Privacy Policy

Last updated: July 2, 2026

What We Collect

We collect your email address for authentication, your device's GPS coordinates when you report a community incident or use location features, photos you choose to upload to community reports, and usage data such as purchases and coin transactions.

How We Use It

Your data is used to operate the Qarlo service — connecting lost items with owners, managing your Qarks balance, powering community alerts, and sending push notifications about your items. We never sell your personal data to third parties.

Anonymity

Qarlo is designed with anonymity at its core. When a finder scans your QR code, they only see a chat interface — your name, email, and profile are never revealed. The same applies in reverse.

Data Storage

All data is stored securely in Supabase (hosted on AWS). Community report photos are stored in Supabase Storage with public read access so they can be displayed in the community feed.

Location Data

GPS coordinates are captured only when you submit a community report or use location-dependent features. We store coordinates in our database to power the 5km radius filtering in the community feed. We do not track your location continuously.

Your Rights

You may request deletion of your account and associated data at any time by contacting us. We will process deletion requests within 30 days.

Cookies

The Qarlo website uses browser localStorage to maintain your authentication session (provided by Supabase Auth). We do not use advertising or tracking cookies.

Contact

For privacy enquiries, email us at privacy@qarlo.online.