Privacy Policy
Effective Date: 15 February 2026
Last Updated: 15 February 2026
This Privacy Policy explains how Kio Tutor (“Kio Tutor”, “we”, “our”, “us”) collects, uses, discloses, and protects information when you use the Kio Tutor mobile application (“App”) and related services (“Services”). The App is currently intended for users located in India.
1. Who We Are
Data Controller / Data Fiduciary (India): Kanhaiya Choudhari (Operating under the brand name "Kio Tutor")
Address: Ward 12, Luttipur, Sudhani, Near Luttipur Market, Katihar, Bihar, 854317, India
Support email: support@kiotutor.com
2. Summary (Quick Read)
• We collect account details (like name and email) to create and secure your account.
• We use device/session info to enforce login security (including single-device session policy).
• We store your subscription/order records for paid plans and compliance.
• We may store dictionary search history (words you searched) if you use that feature.
• We use trusted processors (Firebase/Google Cloud, Razorpay, ZeptoMail) to operate the Services.
• We do not sell your personal information.
3. Information We Collect
3.1 Account & Profile Information (Provided by You)
When you register or update your profile, we may collect:
• Name
• Email address
• Phone number (optional, if you provide it)
• Address (optional, if you provide it)
• Class/academic level (optional, if you provide it)
• Profile photo (optional, if you provide it)
• Referral / academy code (optional, if you provide it)
• UPI ID (optional — only if you choose to provide it for referral commission payout)
3.2 Device, Security & Session Information
To protect accounts and prevent misuse, we may process:
• An app-generated device identifier (deviceId) used for session enforcement and trial eligibility rules
• Login/session status and timestamps (e.g., OTP verification timestamp)
• Firebase identifiers required for authentication and security (e.g., ID tokens)
Single-device session policy: We may restrict simultaneous login on multiple devices for the same account.
If your account is active on another device, you may be blocked or asked to verify again.
3.3 App Activity / Usage Information
Depending on how you use the App, we may collect or store:
• Learning content requests and related generated learning content (such as word meanings, explanations, translations, practice examples, and generated voice outputs), stored in a generalized and anonymized form to improve performance and reduce repeated processing
• Subscription status/entitlements (to enable/disable premium features)
• Referral and commission activity (if you participate in the referral program)
The App may also store certain AI-generated learning content (such as word meanings, explanations, translations, practice examples,
and generated voice outputs) in a generalized and anonymized form to improve performance, reduce repeated cloud processing,
and enhance the learning experience. Such stored content is not intended to be linked to your identity.
3.4 User-Submitted Content (Learning Inputs)
The App processes text you submit for learning features (for example: chat prompts, roleplay inputs,
translation text, practice answers, and vocabulary queries).
Your submitted content may be transmitted securely to cloud service providers (such as AI, translation, or voice services)
to generate responses.
In some cases, generated outputs may be stored in a generalized and anonymized form to improve functionality and performance
(for example, to reuse common learning content and avoid repeated processing). Such stored content is not intended to be linked
to your identity.
We do not store user-submitted inputs as a user-specific history unless the App explicitly provides a save or history feature.
3.5 Payments & Subscriptions
If you purchase a subscription, payments are processed by a third-party payment gateway (e.g., Razorpay). We store purchase-related records such as:
• Order ID / receipt ID, payment status, plan type, plan code/duration
• Subscription start/end dates and entitlement state
• Referral/commission records related to that order (if applicable)
We do not store card numbers, CVV, net-banking credentials, or UPI PIN.
3.6 OTP / Email Verification & Password Reset
We may send OTP emails for login verification or password reset. OTP values are stored in hashed form, expire automatically, and are rate-limited to reduce abuse. We do not access your email inbox.
3.7 What We Do Not Collect
We do not intentionally collect:
• Precise GPS location
• Contacts
• SMS/call logs
• Personal files (except a profile image if you choose to upload one)
4. How We Use Information
We use your information to:
• Create and manage accounts and profiles
• Authenticate users, enforce OTP and device/session security
• Provide learning features, including AI/voice/translation features where enabled
• Process payments, subscriptions, and maintain order/receipt records
• Operate referral and commission features (if you choose to use them)
• Provide customer support and communicate service-related notices
• Detect, prevent, and investigate fraud, abuse, or security incidents
5. AI / Cloud Processing (Transparency)
Some learning features require sending text to cloud services for processing, such as:
• Google Cloud Vertex AI (Gemini) (AI responses)
• Google Cloud Text-to-Speech (voice generation)
• Google Cloud Translation API (translation, where enabled)
• Firebase (authentication, database, storage, analytics/monitoring where enabled)
These providers process data as service providers to deliver requested functionality. Transmission is protected using HTTPS/TLS.
You can review their privacy documentation on their official sites.
6. Sharing & Service Providers
We share information only with service providers and partners as necessary to operate the Services, such as:
| Provider | Purpose |
|---|---|
| Google Firebase / Google Cloud | Authentication, database (Firestore), storage, AI/voice/translation processing, reliability/monitoring (as configured) |
| Razorpay | Payment processing, payment verification, and fraud prevention |
| ZeptoMail (Zoho) | OTP and account email delivery |
No sale of data: We do not sell your personal information.
7. International Data Transfers
Some service providers may process data on servers located outside India. We use reputable providers and take reasonable steps to ensure appropriate safeguards for such transfers.
8. Data Retention
We retain information for as long as necessary to provide the Services and for legitimate business purposes, including:
• Account/profile data: until you delete your account or request deletion (subject to legal retention needs)
• Subscription/order/receipt and referral/commission records: retained for accounting, dispute handling, and compliance
• OTP records: short-lived and automatically expire/delete after a limited time.
• Payment and accounting records may be retained for a minimum period required under applicable Indian tax and financial laws.
9. Security
We use reasonable technical and organizational measures to protect information, including token verification, OTP hashing, access controls, and payment signature/webhook verification. However, no method of transmission or storage is completely secure.
10. Your Choices & Rights (India)
Subject to applicable Indian law, you may request access, correction, or deletion of your personal data.
You can also update certain profile fields in-app (subject to in-app limits).
To make a request, contact: support@kiotutor.com
11. Children’s Privacy
The App is intended for users aged 13 years and above.
Users under the age of 18 are considered minors under Indian law and should use the App with the involvement and guidance of a parent or legal guardian.
The App is not directed to children under 13 years of age, and we do not knowingly
collect personal data from children under 13. If we become aware that such data has
been collected, we will take reasonable steps to delete it promptly.
12. Grievance / Complaints (India)
If you have a complaint or concern about privacy or data use, contact our Grievance Officer:
Grievance Officer: Kanhaiya Choudhari
Email: support@kiotutor.com
Address: Ward 12, Luttipur, Sudhani, Near Luttipur Market, Katihar, Bihar, 854317, India
13. Changes to This Policy
We may update this Privacy Policy from time to time. The updated version will be posted on this page with a new “Last Updated” date. Continued use of the App after an update means you accept the revised policy.
14. Contact
Email: support@kiotutor.com
Service Region: India