Privacy Policy

At LightKraft, we are committed to protecting your privacy and ensuring the security of your personal information. This comprehensive privacy policy explains how we collect, use, share, and protect your data when you use our mobile application and services.

Last updated: August 10, 2025

Version: 2.0 | Effective Date: August 10, 2025

Information We Collect

  • Personal Information: Name, email address, phone number, and billing information when you create an account or make bookings
  • Event Details: Event dates, locations, requirements, and special requests for drone light show services
  • Device Information: Device type, operating system, app version, and unique device identifiers
  • Usage Data: App interactions, feature usage, crash reports, and performance analytics
  • Location Data: Event venue locations and approximate user location for service delivery
  • Camera and Photos: Access to camera for event documentation and photo sharing (with explicit permission)
  • Contact Information: Access to contacts for event coordination (with explicit permission)
  • Calendar Access: For scheduling and event management (with explicit permission)

How We Use Your Information

  • Service Provision: To provide, maintain, and improve our drone light show services
  • Communication: To contact you about bookings, events, service updates, and customer support
  • Account Management: To manage your account, process payments, and maintain service history
  • Event Coordination: To coordinate with event venues, staff, and third-party service providers
  • Quality Improvement: To analyze app usage, identify issues, and enhance user experience
  • Legal Compliance: To comply with applicable laws, regulations, and legal processes
  • Marketing: To send promotional materials and updates about our services (with your consent)
  • Safety and Security: To ensure the safety of our services and prevent fraud or abuse

Information Sharing and Disclosure

  • Service Providers: We share information with trusted third-party vendors who assist in service delivery
  • Event Partners: Information may be shared with event venues, photographers, and other service providers
  • Legal Requirements: We may disclose information if required by law or to protect our rights and safety
  • Business Transfers: In case of merger, acquisition, or sale of assets, user information may be transferred
  • Aggregated Data: We may share anonymized, aggregated data for analytics and business purposes
  • Emergency Situations: We may share information in emergency situations to ensure safety
  • With Your Consent: We will share information with third parties only with your explicit consent

Data Security and Storage

  • Encryption: All data is encrypted using industry-standard SSL/TLS protocols during transmission
  • Secure Storage: Personal information is stored on secure servers with access controls
  • Access Control: Limited access to personal data on a need-to-know basis
  • Regular Audits: We conduct regular security assessments and vulnerability testing
  • Data Retention: We retain your information only as long as necessary for service provision
  • Backup Security: Regular backups are performed with the same security measures
  • Incident Response: We have procedures in place for responding to security incidents
  • Employee Training: All employees receive regular training on data protection and privacy

Your Privacy Rights and Choices

  • Access Rights: You can request access to your personal information at any time
  • Correction Rights: You can request correction of inaccurate or incomplete information
  • Deletion Rights: You can request deletion of your personal data (subject to legal requirements)
  • Portability: You can request a copy of your data in a portable format
  • Opt-out Rights: You can opt-out of marketing communications and data processing
  • Permission Management: You can manage app permissions through your device settings
  • Account Deletion: You can delete your account and associated data through the app
  • Data Export: You can export your data in commonly used formats

International Data Transfers

  • Cross-border Processing: Your data may be processed in countries other than your residence
  • Adequate Protection: We ensure adequate protection for international data transfers
  • Legal Compliance: All transfers comply with applicable data protection laws
  • Standard Clauses: We use standard contractual clauses for data protection
  • Privacy Shield: Where applicable, we rely on adequacy decisions and certifications
  • Local Laws: We comply with local data protection laws in all jurisdictions
  • Data Localization: We minimize international transfers where possible

Mobile App Specific Privacy

  • Push Notifications: We send push notifications for important updates and reminders
  • Background Processing: The app may process data in the background for service delivery
  • Offline Functionality: Some data is stored locally for offline app functionality
  • App Permissions: We request only necessary permissions for core functionality
  • Biometric Authentication: Optional fingerprint/face recognition for secure login
  • Auto-updates: The app may automatically update to ensure security and functionality
  • Crash Reporting: Anonymous crash reports help us improve app stability
  • Analytics: We use analytics to understand app usage and improve user experience

Photo and Media Privacy

  • Event Photography: We may take photos and videos during events for documentation
  • Media Usage: Photos and videos may be used for marketing with your consent
  • Storage Security: All media files are stored securely and access-controlled
  • Sharing Controls: You control how your photos and videos are shared
  • Retention Policy: Media files are retained according to our data retention policy
  • Third-party Access: Media is not shared with third parties without permission
  • Deletion Rights: You can request deletion of photos and videos at any time

Location Services and Privacy

  • Location Access: We request location access for event coordination and service delivery
  • Precise Location: We may access precise location for accurate service delivery
  • Background Location: Location may be accessed in background for event updates
  • Location Sharing: Location is shared only with necessary service providers
  • Location History: We do not maintain detailed location history
  • Location Controls: You can control location access through device settings
  • Emergency Access: Location may be accessed in emergency situations

Calendar and Scheduling Privacy

  • Calendar Access: We request calendar access for event scheduling and coordination
  • Event Creation: We may create calendar events for confirmed bookings
  • Scheduling Data: Event details are stored securely and access-controlled
  • Reminder Notifications: We send calendar reminders for upcoming events
  • Calendar Sync: Events are synced across your devices through your calendar app
  • Privacy Controls: You control what calendar information is shared with us
  • Data Minimization: We access only necessary calendar information

Data Retention and Deletion

We retain your personal information for as long as necessary to provide our services and fulfill the purposes outlined in this privacy policy. The retention period varies based on the type of data:

  • • Account information: Retained while your account is active and for 7 years after deactivation for legal compliance
  • • Event data: Retained for 3 years after event completion for service history and legal requirements
  • • Payment information: Retained for 7 years for tax and accounting purposes
  • • Usage analytics: Retained for 2 years for service improvement
  • • Marketing data: Retained until you opt-out or for 2 years, whichever is shorter

You can request deletion of your data at any time through the app settings or by contacting us directly.

Children's Privacy

Our services are not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

For users between 13-18 years old, we require parental consent for data collection and processing. We implement additional safeguards for users in this age group.

Third-Party Services and Integrations

Our app integrates with third-party services for enhanced functionality:

  • • Payment processors (Stripe, PayPal) for secure payment processing
  • • Cloud storage providers (AWS, Google Cloud) for data storage
  • • Analytics services (Google Analytics, Firebase) for app performance monitoring
  • • Push notification services (Firebase Cloud Messaging) for notifications
  • • Social media platforms for optional sharing features

These third-party services have their own privacy policies, and we encourage you to review them. We are not responsible for the privacy practices of these third-party services.

Contact Us

If you have any questions about this Privacy Policy, our data practices, or would like to exercise your privacy rights, please contact us:

📧 Email: privacy@lightkraft.com

📱 Phone: +91 98765 43210

📍 Address: 123 Innovation Street, Tech Park, Bangalore 560001, Karnataka, India

🌐 Website: https://lightkraft.com

📱 App Support: Available through the app settings

Data Protection Officer: For EU/UK residents, you can contact our Data Protection Officer at dpo@lightkraft.com

This Privacy Policy is effective as of the date listed above and will remain in effect except with respect to any changes in its provisions in the future, which will be in effect immediately after being posted on this page.

We may update this privacy policy from time to time. We will notify you of any changes by posting the new privacy policy on this page and updating the "Last updated" date. For significant changes, we will also send you a notification through the app or email.

Legal Basis for Processing (EU/UK): We process your personal data based on: (1) Contract performance, (2) Legitimate interests, (3) Consent, and (4) Legal obligations. You have the right to withdraw consent at any time where consent is the legal basis for processing.