Privacy Policy

In This Document

1. Information We Collect
2. How We Use Your Information
3. Sharing of Information
4. Cookies & Tracking
5. Data Security
6. Data Retention
7. Your Rights
8. Third-Party Services
9. Children's Privacy
10. Changes to This Policy

Welcome to KismatChakra ("we", "us", or "our"). This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you use our website at kismatchakra.com and our related services (collectively, the "Service").

By accessing or using KismatChakra, you agree to the collection and use of information as described in this policy. If you do not agree, please discontinue use of our Service.

1 Information We Collect

1.1 Information You Provide Directly

When you register or use KismatChakra, you may provide:

Account information: your full name, email address, and password.
Optional profile details: phone number.
Reading inputs: your date of birth, time of birth, place of birth, and other astrological details you enter to receive readings. This information is used solely to generate your personalised reading and is not stored in a retrievable way linked to your profile beyond what is necessary for credit tracking.
Payment information: processed entirely by Razorpay. We do not store your card number, bank account, or UPI details.
Contact messages: name, email, subject, and message content when you contact us via the Contact form.

1.2 Information Collected Automatically

Log data: IP address, browser type, operating system, pages viewed, and timestamps — collected automatically by our server for security and debugging purposes.
Usage data: number of predictions made, prediction types, and timestamps — used for credit accounting and service improvement.
Session tokens: a secure JWT (JSON Web Token) stored in your browser's local storage to keep you signed in.

      We do not collect: biometric data, government IDs, financial account numbers, health information, or any sensitive personal data not listed above.
    

2 How We Use Your Information

We use the information we collect to:

Create and manage your KismatChakra account.
Generate personalised astrological readings using your birth details.
Process payments and manage your prediction credit balance.
Send transactional emails — account verification, password reset links, and payment confirmations.
Respond to your contact form messages and support requests.
Detect, prevent, and investigate fraud, abuse, and security breaches.
Comply with applicable laws and legal obligations.
Improve and maintain the quality and performance of the Service.

We do not use your data to serve you advertisements. We do not sell your data to third parties for marketing.

4 Cookies & Tracking

KismatChakra uses minimal, essential cookies and browser storage only:

Authentication token: a JWT stored in localStorage to keep you signed in between visits. This expires automatically after 30 days.
Language preference: stored in localStorage to remember your Hindi/English preference.

We do not use advertising cookies, cross-site tracking cookies, or analytics cookies from third parties. We do not use Google Analytics, Facebook Pixel, or similar tracking technologies.

You may clear your browser's localStorage at any time to remove all stored tokens. This will sign you out of KismatChakra.

5 Data Security

We take data security seriously and implement appropriate technical and organisational measures to protect your information:

All data transmission between your browser and our servers is encrypted using HTTPS/TLS.
Passwords are hashed using bcrypt with a high cost factor — we never store plain-text passwords.
Authentication uses signed JWT tokens with expiry, protecting against session hijacking.
API access is protected by rate limiting to prevent brute-force attacks.
Password reset tokens are single-use, cryptographically random, and expire within 1 hour.

      No method of data transmission or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your data, we cannot guarantee absolute security.
    

6 Data Retention

We retain your personal information for as long as your account is active or as needed to provide you with our services. Specifically:

Account data is retained for the lifetime of your account.
Payment records are retained for 7 years to comply with Indian financial regulations.
Prediction logs (type and timestamp, not the reading content) are retained to manage your credit balance.
Server logs are automatically purged after 30 days.

If you delete your account, we will delete or anonymise your personal information within 30 days, except where retention is required by law.

7 Your Rights

You have the following rights with respect to your personal information:

Access: request a copy of the personal data we hold about you.
Correction: request correction of inaccurate or incomplete data.
Deletion: request deletion of your account and personal data ("right to be forgotten").
Portability: request your data in a structured, machine-readable format.
Withdrawal of consent: withdraw consent for data processing at any time by deleting your account.

To exercise any of these rights, please contact us at hello@kismatchakra.com. We will respond within 30 days.

8 Third-Party Services

KismatChakra integrates with the following third-party services. Please review their privacy policies:

Razorpay — payment processing. Razorpay Privacy Policy
OpenAI — AI reading generation (your birth details are sent to OpenAI's API to generate your reading). OpenAI Privacy Policy
Google Fonts — font delivery via Google's CDN. Google Privacy Policy

      Important note about OpenAI: When you request a reading, your name, birth date, birth time, birthplace, and sun sign are sent to OpenAI's API to generate your personalised cosmic reading. OpenAI's data usage policies apply to this information. We recommend reviewing OpenAI's privacy policy at the link above.
    

9 Children's Privacy

KismatChakra is intended for users aged 13 and above. We do not knowingly collect personal information from children under 13. If we become aware that we have collected personal data from a child under 13 without parental consent, we will take steps to delete that information.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us at hello@kismatchakra.com.

10 Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make material changes, we will:

Update the "Last Updated" date at the top of this page.
Notify registered users via email at least 7 days before the change takes effect.

Your continued use of KismatChakra after the effective date of a revised Privacy Policy constitutes your acceptance of the updated policy.

Privacy Questions & Requests

If you have any questions about this Privacy Policy, or wish to exercise your data rights, please contact us:

KismatChakra
Email: hello@kismatchakra.com
Website: kismatchakra.com