Bhagavan logoBhagavan

Privacy Policy

Effective Date: 18 January 2026

1. Introduction

Blossom Labs ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy ("Policy") describes how we collect, receive, process, use, disclose, and share your personal data and device information ("Information") when you use our mobile application ("App"), websites ("Websites"), and related services (together with the App and Websites, the "Services").

We handle your Information in compliance with applicable data protection laws, including the General Data Protection Regulation ("GDPR"), the California Consumer Privacy Act ("CCPA"), and other applicable privacy laws. We may update this Policy from time to time. Material changes will be announced at least 14 days before they take effect through a notice on our Websites or via email to the address you last provided.

2. What Data We Collect

When you use Bhagavan, we collect the following Information:

Account Information:

  • Your name and email address when you create an account
  • Profile information you choose to provide
  • Authentication credentials (passwords are encrypted and never stored in plain text)

Usage Data and Analytics:

  • How you interact with the App (features used, time spent, pages viewed)
  • Device information (device type, operating system, unique device identifiers)
  • App version and performance metrics
  • Session data and navigation patterns
  • Progress data (courses completed, achievements unlocked, streaks maintained)

Subscription and Payment Information:

  • Subscription status and tier
  • Payment information (processed securely through Apple App Store or Google Play Store - we do not store payment card details)
  • Transaction history and billing information

Device and Technical Information:

  • IP address and approximate location (country/city level)
  • Browser type and version (for website visitors)
  • Language preferences
  • Time zone settings
  • Cookie and similar tracking technology data (as described in Section 6)

3. How We Use Your Data

We use your Information for the following purposes:

Service Provision:

  • To provide, maintain, and improve the Services
  • To process your registration and manage your account
  • To authenticate your identity and prevent unauthorized access
  • To deliver personalized content and features based on your preferences
  • To manage your subscriptions and process payments
  • To send you service-related communications (account updates, subscription renewals, important notices)

Analytics and Improvement:

  • To analyze usage patterns and improve the user experience
  • To conduct research and develop new features
  • To troubleshoot technical issues and ensure security
  • To measure the effectiveness of our Services and marketing efforts

Communication and Marketing:

  • To send you promotional communications (with your consent, where required)
  • To notify you about new features, updates, or special offers
  • To respond to your inquiries and provide customer support

Legal Compliance:

  • To comply with applicable laws, regulations, and legal processes
  • To enforce our Terms of Service and protect our rights
  • To detect, prevent, or address fraud, security, or technical issues

4. Legal Basis for Processing

We process your Information based on the following legal bases:

  • Contractual necessity: To provide the Services you requested and fulfill our obligations under our Terms of Service
  • Consent: When you have provided explicit consent for specific processing activities (e.g., marketing communications)
  • Legitimate interests: To improve our Services, conduct analytics, ensure security, and communicate with you about the Services
  • Legal compliance: To comply with applicable laws and regulations

5. Data Sharing and Third-Party Services

We do not sell or rent your personal data. We share your Information only in the following circumstances:

Service Providers: We share data with trusted third-party service providers who help us operate and improve our Services:

  • Supabase: Secure cloud database storage for account information and user data
  • PostHog: Analytics platform to understand user behavior, track product usage, and improve the Services
  • RevenueCat: Subscription management and payment processing
  • Apple App Store / Google Play Store: Payment processing and subscription management
  • Email service providers: To send transactional and marketing communications

Legal Requirements: We may disclose your Information if required by law, regulation, or legal process, or to protect our rights, property, or safety, or that of our users.

Business Transfers: In the event of a merger, acquisition, or sale of assets, your Information may be transferred to the acquiring entity. We will notify you of any such change in ownership.

6. Cookies and Tracking Technologies

We use cookies, web beacons, and similar tracking technologies to collect and store Information about your use of our Websites and App. These technologies help us:

  • Remember your preferences and settings
  • Analyze website traffic and usage patterns
  • Provide personalized content and advertisements
  • Ensure security and prevent fraud

You can control cookies through your browser settings. However, disabling cookies may limit your ability to use certain features of our Services. For more information about how we use cookies, please contact us at hello@bhagavan.io.

7. Data Storage and Security

Your account data is securely stored in Supabase, which uses industry-standard encryption and security measures. We implement appropriate technical and organizational measures to protect your Information, including:

  • Encryption of data in transit and at rest
  • Regular security assessments and updates
  • Access controls and authentication measures
  • Employee training on data protection

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your Information, we cannot guarantee absolute security. You are responsible for maintaining the confidentiality of your account credentials.

8. Data Retention

We retain your Information for as long as necessary to provide the Services, comply with legal obligations, resolve disputes, and enforce our agreements:

  • Account data: Retained while your account is active and for a reasonable period after account deletion (typically 30-90 days) unless we have a legal obligation to retain it longer
  • Subscription data: Retained for the duration of your subscription and as required for financial record-keeping (typically 7 years)
  • Usage and analytics data: Aggregated and anonymized data may be retained indefinitely for research and improvement purposes
  • Marketing data: Retained until you withdraw consent or opt out

When Information is no longer needed, we will delete or anonymize it in accordance with our data retention policies and applicable laws.

9. International Data Transfers

Your Information may be processed and stored in different countries, including countries outside your country of residence. These countries may have data protection laws that differ from those in your country.

When we transfer your Information internationally, we ensure appropriate safeguards are in place, including:

  • Standard contractual clauses approved by relevant data protection authorities
  • Adequacy decisions where available (e.g., for transfers to the United Kingdom or other countries with recognized adequate protection)
  • Other appropriate safeguards as required by applicable law

By using the Services, you consent to the transfer of your Information to these countries.

10. Your Rights and Choices

Depending on your location, you may have certain rights regarding your Information:

  • Access: Request access to your personal data and information about how we process it
  • Rectification: Request correction of inaccurate or incomplete data
  • Erasure: Request deletion of your personal data ("right to be forgotten")
  • Restriction: Request restriction of processing in certain circumstances
  • Data portability: Request a copy of your data in a structured, machine-readable format
  • Objection: Object to processing based on legitimate interests
  • Withdraw consent: Withdraw your consent for processing where consent is the legal basis
  • Opt-out: Unsubscribe from marketing communications at any time

To exercise these rights, please contact us at hello@bhagavan.io. We will respond to your request within 30 days. You also have the right to lodge a complaint with your local data protection authority if you believe we have not addressed your concerns adequately.

11. Children's Privacy

Bhagavan is designed for all ages, including children. However, we take children's privacy seriously:

  • We do not knowingly collect personal information from children under 13 without parental consent
  • Children under 13 should use the App under parental supervision
  • We collect only the minimum amount of information necessary to provide the Services
  • Parents or guardians can request to review, delete, or refuse further collection of their child's information

If we become aware that we have collected Information from a child under 13 without appropriate consent, we will take steps to delete that Information promptly. If you believe we have collected Information from your child without consent, please contact us immediately.

12. California Privacy Rights

If you are a California resident, you have additional rights under the California Consumer Privacy Act ("CCPA"):

  • Right to know what personal information we collect, use, and share
  • Right to request deletion of your personal information
  • Right to opt-out of the sale of personal information (we do not sell your personal information)
  • Right to non-discrimination for exercising your privacy rights

To exercise these rights, please contact us at hello@bhagavan.io.

13. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, Services, legal requirements, or for other operational, legal, or regulatory reasons. Material changes will be announced at least 14 days before they take effect through a notice on our Websites or via email to the address you last provided. The "Effective Date" at the top of this Policy indicates when it was last updated.

14. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: hello@bhagavan.io

For data protection inquiries specifically, you may also contact our Data Protection Officer (if applicable) or submit a request to exercise your rights under applicable data protection laws.

Back to Home