Privacy Policy

Last Updated: January 2025

Effective Date: This Privacy Policy is effective as of the date you first use the ZipKaro mobile application ("App").

1. Introduction

Welcome to ZipKaro ("we," "our," or "us"). We are committed to protecting your privacy and ensuring you have a positive experience while using our food delivery application. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application.

By using ZipKaro, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our App.

2. Information We Collect

2.1 Personal Information

We collect the following personal information when you use our App:

Account Information: Name, email address, phone number, and password (for registered users)
Guest User Information: Name and phone number (for guest checkout)
Delivery Address: Complete address including house number, street, area, city, state, and pincode
Order Information: Order history, items ordered, quantities, prices, and payment details
Payment Information: Payment method details (processed securely through third-party payment processors; we do not store full credit card numbers)

2.2 Location Information

With your explicit permission, we collect precise location data from your device's GPS to:

Automatically fill in your delivery address
Show nearby restaurants and offers
Enable delivery agents to locate your address
Improve location-based services

You can disable location services at any time through your device settings. However, this may limit certain features of the App.

2.3 Device Information

We automatically collect certain device information, including:

Device model, operating system, and version
Unique device identifiers
Device token for push notifications
App version and installation information
Network information (IP address, network type)

2.4 Usage Information

We collect information about how you interact with our App, including:

Restaurants viewed and menu items browsed
Search queries
Wishlist items
App features used and time spent on features
Crash reports and error logs

2.5 Push Notification Data

We collect and store device tokens to send you push notifications about:

Order status updates
Delivery notifications
Promotional offers and discounts
App updates and important announcements

You can manage notification preferences in your device settings.

3. How We Use Your Information

We use the collected information for the following purposes:

Service Delivery: Process and fulfill your food orders, manage deliveries, and communicate order status
Account Management: Create and manage your account, authenticate users, and provide customer support
Location Services: Provide location-based features, show nearby restaurants, and enable accurate delivery
Communication: Send order confirmations, delivery updates, and respond to your inquiries
Personalization: Customize your experience, show relevant restaurants and offers based on your preferences and location
Improvement: Analyze usage patterns to improve our App, fix bugs, and enhance user experience
Marketing: Send promotional offers, discounts, and marketing communications (with your consent)
Legal Compliance: Comply with applicable laws, regulations, and legal processes
Security: Detect, prevent, and address fraud, security issues, and technical problems

4. Data Storage and Security

Your data is stored securely using Supabase, a cloud-based database service that implements industry-standard security measures. We employ various security technologies and procedures to protect your personal information from unauthorized access, use, or disclosure, including:

Encryption of data in transit and at rest
Secure authentication and authorization mechanisms
Regular security assessments and updates
Access controls and audit logs
Row-level security policies

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security.

5. Data Sharing and Disclosure

5.1 Service Providers

We may share your information with third-party service providers who perform services on our behalf:

Supabase: Cloud database and authentication services
Payment Processors: Process payment transactions securely
Delivery Partners: Restaurant partners and delivery agents who fulfill your orders
Analytics Providers: Help us understand how users interact with our App
OpenStreetMap/Nominatim: For address geocoding and reverse geocoding services

5.2 Legal Requirements

We may disclose your information if required by law or in response to valid requests by public authorities.

5.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

5.4 With Your Consent

We may share your information with third parties when you have given us explicit consent to do so.

6. Third-Party Services

Our App uses the following third-party services that may collect information:

Supabase: Backend-as-a-Service for database, authentication, and real-time features. Their privacy policy: https://supabase.com/privacy
OpenStreetMap/Nominatim: For address search and geocoding services. Their usage policy: https://operations.osmfoundation.org/policies/nominatim/
Google Play Services: For app distribution and updates (Android devices)
Payment Gateways: For processing payments (specific providers depend on your region)

We encourage you to review the privacy policies of these third-party services.

7. Your Rights and Choices

You have the following rights regarding your personal information:

Access: Request access to your personal data
Correction: Update or correct inaccurate information through the App settings
Deletion: Request deletion of your account and associated data
Data Portability: Request a copy of your data in a portable format
Opt-Out: Unsubscribe from marketing communications
Location Controls: Disable location services through device settings
Notification Controls: Manage push notification preferences through device settings

To exercise these rights, please contact us using the information provided in the "Contact Us" section below.

8. Data Retention

We retain your personal information for as long as necessary to provide our services, comply with legal obligations, resolve disputes, and enforce our agreements. Specifically:

Account information is retained while your account is active
Order history is retained for a minimum period as required by law (typically 7 years for financial records)
Location data is not stored permanently; it is used only for active sessions
Device tokens are retained until you uninstall the App or opt out of notifications

When you delete your account, we will delete or anonymize your personal information, except where we are required to retain it for legal purposes.

9. Children's Privacy

Our App is not intended for children under the age of 13 (or the minimum age required in your jurisdiction). We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately, and we will take steps to delete such information.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those in your country. By using our App, you consent to the transfer of your information to these countries.

11. Local Storage and Cookies

Our App uses local storage on your device to:

Store your login credentials (securely encrypted)
Remember your preferences and settings
Cache app data for offline functionality
Store cart items temporarily

You can clear local storage through your device settings, but this may require you to log in again and may affect app functionality.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by:

Posting the updated policy in the App
Updating the "Last Updated" date at the top of this policy
Sending you a notification (for significant changes)

Your continued use of the App after such changes constitutes acceptance of the updated Privacy Policy.

13. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA), including:

The right to know what personal information is collected, used, shared, or sold
The right to delete personal information
The right to opt-out of the sale of personal information (we do not sell your personal information)
The right to non-discrimination for exercising your privacy rights

14. GDPR Rights (European Users)

If you are located in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR), including:

Right to access, rectification, and erasure
Right to restrict processing
Right to data portability
Right to object to processing
Right to withdraw consent
Right to lodge a complaint with a supervisory authority

15. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: privacy@zipkaro.com

Support Email: support@zipkaro.com

App Name: ZipKaro

Version: 2.0.3

16. Consent

By using ZipKaro, you consent to our Privacy Policy and agree to its terms. If you do not agree to this policy, please do not use our App.