Niyati

Privacy Policy

This Privacy Policy explains how we collect, use, store, share, and protect your personal data when you use Niyati.

Last updated: April 2026

1. Introduction

This Privacy Policy describes how Niyati ("Platform", "we", "us", "our") collects, uses, stores, shares, and protects your personal data when you access or use our website and mobile application. This policy is published in compliance with the Digital Personal Data Protection Act, 2023 ("DPDPA") as applicable.

By using Niyati, you consent to the collection and use of your data as described in this policy. If you do not agree, please do not use the Platform.

2. Data Fiduciary Information

Under the DPDPA, Niyati acts as a "Data Fiduciary" — the entity that determines the purpose and means of processing your personal data.

3. Data We Collect

We collect the following categories of personal data:

Information you provide directly

  • Name, phone number, gender (during account registration)
  • Date of birth, time of birth, place of birth (for astrology readings)
  • Payment information (processed by third-party payment gateways — we do not store card details)
  • Messages, queries, and content shared during sessions or consultations
  • Feedback, reviews, or support requests

Information collected automatically

  • Device information (device type, operating system, browser type)
  • IP address and approximate location
  • App usage data (pages visited, features used, session duration)
  • Cookies and similar tracking technologies (on the web application)

Information from third parties

  • Payment confirmation data from payment processors
  • Authentication data if you sign in via third-party services (e.g., Google Sign-In)

4. Purpose of Data Collection

We collect and process your personal data for the following purposes:

  • To provide AI-generated Vedic astrology readings based on your birth details
  • To facilitate live consultations with practitioners
  • To process payments and issue receipts
  • To communicate with you about your account, sessions, and Platform updates via SMS, push notifications, or other channels
  • To improve and personalise your experience on the Platform
  • To analyse usage patterns and improve our AI models and services
  • To comply with legal obligations and resolve disputes
  • To detect and prevent fraud, abuse, or security threats

5. Legal Basis for Processing (Under DPDPA)

We process your personal data based on:

  • Consent: You provide explicit consent when you create an account, submit birth details, or make a payment. You may withdraw consent at any time (see Section 10).
  • Legitimate uses: Processing necessary to perform our contract with you (delivering sessions, processing payments) and for compliance with applicable law.

6. Data Sharing and Third-Party Processors

We do not sell your personal data.

We share your data with the following categories of third-party service providers, strictly for the purposes described below:

  • Payment gateway — Purpose: payment processing. Data shared: transaction details, phone number.
  • Communication platform — Purpose: SMS, push notifications. Data shared: phone number, name, user preferences.
  • Cloud hosting provider — Purpose: data storage and Platform infrastructure. Data shared: all data stored on Platform.
  • AI model providers — Purpose: generating astrology readings and AI-powered features. Data shared: birth details, session content, queries (sent to AI model providers whose servers may be located outside India).
  • Analytics tools — Purpose: usage analysis and Platform improvement. Data shared: anonymised/pseudonymised usage data.
  • Live consultation practitioners — Purpose: delivering consultation services. Data shared: name, birth details, session context (as needed).

All third-party service providers are contractually required to process your data only for the purposes we specify, maintain adequate security measures, and comply with applicable data protection laws.

7. Data Retention

We retain your personal data for as long as your account is active or as needed to provide you services. Specifically:

  • Account data (name, phone, gender): Retained until you delete your account or request erasure.
  • Birth details and reading history: Retained until you delete your account, to enable continuity in readings.
  • Payment records: Retained for a minimum of 8 years as required under Indian tax and financial regulations.
  • Communication logs: Retained for a reasonable period necessary for service improvement and dispute resolution, after which they are deleted or anonymised.
  • Automatically collected data: Retained in identifiable form for a reasonable period necessary for analytics and Platform improvement, after which it is anonymised or deleted.

Upon account deletion or erasure request, we will delete or anonymise your personal data within 30 days, except where retention is required by law.

8. Data Security

We implement appropriate technical and organisational security measures to protect your personal data from unauthorised access, alteration, disclosure, or destruction. These measures are reviewed and updated periodically to reflect evolving security standards and threats.

While we take reasonable precautions, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security of your data.

9. Cookies and Tracking Technologies

Our web application uses cookies and similar technologies to maintain your session, remember your preferences, and analyse usage patterns. By using the Platform, you consent to the use of cookies as described here. You may disable cookies through your browser settings, though this may affect certain features of the Platform.

10. Your Rights Under DPDPA

As a user, you have the following rights regarding your personal data:

  • Right to access: You may request a summary of your personal data being processed and the processing activities.
  • Right to correction: You may request correction of inaccurate or incomplete personal data.
  • Right to erasure: You may request deletion of your personal data, subject to legal retention requirements.
  • Right to withdraw consent: You may withdraw your consent for data processing at any time. "Processing" includes any operation performed on your data such as collection, storage, use, sharing, or analysis. Withdrawal will not affect the lawfulness of processing done prior to withdrawal. Withdrawing consent may result in reduced functionality or inability to use certain features, and may require deletion of your account.
  • Right to grievance redressal: You may raise a complaint with our Grievance Officer (see Section 14). If unsatisfied with the resolution, you may approach the Data Protection Board of India.
  • Right to nominate: You may nominate another person to exercise your data rights in the event of your death or incapacity, as required under the DPDPA.

To exercise any of these rights, contact us at support@niyati.app. We will respond to your request within 30 days.

11. Children's Data

Niyati is not intended for use by individuals under 18 years of age. We do not knowingly collect personal data from anyone under 18. If we become aware that we have collected data from a minor, we will delete it promptly. If you believe a minor has provided us with personal data, please contact us at support@niyati.app.

12. Cross-Border Data Transfers

Your data may be stored and processed on servers located outside India in the following circumstances:

  • Cloud infrastructure: Our hosting providers may operate servers in regions outside India.
  • AI model providers: To generate astrology readings and power AI features, your data (including birth details, session content, and queries) may be sent to third-party AI model providers whose servers are located outside India, including in the United States.

Where such transfers occur, we ensure that adequate data protection safeguards are in place in compliance with applicable provisions of the DPDPA and any rules notified thereunder. We will not transfer your data to any country or territory restricted by the Central Government of India under the DPDPA.

13. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated to you via SMS, push notification, or in-app notification at least 3 days before they take effect. Continued use of the Platform after the updated policy takes effect constitutes your acceptance. We encourage you to review this policy periodically.

14. Contact and Grievance Officer

For any queries, concerns, or complaints regarding this Privacy Policy or your personal data, please contact:

We will acknowledge your request within 72 hours and resolve it within 30 days. If you are unsatisfied with our response, you may file a complaint with the Data Protection Board of India as established under the DPDPA.

By using Niyati, you acknowledge that you have read and understood this Privacy Policy.