Curiositi

AI-powered learning for curious minds

Privacy Policy Version 2.0

Effective Date: 27 April 2026

Last Updated: 27 April 2026

This Privacy Policy explains how Curiositi ("we", "our", or "us") collects, uses, stores and protects your personal information when you use the Curiositi mobile application and related services. By using Curiositi you agree to the practices described in this policy.

If you do not agree with this Privacy Policy please do not use Curiositi.

1. Who We Are

Curiositi is an AI-powered micro-learning application that helps users learn any topic in minutes through AI-generated Spark Cards, quizzes and insights. The app is designed for curious individuals, students and professionals primarily in India and Australia.

For privacy-related queries please contact us at:
Email: dmshuklaa@gmail.com
Grievance Officer (India): dmshuklaa@gmail.com
Response time: Within 48 hours

2. Information We Collect

We collect only the information necessary to provide and improve the Curiositi experience.

2.1 Account and Authentication Information

When you sign in with Google or Apple we receive:

Your name
Your email address
A unique identifier from Google or Apple

Curiositi does not support anonymous or guest accounts. All users must sign in with Google or Apple to use the app.

2.2 Profile Information

During onboarding we collect:

Your profession or role
Your primary learning goal (e.g. exam preparation, professional growth, general curiosity)
Your exam target if applicable (e.g. UPSC, NEET, JEE, CA)
Your country — used to show relevant content and local support resources
Your preferred language for content

2.3 Learning Activity

As you use Curiositi we collect:

Topics you search for and explore
Quiz scores and performance data
Session duration and time budgets selected
Explain Back responses and AI scores
Topics saved to your Library
Synthesis Lab fusions created
Learning streaks and session counts

2.4 Device Identifier

We generate a random anonymised identifier on your device when you first launch the app. This identifier is:

Stored locally on your device in encrypted storage
Used solely to manage usage limits within Curiositi
Not linked to your personal identity
Not shared with third parties
Not used for advertising or cross-app tracking
Reset when you uninstall the app

2.5 Safety and Content Moderation Data

Every search query you submit is reviewed by our AI safety system before content is generated. We log an anonymised record when our safety system detects a concerning query. Specifically:

What is logged:

The category of detection (e.g. self-harm, harmful content, threat)
A one-way cryptographic hash of the query — the original text cannot be recovered from this hash
Your country and detected language
The timestamp of the detection
Whether a teacher or parent alert was sent (for institutional users)

What is never logged:

The original query text in readable form
Your personal identity linked directly to the query

2.6 Session History for Safety

Your most recent learning topics (up to 5) are temporarily passed to our safety classifier to detect escalating patterns of distress across a session. This data is used solely for your safety and wellbeing and is not stored separately or used for any other purpose.

2.7 Push Notification Token

If you enable push notifications we store your device push token to send you daily learning insights, reminders and wellbeing resources. You can disable push notifications at any time in your device settings.

2.8 Technical Information

We collect standard technical information including:

App version and operating system version
Device type (iPhone, iPad, Android)
Crash reports and error logs for app improvement
App usage patterns for performance optimisation

3. How We Use Your Information

Information	How We Use It
Name and email	Account identification, personalisation, re-engagement
Profession and learning goal	Personalise trending topics, spotlight and content
Country	Show relevant local crisis and emergency resources
Learning topics and scores	Build your progress profile, detect knowledge gaps, generate synthesis challenges
Device identifier	Enforce usage limits, prevent limit bypass
Safety logs (hashed)	Monitor platform safety, detect patterns, compliance
Push token	Send daily learning insights and wellbeing alerts
Session history	Real-time safety classification within session only
Crash reports	Fix bugs and improve app stability

We do not use your information for advertising. We do not sell your data. We do not build advertising profiles. Curiositi products are ad-free.

4. AI-Generated Content

Curiositi uses Google Gemini AI to generate educational content based on your search queries. Please be aware:

All content is AI-generated and may occasionally contain inaccuracies
Content is generated for general educational purposes only and is not professional advice
We do not claim copyright over AI-generated content displayed to you
You may use generated content for personal learning only
Commercial reproduction or redistribution of generated content is not permitted
Your queries are sent to Google Gemini for content generation — please see Google's privacy policy for how they handle API requests

Today's news headlines from Google News RSS are used to generate relevant trending topics and spotlight content. No personal data is included in news headline fetching.

5. Content Safety System

Curiositi operates a comprehensive content safety system to protect all users.

5.1 How It Works

Every search query you submit is reviewed by our AI safety classifier before content is generated. The classifier reviews queries in any language including English, Hindi, Tamil, Telugu, Bengali, Arabic and others.

5.2 What We Detect

Self-harm or crisis signals in any language or script
Academic pressure crisis signals (particularly during exam seasons)
Threats to individuals
Threats to public safety or society
Communal or hate-based content
Requests for harmful or dangerous instructions

5.3 What Happens When Detected

Content is not generated for the query
Appropriate support resources and crisis helplines are shown
An anonymised safety log is created (hashed query only — original text not stored)
For institutional users (schools): teacher may receive an anonymous wellbeing alert
For institutional users: parent or guardian may be notified for high-severity events

5.4 Crisis Resources

When our safety system detects a self-harm or crisis signal we show verified local crisis resources. For Indian users these include Tele-MANAS (14416), KIRAN (1800-599-0019) and iCall (9152987821). For Australian users these include Kids Helpline (1800 55 1800) and Lifeline (13 11 14). Crisis resources are cached on your device and available even without internet connection.

5.5 Seasonal Sensitivity

Our safety detection threshold is automatically lowered during high-stress academic periods including board exam results seasons, entrance exam periods and end-of-term assessment times. This ensures more sensitive detection when students are most vulnerable.

6. Information Sharing

We do not sell, rent or trade your personal information. We share information only in the following limited circumstances:

6.1 Service Providers

Provider	Service	Data Shared
Google Gemini AI	Content generation and safety classification	Search queries, year level, language, learning goal
Supabase	Database, authentication and infrastructure	All user data — stored securely
Google Sign In	Authentication	Email and name from Google account
Apple Sign In	Authentication	Email and name from Apple account
Unsplash	Topic images	Search query for image only — no personal data
Expo	Push notifications	Push notification token only
Google News RSS	News headlines for content	No personal data sent

6.2 Legal Requirements

We may disclose your information if required by law, court order or government authority. We will notify you of such requests where legally permitted.

6.3 Safety Emergencies

In cases where we believe there is an immediate risk to the safety of a user or others we may share relevant information with appropriate authorities or emergency services.

6.4 Institutional Users

If you use Curiositi through a school or educational institution:

Your teacher can see your learning topics, quiz scores and progress
Your parent or guardian receives progress updates and wellbeing notifications with their consent
Your school administrator has access to school-wide learning data
Wellbeing alerts are sent to teachers and parents when our safety system detects a concerning query
All institutional data sharing is governed by a separate Data Processing Agreement with the school

7. Data Storage and Security

7.1 Where Your Data Is Stored

Your data is stored on Supabase servers in the ap-southeast-1 (Singapore) region. All data is encrypted at rest and in transit using industry-standard encryption.

7.2 Security Measures

All data encrypted at rest using AES-256
All data in transit encrypted using TLS 1.3
Row Level Security in database ensures complete user data isolation
API keys and secrets stored in secure server-side environment variables only
Service role keys never exposed to client applications
Regular security reviews and access audits

7.3 Data Retention

Data Type	Retention Period	Reason
Account and profile data	Duration of account	Service provision
Learning activity and scores	Duration of account	Progress tracking
Safety logs (hashed queries)	7 years	Compliance and monitoring
Device identifier	30 days rolling	Usage limit enforcement
Push notification token	Duration of account	Notifications
Consent records	7 years	Legal compliance
Account data after deletion	Purged within 30 days	Complete erasure
Crash and error logs	90 days	Bug fixing

8. Your Rights and Choices

8.1 Rights Under Indian Law (DPDP Act 2023)

Under the Digital Personal Data Protection Act 2023 you have the following rights:

Right to Access: Request a copy of the personal data we hold about you
Right to Correction: Request correction of inaccurate or incomplete personal data
Right to Erasure: Delete your account and all associated personal data using the in-app account deletion feature or by contacting us
Right to Grievance Redressal: Contact our Grievance Officer for privacy concerns — we respond within 48 hours
Right to Nomination: Nominate another person to exercise your data rights in case of death or incapacity
Right to Withdraw Consent: Withdraw consent for data processing at any time by deleting your account

8.2 Rights Under Australian Law

Under the Privacy Act 1988 (Cth) and Australian Privacy Principles you have the right to:

Access the personal information we hold about you
Request correction of inaccurate personal information
Make a complaint about how we handle your personal information
Opt out of direct marketing communications

8.3 How to Exercise Your Rights

Account deletion: Profile tab → Settings → Delete Account (complete deletion within 30 days)
Data access or correction: Email dmshuklaa@gmail.com
Grievance (India): Email dmshuklaa@gmail.com — response within 48 hours
Complaint (Australia): Contact us first, then the Office of the Australian Information Commissioner if unresolved

8.4 Push Notifications

You can disable push notifications at any time in your device Settings app. This does not affect your ability to use Curiositi.

8.5 Account Deletion

You can delete your account at any time from Profile → Settings → Delete Account. Account deletion permanently removes:

Your profile and authentication data
All learning sessions and quiz scores
All saved topics and bookmarks
All synthesis fusions and cognitive gap data
Your push notification token

Safety logs (hashed — not linked to readable identity) are retained for 7 years for compliance purposes. Apple Sign In tokens are revoked upon account deletion.

9. Children and Age Requirements

Curiositi is intended for users aged 13 and older. Users between 13 and 18 should use the app with parental awareness.

We do not knowingly collect personal data from children under 13. If you are a parent or guardian and believe your child under 13 has created a Curiositi account please contact dmshuklaa@gmail.com immediately and we will delete the account and all associated data.

For users under 18 using Curiositi through a school all data collection is governed by the school's Data Processing Agreement and parental consent is obtained before account activation.

10. Content Standards

Curiositi is a general-purpose learning app designed to be safe for users of all ages. We do not generate content related to:

Self-harm or suicide methods
Weapons, explosives or dangerous substances
Illegal activities or criminal instructions
Graphic violence or disturbing content
Adult or sexual content
Hate speech targeting any group
Content that could endanger public safety

Queries on these topics are automatically redirected to appropriate support resources. This makes Curiositi appropriate for students, families and workplace environments.

11. Third Party Links and Services

Curiositi may display topic images from Unsplash with photographer attribution. Tapping attribution links will open the Unsplash website or photographer profile. Unsplash's privacy policy governs data collected on their platform.

Signing in with Google or Apple is governed by Google's and Apple's respective privacy policies. We encourage you to review their policies.

Crisis helpline numbers shown in the app connect to independent organisations. Their privacy practices are governed by their own policies.

12. International Data Transfers

Your data may be processed outside your country of residence. When data is transferred internationally we ensure appropriate safeguards are in place including:

Standard contractual clauses with service providers
Processing only in jurisdictions with adequate data protection laws
Encryption of all data in transit

Users in India: Your data may be processed in Singapore or other jurisdictions. We comply with the Digital Personal Data Protection Act 2023 requirements for cross-border data transfers.

Users in Australia: Your data may be processed in Singapore or other jurisdictions. We comply with the Australian Privacy Principles for overseas disclosure of personal information.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make significant changes we will:

Update the Effective Date at the top of this policy
Show an in-app notification informing you of the changes
For material changes require you to review and acknowledge the updated policy

Continued use of Curiositi after changes are posted constitutes your acceptance of the updated policy.

14. Contact Us

For any privacy-related questions, requests or concerns:

General Privacy Queries:
Email: dmshuklaa@gmail.com
Response time: Within 48 hours

Grievance Officer (India — DPDP Act 2023):
Name: Devendra Shukla
Email: dmshuklaa@gmail.com
Response time: Within 48 hours as required by law

For Australian Privacy Act Concerns:
Email: dmshuklaa@gmail.com
If unresolved: Office of the Australian Information Commissioner — oaic.gov.au

15. Summary of Key Points

Question	Answer
Do you sell my data?	No — never
Do you show ads?	No — Curiositi is ad-free
Do you support guest accounts?	No — Google or Apple Sign In required
Can I delete my account?	Yes — from Profile settings anytime
Is content AI-generated?	Yes — by Google Gemini AI
Is the app safe for children 13+?	Yes — comprehensive content safety system
Are my queries read by humans?	No — only hashed anonymised logs for safety monitoring
What happens if I type something concerning?	Support resources shown, anonymised log created
Is my data encrypted?	Yes — at rest and in transit
Can I get a copy of my data?	Yes — email dmshuklaa@gmail.com