Privacy Policy

بِسْمِ اللهِ الرَّحْمٰنِ الرَّحِيْمِ

This Privacy Policy ("Policy") is entered into by Kode Kinetics LLC, a Virginia-based company ("Company," "we," "us," or "our") as the sole owner and operator of the Tawil mobile application and related services ("App"). This Policy governs the manner in which we collect, use, store, disclose, and protect your data when you interact with the App. By downloading, registering with, or using the App, you (the "User") agree to the terms outlined below. If you do not agree, you must refrain from accessing the App and uninstall it immediately.

1. Definitions

  • Personal Data: Any information that directly or indirectly identifies an individual, such as name, email, address, phone number, IP address, or device ID.
  • Sensitive Data: Includes payment details, religious preferences, location data, or user-generated content tied to identity.
  • Processing: Any operation performed on Personal Data, including collection, use, storage, disclosure, transfer, or deletion.
  • Controller: Kode Kinetics LLC, which determines the purpose and means of Processing.
  • Processor: Any third-party service provider acting on our behalf under strict confidentiality and data protection obligations.

2. Scope

This Policy applies to all users of the Tawil App worldwide, all forms of data (including Personal Data and non-identifiable usage information), and all interactions with the App, including offline support requests and emails.

3. Types of Data Collected

a. Personal Data (Collected only when voluntarily provided)

  • Full name
  • Email address
  • Mobile number
  • Mailing address (if applicable)
  • Profile photo and other profile information
  • Community affiliation or interest groups
  • IP address and device information
  • Geo-location data (subject to opt-in)

b. Sensitive or Optional Data

  • Posts or uploads to community forums, job board, or marketplace
  • Payment information (processed via Stripe, PayPal, or similar; never stored on our servers)
  • Feedback and support messages
  • Calendar/event registrations

c. Automatically Collected Data

  • App interaction logs
  • Feature usage (e.g., masjid locator, event attendance, donations)
  • Session time, error logs, crash reports
  • Cookies and device identifiers

4. Purpose of Data Processing

Your data is used for the following lawful purposes:

  • Performance of a Contract: To create and maintain your account, process transactions, and deliver requested services.
  • Legitimate Interests: To ensure security, analyze trends, personalize content, and improve services.
  • Legal Obligation: To comply with court orders, law enforcement inquiries, or applicable laws.
  • Consent: For optional features such as newsletters, community updates, or promotional alerts.

No automated decision-making or profiling is performed that significantly affects users.

5. Data Sharing and Disclosure

We Do Not Sell Data.
Permissible sharing includes:

Type Recipients Safeguards
Service Providers AWS, Firebase, Google Maps, Stripe, etc. Binding Data Processing Agreements (DPA)
Community Interactions Other users (for public posts only) Voluntary disclosure with clear opt-in
Legal Requests Law enforcement, regulators, courts Only upon valid subpoena, court order, or applicable legal process. We do not voluntarily provide government access to user data unless legally compelled and verified.
Business Transfers Successor entity in case of merger/acquisition Subject to continued protection of your data

All data sharing is conducted under the principle of data minimization and necessity. We reserve the right to challenge or reject any unlawful or overly broad data access request by government agencies. Any such request will be subject to legal review and user notification wherever permitted by law.

6. International Data Transfers

Your data may be transferred to servers located outside your country, including the United States. In such cases, we apply adequate protection mechanisms such as Standard Contractual Clauses (SCCs), Binding Corporate Rules (BCRs), or consent-based processing.

7. Data Security

We implement multiple layers of security to mitigate risks, including AES-256 encryption for sensitive data, TLS for all network communications, access control, least privilege architecture, monthly vulnerability assessments, and logging and monitoring of data access. However, no system is immune to breaches, and we do not guarantee absolute security. In case of a data breach, we will notify affected users within 72 hours as required by law.

8. Data Retention & Deletion

Data is retained only for the duration necessary for stated purposes. Inactive accounts are reviewed annually for deletion. Backups are retained securely and deleted after 30 days. Users can request deletion of their account and data via info@kodekinetics.com. We may retain minimal data to satisfy legal obligations, prevent fraud, or resolve disputes.

9. Your Rights (Region-Specific)

If you are located in the EU, UK, California, or other regulated territories, you have the following rights:

  • Access: Request a copy of your personal data.
  • Correction: Request edits to inaccurate data.
  • Erasure: Request deletion (subject to legal limits).
  • Restriction: Temporarily limit processing.
  • Objection: Object to direct marketing or profiling.
  • Data Portability: Receive a machine-readable copy of your data.

To exercise any of these rights, contact us at info@kodekinetics.com. Identity verification will be required.

10. User Responsibilities

Users agree to provide accurate and lawful information, refrain from posting discriminatory, violent, or harassing content, respect the intellectual property of others, and avoid use of automation, bots, or scraping tools. Violation may result in account suspension or permanent removal, at our sole discretion.

11. Third-Party Services

The App may link to or integrate with third-party tools (e.g., Google Maps, YouTube, Stripe, Firebase). These services are governed by their own privacy policies. We are not liable for how third parties handle your data.

12. Children's Privacy

The App is not directed at children under 13 years of age (or age defined by applicable law). We do not knowingly collect their data. If we discover unauthorized data, we will delete it promptly.

13. Legal Disclaimers & Limitations

We are not liable for any content voluntarily shared by users. We disclaim responsibility for data loss, unauthorized access, or system failure unless proven gross negligence. All disputes shall be resolved under the laws of the Commonwealth of Virginia, and jurisdiction shall rest with the courts located in Prince William County, Virginia, USA.

14. Policy Updates

We reserve the right to amend this Policy at any time. If changes are material, we will notify users through the App or by email. Continued use constitutes acceptance of revised terms.

15. Contact

Kode Kinetics LLC
Privacy Officer
Email: info@kodekinetics.com
Registered Address: 10432 Balls Ford Road, Suite 300, Manassas, VA 20109, USA