Privacy Policy

Spark Triangle LLC, doing business as Ramakoti Notebook App ("we," "our," "us," or "Company") operates the Ramakoti Notebook App mobile application (the "App" or "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our App. We are committed to transparency and compliance with all applicable privacy laws including the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and Children's Online Privacy Protection Act (COPPA).

Company Information:
Spark Triangle LLC
Email: support@ramakoti.app
Jurisdiction: United States

1. Information We Collect

1.1 Personal Information You Provide

We collect information that you voluntarily provide when using our App:

• Account Information: Email address, username, and password (encrypted) when you create an account
• Profile Information: Display name, country selection, and optional profile photo
• User-Generated Content: Progress data, tracing statistics, milestone achievements, and preferences
• Communication Data: Messages you send us through support channels or feedback forms

1.2 Information Collected Automatically

When you use our App, we automatically collect certain information:

• Device Information: Device type, model, operating system version, device identifier, screen resolution
• App Usage Data: Features accessed, screens viewed, session duration, interaction patterns, language preferences
• Performance Data: Crash reports, error logs, app performance metrics, load times
• Tracing Data: Number of letters traced, completion counts, time spent tracing, milestone achievements (108 sets completion)
• Network Information: IP address (country-level geolocation only), internet service provider
• Advertising Identifiers: Google Advertising ID (Android) or Identifier for Advertisers/IDFA (iOS) for ad personalization

1.3 Information From Third-Party Services

We use the following third-party services that may collect information:

• Firebase Authentication: Email verification status, authentication tokens, sign-in methods
• Cloud Firestore: User progress synchronization across devices
• Firebase Analytics: App usage patterns, user engagement metrics, session analytics
• Google AdMob: Ad impressions, clicks, ad interaction data, device advertising identifiers
• Firebase Remote Config: Feature flag delivery (no personal data)

1.4 Information We Do NOT Collect

2. How We Use Your Information

We use the collected information for the following purposes:

2.1 App Functionality & Service Provision

• Authenticate your account and maintain security
• Provide core letter tracing and educational features
• Save and sync your progress across devices
• Display personalized statistics and achievements
• Deliver devotional content and notifications
• Enable language preferences and customization

2.2 Analytics & Improvement

• Analyze usage patterns to understand how users interact with features
• Identify and fix technical issues, bugs, and crashes
• Optimize app performance and user experience
• Develop new features based on user behavior
• Measure feature adoption and engagement rates

2.3 Advertising & Monetization

• Display relevant advertisements through Google AdMob
• Personalize ad content based on your interests (with consent)
• Measure ad performance and effectiveness
• Support free availability of the App

2.4 Communication

• Respond to your support requests and inquiries
• Send important service announcements and updates
• Notify you of new features or significant changes
• Request feedback to improve our Service

2.5 Legal & Security

• Comply with legal obligations and regulatory requirements
• Protect against fraud, abuse, and security threats
• Enforce our Terms of Service
• Resolve disputes and troubleshoot problems

3. Third-Party Services & Data Sharing

3.1 Service Providers We Use

3.2 When We May Disclose Information

We may disclose your information in the following limited circumstances:

• Legal Compliance: When required by law, subpoena, court order, or government regulation
• Safety & Protection: To protect the rights, property, or safety of our users, Company, or the public
• Business Transfers: In connection with a merger, acquisition, or sale of assets (users will be notified in advance)
• With Your Consent: When you explicitly authorize us to share specific information
• Aggregated Data: We may share anonymized, aggregated statistics that cannot identify you personally

4. Advertising & Analytics

4.1 Google AdMob Advertising

Our App displays advertisements through Google AdMob to support free availability. AdMob may collect and use your device's Advertising ID to:

• Show personalized ads based on your interests
• Measure ad impressions, clicks, and conversions
• Limit ad frequency (frequency capping)
• Prevent fraudulent activity

Opt-Out of Personalized Ads:

• Android: Settings → Google → Ads → Opt out of Ads Personalization
• iOS: Settings → Privacy → Tracking → Ask App Not to Track
• Visit Google's Ad Settings: adssettings.google.com

4.2 Firebase Analytics

We use Firebase Analytics to understand how users interact with our App. This helps us improve features and fix issues. Analytics data collected includes:

• App opens, screen views, and session duration
• Feature usage (letters traced, milestones reached)
• Language preferences and settings changes
• User retention and engagement metrics
• Country-level geographic data (not precise location)

Analytics data is aggregated and anonymized for reporting purposes. For more information, see Firebase Analytics Policies.

4.3 Google Analytics 4 (Website)

We use Google Analytics 4 on the ramakoti.app website to understand how visitors find and navigate the site. Data collected includes:

• Pages visited and time spent on each page
• Traffic source (how you arrived — search engine, social media, direct)
• Device type, browser, and operating system
• Approximate geographic location (country/city — not precise GPS)
• Scroll depth and session duration

Google Analytics sets cookies on your browser (see Section 10). IP addresses are anonymized before storage. For more information, see Google's Privacy Policy. To opt out of Google Analytics tracking across all websites, you may install the Google Analytics Opt-out Browser Add-on.

5. Data Security

We implement industry-standard security measures to protect your information:

5.1 Technical Security Measures

• Encryption in Transit: All data transmitted between your device and our servers uses TLS/SSL encryption
• Encryption at Rest: Sensitive data stored in Firebase is encrypted using industry-standard protocols
• Secure Authentication: Passwords are hashed and never stored in plain text
• Access Controls: Strict access limitations on a need-to-know basis for personnel
• Secure Storage: Profile photos stored in Firebase Storage with access controls
• Regular Security Audits: Continuous monitoring for vulnerabilities and threats

5.2 User Security Responsibilities

You are responsible for:

• Maintaining the confidentiality of your account password
• Notifying us immediately of any unauthorized access
• Using a strong, unique password for your account
• Logging out from shared devices

6. Data Retention & Deletion

6.1 How Long We Keep Your Data

6.2 Account Deletion Process

To delete your account and associated data:

1. Open the Ramakoti App
2. Navigate to Profile → Settings → Account Settings
3. Select "Delete Account"
4. Confirm your decision and provide your password
5. Your account will be immediately deactivated
6. All personal data will be permanently deleted within 90 days

Alternatively, email us at support@ramakoti.app with the subject "Account Deletion Request" and we will process your request within 30 days.

7. Your Privacy Rights

Depending on your location, you have specific rights regarding your personal information. We honor these rights globally to all our users.

7.1 Rights for All Users

• Right to Access: Request a copy of all personal information we hold about you
• Right to Correction: Update or correct inaccurate or incomplete information
• Right to Deletion: Request deletion of your account and associated personal data
• Right to Portability: Request your data in a machine-readable format (JSON/CSV)
• Right to Opt-Out: Unsubscribe from marketing communications or personalized ads
• Right to Object: Object to processing of your data for specific purposes

7.2 GDPR Rights (European Union Users)

If you are located in the EU/EEA, you have additional rights under GDPR:

• Right to Erasure: "Right to be forgotten" - have your data erased in certain circumstances
• Right to Restriction: Restrict processing of your data while we verify accuracy or address objections
• Right to Data Portability: Receive your data in a structured, commonly used format
• Right to Withdraw Consent: Withdraw consent at any time for consent-based processing
• Right to Lodge Complaint: File a complaint with your local Data Protection Authority
• Right to Information: Be informed about how your data is processed

EU Data Protection Authorities: Find your local authority

7.3 CCPA Rights (California Users)

If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA):

• Right to Know: What personal information we collect, use, disclose, and sell (we don't sell data)
• Right to Delete: Request deletion of your personal information (with certain exceptions)
• Right to Opt-Out: Opt out of the sale of your personal information (we don't sell your data)
• Right to Non-Discrimination: Equal service and pricing regardless of privacy choices
• Right to Request: Request information disclosure up to twice in a 12-month period

7.4 How to Exercise Your Rights

To exercise any of these rights, contact us at:

• Email: support@ramakoti.app (Subject: "Privacy Rights Request")
• In-App: Profile → Settings → Privacy & Data
• Response Time: We will respond within 30 days (45 days for complex requests)
• Verification: We may require identity verification to protect your data security

No Fees: Exercising these rights is free of charge. We will not discriminate against you for making a request.

8. International Data Transfers

Your information may be transferred to, stored, and processed in countries other than your country of residence, including the United States, where data protection laws may differ.

8.1 Where Your Data is Stored

• Primary Storage: Google Cloud Platform servers (multi-region)
• Firebase Services: Distributed across Google's global infrastructure
• Backup Storage: Encrypted backups in secure cloud facilities

8.2 International Transfer Safeguards

We ensure appropriate safeguards for international data transfers:

• Standard Contractual Clauses (SCCs): EU-approved data transfer agreements with service providers
• Adequacy Decisions: Rely on European Commission adequacy decisions where available
• Google's Compliance: Firebase and Google Cloud comply with international data protection frameworks
• Encryption: All data transfers use encryption in transit and at rest

By using our Service, you consent to the transfer of your information to the United States and other countries where we or our service providers operate.

9. Children's Privacy (COPPA Compliance)

9.1 COPPA Compliance

In compliance with the Children's Online Privacy Protection Act (COPPA):

• We do not knowingly collect, use, or disclose personal information from children under 13
• If we discover that we have collected information from a child under 13, we will delete it immediately
• Parents or guardians who believe their child under 13 has provided us with personal information should contact us immediately

9.2 Parental Notice & Rights

If you are a parent or guardian and believe your child has provided us with personal information:

1. Contact us immediately at support@ramakoti.app with "COPPA Request" in the subject
2. Provide proof of parental authority (for verification purposes)
3. We will promptly delete all information associated with that account
4. The account will be permanently deactivated

Response Time: We will respond to parental inquiries within 48 hours and complete data deletion within 7 days.

10. Cookies & Tracking Technologies

Our App and associated services use various tracking technologies to enhance functionality and analyze usage:

10.1 Technologies We Use

• Local Storage: Stores user preferences, settings, and progress data locally on your device
• Session Identifiers: Firebase session cookies to maintain your login state
• Analytics Identifiers: Firebase Analytics instance IDs for in-app usage tracking
• Advertising IDs: Device advertising identifiers (GAID/IDFA) for ad personalization
• Crash Reporting: Unique identifiers to track and resolve technical issues
• Google Analytics Website Cookies: Set by Google Analytics 4 on the ramakoti.app website — _ga (expires 2 years), _gid (expires 24 hours), _ga_G-FTHNMKN8BR (session state, expires 2 years)

10.2 Managing Tracking Preferences

Disable Personalized Ads:

• Android: Settings → Google → Ads → Opt out of Ads Personalization
• iOS: Settings → Privacy & Security → Tracking → Toggle off "Allow Apps to Request to Track"

Disable Analytics:

• Email us at support@ramakoti.app to request analytics opt-out
• Note: This may limit our ability to provide technical support and improve the App

Clear Local Data:

• Android: Settings → Apps → Ramakoti App → Storage → Clear Data
• iOS: Settings → General → iPhone Storage → Ramakoti App → Delete App

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.

11.1 How We Notify You of Changes

• Minor Changes: Updated "Effective Date" at the top of this policy
• Material Changes: In-app notification, email notification, or prominent notice in the App
• Advance Notice: Material changes will be communicated at least 30 days before taking effect

11.2 Your Acceptance of Changes

By continuing to use the App after changes become effective, you accept the updated Privacy Policy. If you do not agree with changes, you should discontinue use and may request account deletion.

Version History: We maintain a record of policy versions. Contact us to request previous versions.

12. Legal Disclaimers & Limitations

12.1 Service Provided "As-Is"

The Ramakoti App is provided on an "as-is" and "as-available" basis. While we strive to maintain high standards of data security, we cannot guarantee:

• Absolute security of data transmission or storage
• Uninterrupted or error-free service availability
• Prevention of all unauthorized access or data breaches
• Accuracy or completeness of third-party services

12.2 Limitation of Liability

To the maximum extent permitted by law, Spark Triangle LLC shall not be liable for any indirect, incidental, special, consequential, or punitive damages, including loss of data, arising from or related to your use of the App or this Privacy Policy.

12.3 Governing Law & Dispute Resolution

This Privacy Policy is governed by the laws of the United States, without regard to its conflict of law provisions. Any disputes shall be resolved through:

1. Good Faith Negotiation: Initial attempt to resolve disputes informally
2. Mediation: If negotiation fails, mediation by a neutral third party
3. Arbitration: Binding arbitration under the American Arbitration Association rules (if applicable)

Exception: This does not affect your statutory rights as a consumer in your country of residence, particularly for EU users under GDPR.

12.4 Severability

If any provision of this Privacy Policy is found to be unenforceable or invalid, that provision will be limited or eliminated to the minimum extent necessary while the remainder of this policy remains in full force and effect.

13. Contact Us