Skip to content
Mawjly

Privacy Policy

Last updated: 2026-05-02

1. Data we collect

  • Account data: name, email, password hash, optional avatar.
  • Billing data: handled by Paddle (we receive transaction metadata only — never card numbers).
  • Operational data: app names, channel names, message metadata for usage metering. Message bodies are not persisted.
  • Cookies: session cookie for authentication; analytics cookies only with your consent.

2. Data residency

All account credentials and operational metadata for the SA cluster are stored on servers physically located in Saudi Arabia, in compliance with PDPL data residency expectations.

3. Your rights

  • Right to access — request a copy of your data anytime.
  • Right to correction — update your profile from the dashboard.
  • Right to deletion — delete your account; data is purged after 30 days.
  • Right to data portability — export your apps + usage data via the API.

4. Subprocessors

  • Paddle — payments and invoicing
  • Resend — transactional email
  • Cloudflare — DDoS and edge caching

5. Contact

Questions about data handling: privacy@mawjly.com.

This document is a starting point — review with qualified counsel before commercial launch.