Privacy Policy

Capsulo · Last updated: June 2026

Capsulo is a time capsule app. What you write is personal. This policy explains what we collect, how we use it, and what we will never do with it.


1. What we collect

We collect only what the app needs to work:

2. What we do not collect

3. How your data is stored

Your account information and capsule content are stored in Supabase — a managed PostgreSQL database hosted on AWS infrastructure in the US region. Data is encrypted in transit (TLS) and at rest (AES-256).

Photos are stored in Supabase Storage in a private bucket. Only you and the recipients you have explicitly invited can access them. Direct URLs are signed and time-limited; they cannot be guessed or shared without your action.

Crash diagnostic data is stored in Google Firebase Crashlytics and is subject to Google's privacy policy.

4. Who can read your capsules

Your capsule content is protected by database-level Row Level Security policies. The rules are strict:

Capsulo staff cannot read the content of your capsules. We do not have a "view as user" admin panel. Access would require direct database access, which is restricted to automated backend processes only.

5. Subscriptions and payments

Payments are handled entirely by Google Play (Android) and Apple App Store (iOS). We never see or store your card number, UPI details, or any payment credentials. Subscription status is synced to our database as a plain string (free or pro) via RevenueCat. RevenueCat's privacy policy is available at revenuecat.com/privacy.

6. Push notifications

If you grant notification permission, your device token is stored so we can send you unlock notifications, gift capsule alerts, and special day reminders. You can disable notifications at any time in your device settings or in Capsulo's Profile > Notifications settings. Disabling notifications does not affect your ability to use the app.

7. Data retention

Your data is retained for as long as your account exists. If you delete your account from Capsulo's Profile page:

A 30-day soft-delete window exists so you can recover your account if the deletion was accidental. After 30 days the deletion is permanent and cannot be reversed.

8. Children's privacy

Capsulo is not directed at children under 13. We do not knowingly collect personal information from anyone under 13. If you believe a child has provided us with personal information, contact us at saidinesh1020@gmail.com and we will delete it promptly.

9. Changes to this policy

If we make material changes to this policy, we will update the "last updated" date at the top of this page and, where appropriate, notify you in-app. Continued use of Capsulo after changes become effective constitutes your acceptance of the revised policy.

10. Contact

Questions about privacy? Email us at saidinesh1020@gmail.com.

Developer contact: Saidinesh · saidinesh1020@gmail.com