Privacy Policy

Effective as of April 23, 2026

This privacy policy is applicable to the Dasti app (hereinafter referred to as "Application") for mobile devices, which was developed by Dasti (hereinafter referred to as "Service Provider") as a free service. This service is provided "AS IS".

What information does the Application obtain and how is it used?

What information do users provide to the Application?

The Application acquires the information you supply when you download and register the Application. Registration with the Service Provider is not mandatory. However, bear in mind that you might not be able to utilize some of the features offered by the Application unless you register with them.

The Service Provider may also use the information you provided them to contact you from time to time to provide you with important information, required notices and marketing promotions.

What information does the Application collect automatically?

In addition, the Application may collect certain information automatically, including, but not limited to, the type of mobile device you use, your mobile devices unique device ID, the IP address of your mobile device, your mobile operating system, the type of mobile Internet browsers you use, and information about the way you use the Application.

Does the Application use Artificial Intelligence (AI) technologies?

The Application may use Artificial Intelligence (AI) technologies to enhance user experience and provide certain features. The AI components may process user data in the following ways:

  • Personalized Content: AI may analyze your usage patterns to deliver content tailored to your preferences and behavior.
  • Recommendations: AI may suggest features, services, or content based on your interactions within the Application.
  • Automated Functionalities: Certain app features may be powered by AI to automate tasks or improve efficiency.
  • Data Protection: All AI processing is performed in accordance with this privacy policy and applicable laws, ensuring your data is handled securely and responsibly.

What information becomes visible when you share to the community?

The Application includes a community feed where you can optionally share your finished pieces with other users. Sharing is opt-in on a per-piece basis — a piece is only visible to other users after you explicitly mark it public and tap "Share to Feed."

When you share a piece, the following information becomes visible to other users of the Application:

  • Your username, display name, and avatar (if set)
  • Your location (if set on your profile)
  • Your bio (if set on your profile)
  • The piece's photos, 360° spin (if recorded), title, description, rating, clay body, and glaze names
  • The aggregate count of likes the piece has received

Other users may like or save your shared pieces, but the identities of individual likers are never exposed — only aggregate counts are shown, and notifications about likes on your pieces are anonymized ("Someone liked your piece" rather than naming the liker).

You can unshare any piece at any time, which removes it from the community feed and your public profile. Unsharing does not delete any underlying data.

How is content moderated?

To keep the community safe, the Application includes the following moderation tools and processes:

  • Automated filtering: Public-facing text fields (usernames, display names, bios, and piece titles and descriptions at share time) are screened for profanity using an English-language profanity dictionary. Content that fails the screen is rejected at submission time.
  • User reports: You can report any shared piece from its overflow menu. Reports are confidential — the reported user is not informed of the reporter's identity.
  • User blocks: You can block any other user, which hides their pieces and profile from your view of the Application. You can manage and remove blocks at any time from Settings.
  • Service Provider review: Reports are reviewed within 24 hours. Reported content that violates the Terms & Conditions is removed, and offending accounts may be restricted or terminated.

Records of reports and blocks are stored on our servers and visible only to the Service Provider and the reporting/blocking user.

Do third parties see and/or have access to information obtained by the Application?

Only aggregated, anonymized data is periodically transmitted to external services to aid the Service Provider in improving the Application and their service. The Service Provider may share your information with third parties in the ways that are described in this privacy statement.

Please note that the Application utilizes third-party services that have their own Privacy Policy about handling data. Below are the third-party service providers used by the Application and the categories of data they may process on our behalf:

  • Supabase — authentication and primary database. Stores account credentials, profile information, pieces, firings, glazes, clay bodies, likes, saves, reports, and blocks.
  • Cloudflare R2 — object storage for piece photos, 360° spin frames, and profile avatars.
  • Expo push notification service — delivery of push notifications to your device via Apple Push Notification service (iOS) and Firebase Cloud Messaging (Android). Push tokens are stored on our servers to target notifications to your device.
  • Sentry — crash reporting and error tracking. May process your user ID, device type, and OS version alongside crash data for debugging.
  • Axiom — server-side logging infrastructure. May process request metadata including IP addresses.
  • SMTP email provider — transactional email delivery for account verification, password reset, and, for the Service Provider, moderation alerts.
  • Google Play Services — platform services on Android devices.

The Service Provider may disclose User Provided and Automatically Collected Information:

  • as required by law, such as to comply with a subpoena, or similar legal process;
  • when they believe in good faith that disclosure is necessary to protect their rights, protect your safety or the safety of others, investigate fraud, or respond to a government request;
  • with their trusted services providers who work on their behalf, do not have an independent use of the information we disclose to them, and have agreed to adhere to the rules set forth in this privacy statement.

Account Deletion

You may request deletion of your account and all associated personal data at any time. To delete your account, you can either use the account deletion option within the Application's settings, or contact us directly at contact@dasti.app. Upon receiving your request, we will delete your account and personal data within 30 days, except where we are required to retain certain information by law or for legitimate business purposes (such as fraud prevention or resolving disputes). You will receive confirmation once your account and data have been deleted.

What are my opt-out rights?

You can halt all collection of information by the Application easily by uninstalling the Application. You may use the standard uninstall processes as may be available as part of your mobile device or via the mobile application marketplace or network.

Your Data Protection Rights

Depending on your location, you may have certain rights regarding your personal information:

  • Right to Access: You have the right to request copies of your personal data.
  • Right to Rectification: You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
  • Right to Erasure: You have the right to request that we erase your personal data, under certain conditions.
  • Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data, under certain conditions.
  • Right to Data Portability: You have the right to request that we transfer the data we have collected to another organization, or directly to you, under certain conditions.
  • Right to Object: You have the right to object to our processing of your personal data, under certain conditions.

If you make a request, we have one month to respond to you. To exercise any of these rights, please contact us at contact@dasti.app.

California Privacy Rights (CCPA)

If you are a California resident, you have the right to:

  • Request disclosure of the categories and specific pieces of personal information we have collected about you.
  • Request deletion of your personal information.
  • Opt-out of the sale of your personal information (note: we do not sell personal information).
  • Not be discriminated against for exercising your privacy rights.

To exercise these rights, contact us at contact@dasti.app.

What is the data retention policy and how can you manage your information?

The Service Provider will retain User Provided data for as long as you use the Application and for a reasonable time thereafter. The Service Provider will retain Automatically Collected information for up to 24 months and thereafter may store it in aggregate. If you'd like the Service Provider to delete User Provided Data that you have provided via the Application, please contact them at contact@dasti.app and we will respond in a reasonable time. Please note that some or all of the User Provided Data may be required in order for the Application to function properly.

How does the Application address children's privacy?

The Service Provider does not use the Application to knowingly solicit data from or market to children under the age of 13.

The Application does not address anyone under the age of 13. The Service Provider does not knowingly collect personally identifiable information from children under 13 years of age. In the case the Service Provider discover that a child under 13 has provided personal information, the Service Provider will immediately delete this from their servers. If you are a parent or guardian and you are aware that your child has provided us with personal information, please contact the Service Provider (contact@dasti.app) so that they will be able to take the necessary actions.

How is your information kept secure?

The Service Provider are concerned about safeguarding the confidentiality of your information. The Service Provider provide physical, electronic, and procedural safeguards to protect information we process and maintain. For example, we limit access to this information to authorized employees and contractors who need to know that information in order to operate, develop or improve their Application. Please be aware that, although we endeavor provide reasonable security for information we process and maintain, no security system can prevent all potential security breaches.

How will you be informed of changes to this Privacy Policy?

This Privacy Policy may be updated from time to time for any reason. The Service Provider will notify you of any changes to the Privacy Policy by updating this page with the new Privacy Policy. You are advised to consult this Privacy Policy regularly for any changes, as continued use is deemed approval of all changes.

How do you give your consent?

By using the Application, you are giving your consent to the Service Provider processing of your information as set forth in this Privacy Policy now and as amended by us. "Processing," means using cookies on a computer/hand held device or using or touching information in any way, including, but not limited to, collecting, storing, deleting, using, combining and disclosing information.

How can you contact us?

If you have any questions regarding privacy while using the Application, or have questions about the practices, please contact the Service Provider via email at contact@dasti.app.