🔐
This Privacy Policy applies to the mobile application Al Habib Pay — a utility bill payment platform. We are committed to protecting your privacy in full compliance with Google Play Developer Policies and applicable data protection laws.
We collect only the data necessary to provide and improve our services.
1.1 Personal Information
When you register or log in, we may collect:
- Full Name
- Mobile Number (required for OTP authentication)
- Email Address (optional)
- Password (stored in encrypted format only)
1.2 Financial & Transaction Data
- Utility bill details (electricity, gas, water, etc.)
- Payment amount and history
- Transaction reference IDs
✅
We do NOT store sensitive financial data such as debit/credit card numbers or CVV/PIN. All payments are processed securely via third-party payment gateways.
1.3 Device & Technical Data
- Device model and OS version
- IP address
- App version
- Crash logs and diagnostics
1.4 Usage Data
- App interactions and navigation patterns
- Session duration
- Feature usage statistics
We only request permissions that are strictly necessary for app functionality.
| Permission |
Purpose |
Required? |
| 📶 Internet Access |
Bill payments and API communication |
✅ Required |
| 💬 SMS (if applicable) |
Automatic OTP verification |
Optional |
⚠️
We do NOT access your Contacts, Photos, Camera, or Location (unless explicitly added in a future update with your consent).
Your information is used solely to provide and enhance our services:
- Create and manage your account
- Authenticate users via OTP/login
- Process utility bill payments
- Send transaction alerts and notifications
- Prevent fraud and unauthorized access
- Improve app performance and security
- Comply with legal obligations
🚫
We do NOT sell user data to any third parties under any circumstances.
We may share data only in the following limited cases:
4.1 Service Providers
- Payment gateways (for processing transactions)
- Utility and billing providers
- Cloud hosting services
4.2 Legal Compliance
- Government authorities when required by applicable law
- To enforce our legal rights or prevent fraudulent activity
We follow industry best practices to protect your data:
- HTTPS secure communication for all data in transit
- End-to-end data encryption
- Secure authentication mechanisms
- Strict access control and role-based restrictions
- Regular security audits and updates
ℹ️
While we implement rigorous security measures, no digital system can guarantee 100% absolute security. We encourage users to keep their credentials confidential.
- We retain user data only for as long as necessary to provide our services
- Users may request complete account and data deletion at any time
- Upon deletion, personal data is permanently removed or anonymized within 30 days
- Transaction records may be retained for regulatory compliance periods
📩
To request data deletion, contact us at: [your email address]
We may use trusted third-party services to enhance app functionality:
- Payment gateways (for secure transaction processing)
- Firebase (analytics and crash reporting)
- Cloud infrastructure providers
Each of these services operates under their own independent privacy policies. We encourage you to review their policies as well.
In accordance with applicable data protection laws, you have the following rights:
| Right |
Description |
| 🔍 Access |
Request a copy of personal data we hold about you |
| ✏️ Correction |
Request correction of inaccurate or incomplete data |
| 🗑️ Deletion |
Request permanent deletion of your account and data |
| 🚫 Withdraw Consent |
Withdraw consent for data processing where applicable |
| 📦 Portability |
Request transfer of your data in a structured format |
To exercise any of these rights, please contact us using the information in Section 12.
⚠️
This application is not intended for children under 18 years of age. We do not knowingly collect personal data from minors. If you believe we have inadvertently collected data from a minor, please contact us immediately and we will take prompt action to delete it.
Your data may be processed on servers located outside your country of residence. In such cases, we ensure that:
- Appropriate safeguards and security measures are in place
- Data transfers comply with applicable international data protection laws
- Third-party processors maintain equivalent data protection standards
We reserve the right to update this Privacy Policy at any time. When material changes are made, you will be notified through:
- An in-app notification with a summary of changes
- An updated "Last Updated" date at the top of this policy
Continued use of the application after notification constitutes your acceptance of the updated policy.
By downloading, installing, or using Al Habib Pay, you confirm that you have read, understood, and agree to this Privacy Policy, including the collection and use of your information as described herein.
If you do not agree with any part of this policy, please discontinue use of the application immediately.