Privacy Policy

Effective 11 July 2026

Discretion is the reason Meesaqexists, and this policy is written to be read. It describes what we collect, why, and the control you keep — in line with India's Digital Personal Data Protection Act, 2023 (DPDP Act).

1. What we collect, and why

  • Account: your email address — to sign you in (one-time codes) and send essential service messages. No passwords are stored.
  • Profile: display name, date of birth, gender, the gender you seek, city, and optionally your marja, a short bio, duration and mahr expectations, and a photo — to show your profile to other signed-in members and suggest compatible matches. Your date of birth is used to verify you are 18+ and to display your age; the date itself is never shown to anyone.
  • Activity: interests you express, matches, messages you send, and any blocks or reports you file — to run the introduction, chat, and safety features.
  • Technical: standard server logs (IP address, approximate region, device/browser type) — for security, abuse prevention, and the regional restrictions we are required to apply.

We collect nothing else. No contacts upload, no location tracking, no advertising identifiers.

2. Consent

We process your data on the basis of the consent you give at sign-up, where the notice is itemized in plain language. You can withdraw consent at any time by deleting your account (below). We do not use your data for advertising, we do not sell it, and we do not share it with anyone except the service providers below.

3. Who sees what

  • Logged-out visitors: nothing. Profiles are never public.
  • Other members: only members whose stated preferences are mutually compatible with yours can see your profile card (name, age, city, and the optional fields you filled). Your photo follows your chosen setting — hidden or blurred until mutual interest; only mutual matches ever see it clearly.
  • Moderators: if a member reports you or you report a member, moderators see the report and relevant context to act on it.

4. Service providers

Your data is stored and processed by infrastructure providers acting on our instructions: Supabase (database and authentication; primary storage in Mumbai, India), Vercel (application hosting and delivery), and Resend (delivery of sign-in and service emails). Each processes only what its function requires.

5. Retention and deletion

We keep your data while your account exists. Deleting your account (Profile → Delete account) permanently erases your profile, photos, interests, matches, and messages — including your messages in other members' conversations. Residual copies in security backups expire on the backup cycle. Reports you were involved in may be retained where required for legal or safety reasons.

6. Your rights

Under the DPDP Act you may access a summary of your data, correct it (most fields are directly editable in your profile), erase it (account deletion), and withdraw consent. For anything not available in-app, contact us and we will respond within the statutory timelines. You may also nominate a person to exercise these rights on your behalf, and you have the right to complain to the Data Protection Board of India.

7. Security

All traffic is encrypted (HTTPS is mandatory on this domain). Access rules are enforced in the database itself — each member can only reach their own data and what other members have consented to show them. Photos live in private storage reachable only through short-lived authorized links. Sign-in uses one-time email codes, so there is no password to leak.

8. Age

Meesaq is for adults only. We do not knowingly process data of anyone under 18, and the age gate is enforced at the database level. If you believe a minor has created an account, report it via the grievance contact and it will be removed.

9. Contact and changes

Privacy questions and requests: grievance@meesaq.app. Material changes to this policy will be announced in the app before they take effect.

← Back to Meesaq