Privacy Policy

Last updated: 21 February 2026

This Privacy Policy explains how we collect, use, store, and safeguard the data you share with us when you access our website, community network, mobile app, and related services (collectively referred to as "the Platform").

By using Shuunnya.org, you agree to the practices described in this Policy.

1. Information We Collect

We collect information to provide, personalize, and improve your experience on Shuunnya. This includes:

1.1 Account & Profile Information

Username, password, and optional email address used for registration and login
Name, gender, age, birthday, education, work, interests, languages, and location
TrueScience alignment, Harmony level, relationship status, and openness preferences
Profile photo, cover image, social links, and visibility settings
Account recovery codes generated during registration

1.2 Community & Social Activity

Statuses, posts, comments, likes, and forum participation (topics, replies, votes, bookmarks)
Member directory presence and search interactions
"Report" or "Block Member" actions (recorded for safety and moderation)
Notification preferences and history

1.3 Messaging & Communication

Private messages exchanged through ShuunnyaEcho (our Messenger service)
Audio and video call metadata (call initiation, duration, and connection details; we do not record call content)
Typing indicators, read receipts, and online presence status
Media and files shared within conversations

1.4 Learning & Education Data

Course enrollments, lesson progress, quiz responses, and completion records
Certificates earned and dashboard activity

1.5 Productivity Tools & Personal Data

Financial tools: Budget entries, tax records, EMI/SIP/FD calculations, finance tracking data, and related inputs you save
Health & wellness tools: Diet plans, nutrition data, and meditation session records
Life management tools: Journal entries, to-do lists, project data, habit tracking, weekly reviews, and timer/pomodoro session history
Workspace: Notes and tables you create and edit

Financial, health, and personal journal data is treated with heightened sensitivity. This data is stored securely and is only accessible to you unless you choose to share it.

1.6 AI Interactions

Conversations with ShuunnyaAI, including your prompts and the AI-generated responses
Conversation history is stored to provide continuity across sessions

1.7 Technical & Security Data

Browser type, operating system, device information, and IP address
Country of access and request metadata
Login history, active sessions, and security event logs
Usage patterns, performance metrics, and error logs used to improve the Platform and detect abuse

1.8 Mobile App Data

Push notification tokens (if you enable notifications on our Android or iOS app)
The mobile app loads the same Platform; all data described above applies equally when accessed via the app

2. How We Use Your Information

We use your data responsibly to:

Deliver personalized account experiences, courses, and community access
Sync your data securely across devices (journals, messages, documents, progress, and more)
Enable real-time messaging, presence indicators, and call connectivity
Support features like interactions, recommendations, and search results
Facilitate member discovery, community matching, and communication within the network
Power AI-assisted features using your conversation context to provide relevant responses
Send necessary updates: account alerts, notifications, reminders, and security notices
Monitor content for compliance with our Terms, prevent spam or abuse, and maintain safety
Enforce rate limits and security measures to protect accounts from unauthorized access
Improve platform performance, interface design, and product features based on aggregated analytics

3. Communications and Content

Your messages, posts, documents, and interactions are stored on Shuunnya servers to enable synchronization across devices and sessions.
Private messages and workspace content are only visible to you and your intended recipients. They are not publicly accessible.
Certain content types, such as statuses, may be ephemeral and automatically removed after a set period (e.g., 24 hours).
Authorized administrators may review content only when necessary for: abuse reports or moderation, technical troubleshooting, or compliance with law or service integrity.

We at Shuunnya are committed to safeguarding your privacy and ensuring that no user data is accessed without valid legal, moderation, or technical reasons. Strict procedural norms are in place to govern all data access. Comprehensive audit trails are maintained to ensure accountability and prevent unauthorized access.

We do NOT access or share your private data for external profiling, advertising, or sale to third parties.

4. Sharing of Information

We respect your confidentiality. Shuunnya does not sell your data. However, we may share limited information under the following circumstances:

Infrastructure Providers: We use trusted third-party providers for hosting, content delivery, security, and database services. These providers process data on our behalf under strict confidentiality and data protection agreements. They do not have independent rights to use your data.
Legal Compliance: If required by applicable law, regulation, or valid legal process (such as a court order or government request).
Community Visibility: Information you choose to make public (posts, profile details, forum contributions, comments) is visible to other members as per your privacy settings.
Business Transitions: In case of a merger, restructuring, or transfer of services, your information may be securely transferred as part of continuity of service. You will be notified of any such change.

5. Data Security

We use multiple layers of protection to keep your data safe:

HTTPS encryption for all data in transit
Secure, encrypted storage for sensitive data such as passwords and personal records
Industry-standard firewall, bot protection, and rate limiting
Cookie-based authentication with CSRF protection for all write operations
Session management allowing you to view and revoke active sessions across devices
Progressive login protections, including temporary account lockout after repeated failed attempts
Regular security audits and comprehensive logging of administrative actions

While we take every reasonable measure, no system is fully immune to vulnerabilities. We encourage you to use strong passwords and keep login credentials private.

6. Your Rights and Controls

You have control over your data. Depending on your location, you may have the following rights:

6.1 General Controls (All Users)

Access & Edit: View and update your profile details, privacy settings, and preferences at any time in your account settings.
Data Export: Request a copy of your personal data in a portable format.
Delete Account: You may request permanent deletion of your account. After a 30-day grace period (during which you can cancel the request), your personal data will be anonymized or permanently erased.
Adjust Visibility: Manage who can view your profile (public, members only, or private), and control the visibility of specific fields like email, phone, birthday, and online status.
Session Management: View all active sessions and log out from any or all devices remotely.
Communication Preferences: Manage notification settings and preferences.

6.2 Rights Under GDPR (European Economic Area)

If you are located in the EEA, you have the right to:

Access: Obtain confirmation of whether we process your personal data, and request a copy.
Rectification: Correct inaccurate or incomplete personal data.
Erasure: Request deletion of your personal data under certain conditions.
Restrict Processing: Request that we limit the processing of your data in certain circumstances.
Data Portability: Receive your data in a structured, commonly used, machine-readable format.
Object: Object to processing of your personal data for certain purposes.

6.3 Rights Under CCPA (California, USA)

If you are a California resident, you have the right to:

Know: Request disclosure of the categories and specific pieces of personal information we have collected.
Delete: Request deletion of personal information we have collected from you.
Non-Discrimination: Exercise your rights without receiving discriminatory treatment.

Shuunnya does not sell personal information. We do not share personal information for cross-context behavioral advertising.

To exercise any of these rights, please contact us at shubham@shuunnya.org. We will respond within the timeframe required by applicable law.

7. Data Retention

We retain your data only for as long as needed to provide services, fulfil the purposes described in this Policy, or comply with legal requirements.
Some content types (such as ephemeral statuses) are automatically deleted after their designated period.
Upon account deletion, your personal data and activity records are anonymized or permanently erased. Content you contributed to shared spaces (such as forum replies) may be anonymized rather than deleted to preserve the integrity of community discussions.
Security and audit logs may be retained for a limited period as required by law or for the prevention of fraud and abuse.

8. Cookies & Tracking Technologies

Shuunnya uses cookies and similar technologies for:

Authentication: A session cookie is used to keep you logged in securely.
Security: CSRF tokens protect your account from unauthorized actions.
Preferences: Local storage may be used to remember your settings and improve your experience.
Performance: Internal monitoring to identify and fix issues.

We do not use third-party advertising or tracking cookies. We do not use Google Analytics or similar third-party analytics services.

You can disable cookies in your browser settings, but some features (login, personalization) may stop working.

9. AI and Automation

Features such as ShuunnyaAI are designed to support learning and reflection. The AI service is powered by open-source models running on our secure infrastructure. We do not send your data to external third-party AI providers.

Your AI conversations are stored to provide continuity and may be used to improve your experience.
AI responses are generated automatically and should not be treated as professional advice.
You can delete your AI conversation history at any time.
We do not use your personal data to train AI models.

10. Third-Party Links & Services

Our Platform may include:

Links to third-party websites (e.g., affiliate product listings on external retailers, external videos)
Currency conversion data sourced from public financial institutions

We are not responsible for the privacy policies or practices of these external sites. Review their policies before sharing personal data. Clicking an affiliate link does not share your Shuunnya account data with the third party.

11. Children's Privacy

Shuunnya is designed for users 13 years and older.
We do not knowingly collect personal data from children under 13 without parental consent.
If you believe we have collected information from a child under 13, please contact us immediately for prompt removal.
For more details, please refer to our Child Safety Policy.

12. Data Breach Notification

In the unlikely event of a data breach that affects your personal information, we will notify affected users and relevant authorities within the timeframe required by applicable law. Notification will include the nature of the breach, the data affected, and the steps we are taking to address it.

13. Governing Law

This Privacy Policy is governed by the laws of India. Any disputes arising from this Policy will be subject to the exclusive jurisdiction of the competent courts in Delhi, India. If you are located outside India, you acknowledge that your data may be processed and stored in jurisdictions that may have different data protection laws than your own.

14. Policy Updates

We may revise this Policy periodically to reflect changes in law, security practices, or platform features. The updated version will be posted on this page with a revised "Last updated" date. If changes are significant, we will notify you through the Platform or via other appropriate means.