Samay — Privacy Policy

Privacy Policy

Last updated: March 2026

    We collect only what is needed to provide Samay's guidance. We do not sell your data. We do not share your birth details or session content with advertisers. What you tell Samay stays with Samay.
  

1. Who This Policy Applies To

This Privacy Policy applies to all users of the Samay service — accessible via our website, voice interface, WhatsApp, Telegram, and phone. By using Samay, you agree to the collection and use of information described here.

2. What We Collect

Data	Why we collect it
Phone number	Identity verification via OTP. Used to recognise you across channels (WhatsApp, call, web) and sessions.
Name (optional)	Personalisation of Samay's responses.
Birth details (date, time, place)	Required to compute your Vedic birth chart, dasha timeline, and panchanga. Stored so you don't need to repeat them.
Session transcripts	Stored in our memory layer (Honcho) to give Samay continuity across sessions — so it remembers your chart, questions asked, and context. Bounded to the last 40 messages per user.
Computed charts	Saved to your Identity Mirror dashboard so you can reference past readings.
Payment information	We store only the Razorpay payment ID and plan details. Full card/UPI data is handled entirely by Razorpay and never touches our servers.
Usage data	Session start/end times, audio duration. Used to enforce free tier limits and improve the service. Not linked to session content.

3. What We Do Not Collect

We do not record audio permanently. Voice is transcribed in real time and the audio buffer is discarded.
We do not collect device identifiers, browser fingerprints, or location data beyond the city you provide for chart calculation.
We do not use tracking pixels, third-party advertising scripts, or behavioural profiling tools.

4. Third-Party Services

Samay uses carefully selected third-party infrastructure providers to deliver the service. Each category of provider handles only the minimum data required for their function:

Category	Purpose
AI inference	Your session text is processed by a cloud AI provider to generate Samay's responses. Session text is not used to train models.
Voice processing	Audio is sent to a voice AI provider for real-time speech-to-text and text-to-speech. Audio is not retained after transcription.
Messaging & telephony	Your phone number is used by a communications provider to deliver OTP codes and route calls or messages.
Payment processing	Payments are handled by a PCI-DSS compliant payment gateway. Card and UPI data never touches Samay's servers.
Session memory	Conversation context is stored by a memory infrastructure provider so Samay remembers your chart and questions across sessions.

5. How We Use Your Data

To authenticate you and maintain your account
To compute your Vedic birth chart and related astrological data
To personalise Samay's guidance based on your chart and session history
To process and manage your paid session packs
To improve Samay's guidance quality over time (using aggregated, anonymised session patterns — not individual transcripts)
To send you OTP verification codes and session-related notifications

We do not use your data for advertising, profiling for sale to third parties, or any purpose unrelated to delivering Samay's guidance.

6. Data Storage and Security

Your data is stored on servers located in the European Union. We use industry-standard security practices including encrypted storage, HTTPS transport, and JWT-based authentication with 30-day expiry.

Birth details and session transcripts are stored in a private database accessible only to Samay's backend systems. We do not expose this data through any public API.

7. Data Retention

Account data (phone, name): retained for as long as your account is active.
Birth charts and readings: retained indefinitely unless you request deletion — they are the foundation of Samay's continuity for you.
Session memory: capped at the last 40 messages. Older messages are automatically pruned.
OTP codes: deleted immediately after verification or 10 minutes, whichever comes first.
Payment records: retained for 7 years to comply with Indian financial record-keeping requirements.

8. Your Rights

You have the right to:

Access the personal data we hold about you
Correct inaccurate data (e.g. a wrong birth date)
Delete your account and associated data — charts, session memory, and phone number will be removed within 30 days
Withdraw consent at any time by deleting your account

To exercise any of these rights, email our contact form from the email associated with your account, or include your registered phone number in your request.

9. Children's Privacy

Samay is not directed at children under 18. We do not knowingly collect data from minors. If you believe a minor's data has been collected without consent, please contact us and we will delete it promptly.

10. Cookies

Samay uses a single session token stored in your browser's localStorage to keep you logged in. We do not use third-party cookies, tracking cookies, or advertising cookies.

11. Changes to This Policy

We may update this Privacy Policy as the service evolves. We will notify registered users of material changes via SMS. The latest version is always available at this URL.

12. Governing Law

This Privacy Policy is governed by the laws of India, including the Information Technology Act, 2000 and the Digital Personal Data Protection Act, 2023 (DPDPA). For disputes, the courts of India have exclusive jurisdiction.

13. Contact

For privacy questions, data requests, or concerns: our contact form

We aim to respond to all privacy-related requests within 72 hours.