Privacy Policy

Effective Date: August 13, 2025

Krunch It, LLC ("Krunch It," "Company," "we," "us," or "our") respects your privacy. This Privacy Policy ("Policy") explains how we collect, use, protect, and share your Personal Data when you use our mobile application ("App") or interact with us.

Some App features allow educational institutions and individual users to store Personal Data. This Policy does not cover data collected, stored, or processed on behalf of institutional customers.

We may update this Policy at any time. Material changes will be communicated through the App, email, or push notifications and are effective immediately unless otherwise specified.

Acceptance of Privacy Policy

By creating an account, using, or accessing the Krunch It App, you acknowledge that you have read, understood, and agree to comply with this Privacy Policy and its terms. Continued use of the App constitutes acceptance of this Policy and any updates.

GLOBAL PRIVACY COMPLIANCE COMMITMENT

Worldwide Privacy Standards

We are committed to protecting the privacy rights of educators, school administrators, and students worldwide. We align our data protection practices with international privacy laws and frameworks across all regions where we operate.

Universal Privacy Principles

All users benefit from our commitment to:

Data minimization and purpose limitation
Transparent processing practices
Strong security safeguards and encryption
User control over personal information
Respect for educational and student data privacy

Continuous Compliance Evolution

We monitor global privacy regulations and adapt practices to meet new requirements. We consult with legal and privacy experts to maintain high data protection standards worldwide.

WHAT IS PERSONAL DATA?

"Personal Data" means information that identifies or could reasonably be linked to you. It does not include publicly available or de-identified data.

CATEGORIES OF PERSONAL DATA WE COLLECT

Identity Data

Name, alias, phone number, email
Professional title, institution affiliation, and app identifiers
Profile photos and biographical information
Government-issued ID numbers (verification purposes only)

Professional or Employment Information

Job title and employer
Performance evaluations and professional development records
Educational credentials and certifications

Educational Data

Lesson plans, assessments, and educational content
Student progress and performance data (with permission)
Grade book information and academic records
Learning analytics and engagement metrics

Mobile Device Data

Device identifiers, model, OS, and version
Mobile carrier and network connection type
App version, installation ID, and usage timestamps
Push notification tokens and preferences

Location Data

GPS coordinates (when enabled)
Approximate location based on IP or cell tower
Location-based educational resource preferences

App Usage Data

Feature usage patterns and time spent
Content creation, modification, and sharing history
In-app communication and collaboration
Offline usage patterns and sync behavior

Camera and Media Data

Photos, videos, audio recordings, and document scans
Media metadata

User-Generated Information

Educational content, lesson plans, assessments
Comments, feedback, support requests
Forum posts and collaboration messages
Survey responses and in-app feedback

HOW WE COLLECT PERSONAL DATA

Direct Collection

We collect data when you:

Create an account or complete your profile
Use educational features or tools
Upload or create content
Contact support or participate in surveys
Subscribe to notifications

Automatic Collection

We collect data automatically, including:

Device information and technical specs
App performance metrics and crash reports
Usage patterns and interactions
Location (when enabled)

Third-Party Sources

We may receive data from:

Educational institutions and authorized educators
App store platforms (Apple, Google)
Third-party educational integrations (with consent)
Mobile analytics providers

APP PERMISSIONS

Required Permissions

Storage: Save content, cache data, store preferences
Network: Sync data, download resources, enable collaboration

Optional Permissions

Camera: Capture photos, videos, and scan documents
Microphone: Record audio for lessons and assessments
Location: Enable location-based resources (optional)
Push Notifications: Educational reminders, updates
SMS & Email: Account verification, security alerts, updates
Contacts: Share content and collaborate

Managing Permissions: Users can adjust permissions in device settings. Disabling certain permissions may limit features but not basic functionality.

OFFLINE DATA STORAGE & SYNCHRONIZATION

Encrypted Storage: All offline data is AES-256 encrypted
Automatic Sync: Data syncs when the internet is available
Manual Sync: Users can sync manually
Offline Features: Access lesson plans, record attendance, create assessments
Requires Internet: Initial setup, AI features, downloading resources, syncing data

Data Transmission Security: TLS 1.3 encryption, device authentication, conflict resolution, and automatic backup verification.

LEGAL BASIS FOR PROCESSING

We process Personal Data based on:

Consent: You approve specific processing
Contract: Necessary to perform our agreement
Legitimate Interests: Business needs that don’t override privacy rights
Legal Obligation: Compliance with law
Vital Interests: Protect safety or health

HOW WE USE PERSONAL DATA

Operate and improve the App
Authenticate users and manage accounts
Enable offline functionality and data sync
Support collaboration and community features
Provide personalized educational content and analytics
Deliver professional development resources
Monitor performance, improve features, and optimize the App
Ensure security, enforce terms, and comply with legal requirements

EDUCATIONAL RECORDS & FERPA COMPLIANCE

U.S. Educational Institutions

Process records only for authorized educational purposes
Do not disclose without institutional approval
Maintain technical and administrative safeguards
Return or securely delete records when no longer needed
No commercial use beyond App services

Student Data Protection

Data Minimization: Collect only necessary student data
Purpose Limitation: Use solely for education
No Behavioral Advertising: Student data is never sold or used for advertising
Parental Rights: Parents may request access through schools

DATA RETENTION

User Account Data: Active account + 2 years
Educational Content: User preference or institutional requirement
Technical Data: Usage logs 12 months, crash reports 6 months, analytics 24 months (anonymized after 12 months)
Offline Storage: Local data purged after 90 days if unsynced
Communication: Messages 2 years, support conversations 3 years

Legal Hold: Data may be retained longer for legal proceedings or regulatory requirements.

SHARING PERSONAL DATA

Educational Partners: When necessary for educational services and authorized purposes
App Service Providers: Google, Firebase, Twilio, SendGrid, cloud providers (for App operation only)
App Stores: Aggregated, anonymized usage stats
Legal/Safety: Required by law or to protect users
Business Transactions: Data may transfer to successors with privacy safeguards

USER PRIVACY RIGHTS

Global Users: Where local privacy regulations apply, users have rights to access, rectify, erase, restrict, transfer, or object to the processing of their Personal Data, in accordance with local law.
In-App Controls: Privacy settings, data download, account deletion, and permission management
Contact: privacy@krunchit.io (response within 30 days, identity verification may be required)

INTERNATIONAL DATA TRANSFERS

Primary Location: Cape Town, South Africa
Other Regions: Additional cloud servers may be used based on provider availability and requests from national government authorities enforcing compliance.
Protections: Adequacy decisions, user consent, end-to-end encryption

APP SECURITY

Mobile: Certificate pinning, binary encryption, secure authentication, encrypted local storage
Transmission: TLS 1.3, Perfect Forward Secrecy, certificate monitoring
Device: Biometric support, device lock integration, secure enclave
App Store: iOS ATS compliance, code signing; Android Play Protect, APK verification
Monitoring: Real-time usage monitoring and threat assessment

NOTIFICATIONS

Educational: Lesson reminders, progress updates, professional development
System: Updates, security alerts, sync notifications
Controls: Customize notifications in-app or device settings
Privacy: Notifications are encrypted; sensitive data excluded

APP ANALYTICS

Metrics: Launch times, crashes, feature usage, battery/memory optimization
Educational Analytics: Lesson planning, content sharing, offline usage, and collaboration activity
Third-Party: Firebase and Apple analytics (aggregated and anonymized)
Opt-Out: Users can disable analytics in App settings

APP UPDATES & DATA MIGRATION

Automatic: Security and feature updates installed (where permitted)
Manual: User control over non-critical updates
Migration: Backup before updates, data format migration, cross-device sync, rollback if needed

Privacy: privacy@krunchit.io, In-App “Privacy & Data” support (response within 5 business days)
Technical Support: support@krunchit.io, In-App help, live chat during business hours
Data Protection Officer: privacy@krunchit.io (for regions requiring DPO)

GOVERNING LAW & JURISDICTION

Governing Law: Delaware, without conflict of law consideration
Jurisdiction: Delaware federal or state courts
Mobile App Disputes: Subject to Delaware jurisdiction; App store policies apply

CHANGES TO THIS POLICY

In-App Notifications: Banner notifications for material changes, version history accessible
Push Notifications & Email: Optional alerts for updates; 30-day notice for changes affecting rights
Version Management: Displayed in-app, previous versions available for 2 years

This Privacy Policy was last updated on August 13, 2025, and is effective immediately.

App Store Compliance: Meets Apple and Google requirements; may be updated for platform policies.