Privacy Policy

SpeakVerse ("we", "our", or "us") operates the SpeakVerse mobile application ("App"). This Privacy Policy explains what information we collect, how we use it, what other users may see, how we share data, and your rights. We aim to meet common expectations for transparency and control, including practices aligned with the GDPR (where applicable), the CCPA/CPRA (California), India's Digital Personal Data Protection Act, 2023 (where applicable), and Google Play's User Data policy.

Controller: For the purposes of the GDPR, SpeakVerse is the data controller for personal data processed through the App unless we state otherwise (for example, where a processor acts strictly on our instructions).

1. Information We Collect

1.1 Information You Provide

• Account and profile: When you register or sign in (including via Google Sign-In), we collect your name, email address, and (for email sign-up) a password stored in hashed form. We may also receive from Google: email, name, and profile picture, in accordance with Google's permissions.
• Profile details: If you complete or edit your profile, we may collect: display name, profile picture (uploaded via the App and stored using our image provider), bio, preferred language, native language, English level, gender, age, country, interests, learning goals, and notification preferences.
• Teacher verification details: If you apply to become a verified teacher, we collect application details such as full name, teaching experience, specialization, qualification, and optional social or contact fields you submit (for example Instagram handle, WhatsApp number, Facebook profile, and a message to admin).
• Communications: When you use chat or voice calls, we process the fact and timing of calls and messages, message content, and related identifiers (e.g. partner ID, call ID) as necessary to provide the service. We do not permanently store the content of your voice calls on our systems; call audio is transmitted in real time for the duration of the call.
• Feedback: If you submit in-app feedback (e.g. after a call), we collect the feedback content and any ratings or metadata you provide.
• AI practice features: If you use AI chat or related features, we process the text or speech input you send to those features and any conversation content needed to provide responses. Voice input may be processed in real time for the session; we do not use it for unrelated purposes beyond operating that feature.

1.2 Information Collected Automatically

• Device and app usage: We may collect device type, operating system, app version, and general usage data (e.g. feature use, session length) to operate and improve the App.
• Identifiers: We use authentication tokens (e.g. JWT), and for push notifications we collect and store a Firebase Cloud Messaging (FCM) token (or equivalent) so we can send you notifications. We may use device identifiers as needed for security, notifications, and in line with platform policies. We do not integrate third-party advertising or analytics SDKs for cross-app tracking in the current App build; if that changes, we will update this policy and, where required, obtain consent.

1.3 Presence, Activity, and Real-Time Signals

To support matching, calls, chat, and community discovery, we collect and process:

• Presence / status (e.g. whether you appear offline, online, on a call, searching for a partner, or busy—such as when using AI practice features—so others know whether you are available).
• Activity recency, including timestamps used to show approximate recent activity (for example, labels such as active within the last 15 minutes, last 24 hours, or last 7 days on user lists) and to prioritize discovery.
• Last seen / last active information used in chat and related screens (e.g. relative labels like "last seen …" based on stored or derived timestamps).
• Typing indicators when you are composing a message in a chat, so the other participant can see that you are typing.

These signals are part of providing a responsive, social language-practice experience and are not intended for unrelated profiling.

1.4 Permissions and Sensors

• Microphone: Used for voice calls (with other users) and AI voice features (e.g. speech input in the AI chat). Audio is streamed in real time; we do not record or store your voice for purposes other than delivering the call or the AI feature during the session.
• Notifications: We request permission to send push notifications (e.g. incoming calls, messages, reminders). You can disable these in device or in-app settings.
• Bluetooth (Android): Used for audio routing (e.g. Bluetooth headsets) during voice calls. We do not use Bluetooth for location or tracking.
• Photo library (where applicable): If you choose a profile picture from your device, the App may access your photo library only to let you select and upload that image. We do not access your photos beyond the image you select.

We do not collect precise location for the core service. If we add location-based features later, we will ask for consent and update this policy.

1.5 Background Operation During Voice Calls

• On Android, when you are in an active voice call, the App may continue to run in the background so that your call stays connected if you switch to another app, lock the screen, or minimize the App. This is done using a foreground service that shows a persistent notification (e.g. "Ongoing call") while the call is active. The App may also use a partial wake lock during the call so that the connection is not interrupted by the device going into sleep. The foreground service and wake lock stop automatically when the call ends. We do not collect additional data from background operation; it is used only to keep your voice call active and reliable.

1.6 Data Stored on Your Device

• We may cache data locally (e.g. favorites, blocked users, or similar lists) using device storage for performance and offline resilience. Server-side records may also apply for the same features.

1.7 Leaderboards and promotional rewards

The App may show leaderboards and rankings based on your in-app practice activity (for example, voice call talk time) for periods such as today, this week, or this month. From time to time we may run optional promotions—such as monthly prizes for top-ranked users—as described in the App. Participating is based on your normal use of the App; we do not ask for separate payment on the leaderboard screen for these promotions. If you win a physical or other prize, we may use the contact information we already hold (for example, your account email) to reach you, and we may ask for additional details needed only to deliver the prize (such as a shipping name and address). We use such information solely to run the promotion and fulfill prizes, and as required by law.

2. What Other Users See (In-App Community)

The App is a community for language practice. Most profile and activity information described in Section 1.3 is shown within the App to other authenticated users as needed for discovery, calls, chat, and profiles. If your teacher application is approved, selected teacher-profile information may also be displayed on our website (https://www.speakverse.in/) as part of a public verified teacher listing.

Depending on features and what you choose to add to your profile, other users may see:

• Profile: Display name, profile photo, English level, country, gender, age (if you provide it), native language, bio, interests, and similar fields you submit.
• Practice-related summaries shown in the App (e.g. aggregated ratings, feedback or compliment summaries, and related statistics as presented on profile screens).
• Leaderboard and ranking information, including your position, display name, and score on in-app leaderboards visible to other signed-in users.
• Presence and activity: Status (e.g. online, on call, searching, busy), activity recency (such as labels tied to recent activity windows), and in chats last seen-style information and typing indicators where applicable.
• Messages you send in a conversation are visible to participants in that thread.

We do not intend to display your email address on your profile for casual browsing by other users unless required for a specific feature you use; email is used primarily for account management, sign-in, and service communications.

3. How We Use Your Information

We use the information we collect to:

• Create and manage your account and profile.
• Provide voice calling, chat, AI practice, and related features.
• Match you with practice partners and show relevant profile information (e.g. name, photo, level) to other users as part of the service.
• Show availability, presence, and recent activity so users can find partners, coordinate calls and messages, and understand engagement (e.g. who is online, on a call, busy, or recently active).
• Deliver typing and last seen-style cues in chat to support natural conversation.
• Send push notifications (calls, messages, and service-related alerts).
• Review and process teacher verification applications and, if approved, display verified teacher profile details in the App and on our website.
• Operate leaderboards and optional reward or prize programs tied to in-app activity, including contacting winners and fulfilling prizes.
• Improve the App (e.g. fixing bugs, analyzing usage patterns in aggregate where appropriate).
• Enforce our Terms of Service, prevent abuse, block or restrict accounts where necessary, and protect safety and security.
• Comply with legal obligations and respond to lawful requests from authorities.

We do not sell your personal information (including for money or other valuable consideration) and we do not share it for cross-context behavioral advertising as described under California's "sale" or "sharing" rules in connection with this App's current operation.

4. Legal Bases for Processing (EEA, UK, and Similar Regions)

Where the GDPR or similar laws apply, we process personal data on one or more of the following bases:

• Contract: To provide the App and features you request (account, calls, chat, profiles).
• Legitimate interests: To secure the service, prevent fraud and abuse, improve functionality, and show limited community and presence information that users reasonably expect in a social language app—balanced against your rights.
• Consent: Where required (e.g. certain optional communications or features), we will ask for consent and you may withdraw it without affecting the lawfulness of processing before withdrawal.
• Legal obligation: Where we must comply with applicable law.

5. Third-Party Services and Sharing

We use the following types of third-party services. Each may collect or process data as described in their own privacy policies:

• Firebase (Google): For authentication and push notifications (Firebase Cloud Messaging). Data processed may include email, device tokens, and related app data. See Google Privacy Policy and Firebase Terms.
• Google Sign-In: For one-tap sign-in; we receive the profile data you consent to share (e.g. name, email, profile picture). Governed by Google Privacy Policy.
• Backend / hosting: Your account data, profile, messages, presence-related data, and call signaling are processed on servers we use to run the App (e.g. AWS or similar). These providers act on our instructions and under agreements that protect your data.
• Image storage (e.g. ImageKit): Profile pictures you upload are stored via our image service provider. They process and store the image and its URL as necessary to display your profile picture in the App.
• Real-time communication (WebRTC / TURN): Voice calls may be relayed through third-party TURN/STUN infrastructure (e.g. Metered or similar) to establish and maintain the call. These services handle signaling and media relay; they do not store call content.
• Optional – LibreTranslate (or similar): If you use in-app translation, the text you choose to translate may be sent to a translation service. We use a configuration that minimizes data sent and, where possible, uses privacy-respecting options.

We may also share information: (a) with your consent; (b) to comply with law or legal process; (c) to protect our or others' rights, safety, or property; (d) with service providers bound by contract; (e) in connection with a merger, sale, or restructuring (with notice as required by law).

6. Data Retention and Deletion

• We retain your account and profile data for as long as your account is active and for a limited period afterward as needed for backups, legal compliance, or dispute resolution.
• Messages, call logs/metadata, feedback, and presence-related records are retained as long as necessary to operate features (e.g. chat history, safety, and abuse prevention) and then deleted or anonymized according to our retention schedules, except where a longer period is required by law.
• After you delete your account, we will delete or anonymize your personal data within a reasonable period, except where we must retain it for legal, security, or fraud-prevention reasons.
• You can request account deletion through the App (e.g. Settings → delete account flow, including password confirmation for email accounts or email-based confirmation for some Google accounts) or by contacting us at [email protected]. Our support team can confirm the process and timing.

7. Data Security

• TLS/HTTPS encryption for data in transit between the App and our services.
• Secure authentication, including hashed passwords where applicable and token-based sessions.
• Access controls limiting staff and system access to operational needs.
• Audit logging for security and accountability where appropriate.
• Abuse monitoring and fraud detection to protect the community.
• Secure cloud storage and hosting configurations aligned with industry practice.

No system is completely secure; we encourage you to use a strong password and keep your device secure. Cross-border processing and related safeguards are described in Section 10.

8. Your Rights

Depending on your location, you may have the right to:

• Access the personal data we hold about you.
• Correct inaccurate or incomplete data (e.g. via profile settings).
• Delete your account and request deletion of your data.
• Object or restrict certain processing.
• Data portability (e.g. a copy of your data in a portable format, where technically feasible).
• Withdraw consent where we rely on consent (e.g. notifications, optional features).
• Lodge a complaint with a supervisory authority (in the EEA/UK, typically in your country of residence).

To exercise these rights, use in-app settings where available, or contact us at [email protected] or [email protected]. We will respond within a reasonable time and in line with applicable law (e.g. within one month under the GDPR where it applies, subject to extension in complex cases).

8.1 California Residents (CCPA/CPRA)

If you are a California resident, you may have the right to:

• Know the categories and specific pieces of personal information we collect, use, and disclose.
• Delete personal information we hold, subject to exceptions.
• Correct inaccurate personal information.
• Opt out of "sale" or "sharing" of personal information for cross-context behavioral advertising. We do not sell your personal information in the conventional sense and do not operate the App for cross-context behavioral advertising as described in this section; if our practices change, we will update this policy and provide any required controls.

We will not discriminate against you for exercising these rights. You may designate an authorized agent where permitted by law; we may require verification of your identity before fulfilling requests. Personal information may be processed outside California or the United States as described in Section 10.

8.2 India (DPDP)

Where India's Digital Personal Data Protection Act, 2023 applies, you may have rights such as access to information about your personal data, correction and erasure, grievance redressal, and nomination of a nominee, subject to applicable exceptions. Contact [email protected] or [email protected] to exercise these rights.

9. Children's Privacy

The App is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at [email protected] and we will delete it.

10. Cross-Border Data Transfers

SpeakVerse is built for a global English-speaking community. You may match with, chat with, or place voice calls to people in other countries. Beyond processing by us and our vendors, content and profile information you choose to share may be received by other users on their devices anywhere in the world.

Personal data, profile data, chat metadata, call metadata (for example timing and signaling handled by our backend or real-time infrastructure), and user-generated content may be transmitted, stored, or processed outside your country of residence—including on cloud servers, databases, WebSockets/Socket.IO-style real-time systems, WebRTC/TURN relay paths, backups, and security tools operated by us or our subprocessors.

We rely on cloud providers, infrastructure partners, service providers used for reliable delivery of the App (for example authentication and notifications), and security and abuse-prevention systems that may be located in multiple jurisdictions. Analytics, if used, are limited to operating and securing the service consistent with Section 1—we do not integrate third-party advertising or cross-app tracking SDKs in the current App build. Privacy and data protection laws, and government access rules, may differ from those where you live.

10.1 Platform safeguards

• Encryption in transit using TLS/HTTPS for client-to-service communication.
• Secure authentication and session handling.
• Access controls limiting who may access production systems and data.
• Audit logging appropriate for security investigations and compliance.
• Abuse monitoring and fraud detection.
• Secure cloud storage and configurations managed under vendor agreements.

10.2 Your responsibilities

Because the service crosses borders, you must not share through chat, voice calls, profiles, or uploads:

• Government confidential or classified information.
• Military or national security information you are not authorized to disclose.
• Passport, national ID, or identity document images or numbers (except where we explicitly request them for a stated account or verification flow).
• Banking credentials, payment card data used as secrets, or similar financial authentication details.
• Export-controlled, sanctioned, or illegally restricted information.
• Categories of sensitive personal data you are prohibited from disclosing internationally under law or contract.
• Any information that applicable law prohibits you from sharing with foreign persons or systems.

You are solely responsible for complying with laws that apply to you, including workplace, official secrecy, sanctions, or sector rules.

10.3 Enforcement and lawful requests

• We may investigate suspicious activity and misuse of the App.
• We may remove or restrict content that violates our terms or policies.
• We may suspend or terminate accounts.
• We may preserve relevant logs and records as described in Section 6 and as required for safety or legal compliance.
• We may cooperate with lawful requests from courts, regulators, or government agencies where legally required, subject to applicable law.

10.4 Legal frameworks

EEA/UK: Where GDPR or UK GDPR applies, we implement appropriate safeguards for transfers outside the EEA/UK, such as EU Commission Standard Contractual Clauses (and the UK International Data Transfer Agreement or Addendum where relevant), supplementary measures where appropriate, or other lawful transfer tools.

California: This section supplements the disclosures in Sections 5 and 8.1 regarding international processing.

India: Where the DPDP Act applies, we process and transfer personal data consistent with applicable notices and permitted cross-border mechanisms under law and central-government rules as they come into effect.

You may contact [email protected] for more information about transfer safeguards where we are required or able to provide them.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will post the updated policy in the App and on our website and change the "Last updated" date. For material changes, we will provide notice (e.g. in-app or by email) where required by law. Your continued use after the effective date may constitute acceptance of the updated policy where permitted by law.

12. Contact Us

For privacy-related questions, requests, or complaints:

• Email: [email protected] or [email protected]
• Website: https://www.speakverse.in/
• Public Privacy Policy (this page): https://www.speakverse.in/privacy-policy · https://www.speakverse.in/privacy (same content)