Haal Chaal Privacy Policy

Last updated: 14 February 2026

Haal Chaal is built for elderly wellness check-ins. We collect only what is needed to keep the app working reliably and securely. This policy explains what data we collect, why we collect it, and how you can control it.

1. Data We Collect

• Device identifier (UUID): A random 16-character identifier generated on first launch and stored on your device for app identity and linking.
• Google account details (on sign-in): Basic profile details from Google/Firebase, including Firebase user ID and email address. Display name may be used to pre-fill profile setup.
• Authentication session metadata: Session state is managed by Firebase Authentication to keep your sign-in secure.
• Camera access: Used only to scan QR codes for caregiver–elderly device linking. We do not store photos or videos.
• Check-in data: Your check-in type (e.g., "I'm OK"), timestamp, optional notes, and notification status.
• Linked device IDs: Device IDs of connected caregivers/elderly for routing alerts.
• Optional location (if enabled by you): Used to include location in help/emergency alerts. Stored with the check-in entry.
• Notification token (FCM): Device token for sending caregiver alerts.
• App diagnostics: Crash reports and basic analytics to improve stability (via Firebase Crashlytics/Analytics) with IP truncated where supported.

2. Authentication and Token Handling

• We use Google Sign-In with Firebase Authentication (no app-specific password).
• Firebase issues short-lived ID tokens and long-lived refresh tokens managed by Firebase SDKs.
• Our app does not store Google OAuth access tokens in app-managed storage.
• Session renewal is handled automatically by Firebase SDK token refresh.
• You may be asked to sign in again if your session is revoked, your account changes, or you sign out from device/account settings.

3. How We Use Data

• Create and maintain your account and authenticated session.
• Link caregiver and elderly devices via QR code.
• Deliver notifications and alerts to linked caregivers.
• Improve reliability and safety through anonymized diagnostics.

4. Data Sharing

• We do not sell your data.
• Data is shared only with service providers needed to operate the app (e.g., Firebase for authentication, database, messaging, and crash reporting).

5. Data Storage and Security

• Data is stored in Firebase (Google Cloud) with encryption in transit and at rest.
• Access is restricted to authorized team members for support and maintenance.
• App access to protected data depends on valid Firebase authenticated sessions.

6. Your Choices

• You can unlink devices at any time from the app, which stops future data sharing with that device.
• You can disable location sharing; location is only collected when you choose to include it.
• You can sign out at any time.
• You can request data deletion or export by contacting us (see Section 8).

7. Children's Privacy

Haal Chaal is intended for adults assisting elderly family members. It is not directed to children under 13.

8. Contact

For privacy questions or requests (access, correction, deletion), contact: privacy@haalchaal.me

9. Policy Changes

We may update this policy for operational or legal reasons. We will post the updated date above and, when appropriate, notify users in-app.