Privacy Policy
Last updated: 8 May 2026
AstroKaal ("we", "us", or "the app") is published by ProGen Labs. We take your privacy seriously. This policy describes what we collect, why, and what choices you have.
What we collect
Identity & sign-in
- Phone number (when you sign in with Phone OTP) or email address (Google Sign-In).
- Firebase Authentication user ID, used internally to identify your wallet and reports.
Birth details you enter
- Name, date of birth, time of birth, place of birth.
- This data is used to compute your Kundali on our server and is stored against your account in Firestore so you don't have to re-enter it.
Wallet & purchases
- Wallet balance, recharge history, deduction history. Stored on our server and visible to you in Transactions.
- Purchases happen via Google Play Billing. Your card or UPI details never reach AstroKaal — Google handles the payment instrument.
Diagnostics
- App crash reports (Firebase Crashlytics).
- Aggregated event counts (Firebase Analytics) such as which screen you opened, no message content captured.
- The latest Firebase installation ID, used to attribute crashes and analytics to a device.
Phone numbers and names you submit for analysis
- Optional inputs in Numerology (phone numbers and alternate names).
- These are processed in memory to compute the report, returned to you, and stored alongside the saved report.
Palm photos
- Held in memory only for the duration of the analysis request, sent to Google Gemini for AI vision interpretation, then dropped.
- We never store palm photos to Firestore, Cloud Storage, or any persistent server location.
What we do not collect
- Your real-time GPS location.
- Your contacts, SMS, microphone, or camera roll — we only ask for camera/storage permission while you are taking a palm photo and we don't enumerate other photos.
- Any payment-instrument data such as card numbers or UPI handles — that lives at Google.
How your data is used
- To compute your reports and deliver paid features you requested.
- To prevent abuse (Firebase App Check verifies the request comes from the real signed app).
- To diagnose crashes and improve the app (Crashlytics).
We do not sell your data, and we do not share your reports with anyone outside the third-party processors named below who are necessary to run the service.
Third-party processors
| Processor | Purpose | Data shared |
|---|---|---|
| Google Firebase | Authentication, Firestore database, Crashlytics, Analytics, App Check | Sign-in identifiers, Kundali data, wallet ledger, crash logs |
| Google Cloud Run | API server hosting | API request payloads in transit; logs anonymised within 90 days |
| Google Play Billing | Payments | Purchase token (Google issues, server verifies) |
| Google Gemini API | Palm-photo analysis, AI astrologer chat responses | Palm photo (per request, not stored), chat message + your kundali context |
| Anthropic Claude API | AI astrologer chat responses (some gurus) | Chat message + your kundali context |
Data retention
- Account-bound data (profile, wallet, reports) is retained until you request deletion.
- Server-side request logs are retained for up to 90 days, then anonymised.
- Tax-related payment records are retained for up to 7 years as required by Indian tax law (Income Tax Act, GST Act). These records do not contain your name or contact information — they are keyed only to the Google Play order ID.
Your rights
- Access & correction. The Profile menu inside the app shows everything we hold about you and lets you edit your birth details.
- Deletion. See Delete Account for the full procedure.
- Withdraw consent. You can stop using the app and request deletion at any time.
- Portability. Email support@astrokaal.com and we'll provide your data as a machine-readable JSON export within 30 days.
Children
AstroKaal is rated for users 18 years and older. We do not knowingly collect data from minors. If you believe a child has signed up, contact us and we will delete the account.
Security
- All API calls are made over HTTPS.
- Firebase App Check verifies that requests come from the genuine, signed app.
- The wallet ledger is server-side and atomic — balance changes only via Firestore transactions and cannot be tampered with from the client.
- The keystore used to sign the app is stored offline and not in source control.
Changes to this policy
If this policy materially changes, we will display a notice in the app the next time you launch it. Past versions are available on request.
Contact
Questions? Write to support@astrokaal.com or visit our contact page.