Privacy Policy

App: HareHare | Operated by: Mediarun Digital Private Limited

Last updated: June 17, 2026.

This Privacy Policy explains how HareHare ("we", "us", "our"), a brand operated by Mediarun Digital Private Limited, collects, uses, stores, shares, and protects information when you use the HareHare mobile application (the "App"). HareHare is a devotional and spiritual application and, by its nature, processes information related to religious practice. The App also lets you book temple pujas (a real-world religious service) and pay for them securely, which involves processing your booking and payment information as described below. Please read this policy carefully. By using the App, you agree to the practices described below.

1. Information We Collect

1.1 Information you provide at sign-up

Name
Mobile number (used for authentication)
Date of birth (required — used to verify you are 18 or older)
Email address (if you choose to provide it)
Adult self-declaration (your explicit confirmation that you are 18+)

1.2 Religious and spiritual information

Because HareHare is a devotional app, we collect information that may reveal your religious beliefs, practices, or affiliations. Specifically:

Voluntary profile information: We may ask you questions about your religious practices — for example, which deities you worship, what religious rituals you perform, or how often you engage in them. Answering these questions is optional and is used only to personalise your experience.
Activity data: We record your use of devotional features such as chant counts (japa), meditation sessions, gratitude reflections, fasting days, and checklist completions.
Chat content: Messages you send to our AI assistant often contain religious or spiritual content. This content is processed and stored as part of your chat history.

By using the App, you explicitly consent to the processing of this religious and spiritual information for the purposes described in this policy. You can withdraw consent at any time by deleting your account (see Section 10).

1.3 Information collected automatically

Device information: device model, operating system, language, and app version
Usage data: features used, session duration, app opens, token consumption, engagement streaks
Diagnostics and logs: crash reports, performance metrics, and error logs
Network data: IP address and approximate region, used for security and abuse prevention
User identifiers: a unique Firebase user ID assigned to your account
Interaction & session analytics: taps, scrolls, screen navigation, and anonymised session replays and heatmaps of how you use the App, collected via Google Firebase Analytics and Microsoft Clarity to understand usage and improve usability. Any text you enter is automatically masked and is never captured in these recordings.

1.4 Microphone and voice interaction

The App offers a two-way voice mode for talking with the devotional AI assistant. With your explicit permission, we access your device microphone so you can ask questions by speaking. Your speech is converted to text in real time using the platform's speech-recognition service (Android / iOS / browser), and only the resulting text transcript is sent to our AI assistant.

The assistant's reply is then played back to you as synthesized voice and also shown on screen as text, so you have a written reference for what was said.

We do not record, upload, or store raw audio of your voice. The synthesized reply is generated on the fly and is not retained as an audio file. You can revoke microphone permission at any time in your device settings; the App will continue to work fully with typed input.

1.5 Push notifications and device token

When you allow notifications, we receive a Firebase Cloud Messaging (FCM) device token so we can deliver puja reminders, festival reminders, and replies from the AI assistant. The token is tied only to your account and is used solely to route notifications to your device — it is not shared with advertisers or used for marketing profiles. You can turn off notifications at any time in your device settings.

1.6 Puja booking information

When you book a temple puja through the App, we collect the details needed to perform the ritual and fulfil your order:

Devotee name, date of birth, and gotra (clan lineage) — required for the Vedic ritual
Preferred puja date and any sankalp (intention) details you provide
Mobile number and email — for booking confirmation, updates, and your receipt
Shipping address — only if you opt for prasad delivery

Payment for bookings is handled by our payment provider; we do not store your card, UPI, or other sensitive payment credentials (see Section 8).

2. How We Use Your Information

To provide AI-based devotional chat and assistant functionality
To create and maintain your account and enforce daily usage quotas
To personalise your experience based on your religious preferences and practices
To track your spiritual progress (chant counts, streaks, checklists) within the App
To process and fulfil puja bookings, including sharing the required ritual details with the temple or pandit and taking payment
To improve app performance, reliability, and features
To prevent misuse, fraud, abuse, and security incidents
To respond to your support requests
To comply with legal obligations

We do not use your personal or religious information for advertising. We do not sell your personal information to third parties. We do not use your religious information to profile you outside the App.

3. AI Processing

Your chat inputs are processed through AI services (such as Google Gemini / Vertex AI) to generate responses. Please be aware:

AI responses are automatically generated and may not always be accurate, appropriate, or consistent with any specific religious tradition
AI responses should not be treated as spiritual authority or religious counsel
Do not share sensitive personal, financial, or medical information in chat
AI providers may process your inputs under their own terms and privacy policies

4. Third-Party Services

The App uses the following third-party services to function. Each has its own privacy policy.

Service	Purpose
Google Firebase	Authentication, database (Firestore), crash reporting, analytics
Google Cloud Platform	Hosting, server infrastructure, logging
Google Gemini / Vertex AI	AI-generated chat responses
Google Play Services	App distribution and device services
Razorpay	Payment processing for puja bookings
Meta — WhatsApp Business	Puja booking confirmations and status updates
Microsoft Clarity	Product analytics, heatmaps, and masked session replay (usability insights)

5. Data Sharing

We share your data only in the limited circumstances below:

Service providers: with the third parties listed in Section 4, strictly as needed to operate the App
Temple / pandit partners: for puja bookings, the ritual details you provide (name, gotra, date of birth, preferred date) are shared with the temple or pandit performing your puja
Payment provider: booking payments are processed by Razorpay; we share only what is needed to complete the transaction (see Section 8)
Legal compliance: when required by law, court order, or valid legal process
Safety and security: to protect our rights, users, and prevent fraud or abuse
Business transfers: in the event of a merger, acquisition, or asset sale, subject to equivalent privacy protections

We do not sell your personal data. We do not share your religious or spiritual information with third parties for marketing or profiling purposes.

6. Data Storage and Security

Your data is stored on secure servers operated by Google Cloud Platform
Data in transit is protected using TLS encryption
Access to personal data is restricted to authorised personnel
We use reasonable technical and organisational measures to protect your data

However, no system is completely secure. We cannot guarantee absolute security but will notify affected users as required by law in the event of a data breach.

7. Data Retention

Account data is retained while your account is active
Chat history is retained to provide continuity of experience
Server logs are retained for up to 30 days for security purposes
Religious and spiritual information is retained until you delete your account
You can request deletion of your account and data at any time (see Section 10)
Anonymised analytics data may be retained indefinitely

8. Payments

When you book a puja, payment is processed by Razorpay, a PCI-DSS compliant payment gateway. Booking a puja is a real-world religious service (and prasad is a physical good), so payments are taken through this external gateway rather than in-app digital purchases.

We never see or store your card number, CVV, UPI PIN, or other sensitive payment credentials — these are handled entirely by Razorpay on their secure servers.
Your order details (puja selected, amount, name, contact) are stored by us in Google Firebase (Firestore) for booking management and dispute resolution.
Razorpay processes payment data under its own Privacy Policy. All transactions use TLS encryption.

9. Sensitive Data — Your Explicit Consent

Under applicable privacy laws (including India's DPDP Act 2023 and the GDPR where relevant), religious beliefs are considered sensitive personal data and require your explicit consent to process.

By creating an account and using devotional features such as chant counters, meditation trackers, religious preference questions, and AI chat, you provide your explicit consent for us to collect and process this religious and spiritual information for the purposes described in this policy.

You may withdraw this consent at any time by deleting your account. Once deleted, your religious and spiritual data will be removed in accordance with Section 10.

10. Your Rights

You have the following rights regarding your personal data:

Access: request a copy of the personal data we hold about you
Correction: request correction of inaccurate or incomplete data
Deletion: request deletion of your account and personal data
Withdrawal of consent: revoke permissions (including for religious-data processing) at any time by deleting your account, or revoke microphone and notification permissions via device settings
Objection: object to certain processing of your data
Portability: request your data in a portable format

To delete your account, see our Account Deletion page or contact us at info@mediarun.co.in.

11. Children's Privacy

The App is intended for users 18 years of age and older. We do not knowingly collect personal data from children under 18. If we become aware that we have collected data from a child under 18, we will promptly delete it. If you believe a child has provided us with personal data, please contact us at info@mediarun.co.in.

12. International Data Transfers

Your data may be processed and stored on servers located outside your country of residence (including in regions where Google Cloud operates). We rely on the safeguards offered by our service providers to protect such transfers.

13. Future Features

The App may introduce additional features in the future, such as devotional product purchases. Any new data collection will only occur with your explicit permission and will be reflected in an updated version of this policy.

14. Changes to This Policy

We may update this Privacy Policy from time to time. We will post the updated policy here with a revised "Last updated" date. Material changes will be communicated through the App. Continued use of the App after changes take effect constitutes acceptance of the updated policy.

15. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, contact us at:

Email: info@mediarun.co.in

Company: Mediarun Digital Private Limited (operating the HareHare brand)

Registered address: 21 B1 Friends Colony West, New Delhi, Delhi, India