Privacy Policy

1. Introduction

NOMAZRA ("the App") is operated by Kelthos Technologies ("we," "us," or "our"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the NOMAZRA mobile application and related services.

We understand the deeply sensitive nature of legal inquiries. Your legal questions, documents, and personal data are treated with the highest level of confidentiality. We are committed to protecting your privacy as rigorously as attorney-client privilege demands.

2. Information We Collect

2.1 Information You Provide

• Account Information: Email address, display name, and password when you create an account.
• Legal Queries: Text messages, voice recordings, and call transcripts you submit to the AI legal advisor.
• Documents: Files you upload for AI analysis, including contracts, legal notices, court orders, and other documents.
• Country and Jurisdiction: Your selected country for localized legal guidance.
• Feedback: Ratings, comments, and suggestions you provide.

2.2 Information Collected Automatically

• Device Information: Device type, operating system, unique device identifiers, and app version.
• Usage Data: Features used, query frequency, session duration, and interaction patterns.
• Firebase Cloud Messaging Token: For delivering push notifications and reminders.

2.3 Information We Do NOT Collect

• We do not collect your precise GPS location.
• We do not access your contacts, photos, or files beyond what you explicitly upload.
• We do not collect biometric data.
• We do not use your legal queries to train general-purpose AI models.

3. How We Use Your Information

• To provide AI-powered legal guidance tailored to your jurisdiction.
• To analyze uploaded documents and generate legal summaries.
• To maintain your conversation history and bookmarks.
• To send reminders for legal deadlines you have set.
• To improve the accuracy and quality of our legal AI system.
• To process subscriptions and manage your account.
• To send service-related communications (not marketing).
• To comply with legal obligations and respond to lawful requests.

4. Data Security

We implement industry-standard security measures including:

• End-to-end encryption for voice calls.
• Secure token-based authentication (JWT).
• Regular security audits and penetration testing.
• Role-based access controls for internal systems.
• Automatic session expiration and token rotation.

5. Data Sharing and Disclosure

We do not sell, rent, or trade your personal data. We may share information only in these circumstances:

• Service Providers: Trusted third-party services that help us operate (cloud hosting, analytics), bound by strict data processing agreements.
• Legal Requirements: When required by law, subpoena, or court order.
• Safety: To prevent fraud, abuse, or threats to safety.
• Business Transfer: In the event of a merger, acquisition, or asset sale, with prior notice to users.

We never share your legal queries or uploaded documents with any third party for advertising or marketing purposes.

6. Data Retention

• Conversations: Retained based on your plan (7 days for Free, 90 days for Plus, unlimited for Premium and Professional). You may delete conversations at any time.
• Documents: Retained until you delete them or delete your account.
• Account Data: Retained until you request account deletion.
• Voice Recordings: Transcribed in real-time; raw audio is automatically deleted after transcription.

7. Your Rights

Depending on your jurisdiction, you may have the following rights:

• Access: Request a copy of all personal data we hold about you.
• Correction: Request correction of inaccurate data.
• Deletion: Request deletion of your account and all associated data.
• Portability: Request your data in a machine-readable format.
• Objection: Object to certain processing activities.
• Restriction: Request restriction of processing in certain circumstances.

To exercise any of these rights, use the in-app account settings or email privacy@kelthos.com.

8. International Data Transfers

NOMAZRA serves users in 140+ countries. Your data may be processed in countries other than your own. We ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) for transfers from the EEA, and compliance with applicable data protection frameworks.

9. Children's Privacy

NOMAZRA is not intended for users under the age of 16. We do not knowingly collect personal data from children. If we learn that we have collected data from a child under 16, we will delete that data promptly.

10. Third-Party Services

NOMAZRA integrates with the following third-party services:

• Google Play / Apple App Store: For app distribution and in-app purchases.
• Firebase Cloud Messaging: For push notifications.
• Stripe: For subscription payment processing (we do not store credit card numbers).

Each third-party service has its own privacy policy. We encourage you to review them.

11. Cookies and Tracking

The NOMAZRA mobile app does not use cookies. Our website may use essential cookies for functionality. We do not use advertising trackers or sell data to ad networks.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes through the app or by email. Continued use of NOMAZRA after changes constitutes acceptance of the updated policy.

13. Contact Us

For privacy-related inquiries, data requests, or concerns: