Privacy Policy
Last updated: 6 July 2026
App: PTG / PlsTouchGrass
Operator: Scibi K S, Bengaluru, Karnataka, India
Privacy and support contact: [email protected]
Governing law: India; subject to applicable law, courts at Bengaluru, Karnataka, India.
This Privacy Policy explains how PTG / PlsTouchGrass collects, uses, stores, shares, protects, and deletes personal data when you use our mobile application, website, support channels, events, chats, profiles, media, reports, moderation tools, notifications, and related services. By using PTG, you agree to the collection and use of information as described here.
In this Privacy Policy, “plans,” “events,” “meetups,” “hangouts,” “jams,” “gatherings,” and similar terms refer to real-world or app-based activities created, discovered, joined, hosted, displayed, or discussed through PTG.
1. Who We Are
PTG is operated by Scibi K S. In this Privacy Policy, “PTG,” “we,” “us,” and “our” refer to PTG and its operator; “you” refers to the user. For the purposes of Indian privacy law, PTG may act as a data fiduciary for personal data processed through the service, and service providers that process data for PTG may act as data processors.
2. Age Requirement
PTG is intended only for users who are at least 18 years old. We collect your date of birth during onboarding to help enforce this requirement and to support product and safety features such as age preferences for events. We do not knowingly allow anyone under 18 to use PTG.
If we learn that a user is under 18 or has provided false age information, we may restrict or remove the account and related content, subject to safety, legal, fraud-prevention, backup, and operational requirements.
3. Information We Collect
3.1 Account and Login Information
The current app supports only Apple Sign In and Google Sign In for account login. PTG may receive account identifiers, email address, and basic profile information such as name from Apple or Google, depending on your settings with that provider. The current app does not support email/password login, phone-number login, one-time-code login, or other login methods unless this changes in a future feature.
3.2 Onboarding and Profile Information
We collect information you provide when creating or updating your profile, including display name, date of birth, sex/gender selection, profile photo, bio, interests, profile location text, social links, account visibility settings, verification status, host or participation statistics, and other profile fields shown in the app. Your display name, photo, bio, interests, profile location, social links, verification status, hosted events, and event participation signals may be visible to other users depending on app features and your visibility settings. Your email, date of birth, and sex/gender are not intended to be shown publicly in the current app UI; sex/gender may be used internally for product and safety rules, including women-only event settings.
3.3 Location Information
With your permission, PTG may collect and use your device’s precise location to show nearby events, center maps, calculate distances, support location-based discovery, and fetch relevant events from our backend. The app may cache your last-known precise location locally on your device to improve performance. You can deny or withdraw location permission in iOS Settings; some discovery, distance, and map features may be limited if location is not enabled. When you create or interact with events, event location information may be stored, including location name, address or place information, and coordinates. Hosts may choose to hide exact event location from non-attendees or users not approved for the event.
3.4 Events, Saved Events, Join Requests, and Social Activity
When you use event features, we may collect and store events you create, event title, description, category, date, time, duration, location, cover media, host information, host verification status, join requests, attendee lists, approval and participation status, cancellations, updates, women-only settings, age preferences, events you save or bookmark, and social connection records such as shared-event interactions. Hosts can see users who request to join or attend their events. Event participants may see event chat content, event updates, and certain participant information depending on app features and event settings.
3.5 Chats and Messages
PTG includes direct messages and event chats. We collect and store message content, sender and recipient information, timestamps, message status, replies, previews, media attachments, thumbnails, and related metadata needed to operate messaging features. Direct messages are visible to the sender and recipient. Event chat messages are visible to users with access to that event chat. Users may not be able to delete sent messages individually. When you delete your account, PTG deletes or de-identifies messages associated with your account where feasible. However, some event chat messages, media, previews, thumbnails, or related metadata may remain visible to event chat participants or may be retained where needed for conversation continuity, safety, moderation, dispute handling, legal compliance, backups, fraud prevention, or service integrity.
3.6 Media Uploads
You may upload or share media such as profile photos, event cover images, event display media, direct message photos or videos, event chat photos or videos, thumbnails, compressed versions, and related file metadata. Some event media may be public or broadly visible within the app depending on event settings. Direct message media and event chat media are intended to be available only to authorized participants, but users who can view media may save or share it outside PTG, and PTG cannot control every recipient’s actions. We may generate thumbnails, compressed files, file metadata, and temporary or signed access links to store and deliver media.
3.7 Profile Photo Verification
PTG may offer profile photo verification. This is not legal identity verification, government-ID verification, age verification, background screening, KYC, police verification, criminal-record checks, or a guarantee that a user is safe or trustworthy. The feature checks whether a live face capture appears to match the user’s current profile photo. To perform this check, we may process your current profile photo as a reference image, a temporary live face or liveness capture, liveness session information, a face similarity score, verification status, attempt status, and failure reason, cooldown, or lockout information. We use third-party services, including AWS Face Liveness and AWS Rekognition, to help perform this check. Temporary live verification captures are intended to be deleted after processing. Verification results may be visible to other users as a badge; the badge only means the process was completed and does not guarantee legal identity, age, intentions, safety, background, or trustworthiness.
Some verification information, including your active profile photo used as a verification reference, may remain stored in our verification storage while your account is active, and reference images may persist in backups or storage for a period after deletion. We are aligning our deletion process so that stored verification reference images are removed or scheduled for removal on account deletion where feasible.
3.8 Reports, Blocking, Moderation, and Safety
Users may report profiles, events, messages, media, or behaviour. When a report is submitted, we may collect reporter ID, reported user ID, report reason, optional report details, event/message/profile context, timestamps, moderation status, and related account activity. Our moderation team may review reported profiles, content, chats, event context, and related account information when a report or safety issue is submitted or flagged. Reported users may not receive all report details, especially where disclosure could expose the reporter or create safety risk. Blocking may limit direct interactions and certain social features, but it may not remove all shared event spaces, shared event chats, historical content, event participation records, or records needed for safety, legal compliance, enforcement, or service integrity.
3.9 Ratings, Feedback, and Support
Where rating, review, feedback, or support features are available, we may collect ratings, comments, feedback text, support messages, contact details, related event or user context, timestamps, and moderation or support status. We may use this information to operate host and attendee features, investigate complaints, enforce our rules, improve the service, and respond to support requests.
3.10 Push Notifications
We may collect and store Apple Push Notification service device tokens, notification preferences, badge counts, delivery metadata, and related device/app identifiers needed to operate push notification delivery. Notifications may include limited information such as sender name, event updates, message previews, or activity summaries, depending on your device and PTG notification settings. You can disable notification alerts through iOS Settings and, where available, in-app settings. PTG does not require push notifications to use the app.
3.11 Device, Cache, and Local Data
To improve performance and offline behaviour, the app may store data locally on your device, including a local chat database/cache, cached media and thumbnails, a signed URL cache, last-read markers, notification badge counts, last-known location, pending outbox data, and app state needed for normal operation. When you sign out or delete your account, the app attempts to clear local account-related caches where feasible. Data may still remain in device-level backups, operating-system storage, screenshots, recipient devices, or infrastructure outside PTG’s direct control.
3.12 Logs and Infrastructure Metadata
We and our service providers may process operational logs and infrastructure metadata such as user ID, request ID, event ID, conversation ID, message ID, media object key, verification attempt ID, error code, timestamps, IP address or network metadata, and device/app metadata needed for security, debugging, reliability, and fraud prevention. We do not use your data for third-party advertising tracking.
3.13 Product Analytics
We use third-party product analytics to understand app usage, improve features, monitor performance, and fix issues. We collect limited app-usage and device-related data, such as feature interactions, navigation events, time spent on certain app areas, and app/device build information. These analytics events do not include account identifiers, contact information, user content, or precise location. We do not use this analytics for targeted advertising, cross-app tracking, data-broker sharing, or sale of personal data.
4. How We Use Information
- create and manage accounts; authenticate users and maintain sessions; support Apple Sign In and Google Sign In;
- enforce the 18+ age requirement; operate profiles, visibility settings, and women-only rules;
- show nearby events, distances, maps, and recommendations; support event creation, discovery, joining, hosting, attendance, and cancellation;
- deliver direct messages, event chats, media, previews, and notifications;
- perform optional profile photo verification and show verification status;
- process reports, blocks, ratings, feedback, and moderation actions; prevent spam, fraud, impersonation, abuse, illegal activity, and safety risks;
- provide support; debug, secure, maintain, and improve the service; comply with legal obligations and enforce our Terms and Community Guidelines.
We process personal data on lawful bases such as your consent, performance of the service you request, our legitimate interests in operating and securing the service, and compliance with legal obligations.
5. How Information Is Shared
5.1 With Other Users — Depending on your actions and settings, other users may see your display name, profile photo, bio, profile location, interests, social links, verification status, hosted events, event details and media, attendee or join-request status where applicable, direct messages sent to them, event chat messages visible to participants, media shared in chats or events, and ratings or feedback where the feature makes them visible.
5.2 With Event Hosts and Participants — Hosts may see users who request to join or attend their events. Participants may see event chat content, event updates, certain participant information, and event-related media depending on app features and event settings.
5.3 With Service Providers — We use Supabase for authentication, database, and backend infrastructure; AWS for profile photo verification (Face Liveness, Rekognition), storage, compute, and security-related services; Cloudflare for media upload, storage, delivery, and worker infrastructure; third-party product analytics providers for limited app-usage and device-related analytics; Apple services including Sign in with Apple, APNs, MapKit, Core Location, geocoding, Calendar/EventKit where used, authentication, and App Store services; and Google services for Google Sign-In or Google Maps/directions where you choose to use those features. These providers process information on our behalf or as platform services needed to run the app. We do not sell your personal data.
5.4 Safety, Legal, and Compliance — We may disclose information when necessary to comply with law, respond to lawful requests, orders, notices, or directions, protect users, investigate abuse, enforce our Terms or Community Guidelines, prevent fraud or security threats, or protect the rights, property, and safety of PTG, users, or others.
5.5 International Data Transfers and Processing Locations — PTG and its service providers may store and process your information on servers located outside your country of residence. This includes cloud database, authentication, and storage regions operated by our providers in the Asia Pacific region (for example, Singapore), and profile photo verification processing in India (for example, an AWS Asia Pacific (Mumbai) region). Where required by applicable law, we rely on appropriate safeguards for cross-border processing, such as provider data-processing terms and recognized transfer mechanisms.
5.6 Business Transfers — If PTG is involved in a merger, acquisition, financing, reorganization, sale of assets, or insolvency, your information may be transferred or disclosed as part of that transaction, subject to this Privacy Policy or a successor policy and applicable law.
6. Data Retention
- account/profile data is retained while your account is active;
- event records may remain as needed for event history, integrity, safety, dispute handling, and moderation;
- direct messages may be retained while needed to provide messaging, unless deleted through account deletion or another service process;
- event-chat messages may remain after account deletion with the sender de-identified to preserve conversation integrity, event history, and safety records;
- private media linked to deleted accounts is deleted or scheduled for deletion where feasible, except where retention is needed for safety, legal, backup, dispute, or service-integrity reasons;
- reports, ratings, feedback, blocking records, and moderation data may be retained where needed for safety, legal, abuse-prevention, or dispute-resolution purposes;
- records may be preserved for investigation where required or permitted under Indian intermediary rules;
- logs and backups may remain for limited periods according to provider and operational retention schedules. Deletion from backups and infrastructure logs may take additional time.
7. Account Deletion
You can initiate account deletion inside the PTG app from your account or profile settings. We may require recent authentication or confirmation to help ensure the request is intentional and made by the account holder. When you delete your account, we delete or de-identify your account and associated personal data where feasible, including your authentication account, public user profile, Apple or Google linked account record, date of birth and sex/gender data, profile data, profile photo and verification reference assets where feasible, direct messages associated with your account, push tokens and notification records, join requests and attendee links, social connection records, and local app caches on your device where feasible.
For event chats, messages you sent may remain visible with your sender name de-identified, and associated text, preview, media, thumbnails, or limited metadata may remain where needed for conversation integrity, event history, safety, moderation, legal compliance, backups, or service integrity. Some records may remain in deleted, anonymized, de-identified, aggregated, limited, or backup form where necessary for safety and abuse prevention, legal compliance, fraud prevention, dispute resolution, service integrity, backup recovery, security logs, or enforcement. Account deletion is not the same as uninstalling the app.
8. Your Choices and Rights
Depending on applicable law, you may have rights to access your personal data, correct inaccurate or incomplete data, delete your account, withdraw consent where processing is based on consent, request information about how your data is used, object to or restrict certain processing, nominate another person to exercise rights where applicable, appeal certain decisions, or submit privacy complaints. You can manage some information directly in the app, including profile details, visibility settings, notification permissions, location permissions, and account deletion.
Where available, you can also request or generate a copy of certain account data using the in-app data export feature in your settings. To make a privacy request, contact [email protected].
9. Permissions
- location, for nearby events, maps, distance, and location-based discovery;
- camera, for profile photo verification and media capture;
- photo library or media picker, for selecting profile photos or event/chat media;
- notifications, for event, chat, safety, and activity alerts;
- calendar, only if you choose to add events to your calendar and the feature ships;
- speech recognition or related system permissions only if required by a shipped feature.
You can manage permissions through iOS Settings. Some features may not work fully if a permission is denied.
10. Security
We use technical and organizational safeguards intended to protect user data, including authenticated requests, access controls, private media authorization, temporary signed URLs, provider security features, and moderation/safety processes. No system is perfectly secure. You are responsible for keeping your login credentials safe and for using caution when sharing content or meeting people through events.
11. Third-Party Links and Services
PTG may link to or use external services such as Apple Maps, Google Maps, Sign in with Apple, Google Sign-In, support pages, legal pages, venues, payment providers if introduced, or external websites. When you open third-party services, their own privacy policies and terms apply.
12. No Sale or Third-Party Advertising Tracking
We do not sell your personal data. We do not use your data for third-party advertising tracking. We use limited third-party product analytics as described above, but not for targeted advertising, cross-app tracking, data-broker sharing, or sale of personal data.
13. Regional Rights and Lawful Bases
Where you are located in a region with specific data-protection rights, such as the European Economic Area, the United Kingdom, or certain US states, additional rights and disclosures may apply, and we will honor them to the extent the law applies to PTG.
14. Changes to This Policy
We may update this Privacy Policy from time to time. If we make material changes, we may notify you through the app, website, email, or another appropriate method. The “Last updated” date shows when this policy was last revised.
15. Contact Us
For privacy questions, support requests, account-deletion questions, data-rights requests, complaints, or safety concerns, contact PTG at [email protected].
