Privacy Policy

1 Information We Collect

When you use RetainIt, we may collect:

• Account Information: Name, email address and profile picture from Google OAuth sign-in. During onboarding, we also collect your preferred language.
• Phone Number (Optional): If you choose to provide it during onboarding, we collect your phone number for important exam reminders. This is entirely optional.
• Usage Data: How you interact with the app, including articles read, quiz scores, quiz attempts (per-question responses and time taken), flashcard progress, weak topic accuracy, study streaks, XP earned, and feature usage.
• Device Information: Operating system name and version, and device push notification tokens (FCM tokens) for delivering notifications.
• User Content: Notes, annotations, highlight colours, bookmarks, saved articles, and custom study collections you create within the app.
• Analytics Data: We use Firebase Analytics to collect screen views, screen time duration, app interaction events, and approximate location (country/region) to improve the user experience.

2 How We Use Your Information

We use your information to:

• Provide and personalise your study experience, including content in your preferred language
• Generate adaptive recommendations based on your quiz performance and weak topics
• Track your study streaks, XP, and progress to keep you motivated
• Display public leaderboards showing user names, avatars, XP, and streak data
• Send push notifications for streak reminders, new content alerts, and service updates via Firebase Cloud Messaging
• Process news articles using AI to generate summaries, flashcards, and quiz questions for your study material
• Improve our content quality and app features through analytics
• Ensure security and prevent misuse of the Service

We do not sell your personal information to third parties.

3 Public Information

Certain information is visible to other RetainIt users:

• Leaderboard: Your name, profile picture, total XP, current streak, and longest streak are displayed on public leaderboards visible to all users of the app.

All other personal data (email, phone number, quiz history, notes, and saved items) remains private and is only accessible to you.

4 Data Sharing & Third-Party Services

We may share your data only in these limited cases:

• Google Sign-In: We use Google OAuth for authentication. When you sign in, your name, email, and profile picture are shared with us via Google. Google may collect data during the sign-in process in accordance with Google's Privacy Policy.
• Google Firebase: We use Firebase Analytics to understand app usage patterns and Firebase Cloud Messaging to deliver push notifications. Analytics data is processed by Google.
• Infrastructure Providers: Your data is stored on secure cloud infrastructure hosted on Google Cloud Platform. All connections use TLS/SSL encryption.
• Legal Requirements: When required by law, regulation, or valid legal process.

We do not share your data with advertisers or data brokers. We do not use any third-party advertising SDKs.

5 Push Notifications

We use Firebase Cloud Messaging (FCM) to send you push notifications. These may include:

• Streak reminders when your daily study streak is at risk
• Alerts when new study content is available
• Important service announcements

To deliver notifications, we store a device token on our servers. You can disable notifications at any time through the app settings or your device's notification settings.

6 Data Storage & Security

Your data is stored on secure servers hosted on Google Cloud Platform (asia-south1 region, India) and other trusted cloud providers. All data is encrypted in transit using TLS/SSL and at rest where supported by the infrastructure.

We use authentication tokens (JWT) with short expiry times and row-level security policies to ensure users can only access their own data. That said, no system is 100% secure, so we cannot promise absolute security.

7 Data Retention

We retain your personal data for as long as your account is active. Temporary cached data (such as feed pages and quiz content) is automatically deleted after short periods (minutes to hours).

When you delete your account, we permanently remove your quiz sessions, quiz attempts, weak topic data, saved items, and collections. Your profile information is anonymised (username and name are replaced, phone number is removed). Some anonymised records may be retained for legal or analytical purposes.

8 Your Rights

In accordance with applicable data protection laws, including India's Digital Personal Data Protection Act, 2023, you have the right to:

• Access the personal data we hold about you
• Correct inaccurate information in your account
• Delete your account and associated data by submitting a request through our account deletion form
• Withdraw Consent for push notifications and optional data collection at any time
• Grievance Redressal by contacting us with any concerns about your data

Account deletion requests are processed promptly. Upon deletion, your personal data is either permanently removed or anonymised as described in the Data Retention section above.

9 Children's Privacy

RetainIt is not intended for children under 13. We do not knowingly collect information from children under 13. If we discover such data has been collected, we will promptly delete it. If you believe a child under 13 has provided us with personal data, please contact us immediately.

10 Changes & Contact

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated date. For significant changes, we will notify you via push notification or in-app notice. If you keep using RetainIt after changes, that means you accept the updated policy.