Privacy Policy

Last updated: February 26, 2026

Kindly ("we", "our", "the app") is a mindful status-sharing application. Your privacy matters to us. This policy explains what data we collect, how we use it, and your rights.

1. Information We Collect

Account information: When you register, we collect your email address, username, and password. Passwords are securely hashed and never stored in plain text.

Profile information: You may optionally provide a profile photo, bio, and intent tags to personalize your experience.

Content you create: Pulses (text, photos, videos), chat messages (text, images, videos, voice recordings, files), and reactions you send or receive.

Usage data: Warmth scores (an in-app engagement metric), pulse view history, and online status to power app features.

Device tokens: We collect Firebase Cloud Messaging (FCM) tokens solely to deliver push notifications you have opted into.

2. Information We Do NOT Collect

• Precise or coarse location data
• Contacts or address book from your device
• Financial or payment information
• Advertising identifiers
• Browsing history outside the app

3. How We Use Your Information

• To provide and operate app features (pulses, chat, contacts, notifications)
• To display your profile to your contacts based on your chosen privacy level
• To deliver push notifications you have enabled
• To calculate your Warmth Score (a positive engagement metric)
• To enforce safety features (blocking, reporting)

4. Data Storage and Security

Your data is stored securely on Supabase infrastructure, which uses PostgreSQL databases with Row-Level Security (RLS) policies ensuring users can only access their own data and data shared with them.

All data is transmitted over HTTPS/TLS encryption. Media files are stored in secure cloud storage buckets with access controls.

5. Data Sharing

We do not sell, rent, or share your personal data with third parties for advertising or marketing purposes.

Your data may be shared only in these cases:

• With your contacts: Profile info, pulses, and messages are visible to users you connect with, based on your privacy and visibility settings.
• Service providers: We use Supabase (database/storage), Firebase (push notifications), and Google Fonts (typography). These services process data as needed to operate the app.
• Legal requirements: If required by law, regulation, or legal process.

6. Data Retention

• Pulses: Automatically expire based on the duration you set (1 hour to 7 days).
• Messages: Retained until you delete them. Deleted messages are soft-deleted and no longer visible to participants.
• Account data: Retained while your account is active. You may delete your account at any time (see below).

7. Your Rights

You have the right to:

• Access your data through your profile and chat history
• Edit your profile information at any time
• Delete messages you have sent
• Block and report other users
• Delete your account entirely from the app's Settings screen, which removes your personal data from our systems
• Control notifications through in-app settings and device OS settings

8. Children's Privacy

Kindly is not intended for children under 13. We do not knowingly collect data from children under 13. If you believe a child under 13 has provided us with personal data, please contact us so we can remove it.

9. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of material changes through the app or by updating the "Last updated" date above.

10. Contact Us

If you have questions about this privacy policy or your data, contact us at:

Email: kindlyapp.contact@gmail.com