This Privacy Policy explains how Evntra ("we", "us", or "our") collects, uses, shares, and protects your personal information when you use the Evntra mobile application (the "App") and the evntra.in website (collectively, the "Service"). By using the Service you agree to this Policy.
Who we are
Evntra is operated from India. For questions about this Policy or your data, contact us at
founder@evntra.in.
What we collect
Information you provide
Account details — phone number, name, date of birth, gender, username (handle), and optionally your email address.
Profile content — profile photo, cover photo, verification selfie, bio, prompts, interests, occupation, relationship status, and other profile fields you choose to share.
Social links — if you add Instagram, LinkedIn, or Twitter handles to your profile.
Organiser details — for business accounts: organisation name, PAN, GST, work email, contact phone, registered address.
Communications — messages you send to other users, reports you submit, and support emails you send us.
Information collected automatically
Location — approximate and (if you grant permission) precise location, used to surface nearby events and connect you with nearby travellers.
Device identifiers — push notification tokens, device model, OS version, and app version.
Activity data — which events you mark as attending, connections you form, messages you send, and screens you visit.
Log and diagnostic data — crash reports, performance metrics, and server logs (including IP address for rate-limiting and abuse detection).
Information from third parties
Sign-in providers — if you sign in with Google or Apple, we receive your verified email, name, and a provider user ID.
Face verification — we use AWS Rekognition to match your verification selfie against your profile photo. Images are processed transiently and not shared with other users.
How we use your data
To create, secure, and operate your account and profile.
To show you relevant events, nearby travellers, and connection suggestions.
To enable in-app messaging and connection requests.
To verify identity (phone OTP, email OTP, selfie match) and detect abuse or fraud.
To send transactional emails (verification codes, connection alerts) and push notifications you've opted into.
To comply with legal obligations and respond to lawful requests from authorities.
How we share your data
We do not sell your personal information. We share it only with:
Other users — your public profile (name, photo, city, interests, traits, prompts, verification badges) is visible according to your privacy settings. You control what is visible.
Service providers who process data under our instructions:
• Supabase (database, authentication, storage) — hosted in Asia Pacific
• Amazon Web Services (backend compute, email delivery via SES, image verification via Rekognition) — ap-south-1 region
• Expo (push notification delivery, over-the-air updates)
• Sentry (crash and error reporting)
• Google / Apple (only if you use their sign-in)
Legal authorities — when required by applicable law or to protect the rights, safety, or property of users or the public.
Where your data is stored
Your data is primarily stored in data centres in the Asia Pacific region (Mumbai and Singapore). Some diagnostic data (crash reports via Sentry) may be processed in the United States. By using the Service you consent to this transfer.
How long we keep it
Account data — for as long as your account is active.
Verification selfie — retained as a cryptographic reference for re-verification when you change your profile photo; not used to identify you to other users.
Messages — retained while your account or the recipient's account is active.
Logs and diagnostics — up to 90 days.
Deleted accounts — we remove personal data within 30 days of deletion request, except where retention is required by law (e.g. financial records for businesses).
Your rights
Depending on your jurisdiction (including under India's DPDP Act, the EU GDPR, and California's CCPA), you may have the right to:
Access the personal data we hold about you.
Correct inaccurate data (most fields are editable in Settings → Edit Profile).
Delete your account and associated data — from Settings → Delete Account in the app, or by emailing founder@evntra.in.
Export your data in a portable format on request.
Withdraw consent for optional processing (e.g. location access) at any time via device settings.
Lodge a complaint with your local data protection authority.
We respond to verified requests within 30 days.
Children
Evntra is for users aged 18 and above. We do not knowingly collect data from anyone under 18. If you believe a minor has created an account, please contact us and we will delete the account promptly.
Security
We protect your data with industry-standard measures: TLS 1.2+ in transit, encryption at rest via our cloud providers, role-based access controls on the backend, rate limiting on authentication endpoints, and hashed storage of one-time passcodes. No system is perfectly secure; please use a strong unique password if you enable email login and enable device-level security (Face ID / fingerprint).
Cookies and analytics
The evntra.in website uses only strictly necessary cookies for session management. We do not use advertising cookies or third-party tracking pixels. The mobile app does not use web cookies.
Changes to this Policy
We may update this Policy from time to time. The "Last updated" date above reflects the latest revision. If we make material changes, we will notify active users via in-app notice or email at least 14 days before the change takes effect.