Privacy Policy

Last Updated: September 29, 2025 — App: Toklive

Company: Toklive (“we”, “us”, “our”)

1) Information We Collect 2) How We Use Information 3) Sharing & Service Providers 4) International Transfers 5) Data Retention 6) Your Rights & Choices 7) Children’s Privacy 8) Security 9) Community & UGC 10) SDKs, Identifiers & Cookies 11) Ads (If Enabled) 12) Google Play Data Safety 13) Changes 14) Contact

This Privacy Policy describes how Toklive collects, uses, and shares information when you use the App and related services. By using the App, you agree to this Policy and our Terms of Use.

1) Information We Collect

You provide:

Account & profile: username, display name, phone/email (for login/OTP), bio, avatar, optional demographics.
User-generated content (UGC): videos, images, audio, captions, comments, likes, messages, reports.
Purchases: coin/in-app purchases via Google Play Billing (we receive purchase tokens/receipts, not full card data).
Support/feedback messages.

Collected automatically:

Device & app info: device model, OS/app version, language, install time, identifiers (e.g., Android Advertising ID if ads are enabled), crash logs.
Usage data: screens, features, interactions, session duration, attribution/referrer.
Approximate location (from IP) for compliance, security, and content relevance.
Push token (FCM) to deliver notifications.
Logs/diagnostics: timestamps, request/response meta.

Real-time calls & live (if used):

Session metadata via Agora (or equivalent): channel ID, timing, participant IDs, network quality stats.
We do not store call audio/video. Streams are relayed in real time.

Permissions (only when you use features):

Camera, microphone, photos/storage, notifications. Denying permissions may limit related features.

2) How We Use Information

We use collected information to:

Provide and operate the App: login/OTP, profiles, feed, explore, UGC upload, comments, likes, follows, messages, live/calls.
Transactions & coins: process via Google Play Billing, deliver purchases, handle refunds/issues.
Safety & moderation: detect spam/fraud/abuse, enforce guidelines, protect rights.
Notifications: messages, calls, activity, service alerts.
Analytics & performance: fix crashes, improve reliability and features.
Legal/compliance: accounting, taxation, fraud prevention, enforcing terms.

Legal bases (EEA/UK): contract (to provide the App), legitimate interests (security/analytics), and consent (where required, e.g., certain notifications/ads).

We don’t sell personal information. We share only as needed to run the service, with safeguards:

Infrastructure/Storage: our servers and cloud storage (for UGC, thumbnails, logs).
Firebase: Authentication (if enabled), FCM (push), Analytics, Crashlytics.
Agora: live/call session/quality metadata and real-time media relaying.
Google Play Billing: purchase tokens/receipts.
Attribution/Deep Links (if enabled): Branch.io or equivalent.
Professional services: auditors, advisors, legal (when necessary).

We may disclose information if required by law or to protect users, the public, or our rights.

4) International Transfers

Data may be processed/stored outside your country. Where required, we use appropriate safeguards (e.g., contractual clauses).

5) Data Retention

Account & UGC: kept while your account is active. Upon deletion requests, removal occurs within a reasonable time, subject to legal/operational needs (e.g., abuse prevention, backups).

Crash/analytics logs: retained per provider defaults (commonly ~90–540 days). Purchase records: retained as legally required.

6) Your Rights & Choices

You have choices about your data:

Access / Correct / Delete: email support@mail.toklive.io or use in-app account deletion (if available).
Revoke permissions: device settings (camera/mic/photos/notifications).
Marketing push: disable in device settings or in-app toggles (if available).
EEA/UK rights: access, rectify, erase, portability, restrict/object; lodge a complaint with your authority.
California (CCPA/CPRA): right to know, delete, correct, and opt-out of “sale”/“sharing.” We do not sell personal information.

7) Children’s Privacy

Toklive is for users 13+ (or the minimum age in your country). If you believe a child under the applicable age is using the App, contact us to remove the account.

8) Security

We use administrative, technical, and physical safeguards (e.g., encryption in transit, access controls). No method is 100% secure; report issues to support@mail.toklive.io.

9) Community & UGC

You’re responsible for your content. Don’t upload illegal/infringing/harmful content. Public items (videos, comments, profile) may be visible to others. We may remove content that violates our terms or law.

10) SDKs, Identifiers & Cookies

The Android app uses SDKs (e.g., Firebase, Agora; and Branch.io if enabled) which may store identifiers or cache data to deliver core functionality, analytics, notifications, and reliability.

11) Ads (If Enabled)

If/when ads are enabled:

Ad SDKs may collect device identifiers (e.g., AAID), coarse location, and engagement signals for delivery/measurement.
You can reset/limit the Android Advertising ID and personalize ads in device settings.
We’ll update our Data Safety form and this Policy with active ad partners.

12) Google Play Data Safety (Summary)

Collected (examples):

Personal info: email/phone (account/support).
Financial info: purchase tokens/receipts (Play Billing).
App activity/diagnostics: usage events, crash logs.
Device/other IDs & approx location: security, analytics, compliance.
Audio/Video & Photos: only when you create content or join live/calls.

Not sold. Temporarily processed for real-time delivery where needed.

13) Changes to This Policy

We may update this Policy periodically. If changes are material, we’ll notify you in-app or by other reasonable means. Continued use after the effective date means you accept the revised Policy.

14) Contact Us

Toklive

Address: 343 SANSOME ST STE 540, SAN FRANCISCO, CA 94104-5604, USA

Support / Privacy: support@mail.toklive.io

Media: media@mail.toklive.io