BondOn Legal
Privacy Policy
BondOn is operated by Sanghance. This page explains how BondOn collects, uses, shares, retains, and protects information across the app, web pages, invite links, admin tools, and connected services.
1. Operator and scope
BondOn is operated by Sanghance ("Sanghance", "BondOn", "we", "us", or "our"). This Privacy Policy applies to the BondOn mobile application, public web pages, invite links, admin tools, Firebase backend, notifications, and support workflows.
2. Information we collect
- Account and authentication data: mobile number, phone verification status, Firebase user ID, display name, username, optional profile photo, account timestamps, sign-in/session records, and limited email data for admin users or support communications.
- Profile and community data: language preference, notification settings, gender, birthday or age, city/locality, country, profile status, verification/moderation status, religion and community membership, access requests, invite status, blocked-user lists, muted topics, and last-seen activity.
- Invite data: invite codes, invite links, issuer details, target mobile numbers, hashed or masked invite targets where appropriate, invite expiry/use status, community access request notes, and delivery metadata for invite messages.
- Chat and community content: group and one-to-one messages, replies, reactions, pinned/deleted-message state, read markers, reports, moderation signals, uploaded photos, videos, files, audio/voice notes, link previews, and any location or contact details you choose to type or share.
- Matrimony profile data: details voluntarily submitted for yourself or a represented family member, including name, profile-for relationship, representative name/contact/email, gender, birthday/age, place of birth, native place, current location, religion, caste, sub-caste, community, gothra, birth star, raasi, marital status, height, education, profession, company, job location, salary, languages, diet preference, drinking/smoking habits, family details, interests, partner expectations, photos, gallery images, verification notes, visibility status, and photo-access settings.
- Contacts: if you choose contact-based invites, the app may read contacts on your device to let you select phone numbers. We use the selected phone numbers for invitations; contact display names are used to help you choose contacts in the app.
- Device, diagnostics, and service data: app version, platform, device information, push notification tokens, OneSignal identifiers, Firebase Analytics events, Crashlytics crash reports, Remote Config values, Cloud Functions logs, approximate IP/network data processed by infrastructure providers, and security/reliability timestamps.
3. Permissions and optional access
BondOn may request optional access to contacts, photos, videos, files, camera, microphone, and notifications when you choose features that require them. These permissions are used for contact-based invites, media upload, profile or matrimony photos, voice messages, and account/community notifications. BondOn does not require these optional permissions for basic account access.
4. How we use information
- To verify your mobile number, create or update your user record, maintain your session, and protect accounts from misuse.
- To show your profile in eligible communities, process invite links, validate invited phone numbers before OTP, handle access requests, and prevent duplicate or abusive invites.
- To deliver messages, reactions, read states, link previews, files, voice notes, photos, videos, profile images, and other content to intended participants.
- To create, save as draft, publish, hide, filter, display, verify, share, and moderate matrimony profiles and photo-access requests.
- To send OTP flows, push notifications, WhatsApp/SMS invite messages where enabled, service updates, support replies, safety notices, and administrative communications.
- To review reports, block users, enforce rules, detect spam or fraud, prevent child sexual abuse and exploitation, preserve safety evidence, and protect communities.
- To measure usage, diagnose crashes, monitor performance, test Remote Config changes, improve onboarding and features, and maintain audit trails for admin actions.
5. Sharing and service providers
We do not sell personal data. We share information only as needed to operate BondOn, protect users, or comply with law.
- Service providers include Google Firebase services (Authentication, Firestore, Cloud Functions, Cloud Storage, Cloud Messaging, Hosting, Analytics, Crashlytics, and Remote Config), OneSignal for push notifications, MSG91 or similar providers for invite-related WhatsApp/SMS delivery when configured, email/support providers, and Apple App Store or Google Play platform services.
- Inside BondOn, profile, community membership, messages, reactions, media, reports, invite/access records, and matrimony information are visible only as required by the features, settings, community context, and safety workflows you use.
- We may disclose information for legal requests, safety investigations, Terms enforcement, user protection, or business transfers subject to applicable law and reasonable confidentiality protections.
6. Visibility inside BondOn
Some information is visible to other users by design. Community profile details may be visible within your communities. Messages, attachments, reactions, replies, and read states are visible to intended chat participants and may be reviewed when a report or safety issue is raised. Matrimony profiles may be visible within eligible community contexts, to browsing or matched users, to users who receive profile-share links, and according to photo-access controls. Authorized admins and moderators may access relevant account, invite, report, community, audit, and content records for support, safety, moderation, and operational purposes.
7. Retention, deletion, and backups
We retain information for as long as needed to provide BondOn, maintain account and community history, support matrimony and chat, comply with law, resolve disputes, protect users, and operate secure systems. You can request deletion from within the app or through the Delete Account page. After verification and review, standard requests are generally processed within 7 days.
We delete or de-identify account data where reasonably possible. Some content may remain visible in conversations or community records in deleted, de-identified, or limited form where removal would affect other users, safety investigations, audit trails, fraud prevention, ban enforcement, legal compliance, backups, or dispute handling. Backup and log copies may take longer to expire through normal retention cycles.
8. Security
We use safeguards designed to protect information, including encrypted network transport, Firebase-managed infrastructure, authentication controls, security rules, admin access restrictions, audit logs, and limited operational access. No system is perfectly secure, so you are also responsible for keeping your device, OTPs, and account access safe.
9. Your choices, consent, and rights
You can update parts of your profile, manage notification settings, mute chats, block users, choose whether to create or publish matrimony profiles, choose whether to grant device permissions, and request account deletion. You may withdraw optional permissions through device settings, though related features may stop working.
Depending on applicable law, including Indian data protection law where relevant, you may request access to information about your personal data, correction, completion, updating, erasure, grievance redressal, consent withdrawal for optional processing, and nomination or similar rights. We may need to verify your identity and account ownership before acting on a request.
10. International processing
BondOn uses cloud, notification, analytics, app-store, and support providers that may process information in India and other countries. Where information is transferred or processed outside your location, we rely on applicable legal bases, provider safeguards, and contractual or operational protections appropriate for the service.
11. Children's privacy
BondOn is intended only for adults aged 18 and above. We do not knowingly allow minors to use the Service. If we learn that a minor has created an account or submitted personal data, we will remove the account and associated data as appropriate.
12. Changes to this policy
We may update this Privacy Policy from time to time. When we make material changes, we may update the date on this page and provide notice through the app, website, or other reasonable means. Continued use of BondOn after an update means the revised policy will apply.
13. Contact
Privacy questions, data requests, deletion support, safety escalations, grievance redressal, and legal notices can be sent to support@sanghance.com.