Privacy Policy

Last updated: April 7, 2026 | Effective: April 7, 2026

1. Introduction

JBAC Innovations Private Limited ("Buzzire", "we", "us", "our"), a company incorporated under the Companies Act, 2013 (CIN: U62012GJ2026PTC173156), with its registered office in Gandhinagar, Gujarat, India, operates the Buzzire mobile application ("App") and the website at buzzire.com ("Website") (collectively, "Services").

This Privacy Policy explains how we collect, use, disclose, store, and safeguard your personal data when you use our Services, in compliance with:

The Information Technology Act, 2000 ("IT Act")
The Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 ("SPDI Rules")
The Digital Personal Data Protection Act, 2023 ("DPDP Act")
Other applicable data protection laws and regulations

By downloading, installing, registering on, or using the Buzzire App or Website, you acknowledge that you have read, understood, and agree to the collection and processing of your personal data as described in this Privacy Policy. If you do not agree with this policy, please do not use our Services.

💡 Plain Language Promise: We've written this policy to be as clear and understandable as possible. Where legal terms are necessary, we've explained what they mean in everyday language.

2. Data Fiduciary Information

Under the Digital Personal Data Protection Act, 2023, JBAC Innovations Private Limited is the "Data Fiduciary" — the entity that determines the purpose and means of processing your personal data.

This means we are responsible for:

Deciding what personal data to collect and why
Ensuring your data is processed lawfully, fairly, and transparently
Implementing appropriate security measures to protect your data
Responding to your requests regarding your personal data rights
Reporting data breaches to relevant authorities where required

Data Fiduciary Contact:

Company: JBAC Innovations Private Limited
CIN: U62012GJ2026PTC173156
Address: Gandhinagar, Gujarat, India
Email: support@buzzire.com
Grievance Officer: Akshay Chavda, Director

3. Personal Data We Collect

We collect different types of data depending on how you interact with Buzzire. Here's a comprehensive breakdown:

3.1 Information You Provide Directly

Data Category	Specific Data Points	Why We Need It
Account Information	Full name, email address, phone number, date of birth, gender	To create and manage your account, verify eligibility (18+ requirement), and enable communication
Profile Information	Photos, bio, interests, relationship preferences, education, occupation, height, religion, lifestyle choices (smoking, drinking, etc.)	To build your dating profile, power our matching algorithm, and show relevant profiles to other users
Verification Data	Selfie photo for profile verification	To verify you're a real person and prevent catfishing. The selfie is compared against your profile photos and is not stored permanently after verification
Communication Data	Messages, chat content, "Say Hi" messages, voice notes	To deliver messages between matched users and investigate reports of harassment or policy violations
Preference Data	Discovery preferences (age range, distance, gender preference), notification settings, theme preference	To personalise your experience and show relevant matches
Subscription Information	Subscription plan (Plus, Gold, Platinum), subscription status, billing period	To manage your premium features and entitlements. Note: Payment card details are processed by Apple App Store, Google Play Store, or Razorpay — we never see or store your full card number
Reports & Feedback	User reports, feedback submissions, support tickets, bug reports	To investigate safety issues, improve the app, and respond to your inquiries

3.2 Information Collected Automatically

Data Category	Specific Data Points	Why We Collect It
Device Information	Device model, manufacturer, operating system and version, screen resolution, unique device identifiers (Firebase Installation ID), app version	To optimise the app for your device, diagnose technical issues, and prevent fraud
Network Information	IP address, connection type (Wi-Fi/mobile), carrier name	To deliver content efficiently, detect suspicious activity, and provide approximate location when GPS isn't available
Location Data	GPS coordinates (when you grant permission), approximate location from IP address	To power location-based discovery and show nearby profiles. See Section 17 for full details
Usage Data	Screens viewed, features used, swipe actions (like/pass), time spent on app, session start/end times, search queries, filter selections	To understand how you use the app, improve features, fix bugs, and optimise the matching algorithm
Performance Data	App crash logs, error reports, loading times, network request performance	To identify and fix technical issues, improve app stability and speed

3.3 Information We Do NOT Collect

For complete transparency, here's what Buzzire does not collect:

Your contacts or address book
Your browsing history outside the Buzzire app
Your social media passwords or private messages on other platforms
Your financial information or bank account details (payments are handled by third parties)
Your advertising ID (IDFA/GAID) — we do not participate in ad tracking
Biometric data for purposes other than profile verification
Health or medical information

4. How We Collect Your Data

We collect personal data through the following methods:

Direct input: When you register, create your profile, send messages, adjust settings, or contact support
Automated collection: Through SDKs and APIs embedded in the app (Firebase Analytics, Crashlytics, Firebase Performance) that collect device and usage data as you interact with the app
Third-party services: When you subscribe through Apple App Store or Google Play Store, they share subscription status and transaction IDs with us (but not payment card details)
Device permissions: Camera (for profile photos and verification), location services (for discovery), push notifications (for match and message alerts). Each permission is requested individually and can be revoked at any time

5. Purpose of Data Processing

We process your personal data only for specific, legitimate purposes. Here's a detailed breakdown:

5.1 Core Service Delivery

Account creation and authentication: Using your phone number, email, and name to create your account and keep it secure
Profile display: Showing your photos, bio, and interests to potential matches based on mutual discovery preferences
Matching algorithm: Using your preferences, location, activity patterns, and profile quality to suggest compatible profiles
Messaging: Delivering messages, "Say Hi" greetings, and notifications between matched users
Subscription management: Enabling premium features (Plus, Gold, Platinum) based on your subscription tier

5.2 Safety & Security

Profile verification: Using selfie-based verification to confirm users are real and match their photos
Fraud prevention: Detecting and blocking fake accounts, bots, scammers, and suspicious activity using device fingerprinting and behavioural analysis
Content moderation: Reviewing reported profiles and messages to enforce our Community Guidelines
Account security: Detecting unauthorized access attempts and protecting against account takeover

5.3 Improvement & Analytics

Product improvement: Analysing usage patterns to understand which features work well and which need improvement
Bug fixing: Using crash logs and error reports to identify and resolve technical issues quickly
Algorithm optimisation: Improving our matching algorithm based on aggregate interaction patterns (not individual activity)
A/B testing: Testing different feature variations to determine which provides the best user experience

5.4 Communication

Transactional notifications: Sending push notifications about new matches, messages, likes, and subscription changes
Service updates: Informing you about important changes to the app, terms, or policies
Support responses: Responding to your support tickets, feedback, and inquiries

5.5 Legal Compliance

Law enforcement: Complying with valid legal requests from law enforcement agencies
Regulatory compliance: Meeting requirements under the IT Act, DPDP Act, and other applicable laws
Dispute resolution: Retaining necessary data to resolve disputes and enforce our Terms of Service

6. Legal Basis for Processing

Under the DPDP Act, 2023, we process your personal data based on the following legal grounds:

Consent (Section 6): You provide explicit consent when you create your account and accept this Privacy Policy. Consent is also obtained for specific permissions like location access and camera access
Legitimate uses (Section 7): Certain processing is deemed a "legitimate use" under the Act, including fulfilling our contractual obligations to provide the Buzzire service, complying with legal obligations (court orders, law enforcement requests), responding to medical emergencies involving threats to life, and employment-related processing for our internal staff

You can withdraw your consent at any time (see Section 13), though this may affect your ability to use certain features of the Service.

We take data sharing seriously and only share your information in the following limited circumstances:

7.1 With Other Buzzire Users

When you use Buzzire, certain profile information is visible to other users:

Your public profile: First name, age, photos, bio, interests, education, occupation, and other profile fields you've filled in are visible to users who encounter you in discovery
Messages: Content you send in chats is visible to the matched user you're chatting with
Subscription badge: If you're a Platinum member and have the badge enabled, other users may see your Platinum status
Verification status: Your verified badge (if completed) is visible to other users

🔒 What other users can't see: Your email address, phone number, exact location, last name, device information, usage analytics, or any data beyond your public profile and chat messages.

7.2 With Service Providers

We share data with carefully selected third-party service providers who help us operate Buzzire (see Section 8 for details). These providers are contractually bound to use your data only for the specific services they provide to us and must maintain appropriate security measures.

7.3 For Legal Reasons

We may disclose your data when required to:

Comply with applicable laws, regulations, or valid legal process (such as a court order or subpoena)
Respond to lawful requests from government or law enforcement agencies
Protect the rights, safety, or property of Buzzire, our users, or the public
Detect, prevent, or investigate fraud, security breaches, or technical issues
Enforce our Terms of Service and Community Guidelines

7.4 Business Transfers

In the event of a merger, acquisition, reorganisation, bankruptcy, or sale of all or a portion of our assets, your personal data may be transferred as part of that transaction. We will notify you via email and/or a prominent notice on our app before your data is transferred and becomes subject to a different privacy policy.

7.5 What We Never Do

We never sell your personal data to advertisers, data brokers, or any third party
We never share your data for third-party advertising — Buzzire does not run ads and does not participate in ad networks
We never share your messages with anyone other than the intended recipient, except when investigating reported policy violations
We never share your precise location with other users — only approximate distance is shown

8. Third-Party Service Providers

We use the following third-party services to operate and improve Buzzire. Each service has access only to the data necessary for its specific function.

Firebase (Google)

Authentication, real-time database, cloud functions, analytics, crash reporting, performance monitoring, push notifications (FCM), cloud storage for profile photos

Firebase Privacy Policy →

RevenueCat

Subscription management, receipt validation, entitlement tracking. Receives: user ID, subscription status, transaction IDs. Does not receive: personal profile data, messages, or location

RevenueCat Privacy Policy →

Razorpay

Payment processing for Indian users. Handles payment card data, UPI transactions, and net banking. We never see or store your full card details — Razorpay processes everything securely

Razorpay Privacy Policy →

Apple App Store

In-app purchases, subscription billing for iOS users. Apple handles all payment processing. We receive: transaction receipts, subscription status. We do not receive: payment card details

Apple Privacy Policy →

Google Play Store

In-app purchases, subscription billing for Android users. Google handles all payment processing. We receive: purchase tokens, subscription status. We do not receive: payment card details

Google Privacy Policy →

Expo (React Native)

Over-the-air (OTA) app updates. Minimal data collection limited to device type and app version for update delivery. Does not receive personal profile data

Expo Privacy Policy →

We regularly review our third-party integrations to ensure they meet our security and privacy standards. All providers are contractually required to process data in accordance with applicable law.

9. Data Storage & Transfer

Where is your data stored?

Your personal data is primarily stored on Firebase (Google Cloud) servers. Google Cloud operates data centres in multiple regions globally. While we do not have a dedicated India-only server, your data may be stored in data centres located in the United States, Singapore, or other regions where Google Cloud operates.

Cross-border data transfers

By using Buzzire, you consent to the transfer of your data to servers outside India. We ensure that such transfers comply with applicable Indian law and that adequate data protection measures are in place. Specifically:

Google (Firebase) maintains comprehensive data protection agreements and certifications
All data transfers are encrypted using industry-standard TLS/SSL protocols
Our third-party providers are contractually bound to maintain data protection standards equivalent to or exceeding Indian requirements

Data encryption

In transit: All data transmitted between your device and our servers is encrypted using TLS 1.2 or higher
At rest: Data stored on Firebase servers is encrypted using AES-256 encryption
On device: Sensitive data (like authentication tokens) is stored in secure storage on your device

10. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes described in this policy. Here are our specific retention periods:

Data Type	Retention Period	Reason
Active account data	As long as your account is active	Required to provide the service
Chat messages	As long as both users have active accounts, or 30 days after either user deletes their account	Required for chat functionality and report investigation
Verification selfies	Deleted after verification is complete (typically within 24 hours)	Only needed for the verification process itself
Analytics data	Aggregated and anonymised within 14 months	For product improvement and trend analysis
Crash logs	90 days	For technical debugging and stability improvement
Support tickets	12 months after resolution	For quality assurance and pattern detection
Deleted account data	Fully erased within 30 days of deletion	Buffer period for processing and backup propagation
Legal hold data	As required by law or ongoing legal proceedings	Legal obligation compliance

After the retention period expires, data is permanently deleted from our active systems. Backup systems may retain encrypted copies for up to an additional 30 days before automatic purging.

11. Data Security

We implement comprehensive security measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction.

Technical safeguards:

Encryption: All data is encrypted in transit (TLS 1.2+) and at rest (AES-256)
Authentication: Firebase Authentication with secure token management and automatic token refresh
Access controls: Role-based access controls ensure only authorized team members can access user data, and only the minimum data necessary for their role
Firebase Security Rules: Database security rules ensure users can only access their own data and data explicitly shared with them (e.g., matched user profiles)
Input validation: All user inputs are validated and sanitised to prevent injection attacks
Monitoring: Automated monitoring for suspicious activity, unusual access patterns, and potential security incidents

Organisational safeguards:

Minimal access principle: Team members only have access to the data they need for their specific responsibilities
Security reviews: Regular review of security practices and access controls
Incident response: Documented procedures for responding to security incidents and data breaches
Vendor assessment: Third-party service providers are evaluated for security standards before integration

⚠️ Important: While we implement industry-standard security measures, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security, but we are committed to protecting your data to the best of our ability and will notify you promptly in the event of a data breach that affects your personal data.

12. Your Rights

Under the Digital Personal Data Protection Act, 2023, and applicable laws, you have the following rights regarding your personal data:

👁️

Right to Access

You can request a summary of all personal data we hold about you, including what data we collect, how we use it, and who we share it with. We'll provide this in a clear, readable format within 30 days.

✏️

Right to Correction

If any of your personal data is inaccurate, incomplete, or misleading, you have the right to have it corrected. You can update most profile data directly in the app, or contact us for other data.

🗑️

Right to Erasure

You can request complete deletion of your personal data (Right to be Forgotten). This can be done through in-app account deletion or by emailing us. Data is fully erased within 30 days.

🚫

Right to Withdraw Consent

You can withdraw your consent to data processing at any time. This does not affect the lawfulness of processing done before withdrawal. Some features may become unavailable without consent.

⚖️

Right to Grievance Redressal

If you're not satisfied with how we've handled your data or responded to a request, you have the right to file a complaint with our Grievance Officer or the Data Protection Board of India.

📋

Right to Nominate

Under the DPDP Act, you can nominate another person to exercise your data rights on your behalf in the event of your death or incapacity.

How to exercise your rights:

Email support@buzzire.com with the subject line "Data Rights Request"
Include your registered phone number or email for identity verification
Specify which right(s) you wish to exercise
We will acknowledge your request within 48 hours and fulfil it within 30 days

How we obtain consent:

Registration consent: When you create your Buzzire account, you provide consent to the data processing described in this policy
Permission-based consent: Specific device permissions (camera, location, notifications) are requested individually, with clear explanations of why each permission is needed
Optional consent: Some features (like analytics) may offer additional opt-in/opt-out controls

How to withdraw consent:

Device permissions: Revoke camera, location, or notification permissions through your device Settings → Apps → Buzzire → Permissions
Analytics opt-out: Email support@buzzire.com with subject "Analytics Opt-Out"
Complete withdrawal: Delete your account through the app (Settings → Account → Delete Account) or email us. This withdraws all consent and triggers complete data erasure within 30 days

Effect of withdrawal: Withdrawing consent may affect your ability to use certain features. For example, revoking location permission means we can't show you nearby profiles. Complete consent withdrawal (account deletion) means you can no longer use Buzzire.

14. Children's Privacy

Buzzire is intended exclusively for users aged 18 years and above. We do not knowingly collect personal data from anyone under the age of 18.

Age is verified during registration. Users who do not meet the minimum age requirement cannot create an account
If we discover that we have inadvertently collected data from a minor, we will immediately delete the account and all associated data
If you believe a minor has created a Buzzire account, please report it immediately to support@buzzire.com
In accordance with the DPDP Act, we treat all users under 18 as children whose data requires special protection

15. Cookies & Tracking Technologies

We use cookies and similar tracking technologies on our website and in our mobile app. For a comprehensive explanation of what cookies we use, why, and how to manage them, please refer to our dedicated Cookie Policy.

In summary:

Essential cookies: Required for core functionality (authentication, security)
Analytics cookies: Help us understand usage patterns (Firebase Analytics)
Preference cookies: Remember your settings (theme, language)
No advertising cookies: We do not use marketing or advertising tracking

16. Push Notifications & Communications

Push notifications:

With your permission, we send push notifications for:

New matches and likes
New messages from matched users
"Say Hi" greetings
Subscription status changes
Important security alerts (e.g., new login detected)
Major app updates and feature announcements

You can manage notification preferences in the app (Settings → Notifications) or disable them entirely through your device settings.

Email communications:

We may send emails for:

Account verification and password recovery
Subscription receipts and billing notifications
Responses to your support tickets
Important policy or terms changes
Security alerts

We do not send promotional marketing emails. All email communications are transactional or service-related.

17. Location Data

Location is a core part of the Buzzire dating experience, enabling you to discover people near you. Here's exactly how we handle your location data:

What we collect:

GPS coordinates: When you grant location permission, your device's GPS provides precise latitude and longitude
IP-based location: When GPS is unavailable, we may use your IP address to determine approximate location (city-level accuracy)

How we use it:

Discovery radius: To show profiles within your selected distance range
Distance display: To show approximate distance (e.g., "5 km away") to other users. We never show your exact location or address
Location-based matching: Proximity is a factor in our matching algorithm

How we protect it:

Your exact coordinates are never shared with other users
Other users only see approximate distance rounded to the nearest kilometre
Location data is updated only when you actively use the app — we do not track your location in the background
You can revoke location permission at any time through your device settings
Without location permission, the app continues to work but cannot show nearby profiles

18. Account Deletion & Data Erasure

You have the right to delete your account and have all your personal data erased. For detailed instructions, see our Delete Account page.

What happens when you delete your account:

Immediate: Your profile is removed from discovery — no one can see or find you
Immediate: All your matches and conversations are deleted
Within 24 hours: Your profile photos are removed from our cloud storage
Within 30 days: All personal data (name, email, phone, preferences, activity history) is permanently erased from all active systems
Within 60 days: Encrypted backup copies are automatically purged

What we may retain after deletion:

Anonymised analytics data: Aggregate, non-identifiable usage statistics that cannot be linked back to you
Legal hold data: If required by an active legal proceeding, court order, or law enforcement request
Financial records: Transaction records as required by Indian tax and accounting regulations (typically 7 years)
Safety records: If your account was banned for serious violations, we retain a hashed identifier to prevent re-registration

⚠️ Important: Deleting your Buzzire account does NOT cancel your premium subscription. You must cancel your subscription separately through Apple App Store or Google Play Store before deleting your account.

19. International Users

While Buzzire is primarily designed for users in India, we welcome users from around the world. If you access Buzzire from outside India:

Your data will be transferred to and processed on servers that may be located outside your country of residence
By using Buzzire, you consent to this cross-border data transfer
We apply the same data protection standards to all users regardless of their location
If you are in the European Economic Area (EEA), United Kingdom, or other jurisdictions with data protection laws, we respect your additional rights under those laws (such as GDPR rights) to the extent applicable
Data transfers from the EEA are protected by Standard Contractual Clauses where applicable

20. Grievance Redressal

In accordance with the Information Technology Act, 2000, and the DPDP Act, 2023, we have appointed a Grievance Officer to address any concerns or complaints regarding your personal data.

Grievance Officer:

Name: Akshay Chavda
Designation: Director, JBAC Innovations Private Limited
Email: support@buzzire.com (Subject: "Privacy Grievance")
Address: Gandhinagar, Gujarat, India

Grievance resolution process:

Complaints are acknowledged within 48 hours of receipt
We aim to resolve all grievances within 30 days
If we need additional time due to complexity, we will inform you of the expected timeline
You will receive a written response detailing the outcome and any action taken

Escalation:

If you are not satisfied with our response, you may escalate your complaint to the Data Protection Board of India as established under the DPDP Act, 2023. Details of the Board and its complaint mechanisms will be made available on the official government website once operational.

21. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or business operations.

How we notify you:

Minor changes: We will update the "Last updated" date at the top of this page. We encourage you to review this policy periodically
Significant changes: We will notify you through in-app push notifications, email, or a prominent notice within the app at least 7 days before the changes take effect
Material changes to data collection: If we introduce new categories of personal data collection or new purposes for processing, we will seek your explicit consent before proceeding

Continued use of Buzzire after the effective date of changes constitutes your acceptance of the updated policy. If you do not agree with the changes, you should stop using the Service and delete your account.

Previous versions of this Privacy Policy are archived and available upon request by emailing support@buzzire.com.

22. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

General privacy inquiries: support@buzzire.com (Subject: "Privacy Inquiry")
Data rights requests: support@buzzire.com (Subject: "Data Rights Request")
Grievances: support@buzzire.com (Subject: "Privacy Grievance")
Response time: Within 24–48 hours for acknowledgement; 30 days for data rights fulfilment

JBAC Innovations Private Limited
CIN: U62012GJ2026PTC173156
Gandhinagar, Gujarat, India
buzzire.com

Your privacy isn't just a policy — it's a core part of how we build Buzzire. Thank you for trusting us with your data. 🐝