Privacy Policy

1. What This Policy Covers

This policy explains how we collect, use, store, share, secure, and delete personal data when you use Social Muslims on the web, mobile app, support channels, payment flows, identity verification flows, event services, and Nikkah introduction services. It is written primarily for UK users and UK legal requirements.

2. Who We Are

Online Buzz Marketing Ltd is the controller of the personal data described in this policy except where a third party acts as an independent controller, such as Apple for App Store billing, PayPal for its own payment processing, or your card issuer for payment-card operations.

3. Personal Data We Collect

• Account data: phone number, account ID, login metadata, device session details, and consent records.
• Profile and Nikkah introduction data: name, age or date of birth, gender, city or region, photos, biography, prompts, marriage intentions, matrimonial preferences, availability, and profile answers.
• Special category data you choose to provide: religion, ethnicity, practice-related information, health-adjacent or marital background information, and other sensitive information that may be revealed through photos, free text, or structured answers.
• Trust and moderation data: verification outcomes, reports, blocks, moderation notes, fraud signals, risk flags, and enforcement history.
• Communications data: support messages, complaint records, outreach responses, scheduling responses, and message delivery records.
• Introduction, event, and call data: proposed times, confirmations, cancellations, attendance, call metadata, and outcomes. We do not claim to routinely record private call content unless we separately tell you and obtain any consent required by law.
• Commercial data: payment references, checkout records, credit balances, purchases, refunds, fixed-term package records, legacy subscription status, invoice references, and transaction identifiers.
• Technical and analytics data: IP address, browser or app version, device type, diagnostics, crash data, authentication logs, performance data, abuse-prevention logs, and analytics events where permitted.
• Legal and safety data: complaint records, dispute records, evidence preservation data, and information relevant to potential regulatory or law-enforcement escalation.

4. How We Collect Data

• Directly from you when you sign up, build a profile, verify identity, contact support, join events, or buy a paid service.
• Automatically from your device, browser, app, and use of the service.
• From service providers that support authentication, hosting, analytics, payments, messaging, video, and identity verification.
• From other users when they report, block, decline, accept, or otherwise interact with your profile through the service.

5. Why We Use Your Data

• To create and manage accounts and enforce age, eligibility, and marriage-intent rules.
• To host profiles, evaluate fit, run curation, operate Nikkah-focused introductions, scheduling, events, and support.
• To process fixed-term prepaid Nikkah introduction purchases, legacy recurring memberships, credits, refunds, and billing administration.
• To send service messages about verification, safety, scheduling, billing, reminders, and support.
• To prevent fraud, impersonation, harassment, abuse, illegal activity, and chargeback abuse.
• To moderate content, investigate complaints, protect users, and preserve evidence where necessary.
• To comply with legal obligations, including accounting, law-enforcement cooperation, and online-safety duties.
• To improve product reliability, performance, and service design, subject to consent where required.

6. Our UK GDPR Legal Bases

• Contract: to provide the account, profile hosting, Nikkah introduction, scheduling, paid services, support, and billing you ask us for.
• Legitimate interests: for fraud prevention, platform security, moderation, service administration, analytics, dispute handling, and product improvement.
• Consent: for optional analytics or similar technologies where required, certain direct marketing, and certain uses of sensitive data where we rely on consent.
• Legal obligation: where we must retain, disclose, investigate, or otherwise process data to comply with law or lawful requests.

7. Special Category Data and Article 9 Conditions

Because Social Muslims is a religion-focused Nikkah introduction service, some information you provide or choose to reveal may constitute special category data under UK GDPR, including religious beliefs and data revealing ethnicity, health-related information, marital background, or other highly personal information.

Where you actively submit that information for matrimonial-intent curation, profile review, safety review, or introductions, we rely on your explicit consent and, where relevant, your explicit request that we use it to operate the service you asked for. You should only provide sensitive data you want us to use for those purposes.

8. Moderation, Curation, and Human Review

We use rules, ranking logic, compatibility signals, fraud checks, moderation signals, and operational judgment to support profile curation, safety review, and introduction decisions. We may combine automated tools with human review by staff or matchmakers. We do not intend to make solely automated decisions with legal or similarly significant effects on you without appropriate safeguards and human involvement.

9. Who We Share Data With

• Infrastructure providers: hosting, storage, authentication, logging, and database providers such as Google Firebase and Google Cloud.
• Payments providers: Stripe, Apple, PayPal, card issuers, and payment support providers.
• Messaging providers: SMS, email, and push-notification suppliers such as Twilio and SendGrid where used.
• Verification providers: identity or verification providers such as Stripe Identity where used.
• Call and event providers: video or real-time service providers such as Agora where used.
• Professional advisers and insurers: where reasonably necessary for legal, audit, insurance, or transaction support.
• Regulators and authorities: where required by law or necessary to investigate illegal conduct, safety risks, or enforce rights.

We do not sell your personal data.

10. International Transfers

Some suppliers may process personal data outside the UK. Where we transfer personal data internationally, we use safeguards required or recognised by law, such as adequacy regulations, standard contractual mechanisms, or equivalent lawful safeguards.

11. Cookies, Local Storage, and Analytics

Our web services use essential local storage or similar technologies for sign-in, security, fraud prevention, and account continuity. We only enable optional analytics after consent where consent is required. You can use the cookie banner or preference tools we provide to choose between essential-only operation and optional analytics.

12. Retention and Deletion

We keep personal data only for as long as reasonably necessary for the relevant purpose, subject to legal, safety, fraud, and evidential needs. Our current operational targets are:

• Active account and profile data: while your account remains active and for a limited period after closure to handle reactivation, complaints, or fraud review.
• Billing, tax, and accounting records: normally up to 6 years after the relevant transaction year where required by law or accounting practice.
• Safety, moderation, complaint, and enforcement records: normally up to 6 years from the last relevant action where needed for safety, dispute, fraud, or legal reasons.
• Support tickets and operational records: normally up to 24 months after closure unless needed longer for an open issue.
• Analytics and diagnostics: typically shorter retention windows, often around 12 months, unless aggregated or needed for incident investigation.
• Backups: short rolling backup windows and disaster-recovery retention, then deletion or overwrite in the ordinary course.

If you want us to delete your account and personal data, email shaz@onlinebuzz.co.uk with the subject line Data Deletion Request and include the phone number or email address linked to your account so we can locate it and verify the request.

13. Security

We use technical and organisational measures designed to protect personal data, including access controls, encryption in transit, logging, least-privilege access, and account-security controls. No service can guarantee absolute security.

14. Your Rights

Depending on applicable law, you may have rights to access, rectify, erase, restrict, object, port certain data, withdraw consent, and ask for review of certain processing decisions. You can request account deletion or data export by contacting shaz@onlinebuzz.co.uk from the email address linked to your account, or by including the phone number linked to your account in your message.

15. Complaints and the ICO

Please contact us first so we can try to resolve your privacy concern. If you are in the UK and remain unhappy, you may complain to the Information Commissioner’s Office.

16. Children

Social Muslims is for adults aged 18 and over only. We do not knowingly provide the service to children or intentionally collect personal data from children.

17. Third-Party Services

The service may link to or integrate with third-party services. Those services may publish their own privacy notices and terms. We are not responsible for third-party privacy practices we do not control.

18. Changes to This Policy

We may update this policy to reflect changes in law, regulation, guidance, product design, suppliers, or operations. The latest version will be posted here with the update date.

19. Contact

For privacy, legal, online-safety, or rights requests, contact shaz@onlinebuzz.co.uk. For general support, you can also contact admin@socialmuslims.co.uk.

For account deletion requests, use the subject line Data Deletion Request and include the phone number or email address linked to your account.