Privacy Policy

Last Updated: December 2025

1. Introduction

Welcome to Saha ("we," "our," "us," or "the App"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains in detail how we collect, use, disclose, store, and safeguard your information when you use our mobile application, websites, and related services (collectively, the "Services").

By accessing or using Saha, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with our policies and practices, please do not download, install, or use our Services.

This Privacy Policy is designed to comply with:

General Data Protection Regulation (GDPR) - European Union
California Consumer Privacy Act (CCPA) - United States
Children's Online Privacy Protection Act (COPPA) - United States
Apple App Store Review Guidelines
Google Play Developer Program Policies
Other applicable international data protection and privacy laws

2. Information We Collect

We collect various types of information in connection with the Services we provide, including:

2.1 Personal Information You Provide

When you register for an account, use our Services, or communicate with us, you may voluntarily provide the following personal information:

Account Registration Information:

Full name or username
Email address
Phone number (optional)
Password (encrypted and stored securely)
Date of birth (to verify age requirements)
Gender (optional)
Country/Region of residence

Profile Information:

Profile picture or avatar
Biography or personal description
Interests and preferences
Social media links (optional)
Language preferences

User-Generated Content:

Posts, comments, and messages
Photos, videos, and other media files
Artworks, creative content, and projects
Reviews, ratings, and feedback
Forum and community contributions

Communication Data:

Messages sent through our in-app messaging system
Customer support correspondence
Survey responses and feedback
Email communications

Payment Information (if applicable):

Billing address
Payment method information (processed securely through third-party payment processors)
Transaction history
Purchase records

2.2 Information Automatically Collected

When you access or use our Services, we automatically collect certain information about your device and usage patterns:

Device Information:

Device type, model, and manufacturer
Operating system and version (iOS, Android)
Unique device identifiers (IDFA for iOS, Advertising ID for Android)
Mobile network information
Screen resolution and display settings
Device language settings
Battery level and charging status
Available storage space

Usage Data:

App features and functions used
Time and duration of app sessions
Navigation paths within the app
Interaction with content and other users
Search queries and browsing history
Preferences and settings
In-app purchases and transactions
Error reports and app performance data

Location Data:

IP address-based location (approximate)
GPS coordinates (if you grant permission)
Wi-Fi access points
Cell tower information
Region and timezone information

Log Data:

IP addresses
Browser type and version
Access times and dates
Pages or screens viewed
Referring/exit pages
Clickstream data
Crash reports and diagnostics

2.3 Cookies and Similar Technologies

We use cookies, web beacons, pixel tags, local storage, and similar tracking technologies to:

Remember your preferences and settings
Authenticate users and prevent fraud
Analyze app usage and performance
Provide personalized content and recommendations
Deliver targeted advertising (with your consent)
Measure the effectiveness of marketing campaigns

Types of Cookies We Use:

Essential Cookies: Required for the app to function properly
Functional Cookies: Remember your preferences and choices
Analytics Cookies: Help us understand how users interact with the app
Advertising Cookies: Used to deliver relevant ads (with consent)

2.4 Information from Third Parties

We may receive information about you from third-party sources, including:

Social Media Platforms: When you connect your social media accounts (Facebook, Google, Apple Sign-In, etc.)
Analytics Providers: Usage statistics and behavioral data
Advertising Partners: Ad interaction and conversion data
Payment Processors: Transaction confirmation and payment status
Other Users: When they tag you, mention you, or share content with you
Public Databases: Publicly available information to verify identity

2.5 Permissions We Request

Depending on how you use Saha, we may request the following device permissions:

Permission	Purpose	Required/Optional
Camera	Take photos and videos to share	Optional
Photo Library	Upload photos and videos from your device	Optional
Microphone	Record audio for videos and voice messages	Optional
Location	Provide location-based features and content	Optional
Notifications	Send push notifications about app activity	Optional
Contacts	Find friends who use Saha (if enabled)	Optional
Storage	Save content locally on your device	Optional

You can manage these permissions at any time through your device settings.

3. How We Use Your Information

We use the information we collect for various legitimate business purposes, including:

3.1 Providing and Improving Services

Create, maintain, and authenticate your account
Provide core app functionality and features
Process transactions and deliver purchased services
Personalize your experience and content recommendations
Improve app performance, stability, and user experience
Develop new features and services
Conduct research and analytics

3.2 Communication

Send service-related announcements and updates
Respond to your inquiries and support requests
Send push notifications about app activity (if enabled)
Deliver marketing communications (with your consent)
Conduct surveys and collect feedback
Notify you about changes to our policies or terms

3.3 Safety and Security

Detect, prevent, and address fraud and abuse
Verify user identity and prevent unauthorized access
Monitor and analyze security threats
Enforce our Terms of Service and Community Guidelines
Protect the rights, property, and safety of users
Investigate and respond to legal claims

3.4 Legal and Compliance

Comply with legal obligations and regulations
Respond to law enforcement requests
Protect against legal liability
Enforce our legal rights and contracts
Resolve disputes

3.5 Advertising and Marketing

Display relevant advertisements (with your consent)
Measure ad effectiveness and engagement
Create audience segments for targeted marketing
Provide aggregated analytics to advertisers
Promote our services on third-party platforms

4. Information Sharing and Disclosure

We respect your privacy and do not sell your personal information to third parties. We may share your information only in the following circumstances:

4.1 With Your Consent

We will share your information when you give us explicit permission to do so, such as when you:

Connect your account to third-party services
Share content publicly or with specific users
Participate in promotions or contests
Authorize data sharing with partners

4.2 Service Providers and Business Partners

We work with trusted third-party service providers who perform services on our behalf, including:

Cloud Hosting Providers: AWS, Google Cloud, Azure (for data storage and hosting)
Analytics Services: Google Analytics, Firebase Analytics, Mixpanel
Customer Support: Zendesk, Intercom, or similar platforms
Payment Processors: Stripe, PayPal, Apple Pay, Google Pay
Email Services: SendGrid, Mailchimp
Push Notification Services: Firebase Cloud Messaging, Apple Push Notification Service
Advertising Networks: Google AdMob, Facebook Audience Network (with consent)
Content Delivery Networks (CDN): CloudFlare, Akamai

These providers are contractually obligated to protect your information and use it only for the purposes we specify.

4.3 Legal Requirements

We may disclose your information if required to do so by law or in response to:

Valid legal processes (subpoenas, court orders, warrants)
Law enforcement or government requests
Requests to comply with legal obligations
Protection of our legal rights and property
Prevention of illegal activities or fraud
Emergency situations involving danger to persons

4.4 Business Transfers

If Saha is involved in a merger, acquisition, sale of assets, bankruptcy, or other business transaction, your information may be transferred to the successor entity. We will notify you of any such change in ownership or control of your personal information.

4.5 Aggregated and Anonymized Data

We may share aggregated, anonymized, or de-identified data that cannot reasonably be used to identify you. This data may be used for:

Research and analytics purposes
Industry benchmarking and reports
Marketing and promotional activities
Improving our services

4.6 Public Information

Information you choose to make public (such as public posts, profile information, comments) may be viewed, accessed, or shared by other users and the general public.

5. Data Security

We take the security of your personal information seriously and implement industry-standard security measures to protect against unauthorized access, alteration, disclosure, or destruction.

5.1 Technical Security Measures

Encryption: Data is encrypted in transit using TLS/SSL and at rest using AES-256 encryption
Secure Authentication: Passwords are hashed using bcrypt or similar algorithms
Access Controls: Role-based access control (RBAC) limits employee access to user data
Firewall Protection: Network firewalls protect our servers from unauthorized access
Intrusion Detection: Real-time monitoring for suspicious activity
Security Audits: Regular security assessments and penetration testing
Vulnerability Management: Timely patching and updates

5.2 Organizational Security Measures

Employee training on data protection and security best practices
Strict confidentiality agreements for employees and contractors
Limited access to personal data on a need-to-know basis
Incident response and breach notification procedures
Regular security awareness programs

5.3 Your Security Responsibilities

You also play an important role in protecting your information:

Choose a strong, unique password for your account
Enable two-factor authentication if available
Keep your login credentials confidential
Log out when using shared devices
Keep your device and apps updated
Report suspicious activity immediately

5.4 Limitations

While we implement robust security measures, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security, and you use our Services at your own risk.

6. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

6.1 Retention Periods

Active Account Data: Retained while your account is active
Account Deletion: Data deleted within 30 days of account deletion request
Backup Systems: Backup copies deleted within 90 days
Transaction Records: Retained for 7 years for tax and accounting purposes
Legal Compliance Data: Retained as required by applicable laws
Security Logs: Retained for 12 months
Marketing Data: Deleted upon withdrawal of consent or after 3 years of inactivity

6.2 Factors Affecting Retention

When determining retention periods, we consider:

The nature and sensitivity of the information
Legal and regulatory requirements
Our legitimate business interests
The purposes for which we collected the data
Whether we can achieve those purposes through other means

7. Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal information:

7.1 Access and Portability

Right to Access: Request a copy of the personal information we hold about you
Right to Data Portability: Receive your data in a structured, machine-readable format

7.2 Correction and Deletion

Right to Rectification: Correct inaccurate or incomplete information
Right to Erasure: Request deletion of your personal information (subject to legal obligations)

7.3 Restriction and Objection

Right to Restrict Processing: Limit how we use your information
Right to Object: Object to processing based on legitimate interests or direct marketing

7.4 Consent Withdrawal

Right to Withdraw Consent: Withdraw consent at any time (does not affect prior processing)

7.5 How to Exercise Your Rights

To exercise any of these rights, you can:

Use the account settings and privacy controls within the app
Contact us at adanmma20@gamil.com
Submit a request through our in-app support feature

We will respond to your request within 30 days (or as required by applicable law).

7.6 Marketing Communications

You can opt out of marketing emails by:

Clicking "unsubscribe" in any marketing email
Adjusting your notification preferences in app settings
Contacting us directly

7.7 Cookie Management

You can control cookies through:

Your browser settings
Our cookie consent tool (if available)
Mobile device settings (for advertising ID)

8. Children's Privacy

Saha is committed to protecting the privacy of children.

8.1 Age Requirements

Our Services are not intended for children under the age of 13 (or the applicable age of digital consent in your jurisdiction, such as 16 in the EU)
We do not knowingly collect personal information from children under the minimum age
Users under 18 should have parental or guardian consent before using our Services

8.2 Parental Controls

If you are a parent or guardian and believe your child has provided us with personal information without your consent, please contact us immediately at adanmma20@gamil.com. We will take steps to remove such information and terminate the child's account.

8.3 COPPA Compliance

We comply with the Children's Online Privacy Protection Act (COPPA) in the United States and similar laws in other jurisdictions.

9. International Data Transfers

Saha operates globally, and your information may be transferred to, stored, and processed in countries other than your country of residence, including the United States and other countries where our service providers operate.

9.1 Data Protection Safeguards

When we transfer data internationally, we use appropriate safeguards such as:

Standard Contractual Clauses approved by the European Commission
Adequacy decisions recognizing equivalent data protection
Binding Corporate Rules
Other legally approved transfer mechanisms

9.2 Regional Compliance

European Economic Area (EEA): GDPR compliance
United States: CCPA compliance for California residents
Other Regions: Compliance with local data protection laws

10. Third-Party Links and Services

Our Services may contain links to third-party websites, applications, or services that are not operated or controlled by us. This Privacy Policy does not apply to those third parties.

10.1 Third-Party Responsibility

We are not responsible for the privacy practices of third-party websites or services
We encourage you to review the privacy policies of any third-party services you access
Your interactions with third parties are governed by their own policies

10.2 Social Media Integration

If you connect your Saha account to social media platforms:

We may receive information from those platforms as described in their policies
Your activity on Saha may be visible on those platforms
You can disconnect social media accounts at any time through settings

11. Platform-Specific Policies

11.1 Apple App Store - iOS Privacy Requirements

In compliance with Apple's App Store Review Guidelines and App Tracking Transparency (ATT) framework:

App Tracking Transparency (ATT):

We request your permission before tracking your activity across other apps and websites
You can manage tracking permissions in Settings > Privacy > Tracking on your iOS device
Denying tracking permission will not affect core app functionality
We respect your choice and will not attempt to circumvent ATT

Privacy Nutrition Labels:

Our App Store listing includes a Privacy Nutrition Label that discloses:

Data types collected (Contact Info, User Content, Identifiers, Usage Data, etc.)
Whether data is linked to your identity
Whether data is used for tracking
Purpose of data collection

Sign in with Apple:

If you use Sign in with Apple, you can choose to hide your email
Apple will generate a unique random email address that forwards to your real email
You control this relay and can disable it anytime through Apple ID settings

iOS Privacy Features:

Location Services: You can choose to share location "Never," "While Using," or "Always"
Photo Access: You can grant access to "All Photos" or "Selected Photos" only
App Privacy Report: iOS 15+ users can view our app's data access history
Mail Privacy Protection: We respect Apple's Mail Privacy Protection for email tracking

11.2 Google Play Store - Android Privacy Requirements

In compliance with Google Play Developer Program Policies and Android privacy features:

Data Safety Section:

Our Google Play listing includes a Data Safety section that discloses:

Types of data collected and shared
How data is used (App functionality, Analytics, Personalization, etc.)
Whether data is encrypted in transit
Whether you can request data deletion
Whether we collect data from children

Android Privacy Dashboard:

Android 12+ users can view timeline of permission usage
You can see when Saha accessed camera, microphone, or location
Permission usage indicators show when sensors are active

Google Advertising ID:

We may use your Google Advertising ID for personalized advertising (with consent)
You can reset your Advertising ID in Settings > Google > Ads
You can opt out of personalized ads (we'll show non-personalized ads instead)

Google Play Services:

We use Google Play Services for app functionality (push notifications, location, etc.)
Google Play Services has its own privacy policy
You can manage Google account privacy settings separately

Android Permissions:

We request only permissions necessary for app functionality
You can review and revoke permissions at any time in Android settings
We support Android's runtime permission model
We explain why we need each permission when requested

11.3 Advertising and Monetization Compliance

For both platforms, regarding advertising:

We comply with platform advertising policies
We do not show ads to children or in child-directed content
We support platform-specific ad preference controls
We use certified ad networks (AdMob, Facebook Audience Network, etc.)
We respect "Do Not Track" and "Limit Ad Tracking" settings

11.4 In-App Purchases

All in-app purchases are processed through Apple App Store or Google Play Store
We do not directly process or store payment card information
Purchase data is subject to Apple's and Google's privacy policies
You can manage subscriptions through your app store account

12. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

12.1 Your CCPA Rights

Right to Know: Request disclosure of personal information collected, used, and shared
Right to Delete: Request deletion of your personal information
Right to Opt-Out: Opt-out of the "sale" of personal information (we do not sell personal information)
Right to Non-Discrimination: Not receive discriminatory treatment for exercising CCPA rights

12.2 Categories of Information

In the last 12 months, we have collected the following categories:

Identifiers (name, email, device ID)
Personal information (as defined by California law)
Commercial information (purchase history)
Internet or network activity (usage data)
Geolocation data
Audio, visual, or similar information (user content)
Inferences (preferences, behavior predictions)

12.3 "Do Not Sell My Personal Information"

We do not sell personal information as defined by CCPA. We share information only as described in this policy.

12.4 Authorized Agent

You may designate an authorized agent to make requests on your behalf. We may require verification of the agent's authority.

13. European Union Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have rights under the General Data Protection Regulation (GDPR):

13.1 Legal Basis for Processing

We process your personal data based on:

Consent: You have given clear consent for processing
Contract: Processing is necessary to fulfill our contract with you
Legal Obligation: Processing is required by law
Legitimate Interests: Processing is in our or a third party's legitimate interests (and does not override your rights)

13.2 Your GDPR Rights

Right to access your personal data
Right to rectification of inaccurate data
Right to erasure ("right to be forgotten")
Right to restrict processing
Right to data portability
Right to object to processing
Right not to be subject to automated decision-making

13.3 Data Protection Officer

For GDPR-related inquiries, you can contact our Data Protection Officer at adanmma20@gamil.com

13.4 Supervisory Authority

You have the right to lodge a complaint with your local data protection authority if you believe we have violated your privacy rights.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.

14.1 Notification of Changes

When we make material changes, we will notify you by:

Posting the updated policy on this page
Updating the "Last Updated" date
Sending an in-app notification or email (for significant changes)
Requesting your consent if required by law

14.2 Your Acceptance

Your continued use of our Services after changes are posted constitutes acceptance of the updated Privacy Policy. If you do not agree with the changes, you should stop using our Services and may delete your account.

14.3 Review Regularly

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

15. Contact Us

If you have any questions, concerns, requests, or complaints regarding this Privacy Policy or our data practices, please contact us:

Email: adanmma20@gamil.com

In-App Support: Use the support feature within the Saha app

Response Time: We aim to respond to all inquiries within 30 days (or as required by applicable law)

Privacy Requests

For privacy-related requests (access, deletion, correction, etc.), please include:

Your full name and registered email address
Clear description of your request
Verification information (to confirm your identity)
Preferred method of response

Data Protection Officer (EU/EEA)

For GDPR-specific inquiries: adanmma20@gamil.com

Security Concerns

If you discover a security vulnerability, please report it immediately to: adanmma20@gamil.com

Important Notice: This Privacy Policy is written in English. If there is any conflict between the English version and a translated version, the English version shall prevail.