Privacy Policy

Last updated: 2026-05-12

This policy covers Kino across all surfaces — the iOS app, Android app, browser extension, and the kinosocial.com website (including the pre-launch notify-me list).

We wrote this to be as short and plain as possible. Questions? privacy@kinosocial.com.

Who we are

Kino is operated by GAMURS Group. Our registered address and EU contact are available at privacy@kinosocial.com.

What we collect

Identity & authentication

Email address — collected when you register with email/password. Used only for account authentication and transactional emails (password reset, account notices). Sent via SparkPost; not used for marketing without separate consent.
Password — stored as a server-side bcrypt hash. We never store or transmit your plain-text password.
Apple ID / Google sub claim — if you sign in with Apple or Google, we receive only the opaque subject identifier issued by Apple or Google. We do not receive your Apple or Google email unless you explicitly share it via Sign in with Apple's relay address.

Device & session data

Device ID — a random UUID generated on first launch and stored in your device's secure storage (iOS Keychain / Android EncryptedSharedPreferences). Used to link anonymous sessions before sign-in and to deduplicate events. Not tied to your hardware ID or advertising ID.
Push token (APNs / FCM) — collected when you grant notification permission. Stored on Cloudflare D1, used solely for delivering Kino push notifications. Never shared with advertisers.
Device timezone — sent when you join a watch event, used to display show schedules in your local time.

App analytics (Snowplow)

We use Snowplow, an open-source analytics framework, sending events to our own collector at spc.gamurs.group — a GAMURS-operated server, not a third-party analytics vendor. Your data does not leave GAMURS infrastructure.
Events include: screen views, button taps, chat message sent/received counts (no message content), emote interactions, event join/leave timing.
Each event carries: device ID (see above), app version, OS name, OS version, screen resolution, and (after sign-in) your numeric Kino user ID. No name, email, or contact info is included in analytics events.

What we do NOT collect

No advertising ID (IDFA / GAID). NSPrivacyTracking is false.
No microphone, camera, or photo library access.
No location data beyond timezone.
No content of your chat messages for analytics purposes (messages are delivered in real-time and are not mined for advertising).

Browser extension — additional signals

The Kino browser extension reads the current URL and DOM signals on supported streaming sites (Netflix, Disney+, HBO Max) to detect what you're watching. This information is used locally to show the correct Kino chat room. It is not stored on our servers beyond the event-join action you explicitly take.

Website notify-me list (kinosocial.com)

If you sign up for launch notifications on the kinosocial.com landing page, we collect only:

Your email address.
The platforms you indicated interest in (iOS, Android, Chrome, Firefox, or all).
Anonymized rate-limit signals: a hashed IP, your user-agent string, and the time you signed up.
Website analytics via Snowplow — the same open-source Snowplow framework described above. Events are sent to our own collector at spc.gamurs.group (GAMURS-owned infrastructure, not a third-party analytics vendor). The website sets first-party cookies (_sp_id for return-visitor measurement, _sp_ses for session duration) scoped to kinosocial.com. No advertising IDs, no cross-site tracking, and no data leaves GAMURS infrastructure. If your browser signals Do Not Track (DNT: 1) or Global Privacy Control, the tracker is not initialised and no cookies are set.

Your email is used only to email you once when Kino launches on your platform, plus any account-related transactional email if you later create a Kino account with the same address. We do not sell or share this data with third parties except SparkPost for email delivery. Unsubscribe links are in every email.

How we use your data

To operate your Kino account and authenticate you.
To deliver real-time watch-party chat and emotes.
To send notifications you have opted into (event starts, mentions).
To display show schedules in your time zone.
To improve the app using aggregated, pseudonymous analytics.
To prevent abuse (rate limiting, moderation).

We do not sell your data. We do not share it with third parties for advertising.

Third-party services

SparkPost — transactional email (password resets, account notices). Receives your email address only.
Apple APNs / Google FCM — push notification delivery. Receives only your push token and notification payload.
Cloudflare Workers / D1 / KV / R2 — our hosting and database provider. Data is stored in Cloudflare's infrastructure under GAMURS's account.
TMDB / TVDB — show metadata APIs. We query these on your behalf but send no personal data to them.

Data retention

Account data is retained until you delete your account.
When you delete your account, your profile is anonymized: display name becomes "[Deleted User]" and your email is removed. Chat messages are retained anonymized.
Push tokens are removed when you sign out or delete your account.
Analytics events are retained for 13 months on GAMURS infrastructure, then purged.

Your rights

You have the right to access, correct, export, or delete your data. To exercise any right:

Delete account: available in app under Settings → Danger Zone → Delete account.
Data export or other requests: email privacy@kinosocial.com.

If you are in the EU / EEA / UK, you may also lodge a complaint with your local data protection authority. Our GDPR contact is privacy@kinosocial.com.

Children

Kino is not directed at children under 13 (or 16 in the EU). We do not knowingly collect personal data from children. If you believe a child has provided us data, contact privacy@kinosocial.com.

Changes

We will post updates here with a revised "Last updated" date. Material changes will be notified in-app.

Contact

privacy@kinosocial.com

← back