Legal

Privacy Policy

Effective date: 24 June 2026 · Applies to Kria (Android app) and trykria.com

Who We Are

Kria is a gig marketplace that connects Runners (workers) with Hosts (businesses and event organisers) across India. This Privacy Policy explains how we collect, use, share, and protect your personal data when you use the Kria Android app or visit trykria.com.

For any privacy-related queries, contact us at support@trykria.com.

Data We Collect

Account & profile

  • Phone number — used for login via OTP
  • First name, last name, date of birth, gender
  • City and state of residence
  • Bio, skills, work experience, and education details you choose to add
  • College name and year (optional, for student users)

Location

  • GPS coordinates, collected in the foreground when you open the Explore tab — used to surface nearby gigs and display your current locality in the app
  • We do not collect background location

Identity verification (Runners only)

  • Government-issued ID type and document image (Aadhaar, PAN, Voter ID, Driving Licence, or Passport)
  • Selfie photograph for face-matching against your ID document
  • Liveness detection data to confirm you are physically present
  • This data is processed by our secure verification pipeline and not used for any other purpose

Device & usage

  • Push notification token (Expo) to send you application updates and OTPs
  • Gigs applied to, accepted, and completed
  • Check-in timestamps and OTP verification events
  • Momentum score signals (punctuality, completion, ratings received)

How We Use Your Data

  • Match you with nearby gigs based on your location, skills, and availability
  • Verify your identity to build trust between Runners and Hosts
  • Send push notifications — application status updates, OTP codes for check-in, and platform announcements
  • Calculate and display your Momentum score, which reflects your reliability and performance on the platform
  • Detect and prevent fraudulent activity, no-shows, and abuse
  • Improve the app by understanding how features are used (aggregated, not linked to individuals)

Third Parties We Share Data With

We do not sell your personal data. We share data only with the service providers below, who are contractually bound to protect it.

  • Supabase Inc. — database and authentication infrastructure. Servers located in the United States. Data is encrypted in transit and at rest.
  • Expo (Expo Technology Inc.) — push notification delivery. Only your push token and notification payload are shared.
  • Google LLC — reverse geocoding (converting GPS coordinates to a city name for display in the app). Only your coordinates are sent; no identifying information is attached.

We may disclose your data if required by Indian law, a court order, or to protect the safety of our users.

Data Retention

  • Your account data is retained for as long as your account is active.
  • If you delete your account, we delete your personal data within 30 days, except where retention is required by law.
  • Identity verification documents and biometric data are deleted within 7 days of verification completion — we retain only the verified ID type (e.g. 'Aadhaar') as a boolean record.
  • Aggregated and anonymised usage data may be retained indefinitely.

Security

All data is transmitted over HTTPS. Personal and biometric data is encrypted at rest. Access to production systems is restricted to authorised personnel. We regularly review our security practices.

No system is perfectly secure. If you suspect a security issue, please contact us immediately at support@trykria.com.

Your Rights (DPDPA 2023)

Under the Digital Personal Data Protection Act, 2023 (India), you have the right to:

  • Access — request a copy of the personal data we hold about you
  • Correct — ask us to fix inaccurate or incomplete information
  • Erase — request deletion of your data (subject to legal obligations)
  • Withdraw consent — withdraw consent to processing at any time, which may affect your ability to use the platform
  • Nominate — designate a nominee to exercise your data rights in the event of your death or incapacity

To exercise any of these rights, email support@trykria.com from the phone number registered with your account. We will respond within 30 days.

Children

Kria is intended for users who are 18 years of age or older. We do not knowingly collect personal data from anyone under 18. If we become aware that a user is under 18, we will delete their account and associated data.

Changes to This Policy

We may update this policy as the platform evolves. Material changes will be communicated via an in-app notification at least 7 days before taking effect. Your continued use of Kria after that date constitutes acceptance of the updated policy.

Contact

Kria
Email: support@trykria.com
Country of operation: India