Privacy Policy

Introduction

This Privacy Policy explains how Qismati ('we', 'our', or 'us') collects, stores, processes, transfers, shares, and uses your personal information when you use our services through the Qismati app, websites, or other related services (collectively, 'Services'). By using Qismati, you agree to the practices described in this policy.

Data Controller Information

Qismati is the data controller responsible for your personal data. We collect personal information when you:

• Sign up for the Services and create a profile
• Use the Services, communicate with us, or interact with others on the platform
• Participate in surveys, feedback requests, or community events
• We may act as a data processor in some cases when working with verified partners or moderators.

Categories of Data

We may collect the following types of data:

• Name, email address, phone number, profile photo, gender, date of birth, location, preferences, and related account settings.
• Religious views, ethnic background, marital intentions, biometric data (for identity verification), and other data voluntarily shared in your profile.
• This information is used for providing matchmaking services, ensuring user safety, and enabling meaningful connections based on shared values.

Use of Special Category Data

Certain sensitive personal data you provide (e.g., religion, biometric ID) is classified under data protection laws as “special category data.” Qismati will only collect and use this data when:

• You give explicit consent
• It is necessary for providing Services (e.g., filtering preferences)
• It enhances safety and integrity (e.g., verification or moderation)
• We never share this data with advertisers or third parties outside the scope of this policy.

Biometric Data for Identification

We may send you marketing messages related to the Services, for which you can opt-out at any time by adjusting your preferences. Marketing may be based on your interests, but opting out of marketing will not affect essential communications related to your use of the Services.

Storing and Transferring Personal Information

If you choose to verify your identity using a selfie or biometric scan, this will be processed by third-party verification partners.

• Biometric data is used only for identity verification and fraud prevention
• The data is securely encrypted and not stored permanently
• Once the verification process is complete, biometric data is deleted by the verification provider in compliance with applicable law
• You may decline verification features, but this may limit access to some safety-restricted features.

Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes described in this policy, unless a longer period is required by law.:

• Active accounts: data is stored and maintained securely
• Inactive or closed accounts: personal data is deleted or anonymized after 24 months
• Exceptions: we may retain certain data where required by law, in response to legal claims, or for fraud prevention and security purposes.
• You may request account deletion at any time.

Sharing of Personal Information

Qismati is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child under 18, we will take steps to delete that information as quickly as possible.

Service Providers, We engage trusted third-party partners to provide essential services, including:

• Hosting and cloud storage
• SMS/email delivery
• Identity verification
• Fraud detection and prevention
• App analytics and performance monitoring

These providers are contractually obligated to handle your data securely and in compliance with this Privacy Policy. Law Enforcement and Legal Obligations We may share your data where:

• Required by law, subpoena, court order, or legal process
• Necessary to protect the rights, safety, or property of Qismati, its users, or the public
• To investigate or prevent fraud, security incidents, or violations of our Terms of Service

Marketing and Advertising

Qismati may send you service-related messages and, if you consent, promotional or relevant updates.

• You can opt-out of marketing communications at any time in the app settings or via unsubscribe links.
• Essential service communications (e.g., password reset, account activity) will continue regardless of marketing preferences
• We do not sell your personal data to advertisers
• We may show limited in-app promotions based on your general preferences, but no sensitive or identifying data is used without consent.

Storing and Transferring Personal Information

Your data may be stored and processed in regions where Qismati or its providers operate.

• All data is encrypted in transit and at rest
• For users outside Africa, your data may be transferred internationally
• Where required by law (e.g., GDPR), we implement safeguards such as Standard Contractual Clauses or equivalent mechanisms to ensure cross-border compliance.

Your Rights

Depending on your region, you may have the following rights:

• Access: Request access to your personal information
• Portability: Receive or transfer your data to another provider
• Correction: Request corrections to inaccurate information
• Deletion: Request deletion of your data
• Restriction: Limit how we process your data
• Withdraw Consent: Withdraw consent for processing at any time
• Object: Object to processing of your personal information

Children’s Data

Qismati is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child under 18, we will take steps to delete that information as quickly as possible.

• If we become aware that someone under 18 has provided us data, we will take steps to remove the information and restrict access to the account

Security Measures

We use a range of technical and organizational measures to protect your data:

• End-to-end encryption for sensitive transmissions
• Regular audits and access controls
• Role-based permissions and two-factor authentication for admin access
• Monitoring and alerts for suspicious activity
• Despite these safeguards, no system is completely secure. Please use strong passwords and report any suspicious activity.

International Users

By using Qismati from outside Africa, you consent to the processing of your information in accordance with this Privacy Policy and applicable international data protection laws. We ensure cross-border compliance by working with certified partners and adhering to global security standards (e.g., GDPR, CCPA, ISO-based protocols).

Changes to this Privacy Policy

We may update this Privacy Policy to reflect changes in laws, technologies, or business practices. If we make material changes:

• We will notify users through the app or by email (where possible)
• Continued use of Qismati after updates constitutes acceptance of the revised policy

Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at app.qismati@gmail.com or through the contact information provided in the app.