IndiAdda ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, retain, and protect information when you use the IndiAdda iOS app and related services.
Please read this Privacy Policy carefully. If you do not agree with it, please do not use the app or services.
Personal identifiers: name, email address, phone number, username, profile picture
Account data: city, neighborhood, account preferences, marketing preferences, consent records, and authentication metadata handled by Supabase
User content: posts, events, messages, comments, marketplace listings, room posts, and travel posts
Communications: support requests, feedback, reports, and moderation appeals you send to us
Marketplace and listing contact data: listing inquiries, selected contact methods, contact request metadata, and messages you choose to send
Safety and fraud records: reports, blocks, moderation decisions, audit logs, suspected scam indicators, and evidence or context you submit to us
We do not ask for or process payment card numbers, bank account credentials, Social Security numbers, or immigration documents for marketplace transactions
User-provided location data: city/neighborhood used for local content and filters
Usage data: app interactions, features used, logs, and crash reports for debugging
Device information: device type, operating system, app version, and push notification token if notifications are enabled
Network information: IP address and connection metadata used for security, reliability, and service optimization
We use Sentry to collect crash reports and diagnostic information. When a crash or error occurs, Sentry may receive: app version, device model, operating system version, stack traces, and limited app interaction breadcrumbs. We scrub sensitive data, including email addresses, phone numbers, authentication tokens, and payment-like values, before sending any crash report. Performance tracing is disabled. You can confirm this in App Store Connect under Diagnostics > Crash Data.
Supabase: authentication, database, and backend services
Cloudflare R2/CDN: image storage and delivery
Sentry: crash reporting and error diagnostics
Expo: push notification delivery when enabled
Resend: email delivery for account and marketing email when applicable
To provide and maintain our services
To personalize your experience and deliver relevant local content
To communicate with you about account, security, support, and service updates
To send marketing email only when you have opted in or where otherwise permitted by law
To improve our app through analytics, diagnostics, and user feedback
To detect, prevent, and address technical issues, spam, abuse, and fraud
To review reports, investigate suspected scams or unsafe behavior, enforce our Terms, and protect users and the service
To comply with legal obligations and enforce our terms
To connect you with other users for community events, services, and marketplace activity
With other users: profile information, posts, listings, and content you choose to make public or send
With service providers: Supabase, Cloudflare, Sentry, Expo, Resend, and similar vendors that help us operate the service
With other users via external apps: when you choose to contact a seller, service provider, or other user via WhatsApp, Telegram, Instagram, email, or phone, the contact handle they have published on their listing is opened in the corresponding external app. IndiAdda is not in the data path for that communication. It is a direct link from your device to the third-party service.
With your direction or consent: for features you choose to use, such as contacting another user
Legal and safety reasons: when required by law or needed to protect rights, safety, and the integrity of the service
With law enforcement, consumer protection agencies, payment providers you used outside the app, or other relevant parties when you ask us to, when legally required, or when we believe disclosure is needed to address fraud, scams, security incidents, threats, or illegal conduct
Business transfers: in connection with a merger, acquisition, financing, or sale of assets
Aggregated or de-identified data: statistical data that does not identify you
We do not sell personal information or share it for cross-context behavioral advertising.
Encryption of data in transit
Provider-side safeguards for hosted database, auth, and storage services
Access controls and authentication mechanisms
Admin role checks and database row-level security where applicable
Logging and incident response procedures for potential security events
However, no method of transmission over the internet is 100% secure.
Provide our services to you
Comply with legal obligations
Resolve disputes and enforce agreements
Maintain security, prevent abuse, and support moderation
You can delete your account anytime in Settings > Privacy & Security > Delete Account
Account deletion removes your active account, profile, and user content from production systems promptly, generally within 48 hours
We attempt to delete user-uploaded media associated with your account as part of the deletion flow
Some records may be retained for limited periods where needed for legal compliance, security, fraud prevention, backups, or moderation/audit logs
Moderation and safety records, including content reports, block records, scam or safety investigations, and admin audit logs, may be retained after account deletion when needed to protect users, enforce our Terms, respond to disputes, or comply with law. References to deleted accounts in these records are anonymized.
Backup copies expire under our normal backup retention process
Account deletion cannot be undone
Access: Request information about personal information we process
Correction: Update or correct inaccurate personal information
Deletion: Request deletion of your personal information
Portability: Request a copy of information associated with your account where applicable
Opt out: Unsubscribe from marketing communications
Restriction or limitation: Ask us to limit certain uses where required by law
Non-discrimination: Not be treated unfairly for exercising privacy rights
To exercise these rights, contact us at contact@indiAdda.com
Remember your preferences and settings
Analyze app usage and performance
Provide personalized local content
Enhance security and prevent fraud
You can manage app permissions and notification settings in your device settings.
Our services are not intended for children under 13 years of age, in compliance with the Children's Online Privacy Protection Act (COPPA).
We do not knowingly collect personal information from children under 13.
If you are a parent or guardian and believe we have collected information from a child under 13, please contact us immediately at contact@indiAdda.com
We will take steps to verify the claim and delete such information within 48 hours.
Users must be at least 13 years old to create an account and use our services.
Your information may be transferred to and processed in countries other than your own.
When we use vendors or service providers, we rely on contractual and organizational safeguards appropriate to the services they provide.
We currently operate the app primarily for users in the United States.
Right to Know: Request what personal information we collect, use, disclose, sell, or share
Right to Delete: Request deletion of personal information, subject to exceptions
Right to Correct: Request correction of inaccurate personal information
Right to Opt Out: We do not sell personal information or share it for cross-context behavioral advertising
Right to Non-Discrimination: We will not discriminate for exercising your rights
Right to Limit Sensitive Data: Request limits on certain uses of sensitive personal information where applicable
Data We Collect: Personal identifiers, user-provided location data, device information, usage data, communications, and user content
Business Purpose: Provide services, personalization, security, analytics
Data Sale/Sharing: We do not sell personal information or share it for cross-context behavioral advertising
Service Providers: Supabase, Cloudflare, Sentry, Expo, Resend, and similar operational vendors
To exercise these rights, contact us at contact@indiAdda.com or use in-app settings.
We will respond within 45 days of receiving your request.
IndiAdda is primarily intended for use in the United States.
If you access the app from outside the United States, your information may be processed in the United States or other countries where our service providers operate.
You may contact us at contact@indiAdda.com with privacy questions or requests.
We may update this Privacy Policy from time to time.
Posting the new policy in the app
Sending an email notification where appropriate
Displaying a notice in the app where appropriate
Your continued use after the effective date of an updated policy means you acknowledge the updated policy.
IndiAdda
Privacy Department
Email: contact@indiAdda.com
Privacy Contact: contact@indiAdda.com