Privacy Policy — Kuzuma
Effective date: 25 March 2026 · Last updated: 25 March 2026
Important: Have this reviewed by qualified legal counsel before publication. You should add your UEN and full registered office address when you publish (e.g. on a website or in-app).
1. Who we are
Kuzuma (“Kuzuma”, “we”, “us”, “our”) is operated by Kuzuma Pte Ltd (“Operator”), a company incorporated in Singapore.
- Contact: privacy@kuzuma.app
- Postal address: Kuzuma Pte Ltd, Singapore
- Data protection / privacy enquiries: privacy@kuzuma.app
This Privacy Policy describes how we collect, use, store, and share information when you use the Kuzuma mobile application (the “App”) and related services (together, the “Services”).
2. Scope
This policy applies to personal information processed through the App. It does not govern third-party websites or services that we do not control (for example, app stores or your device manufacturer), except where we integrate them as described below.
If you do not agree with this policy, do not use the Services.
3. Information we collect
3.1 You provide directly
- Account and authentication: Phone number and verification data processed through our authentication provider (Firebase Authentication) to create and secure your account.
- Profile and onboarding: Depending on whether you register as a worker or employer, information such as display name, phone, organization name, hiring needs, interests, skills, service area descriptions, and similar fields you choose to enter in the App.
- Communications: Messages or feedback you send to us (e.g. support requests).
3.2 Automatically collected or generated
- Device and app data: Device type, operating system, app version, diagnostic logs, and similar technical data needed to run and secure the App.
- Usage data: In-app actions necessary to operate features (e.g. job views, applications) as implemented in the Services.
3.3 Optional features you choose to use
- Location (when you opt in): If you use features that share your work area or job location, we may process approximate or precise location from your device (e.g. coordinates and/or reverse-geocoded labels such as city or area) only when you take an action in the App that requests it (e.g. “Share work area” / “Share job location”), subject to your OS permissions.
- Camera / QR codes: If you use check-in or similar flows, we process images or decoded data from QR or barcodes you scan, as needed to record attendance or related events described in the App.
- Attendance and check-in records: We may store identifiers (e.g. job, employer, worker), timestamps, decoded QR payload data, and optional coordinates you submit in connection with a check-in, so employers can monitor attendance for their jobs as enabled in the App.
3.4 AI-assisted onboarding (optional)
If enabled, onboarding assistance may send the content you provide in that flow (e.g. text you type or selections you make) to Google’s Gemini (or another provider we configure) to generate suggestions. Do not enter sensitive data you do not want processed by that provider.
4. How we use information
We use personal information to:
- Provide, maintain, and improve the Services (including matching workers and employers, job listings, applications, and attendance features).
- Authenticate users and prevent fraud or abuse.
- Communicate with you about the Services (e.g. transactional or support messages).
- Comply with law and enforce our Terms of Service.
- Analyze and improve reliability and security (including error monitoring if we enable it).
We do not sell your personal information as a product. We do not use your data for third-party advertising unless we tell you otherwise and obtain any consent required by law.
5. Legal bases (EEA, UK, Switzerland, and similar regions)
Where GDPR or similar laws apply, we rely on one or more of the following:
- Contract: Processing necessary to provide the Services you request.
- Legitimate interests: Securing the App, preventing abuse, and improving the Services, where not overridden by your rights.
- Consent: Where required (e.g. certain marketing, or optional analytics if we add them and ask you).
- Legal obligation: Where we must comply with applicable law.
6. Singapore (PDPA)
Where Singapore’s Personal Data Protection Act 2012 (PDPA) applies, we collect, use, and disclose personal data in accordance with this policy and applicable law, including making reasonable efforts to ensure personal data is accurate and protected, and retaining it only as long as needed for the purposes described or as required by law. You may contact us at privacy@kuzuma.app to access or correct your personal data or withdraw consent where consent is the legal basis, subject to exceptions under the PDPA.
7. How we share information
We share personal information only as needed to operate the Services:
| Category | Examples |
|---|---|
| Infrastructure / cloud | Google Firebase (authentication, database, and related services) and other subprocessors we use to host and operate the App. |
| AI providers (if used) | Google (Gemini) or other providers, only for content you submit in optional AI features. |
| App distribution & updates | Apple, Google, and Expo (EAS) for building, distributing, and delivering app updates. |
| Professional advisors | Lawyers, auditors, or insurers under confidentiality obligations. |
| Legal and safety | Authorities or third parties when required by law or to protect rights, safety, or security. |
| Business transfers | A successor in a merger, acquisition, or asset sale, subject to appropriate safeguards. |
We may share aggregated or de-identified information that cannot reasonably identify you.
8. International transfers
Your information may be processed in countries other than where you live (including the United States), where privacy laws may differ. Where required, we use appropriate safeguards (such as standard contractual clauses) for transfers from the EEA, UK, or Switzerland.
9. Retention
We keep personal information only as long as needed for the purposes above, including legal, accounting, or reporting requirements. Criteria include the nature of the data, why we collected it, and applicable law. When data is no longer needed, we delete or anonymize it in line with our practices and technical capabilities.
10. Security
We use administrative, technical, and organizational measures designed to protect personal information. No method of transmission or storage is 100% secure; we cannot guarantee absolute security.
11. Children’s privacy
The Services are not directed to individuals under 18. We do not knowingly collect personal information from children. If you believe we have, contact us and we will take steps to delete it.
12. Your rights
Depending on where you live, you may have rights to:
- Access, correct, or delete your personal information.
- Object to or restrict certain processing.
- Withdraw consent where processing is consent-based.
- Data portability.
- Lodge a complaint with a supervisory authority.
To exercise these rights, contact us at privacy@kuzuma.app. We may need to verify your request. If we refuse certain requests, we will explain why as required by law.
California (USA) — “Shine the Light” / CPRA
California residents may have additional rights (e.g. to know categories of personal information collected, to delete, to correct, to opt out of “sale” or “sharing” for cross-context behavioral advertising). We do not knowingly “sell” or “share” personal information for those purposes as described in the CPRA. To submit a request, use privacy@kuzuma.app and include “California Privacy Request” in the subject.
13. Cookies and similar technologies
The mobile App does not use browser cookies in the same way as a website. We may use device storage, tokens, and similar technologies needed for login persistence and app functionality.
14. Third-party links
The Services may contain links to third parties. Their practices are governed by their own policies. We are not responsible for them.
15. Changes to this policy
We may update this Privacy Policy from time to time. We will post the new version in the App or on our site and update the “Last updated” date. If changes are material, we will provide additional notice as required by law. Continued use after the effective date constitutes acceptance of the updated policy, where permitted by law.
16. Contact
Questions about this Privacy Policy:
- Email: privacy@kuzuma.app
- Address: Kuzuma Pte Ltd, Singapore
This document is provided for informational purposes and does not constitute legal advice.