payment partners we designate). We do not store full card or UPI credentials on our servers.
- We receive transaction metadata such as order ID, payment status, amounts, platform fee, host share, refund status, and payout settlement records for support and compliance.
3. How we use your information
- Provide, secure, and improve the App and its features
- Process bookings, payments, refunds, and host payouts
- Send in-app notifications (e.g. approvals, events, payouts) and service messages
- Enforce our Terms, prevent fraud, and protect users
- Comply with law and respond to lawful requests
4. Legal basis (where applicable)
Depending on your location, we process data based on contract performance, consent, legitimate interests (security, analytics, product improvement), and legal obligations.
5. Storage and security
Data is stored using Supabase and related cloud infrastructure with HTTPS/TLS in transit, access controls, and row-level security policies where configured. No method is 100% secure; we work to protect your data but cannot guarantee absolute security.
6. Retention
We retain information while your account is active and as needed for operations, disputes, fraud prevention, and legal requirements. After account deletion, we delete or anonymize data within a reasonable period, except where retention is required by law or legitimate business needs (e.g. payment records).
7. Sharing and third parties
We do not sell your personal information. We may share data with:
- Supabase — auth, database, storage, edge functions
- Razorpay — payment processing
- Google / Facebook — if you choose social sign-in
- Analytics, email, and infrastructure providers that help operate the App
- Law enforcement or regulators when required by law or to protect safety
- Successors in a merger or acquisition, with appropriate safeguards
Event hosts may see information you submit to join their events (e.g. approval videos, answers to custom questions) as part of the service.
8. Your rights
Subject to applicable law (including Indian data protection rules where they apply), you may request access, correction, deletion, restriction, portability, or withdrawal of consent. Contact support@zickr.app. We may verify your identity before acting.
9. Account and data deletion
You may delete your account in the App (Profile → menu → Delete account) or email support@zickr.app with subject line Data Deletion Request. We aim to process eligible requests within 30 days. Some data may persist in backups or where legally required (e.g. payment audit trails).
10. Children
The App is not intended for users under 18. We do not knowingly collect data from children. Contact us if you believe a child has provided personal data.
11. International transfers
Your data may be processed on servers outside India. We use appropriate safeguards where required for cross-border transfers.
12. Changes
We may update this policy and change the “Last updated” date. Material changes may be notified in the App or by email where appropriate. Continued use after the effective date constitutes acceptance where permitted by law.
13. Contact
Email: support@zickr.app
Subject: Privacy Request or Privacy Grievance
We aim to respond within 5–7 business days.