Privacy Policy

1. Introduction

Hisabin ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and website (collectively, the "Service"). Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the Service.

2. Information We Collect

Personal Information

We may collect personally identifiable information that you voluntarily provide, including:

• Name and email address
• Phone number (optional)
• Profile information and preferences
• Payment information for premium subscriptions

Financial Information

To provide our core services, we may collect:

• Bank account information (read-only access via secure aggregators)
• Transaction history and spending patterns
• Investment portfolio data
• Asset and liability information you manually enter
• Financial goals and budgets you create

3. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve our Service
• Generate personalized financial insights and recommendations
• Calculate zakat obligations and provide Islamic finance features
• Process transactions and manage subscriptions
• Send you service-related communications
• Respond to your inquiries and provide customer support
• Detect and prevent fraud and security threats

4. Data Security

We implement robust security measures to protect your data:

• 256-bit AES encryption for all data at rest
• TLS 1.3 encryption for all data in transit
• Read-only access to bank accounts (we cannot move your money)
• Regular security audits and penetration testing
• SOC 2 Type II compliant infrastructure
• Multi-factor authentication options

5. Data Sharing

We do not sell your personal or financial data. We may share your information only with:

• Service Providers: Trusted third parties who help us operate our Service (e.g., cloud hosting, payment processors)
• Financial Data Aggregators: Secure partners who facilitate bank connections (e.g., Plaid, Yodlee)
• Legal Requirements: When required by law or to protect our rights and safety

6. Your Rights

You have the right to:

• Access and download your data at any time
• Correct inaccurate information
• Delete your account and associated data
• Opt out of marketing communications
• Disconnect linked financial accounts
• Request data portability

7. Data Retention

We retain your data for as long as your account is active or as needed to provide our services. If you delete your account, we will remove your personal data within 30 days, except where we are required to retain it for legal or regulatory purposes. Anonymized, aggregated data may be retained for analytical purposes.

8. Children's Privacy

Our Service is not intended for children under 18. We do not knowingly collect personal information from children. If we discover that a child has provided us with personal information, we will delete it immediately.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. You are advised to review this Privacy Policy periodically for any changes.

10. Contact Us

If you have any questions about this Privacy Policy, please contact us at: