AMARI App Privacy Policy
How AMARI Group AU Pty Ltd collects, uses, and protects information in the AMARI mobile app.
AMARI Group AU Pty Ltd ("AMARI", "we", "us", or "our") operates the AMARI mobile application (the "App"). The App is an invite-only membership experience for AMARI members, reviewers, and approved invitees. This policy explains what information we collect, how we use it, and the choices available to members.
Information We Collect
Account and membership information
When you create or use an AMARI account, we may collect your name, email address, authentication identifiers, membership tier, membership status, city or country, industry, title, company, profile details, consent records, and account settings. Passwords are processed through Supabase Auth and are not stored by AMARI in plaintext.
Onboarding and member signals
The App may collect structured onboarding answers such as your work focus, current stage, community needs, interests, and project or collaboration signals. These are used to personalise AMARI membership features and improve discovery inside the App.
Projects, interests, and connections
If you submit a project, we collect the project name, description, category, selected region, optional external link, optional cover image, and any contact details you choose to share for that project. Project creator names are not shown in public project browsing. Members may save projects to their interests and may send a short required connection note when they choose to contact a project creator by email.
AMARI does not currently provide private in-app messaging. Contact actions open the device email, messaging, or phone experience where available, and that communication is then handled outside AMARI by the member's device and communications provider.
Events, content, and activity
We may collect records related to event RSVPs, event check-in, Pulse content access, project bookmarks, connection requests, QR pass connections, account deletion requests, and basic security or diagnostic events required to operate the App.
We do not sell personal information. We do not use third-party advertising SDKs. We do not collect payment card information in the App.
How We Use Information
We use information to:
- Create, authenticate, and maintain AMARI member accounts
- Apply invite-only access, membership tiers, and feature gating
- Provide Pulse, Events, Aligned, Corridor, member pass, and profile features
- Review, approve, reject, or moderate submitted projects and member activity
- Enable QR pass scanning and member-to-member connection records
- Open external email, message, phone, web, or event registration actions chosen by the user
- Send essential account, membership, event, and security communications
- Maintain security, prevent abuse, debug issues, and improve the App
- Comply with legal, governance, and operational obligations
Permissions
Camera
The App asks for camera permission only when a member chooses to scan another AMARI member pass QR code. The camera feed is used for QR detection on the device. AMARI does not record audio, save camera video, or upload camera footage from QR scanning.
Photos and media
Members or admins may choose an image from their device to upload a project or event cover image. AMARI only receives the image selected by the user for upload.
Location
AMARI does not track precise live location or background location. Project map locations are selected by members or admins and may be intentionally generalised. Australian project locations are privacy-degraded to state level.
Contacts, microphone, and private messages
AMARI does not request device contacts, does not record through the microphone, and does not provide private in-app messaging at this time.
Third-Party Services
The App uses selected service providers to operate core functionality:
- Supabase: authentication, PostgreSQL database, storage, edge functions, and access-control infrastructure
- Expo and EAS: app build, update, and selected platform services
- Apple and Google: app distribution, app review, crash diagnostics, and optional Apple or Google authentication
- Mapbox: map rendering and geographic context for project discovery
- Device email, messaging, phone, browser, and event registration apps: external actions initiated by members
These providers process information according to their own privacy terms. We limit the information shared with service providers to what is needed to provide the relevant feature.
Security
AMARI uses Supabase Auth, PostgreSQL row-level security, tier-aware access controls, secure device token storage, encrypted network transport, and administrative review flows to protect member data. Authentication tokens are stored on device using platform secure storage where available.
No electronic storage or transmission system is completely secure. We take reasonable steps to protect information and respond to security issues promptly.
Retention and Deletion
We keep account and membership information for as long as needed to provide the App, manage membership, meet legal or governance obligations, and maintain security records.
Members can request deletion inside the App from Profile > Account > Delete account. Deletion requests disable push notification settings and start AMARI's account deletion workflow. Some records may be retained where required for legal, security, audit, dispute, or governance reasons, and may be anonymised where practical.
Your Rights
Depending on your location, including under the Australian Privacy Act 1988 (Cth), you may request access to, correction of, or deletion of personal information we hold about you. You may also contact us with privacy questions or complaints.
If you are not satisfied with our response to a privacy complaint, you may contact the Office of the Australian Information Commissioner at oaic.gov.au.
Children
The App is not directed to children under 16. AMARI is invite-only and membership-led. If you believe a child has provided personal information to us, contact us and we will take appropriate steps.
Changes
We may update this policy to reflect product, legal, governance, or operational changes. When we make material changes, we will update the "Last Updated" date and provide notice where required.
Contact
For privacy questions, access requests, corrections, or deletion support, contact us.