Kavira Privacy Policy

1. Data Collection

Information received through Kavira may fall into several categories depending on how the app is used. When you create or maintain an account, we may obtain details such as your name, email address, account credentials, and other profile information you choose to provide.

Because Kavira is built around personal jewelry archiving, the app may also receive content that you upload or generate inside the platform, including collection records, jewelry descriptions, purchase or provenance notes, certificate files, photographs, audio recordings, care schedules, reminders, and AI analysis inputs and outputs.

Certain technical details are gathered automatically to help the app function reliably. These may include device type, operating system version, app version, language settings, approximate diagnostics, crash logs, performance data, IP-based network information, and interaction data such as feature usage patterns.

Kavira may incorporate third-party software development kits and infrastructure tools that support analytics, storage, authentication, security monitoring, or app performance. These tools can receive limited technical information necessary for those functions.

Some features may request access to device permissions where relevant, including:

• Photos or camera access for adding images of jewelry pieces, certificates, or related documentation;
• Microphone access for recording voice memories or spoken notes;
• Notifications for care reminders, planning prompts, or account-related alerts;
• Location access only if a future feature requires location-aware functionality, such as service recommendations, regional scheduling, or security-related context.

If a permission is not granted, some tools within the app may become limited or unavailable. Kavira does not access contacts unless a specific feature clearly asks for that permission first.

2. Data Usage

The information handled by Kavira is used to operate the app, maintain your collection records, sync content across supported sessions or devices, generate AI-based cut analysis results, preserve uploaded certificates and memories, and provide support when issues arise.

We may also utilize data to improve stability, refine design decisions, understand which features are actively used, prevent misuse, and troubleshoot technical problems. Content submitted for AI-powered features may be processed in order to deliver analysis, suggestions, or classification outcomes within the app experience.

Kavira is not designed as an ad-driven platform. Personal archive materials are not sold to data brokers. If marketing communications are sent, they would typically relate to service updates, product announcements, or optional promotional messages, and users may opt out where required by law.

Information may be shared with service providers or contractors when needed for hosting, storage, customer support, analytics, security review, communications delivery, or feature operation. Such sharing is limited to legitimate business purposes and should align with applicable law and contractual safeguards.

We may also disclose information if required to comply with legal obligations, enforce terms, investigate suspected fraud, protect user safety, or support a business transfer such as a merger, acquisition, or asset sale.

3. Data Storage & Security

Data associated with Kavira may be stored on secure cloud infrastructure, application databases, backup systems, and related processing environments used to support account access and content preservation. Depending on infrastructure design, storage may occur in more than one jurisdiction.

Measures intended to reduce risk can include encrypted transmission, access controls, authentication protections, role-based internal permissions, logging, security monitoring, and periodic review of system integrity. Even so, no digital system can promise absolute protection, and users should also take care to safeguard their own devices and login credentials.

Retention periods vary by data type and operational need. Account details and collection content may remain available for as long as your account is active, while backup copies, support records, or legal compliance materials may be retained for a longer period where reasonably necessary. When information is no longer needed, it will be deleted, anonymized, or securely isolated in accordance with operational and legal requirements.

4. Third-Party Services

Kavira may rely on outside providers for infrastructure and specialized functions. These can include cloud hosting, data storage, analytics, authentication, payment processing if introduced, customer communication tools, AI processing support, crash reporting, and security services.

AI Provider Disclosure (SiliconFlow): when you use AI analysis features, Kavira sends data to SiliconFlow API (api.siliconflow.cn) to generate model results. Data sent for this purpose can include the selected jewelry image, optional notes you enter, selected item title, analysis mode, locale, request ID, and basic request metadata (such as app version and network request information required for delivery). Kavira does not send your password, payment card number, or contacts to SiliconFlow for AI analysis.

Purpose: this transfer is used only to produce AI outputs inside Kavira, including cut-reading summaries, observation bullets, and archive notes. Permission: before any AI transfer, the app presents a disclosure screen and requires your affirmative action; if you do not approve, no AI request is sent.

Protection: AI requests are transmitted over encrypted HTTPS channels, scoped to the minimum fields needed to complete the selected AI task, and handled under access control and logging practices. You can remove locally stored AI outputs by deleting related archive items or deleting your account data within the app.

Those providers may process limited information on our behalf in order to perform their assigned role. Their handling of data may also be subject to their own privacy terms and internal compliance practices. While we seek commercially reasonable partners, their systems operate independently from this document.

The app may contain links, integrations, or workflows that connect to external platforms or files. If you choose to interact with a third-party environment, the privacy practices of that external service will govern activity occurring there.

5. User Rights (GDPR & CCPA)

Depending on your location, privacy laws may give you certain rights regarding personal information. These may include the ability to request access to the data associated with you, ask for corrections to inaccurate records, request deletion, receive a copy of certain information in a portable format, or limit particular types of processing where the law allows.

Residents of jurisdictions such as the European Economic Area, the United Kingdom, and California may also have rights tied to objection, restriction, non-discrimination, or opting out of certain disclosures or uses. Where Kavira engages in communications or optional processing not strictly necessary for app operation, you may have the ability to withdraw consent or opt out.

To exercise a privacy request, please contact us at support@kavira.com. We may need to verify your identity before fulfilling a request, and some records may need to be retained where law, security, fraud prevention, or legitimate operational obligations require it.

6. Children's Privacy

Kavira is intended for adults and is not designed for individuals under 18 years of age. We do not knowingly solicit or maintain personal information from children under 13, and the app is not directed to children within the meaning of the Children's Online Privacy Protection Act (COPPA).

If it becomes apparent that information from a minor has been submitted without appropriate authorization, we may take steps to remove the related data and, where appropriate, disable the associated account. Parents or guardians who believe a child may have provided information through the app may contact us for review.

7. Policy Updates

This policy may be revised from time to time as the app evolves, legal requirements change, or new features are introduced. When adjustments are material, we may provide notice through the app, on the website, by email, or through another reasonable communication method.

The effective date shown near the top of this page indicates when the current version became active. Continued use of Kavira after an updated version takes effect means the revised terms will apply to future handling of information, subject to any rights you may have under applicable law.

8. Contact Information

Questions about this Privacy Policy, data handling practices, or privacy-related requests can be directed to our support team.