Rootic Technologies ("Rootic", "we", "us") operates the DI Sir mobile application ("the App"). This policy explains what data we collect, why we collect it, and how it is handled when you use the App on Android.
1. Information We Collect
| Category | Examples | Source |
|---|---|---|
| Account data | Name, email, password hash, profile photo | You, or Google (via Clerk OAuth) |
| Authentication tokens | JWT access/refresh tokens | Generated by our backend on login |
| Calendar data | BS/AD dates, events, reminders, alarms you create | You |
| Chat & Sync data | Messages, group ("Sync Circle") membership, read receipts, typing/presence status | You, automatically while chatting |
| Approximate location | Used only for the "Nearby" contact-discovery feature | Your device, with permission |
| Game data | Baghchal match history/state | You, while playing |
| Device & diagnostic data | Device model, OS version, crash logs | Automatically |
2. How We Use Your Information
- To create and authenticate your account (custom JWT login and Google OAuth via Clerk)
- To sync tasks, calendar entries, and Sync Circle chats in real time over WebSocket
- To deliver scheduled alarms and reminders (processed via Celery background workers)
- To show your online/presence status to contacts in your Sync Circles
- To power the optional "Nearby" feature, which uses approximate location to suggest contacts
- To operate the AI "Omni-Chat" premium layer, which sends your chat input to our backend for processing and may use third-party AI providers to generate responses
- To diagnose crashes and improve app stability
3. Third Parties We Use
- Clerk — Google OAuth sign-in and identity verification
- Google — OAuth login, if you choose to sign in with Google
- Our own infrastructure (PostgreSQL, Redis, Celery) — no data is sold to advertisers
We do not sell your personal data to third parties.
4. Data Storage & Security
- Authentication tokens are stored on-device using Android's secure encrypted storage (expo-secure-store)
- All API and WebSocket traffic is authenticated via JWT
- Server-side data is stored in PostgreSQL; ephemeral session/presence state lives in Redis
5. Your Choices
- You can disable location permission at any time; this only disables the "Nearby" feature
- You can delete individual messages, leave Sync Circles, or delete your account from within the App
- You can request full account deletion and data export by contacting us (below)
6. Data Retention
We retain account and chat data for as long as your account is active. If you delete your account, your profile, messages, and calendar data are permanently removed from our systems within 30 days, except where retention is required by law.
7. Children's Privacy
DI Sir is not directed at children under 13. We do not knowingly collect data from children under 13.
8. Changes to This Policy
We may update this policy as the App evolves. Material changes will be announced in-app or on this page, with an updated "Last updated" date above.
9. Contact Us
Questions about this policy or your data? Reach us at rootictech@gmail.com.