KaroSplit
This Privacy Policy describes how KaroSplit (“we”, “us”) collects, uses, stores, and shares information when you use our Android app and related services operated by eRevolutionsindia (the “Controller”).
Contact: contact@erevolutionsindia.com
1. Scope
This policy applies to the KaroSplit app (com.erevolutions.karosplit) and our backend APIs. It does
not cover third-party services you interact with outside our control (for example, Google’s or Meta’s own
policies when you use their sign-in).
2. Information we collect
- Account & profile: name; email (if registered); optional phone and UPI; optional profile photo; authentication tokens for Google/Facebook where you use those sign-in methods; guest display name.
- Credentials: password hashes for email accounts (we do not store recoverable plaintext passwords).
- App data: groups, expenses, balances, settlements, friend connections, invites, categories, and reports you generate.
- Device & notifications: Firebase Cloud Messaging (FCM) device token when you enable push notifications; basic technical data needed to operate the service.
- Optional features: barcode/QR scanning uses on-device processing to read codes you choose to scan.
3. How we use information
We use data to provide KaroSplit (accounts, expense splitting, balances, settlements, social features), send service and notification messages you have not opted out of, maintain security, fix issues, comply with law, and improve the product. We do not sell your personal information.
4. Legal bases (EEA / UK)
Where GDPR/UK GDPR applies, we rely on performance of a contract, legitimate interests (security, fraud prevention, product improvement), consent where required, or legal obligation as appropriate.
5. Sharing & processors
We use infrastructure and service providers under contract. We integrate Google (Sign-In, Play services, Firebase/FCM, ML Kit as applicable) and Meta (Facebook login); their processing is governed by their policies. Some information is visible to other users as part of normal app behaviour (for example, members of the same group).
6. International transfers
Your data may be processed in countries other than where you live. Where required, we use appropriate safeguards for transfers from the EEA, UK, or Switzerland.
7. Security & retention
We use HTTPS (TLS) between the app and our API, access controls, and industry-standard authentication practices. We retain information as long as needed to provide the service and meet legal requirements, then delete or de-identify it in line with our procedures.
8. Your rights & data masking
Depending on your location, you may have rights to access, correct, delete, restrict, or object to processing, or to lodge a complaint with a supervisory authority.
To mask (anonymise) your personal data on our servers, you must use the KaroSplit Android app only: open Settings → Mask my personal data & sign out and confirm. This is the only way to request masking; we do not accept deletion or masking requests through this website. See how to delete or mask your data for step-by-step instructions.
General enquiries: contact@erevolutionsindia.com (not for submitting data-deletion requests outside the app).
9. Children
KaroSplit is not intended for children under 13 (or the minimum age in your jurisdiction).
10. California (summary)
California residents may have additional rights under the CCPA/CPRA. We do not sell personal information in the conventional sense. Submit requests via the contact email above.
11. India (DPDPA)
Where India’s Digital Personal Data Protection Act applies, we process personal data in line with that law and applicable rules, including grievance handling as required.
12. Changes
We may update this policy from time to time. We will post the updated version and revise the “Last updated” date. Material changes may require additional notice where the law requires.