El Nos El Tany

Privacy Policy

Version 1.0 · Last updated 19 May 2026 · Effective on first use of the service

This Privacy Policy explains how the El Nos El Tany matrimonial service ("we", "us", "the Service") collects, uses, and protects your personal data. We take privacy seriously because the service handles sensitive information including identity documents, photos, and intimate preferences.

1. Who we are (the data controller)

The Service is operated by Ahmed Wahba, an individual sole trader resident in the Republic of Ireland. We will update this Policy when the Service transitions to a Limited Company.

For all privacy-related correspondence, including data subject access requests, erasure requests, complaints, or general questions:

Email: [email protected]
Postal: contact us via email to receive the current postal address.

2. What data we collect and why

Category	Examples	Why we collect it	Legal basis (GDPR)
Account identity	Phone number (verified via OTP), email, first name, date of birth, gender	Account creation; age-gate (18+); communication	Contract performance · Legitimate interest (age verification)
Identity verification	Government ID document photos (front + back), short selfie video	Anti-impersonation; mandatory for using the matching service	Contract performance · Explicit consent
Profile data	City/district, marital status, nationality, religion, education level, height, photos, free-text bio	Display your profile to potential matches; run filters	Contract performance · Explicit consent (special-category data: religion)
Matching preferences	Age range, gender, religion, location, etc. you are looking for	Show you relevant candidates	Contract performance
Connection & message data	Likes, matches, message content within the app	Provide the messaging feature; safety review	Contract performance · Legitimate interest (safety)
Contact list (optional)	One-way cryptographic hashes of phone numbers from your address book	Hide you from people who already have your number (mutual privacy)	Consent (you choose whether to sync)
Device & session data	Device fingerprint, push notification token, IP address (at login), session token	Account security; abuse detection; push notifications	Legitimate interest · Contract performance
Payment data	In-app purchase receipt IDs and subscription status (the actual card data stays with Apple/Google — we never see it)	Entitle you to paid features	Contract performance
Reports & moderation	Reports you file, reports against you, moderation actions	Keep the platform safe	Legitimate interest · Legal obligation

Special-category data. Religion (Article 9 GDPR) is collected only because matrimonial matching is one of the explicit use-cases where this is lawful with your explicit consent. You can leave the religion field blank; if you fill it in, we treat that as your consent to use it for matching.

3. What we do NOT collect

We do not run advertising or behavioural-profiling SDKs (no Facebook Pixel, no Google AdSense, no AppLovin, etc.).
We do not sell, rent, or share your data with data brokers.
We do not collect precise GPS location continuously. Location is collected once during onboarding (district level) and on explicit user actions.
We do not access your contacts list unless you explicitly enable the contact-sync feature. Even then, only one-way hashes leave your device — the names and original numbers stay with you.
We do not record audio, screen activity, or device sensors outside features you have actively initiated (e.g. recording the verification selfie video).

4. Who we share data with

The Service runs on a small, deliberately chosen set of vendors:

Hosting (Netcup GmbH, Germany). Operates the servers on which our database and application run. Located in Nuremberg, Germany (EU).
Cloudflare, Inc. CDN, DNS, TLS termination, DDoS protection. EU region for our buckets and content delivery.
Apple, Inc. and Google LLC. Process payments when you subscribe via the App Store / Google Play. We receive only subscription status — never card details.
Resend (Resend, Inc., USA — EU data region). Sends transactional emails on our behalf. Receives the recipient address and the message body.
Twilio (USA, with regional routing). Sends one-time-passwords by SMS or WhatsApp for phone verification. Receives the phone number and the OTP code.

We do not use third-party analytics platforms (e.g. PostHog, Google Analytics, Mixpanel). Product analytics happens in-house on our own database. Error monitoring uses our self-hosted GlitchTip instance — no third party.

5. International transfers

Our primary infrastructure is in the European Union (Germany). Cloudflare, Apple, Google, Resend, and Twilio operate globally; transfers to non-EU regions take place under the EU Standard Contractual Clauses and/or adequacy decisions where applicable. We will never transfer data to a jurisdiction without these safeguards.

6. How long we keep data

Data type	Retention period
Account profile, messages, matches	While your account is active. Deleted within 30 days after you close your account.
ID verification documents (front, back, selfie video)	180 days from the date of approval or rejection. Then permanently deleted.
Refresh tokens (login sessions)	30 days unless revoked sooner.
Audit log of admin actions	2 years (legitimate interest: regulatory and accountability).
Database backups	30 days, encrypted at rest. Used only for disaster recovery.
Anonymised event logs (no personally identifying data)	13 months for analytics aggregates. Cannot be linked back to an individual after account deletion.

7. Your rights

Under the EU General Data Protection Regulation (GDPR) and Egypt's Personal Data Protection Law (Law No. 151 of 2020), you have the following rights regarding your personal data:

Access: request a copy of all data we hold about you.
Rectification: correct inaccurate or incomplete data.
Erasure ("right to be forgotten"): ask us to delete your data. Note: some data we are legally required to retain (e.g. financial records for tax) cannot be deleted immediately.
Portability: receive your data in a machine-readable format (we provide JSON exports on request).
Restriction: ask us to limit processing while a dispute is being resolved.
Objection: object to processing based on legitimate interest.
Withdraw consent: for processing based on consent (e.g. contact sync, religion field) — at any time.
Lodge a complaint with your local data protection authority. In Ireland: the Data Protection Commission (dataprotection.ie). In Egypt: the Personal Data Protection Center.

To exercise any of these rights, email [email protected] from the address registered on your account. We respond within 30 days, typically within 7.

8. Security

All transport encrypted with TLS 1.2 or higher.
All data at rest encrypted on disk by the hosting infrastructure.
Identity verification photos and videos stored in a separate access-restricted bucket; admin access to them is logged and audited.
Passwords (for the admin console only) hashed with bcrypt; user accounts do not have passwords (phone-OTP login).
Backups encrypted with age (an asymmetric encryption tool) and stored under a write-once-read-many policy preventing tampering.
Admin actions logged to an immutable audit trail. Two-factor authentication required for non-founder admins.

9. Children

The Service is strictly for adults. You must be at least 18 years old to create an account. We do not knowingly collect data from anyone under 18. If we discover an account belongs to a minor, we delete it immediately.

10. Cookies and similar technologies

The mobile app uses on-device encrypted storage (Expo SecureStore) to remember your login session and language preference. We do not use browser cookies for cross-site tracking. We do not have a website that sets advertising cookies.

11. Changes to this Policy

We will notify you of material changes (anything that affects how we collect, use, or share your personal data) at least 14 days before they take effect, via email and an in-app notice. Routine clarifications and typo fixes will not be specially notified but the "Last updated" date at the top of this page is always current.