Satsang Diary Privacy Policy | Dr. Dishant Pandya

Effective Date: April 9, 2026

Last Updated: April 9, 2026

Operator: Dr. Dishant Pandya

Contact Email: drdishantpandya@gmail.com

SCOPE

This Privacy Policy explains how Satsang Diary collects, uses, stores, and shares personal data when you use the Satsang Diary website, the Central web admin application, the Satsang Diary Yuvak mobile app, the Satsang Diary Sanchalak mobile app, and the Satsang Diary Central mobile app.

In this Privacy Policy, “Satsang Diary,” “we,” “us,” and “our” mean Dr. Dishant Pandya. “You” means the person using the Service and may include individual members, Yuvaks, Sanchalaks, Nirikshaks, Central users, volunteers, and organization administrators acting on behalf of a mandal, zone, or affiliated organization.

INFORMATION WE COLLECT

We collect information you provide directly, information submitted by authorized administrators, and limited technical information needed to operate, secure, and improve the Service.

A. Account and identity information

This may include: Name or display name Phone number Email address User ID, member ID, and organization or mandal identifiers Role assignments and access scope Language preference Account status and profile approval status

B. Member, profile, and participation information

Depending on role and workflow, this may include: Full name Date of birth Gender City Education, interests, and skills Profile photo or uploaded profile-related files Registration status, eligibility status, and payment status Participation details and satsang-related profile fields tracked by the Service, such as project selections, Mukhpaath-related progress, study material engagement, spiritual profile fields, and attendance history

C. Forms, submissions, and operational records

The Service supports workflows such as: Event and activity registration Form submissions and responses Poll responses Temporary group membership Study material publishing and access Announcements and in-app operational messages Reviewer and evaluation workflows Audit and moderation actions

Information submitted through these workflows may be stored as part of the Service.

D. Attendance and location information

If attendance features are used, we may collect: QR attendance session details Attendance status and timestamps Device-related attendance metadata Latitude, longitude, GPS accuracy, and GPS timestamp for QR-plus-geo attendance validation when that feature is enabled

We do not describe this as continuous background location tracking. Location information is used for attendance integrity and related audit workflows when those features are actively used.

E. Files and media

We may collect and store files uploaded through the Service, including: Profile images PDFs Images Documents Other supported resource files allowed by the product

F. Technical, security, and support information

We may collect: IP address or approximate network metadata Request IDs and backend logs Device or session identifiers Authentication and access logs Crash, error, or troubleshooting information Browser, platform, and app-version details reasonably needed to secure and operate the Service

HOW WE USE INFORMATION

We use personal data to: Create and manage accounts, roles, and access scopes Allow users and authorized administrators to view and update profiles Operate registrations, attendance, reviewer, moderation, and messaging workflows Deliver study materials, forms, and organization communications Maintain audit logs and prevent misuse or unauthorized access Validate QR attendance and geo-based attendance rules where enabled Store, serve, and secure uploaded files Investigate support requests, bugs, misuse, or policy violations Enforce product rules, rate limits, and operational safeguards Improve reliability, performance, and security of the Service Comply with legal obligations or valid requests from regulators, law enforcement, or courts where required

We do not sell personal data. We do not currently use the Service for behavioral advertising.

HOW INFORMATION MAY BE SHARED

We may share information only as reasonably necessary in the following cases.

A. Within the organization and role-based product flows

The Service is role-based. Information may be visible to authorized users based on role, scope, and workflow. For example, a member may see their own information, while authorized Sanchalaks, Nirikshaks, or Central users may see records relevant to their assigned operational scope.

B. Service providers and infrastructure

We use service providers to run the Service, including infrastructure for authentication, backend functions, database storage, file storage, and hosting. At the time of writing, this includes Google Firebase and related Google Cloud services used to power parts of the application.

C. Platform operators

If you download the app through Apple App Store or Google Play, those platform providers may collect information separately under their own privacy policies.

D. Legal, safety, and enforcement

We may disclose information if reasonably necessary to: Comply with law or legal process Protect users, administrators, or the public Investigate fraud, abuse, or security incidents Enforce our Terms of Service and product rules

E. Business or organizational transition

If the Service or its operation is transferred, reorganized, or assigned, relevant information may be transferred as part of that transition, subject to applicable law.

LEGAL AND OPERATIONAL BASIS

Depending on the context and applicable law, we process information: With your consent To provide the Service you request At the direction of an affiliated mandal, zone, or organization that administers your access To protect the security, integrity, and reliability of the Service As otherwise permitted or required by applicable law

If you are an administrator uploading or managing information about another person, you are responsible for ensuring that you have the necessary authority and legal basis to do so.

DATA RETENTION

We retain data for as long as reasonably necessary to operate the Service, maintain records, resolve disputes, protect security, and satisfy legal or operational requirements.

In particular: Active account and workflow data is generally retained while the account or organization relationship remains active or needed for legitimate operational purposes Audit, moderation, and security records may be retained longer where justified for integrity, traceability, or compliance When records are deleted through the Service’s recoverable deletion flow, they may remain restorable for up to 60 days before permanent purge Backup or log data may persist for a limited period after active records are changed or deleted

Deleting the app from a device does not by itself delete server-side records.

SECURITY

We use administrative, technical, and organizational measures intended to protect personal data, including role-based access controls, authentication checks, audit logging, upload restrictions, and other security controls designed into the product.

No method of transmission or storage is perfectly secure. You should use strong passwords, protect your device, and avoid sharing credentials.

All data transmitted between the app and our servers is encrypted using industry-standard HTTPS/TLS protocols.

YOUR CHOICES AND RIGHTS

Subject to applicable law and the operational role structure of the Service, you may have the right to: Access information associated with your account Request correction or updating of inaccurate data Request deletion or restriction of certain personal data Withdraw consent where processing depends on consent Ask how your data is being used or shared

Some rights may be limited where data must be retained for legitimate administrative, safety, fraud prevention, legal, or audit reasons, or where another authorized organization controls the account relationship.

If location access is denied, QR-plus-geo attendance or related attendance features may not function properly.

ACCOUNT DELETION

Users may request deletion of their account and associated personal data by contacting us at drdishantpandya@gmail.com.

To request deletion, users should:

1. Send an email from their registered email ID

2. Include their name and registered account details

3. Mention "Account Deletion Request" in the subject

We will process such requests within 7–15 working days, subject to operational, legal, and organizational data requirements.

Certain data may be retained where required for audit, compliance, fraud prevention, or legitimate organizational purposes.

CHILDREN’S AND MINOR USERS’ DATA

The Service may be used in contexts that involve youth members, including minors. If the Service is used for minors: Parent or guardian consent, organizational authorization, or another lawful basis must exist as required by applicable law Administrators who upload or manage minor-related information represent that they have authority to do so If you believe a minor’s information was provided without appropriate authorization, contact us at drdishantpandya@gmail.com so we can review the issue

INTERNATIONAL PROCESSING

The Service infrastructure and service providers may process data in countries other than the country where a user resides. By using the Service, you understand that information may be processed and stored in such jurisdictions, subject to applicable safeguards and lawful transfer requirements.

THIRD-PARTY LINKS AND SERVICES

The Service may contain links to third-party websites, files, or services. We are not responsible for the privacy practices of third parties that we do not control.

CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time. If we make material changes, we may update the effective date above and, where appropriate, provide notice through the Service or website.

CONTACT AND GRIEVANCE

For privacy questions, complaints, access requests, correction requests, or deletion requests,

contact: Dr. Dishant Pandya

Email: drdishantpandya@gmail.com

Website: https://drdishantpandya.com