| 1. Scope and applicability | |
|---|---|
| Legal entity | Trishara Ventures LLP operates Koovira as a multi-module digital platform. |
| Effective date | 05/06/2026. Last reviewed: 05/06/2026. |
| Users covered | Visitors, registered users, merchants, service providers, partners, admins and any person using Koovira services. |
| Policy acceptance | Use of the platform, clicking accept, submitting content, creating listings, onboarding as merchant/partner, or completing payment confirms acceptance of applicable policies. |
| 2. User obligations and prohibited conduct | |
|---|---|
| Accuracy | Users must provide accurate identity, contact, listing, payment, KYC and transaction information. |
| Prohibited content | Users must not upload or share unlawful, harmful, obscene, sexually explicit, paedophilic, invasive of privacy, hateful, defamatory, fraudulent, misleading, infringing, spam, malware or otherwise illegal content. |
| No misuse | Users must not impersonate others, manipulate reviews, scrape data, bypass security, harvest personal data, abuse messaging, evade moderation or use Koovira for fraud. |
| Lawful use | Users are responsible for complying with applicable Indian laws, sector rules, tax, consumer, labour, real estate, transport, payment, advertising and safety obligations. |
| Personal data | Koovira may process identity, contact, profile, location, device, KYC, wallet/payment, content, communication, listing, transaction, support and security data. |
| Sensitive data | KYC documents, financial identifiers, bank details, precise location, dating/matrimonial data and identity proofs require stricter access and purpose controls. |
| Consent | Where consent is the lawful basis, consent must be clear, specific, informed, recorded and withdrawable for optional processing. |
| 3. Platform controls and compliance handling | |
|---|---|
| Moderation | Koovira may review, restrict, label, suspend, remove or preserve content/accounts when policy, safety, fraud, legal or technical risks are detected. |
| Security | Koovira uses access controls, audit logs, CSRF/session controls, rate limits, device/session monitoring and other reasonable security practices. |
| Records | Koovira may preserve logs, removed content, acceptance history, reports, transaction records and security events where required for investigations, disputes, fraud prevention or legal compliance. |
| Policy updates | Koovira may update policies with a new version and may require fresh acceptance for material changes. |
| Data minimisation | Koovira should collect only data required for the stated purpose and avoid storing unnecessary payloads, secrets or CSRF tokens in business metadata. |
| Retention | Data is retained only as required for service delivery, legal compliance, security, disputes, tax, fraud prevention or lawful hold. |
| 4. Data, records, complaints and legal requests | |
|---|---|
| Grievance officer | Complaints may be raised through the public Grievance Officer page or in-app report flows. Officer details are managed by Koovira admin settings. |
| Timelines | Koovira aims to acknowledge grievances within the configured SLA and resolve them within the applicable legal/platform timeline, subject to complexity and lawful process. |
| Legal requests | Koovira may act on valid court, government, law-enforcement, CERT-In or authorised agency requests in accordance with applicable law. |
| Privacy requests | Users may request access, correction, deletion, grievance redressal or withdrawal of optional consent, subject to identity verification and lawful retention requirements. |
| User rights | Users may request correction, deletion, access/export, grievance redressal or consent withdrawal, subject to lawful verification and retention. |
Google User Data & Limited Use
When you connect your Google account to Koovira (an optional feature), we access only the data you explicitly authorise on Google's official consent screen:
- Basic profile & email (
openid,email,profile) — to sign you in and identify your Koovira account. - Google Contacts, read-only (
contacts.readonly) — to help you find and invite people you already know who are on Koovira. We never message your contacts automatically; sending an invite is always an explicit action you take. - Google Calendar events (
calendar.events) — to add schedules, bookings, interviews and appointments you create in Koovira to your Google Calendar, and to update or cancel them when you change them in Koovira.
Koovira's use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. We do not sell Google user data, do not use it for advertising or to train generalised AI/ML models, and do not transfer it to third parties except as necessary to provide a feature you requested, to comply with applicable law, or with your explicit consent. Human access to Google user data is prohibited except with your consent, for security/abuse handling, or where required by law.
Disconnecting & Deleting Your Data
You are in full control of connected accounts and imported data:
- Disconnect any time from Settings → Connected Apps & Permissions. Disconnecting immediately deletes the stored access and refresh tokens and stops all syncing.
- Revoke from Google at any time via your Google Account permissions page.
- Delete imported contacts from within Koovira.
- Delete your Koovira account and all associated data from Settings → Security → Delete My Profile, or by writing to us at support@koovira.com.
Updated 2026-06-27 to reflect new platform features.
Connected accounts & external integrations
If you choose to connect an external account (for example Google or Instagram) for sign-in, contact import, calendar sync or content import, we request only the permissions needed for the feature you enabled, and we store the access tokens in encrypted form. You can disconnect any integration at any time; disconnecting stops further data exchange.
Content you import
When you import your own content from a connected social account, we process only the content from accounts you personally authorise, solely to re-create it in your chosen Koovira format. We do not access other people's accounts.
Automated processing & AI
We use automated systems, including a local-first AI assistant, for safety moderation, search, recommendations and support. Your personal data is not sold and is not sent to third-party model vendors for training. See our AI Transparency Policy for details.
Grievance & DPDP
In line with India's Digital Personal Data Protection Act, 2023, you may exercise access, correction, and erasure rights, and contact our Grievance Officer using the details at the end of this policy.
Active Third-Party Processors
No active third-party processors are published in the current register.