← Back home

    India GO — Privacy Policy

    Last updated: 23 April 2026

    Thank you for choosing India GO. Your privacy matters. This Privacy Policy explains, in plain English, what information we collect when you use the India GO mobile application (the "App"), how we use it, who we share it with, and what rights you have over it.

    We've kept this document deliberately short and direct. If anything is unclear, write to **mail@indiago.app** — Alex (the author and operator of the App) reads every message personally.

    1. Who We Are

    India GO is operated by Alex Pervov, an independent author based in Bangalore, India. The App is published under the bundle identifier indiago.pervovme.

    For the purposes of data protection law, Pervogo LTD (London, company no. 15248477) acts as the data controller, with Alex Pervov as its sole director and operator.

    You can reach the controller at **mail@indiago.app**.

    2. The Information We Collect

    We collect only the information we need to make the App work. We do not run advertising, we do not embed third-party trackers, and we do not share data with data brokers.

    (a) Information you give us when you sign in

    If you choose to create an account using Sign in with Apple, Sign in with Google, or email + password, we receive:

    • Your email address
    • Your display name (optional — you can edit or skip it)
    • A unique account identifier issued by Apple or Google, or generated by our backend in the case of email accounts

    (b) Information you give us through the App

    • Profile data you choose to add — your home city and home country (free text, optional)
    • Bookmarks — cities, places, and content blocks you save with the star icon
    • Visited cities — cities you mark as having visited
    • Visa trips — entries you save in the visa calculator (dates, visa type, notes)
    • Feedback messages — anything you submit through the "Suggest an edit" or "Ask a question" forms
    • Search queries you type inside the App (used only to return results — not stored on the server)

    (c) Information collected automatically

    • Device language preference (English or Russian)
    • A short device-info string (iOS version + App version + build number) attached to feedback messages so we can reproduce bugs
    • Locally on the device only: your last-active tab, navigation path, and dark-mode preference (stored in iOS UserDefaults; never uploaded)

    (d) Location

    The App uses your precise location only when you tap the "Locate Me" button on the map. We use the location once to centre the map on your position. We do not store, log, or transmit your location to our servers — ever.

    (e) Notifications

    If you turn on "Festival Reminders" in Profile settings, the App schedules local notifications on your device. These notifications are generated and stored entirely on your iPhone. We do not see when, where, or whether you receive them.

    (f) Biometric authentication

    If you enable Face ID or Touch ID for the App, the biometric data never leaves your device — Apple's Local Authentication framework handles everything on the Secure Enclave. We never see, store, or process your biometric data.

    3. What We Do Not Collect

    • We do not collect your contacts
    • We do not collect your photos or photo library metadata
    • We do not access your microphone or camera
    • We do not collect health data
    • We do not collect financial data, credit card numbers, or banking details
    • We do not collect advertising identifiers (IDFA)
    • We do not fingerprint your device
    • We do not track you across other apps or websites

    4. How We Use the Information

    We use the information we collect strictly for the following purposes:

    (a) To provide the App's features — authentication, syncing your bookmarks across devices, saving your visa trips, displaying your profile, scheduling festival reminders, returning search results.

    (b) To improve the App — we may aggregate fully anonymous usage signals (e.g. "X% of users opened the festivals tab this month") to understand which features matter. We never use these signals to identify individual users.

    (c) To respond to your messages — when you submit feedback or a question, we use your message and (if you were signed in) your email address to reply.

    (d) To enforce our Terms and protect against abuse — in the rare case of fraudulent activity or a violation of our Terms, we may use account information to investigate.

    We do not use your data for advertising, profiling, or automated decision-making that produces legal effects on you.

    5. Legal Basis for Processing (EU/UK Users)

    For users in the EU, EEA, and UK, we process your personal data on the following legal bases:

    • Performance of a contract — to provide the core features of the App that you've signed up for
    • Legitimate interests — to keep the App secure, reproduce bugs from feedback messages, and aggregate anonymous usage statistics
    • Consent — for optional features such as Festival Reminders and precise location access; you can withdraw consent at any time
    • Legal obligation — to respond to lawful requests from authorities and to comply with applicable law

    6. Who We Share Information With

    We share your information only with the limited number of service providers we need to run the App.

    (a) Supabase

    Our backend is hosted on Supabase (https://supabase.com). Supabase stores your account record, your synced bookmarks, your visa trips, and your feedback messages on encrypted servers in the European Union. Supabase is contractually bound to act only as a processor on our behalf.

    (b) Apple

    If you sign in with Apple, Apple handles authentication. We receive only the email address (or a private relay address if you opted to hide your email) and a stable user identifier. Apple's privacy policy: https://www.apple.com/legal/privacy/

    (c) Google

    If you sign in with Google, Google handles authentication. We receive only your name, email address, and a stable user identifier. Google's privacy policy: https://policies.google.com/privacy

    (d) Apple Push Notification service

    Festival reminders, when enabled, are scheduled as local notifications and processed entirely on your device. They do not transit Apple's servers.

    (e) Email

    If you contact us, your message is delivered to a mailbox at **mail@indiago.app**, operated by Alex Pervov on behalf of Pervogo LTD.

    We do not sell, rent, or trade your personal information to any third party for their own commercial purposes.

    7. International Data Transfers

    The App's backend is operated from servers in the European Union. If you use the App from a country outside the EU, your data is transferred to and processed in the EU. EU data protection law provides equivalent or stronger protections than most national laws.

    When you sign in with Apple or Google, those companies may process your data in the United States and other regions in accordance with their own privacy practices. Where required, transfers outside the EEA are protected by Standard Contractual Clauses or equivalent safeguards.

    8. How Long We Keep Your Data

    • Account data — kept for as long as your account exists. When you delete your account, all account data, bookmarks, visited cities, visa trips, and identifying information are permanently removed within 30 days.
    • Feedback messages — kept indefinitely so we can maintain context across multi-message conversations. You may request deletion at any time by writing to **mail@indiago.app**.
    • Local data on your device (UserDefaults bookmarks, navigation history, dark-mode preference) — controlled entirely by you. Uninstalling the App removes everything stored on the device.

    9. Your Rights

    You have the following rights regarding your data:

    (a) Right of access — you can request a copy of all data we hold about you by writing to mail@indiago.app.

    (b) Right to correction — you can edit your profile (name, home city, home country) directly inside the App at any time.

    (c) Right to deletion — you can delete your account from inside the App: Profile → Account → Delete Account. The deletion is permanent and removes every record we hold about you within 30 days. If you signed in with Apple, your Apple Sign-In token is also revoked automatically.

    (d) Right to export (data portability) — on request, we will provide your data in a standard, machine-readable format (JSON) within 30 days.

    (e) Right to object — you may object to any processing we do that goes beyond providing the App's core features. Email mail@indiago.app to exercise this right.

    (f) Right to withdraw consent — you may withdraw consent at any time by deleting your account or disabling the relevant feature. Withdrawal does not affect the lawfulness of processing that took place before withdrawal.

    (g) Right to lodge a complaint — if you believe we are mishandling your data, you have the right to lodge a complaint with a data protection authority:

    • EU users — your national supervisory authority
    • UK users — the Information Commissioner's Office (ICO), https://ico.org.uk
    • Russian users — Roskomnadzor

    We aim to respond to any rights request within 30 days.

    10. Children

    The App is not intended for users under the age of 13. We do not knowingly collect data from children under 13. If you believe a child under 13 has provided us with information, please contact **mail@indiago.app** and we will delete the data promptly.

    The App's age rating on the App Store is 12+ due to occasional references to alcohol, nightlife, and religious practices.

    11. Security

    We take security seriously.

    • All data in transit between your device and our backend is encrypted with TLS 1.2 or higher.
    • Authentication tokens are stored on your device using Apple's Keychain — encrypted, hardware-backed, and tied to your device passcode and biometrics.
    • Database access on the backend is governed by Row-Level Security policies — our backend service literally cannot return data belonging to one user to another user, even in the case of a software bug.
    • The App is signed and notarised by Apple and distributed only through the official App Store.
    • The author runs no separate web services that handle user data.

    No system is perfectly secure. If we ever experience a data breach affecting personal information, we will notify affected users by email and via an in-app banner within 72 hours of becoming aware of it, and we will report to the relevant authority where required by law.

    12. Third-Party Links

    The App contains links to external websites and services — Instagram, Telegram, Facebook, LinkedIn, booking websites such as Booking.com, app stores, and others.

    When you tap such a link, you leave the App and the third-party site's privacy policy applies. We are not responsible for the content or privacy practices of these third parties.

    13. Advertising and Tracking

    • We do not show advertising in the App.
    • We do not embed any advertising SDKs.
    • We do not use IDFA, fingerprinting, or any other cross-app or cross-website identifier.

    Apple's App Tracking Transparency (ATT) prompt is not shown by the App because there is nothing to track. If a future version of the App ever adds advertising or cross-app tracking, this Privacy Policy will be updated and the ATT prompt will be displayed before any tracking begins.

    14. Analytics

    We do not use Google Analytics, Firebase Analytics, Mixpanel, Amplitude, or any other third-party analytics SDK.

    We rely solely on:

    • Apple's standard App Store Connect analytics (anonymous, opt-in via your iOS Settings)
    • Aggregate, non-identifying counts on our own backend (e.g. total number of bookmarks across all users)

    15. Changes to This Policy

    We may update this Privacy Policy from time to time. When we do:

    • We will revise the "Last updated" date at the top of this document
    • If the change is material (for example, if we begin to collect a new category of data, or share data with a new third party), we will notify users by email (if you have an account) and via an in-app banner the next time you open the App
    • You will have the opportunity to review the changes and, if you disagree, to delete your account before the new policy takes effect

    We will not retroactively reduce the protections you currently have.

    16. Contact

    If you have any questions, requests, or complaints relating to this Privacy Policy or to our handling of your personal data, please write to:

    Alex Pervov Pervogo LTD, London (company no. 15248477)

    We aim to respond to all privacy-related inquiries within 7 working days.

    Thank you for trusting India GO.

    — Alex Pervov