This policy explains how Muqabia collects, uses and protects your personal data on our website and mobile app. We are committed to transparency and treating your information with care, in accordance with the Islamic principles of trust (amanah).
Last updated: February 2026
Muqabia is operated by NuhaTech. We are the data controller for your personal data. For any questions about this policy, you can contact us at [email protected] or via our contact page.
Email address, password (encrypted), first name and gender. Collected when you create your account.
Purpose: To create and secure your account.
Age, city, country, biography (up to 300 characters) and preferred language. No photos are stored or shared.
Purpose: To display your profile to potential echoes.
Answers to personal questions used to understand your preferences and compatibility criteria.
Purpose: To power the echo algorithm and the AI intermediary that represents you.
All messages exchanged (via AI and direct), echo requests, read/delivery status and timestamps.
Purpose: To enable communication between users via AI intermediary and direct messages.
Your email and subscription plan are sent to Stripe. We do not store your card number — Stripe handles all payment details directly.
Purpose: To process subscriptions and manage billing.
Push notification token (Expo), device type (iOS/Android) and app language setting.
Purpose: To send you notifications for new echoes, messages and account activity.
Name, email, subject and message when you contact us. Email address when you subscribe to the newsletter.
Purpose: To respond to your enquiries and send newsletter content.
Authenticate your identity and maintain your login session across the website and mobile app.
Echo you with compatible profiles based on your preferences and question answers.
Enable AI-mediated conversations and filtered direct messages between echoed users.
Power your personal AI intermediary that represents you to other users, answering questions based on the information you have provided.
Process subscription payments securely via Stripe and manage your plan status.
Send push notifications for new echoes, messages and important account updates.
Respond to your contact form messages and support requests.
Enforce community guidelines, filter messages for Islamic compliance and detect misuse.
We share the minimum data necessary with the following services to operate Muqabia. We do not sell your data to anyone and we do not use any advertising or analytics tracking services.
Hosts our database and authentication system. All user data (profiles, messages, preferences) is stored on Supabase with row-level security policies and encryption at rest. Servers located in the EU.
Processes subscription payments. Receives your email and creates a customer record. Card details are handled entirely by Stripe and never pass through our servers.
Sends transactional emails (contact form forwarded to our support team). Receives the sender's name and email.
Delivers push notifications to the mobile app. Receives your push token to route notifications.
Manages in-app purchases on iOS and Android. Your user ID is linked to track subscription status from the app stores.
Powers the AI intermediary that represents users. We use Amazon Bedrock to run the AI models. Bedrock uses a Model Deployment Account architecture: each model provider has a dedicated AWS account, managed entirely by AWS and not by the provider. Model providers cannot access your data, queries, logs or responses. Your data stays within AWS infrastructure and is neither logged nor retained after inference. Your profile information and question answers are sent as context to generate responses, but nothing is retained after processing.
Muqabia uses AI as an intermediary between users. When someone is interested in your profile, they chat with your personal AI — not directly with you. The AI responds based on the profile information and question answers you have provided. Your conversations with another user's AI are completely private — the other person never sees them. Direct messages are rewritten by AI in a formal tone and filtered to maintain respect and Islamic values. The original content is kept alongside the filtered version. Our AI infrastructure uses a zero-retention architecture — no queries or responses are stored or logged by the AI provider after processing.
All data is encrypted in transit (HTTPS/TLS) and at rest. Our database enforces row-level security (RLS) policies so users can only access their own data. Passwords are hashed and never stored in plain text. Authentication uses the PKCE flow for additional protection against session attacks. Payment data is handled entirely by Stripe, certified PCI DSS Level 1.
We retain your data as long as your account is active. When you delete your account (available in your settings), your profile and associated data are permanently removed via cascade deletion in our database. Contact form messages are kept only as long as needed to resolve your enquiry. Stripe retains payment records according to its own retention policy and legal requirements.
Under GDPR and applicable data protection laws, you have the following rights regarding your personal data:
Muqabia is a matrimonial platform intended exclusively for adults aged 18 and over. We do not knowingly collect data from persons under 18. If we learn that a minor has created an account, we will delete it immediately.
We may update this privacy policy from time to time to reflect changes in our services or legal requirements. When significant changes are made, we will update the date at the top of this page and notify you via the app or by email if appropriate. We encourage you to review this policy regularly.
If you have any questions about this privacy policy or wish to exercise your rights, contact us at [email protected] or via our contact page.