1. Who We Are
Raseed is a donation and receipt management platform operated by Masjid Al Ahad. This policy explains how we collect, use, and protect your personal information in compliance with the Digital Personal Data Protection (DPDP) Act, 2023 (India).
2. Information We Collect
- Members: Full name, phone number, address, email, donation history, and preferences (language, theme).
- Guest Donors: Name and phone number (only if voluntarily provided with explicit consent).
- Financial Data: Donation amounts, payment methods, receipt numbers, and transaction dates.
- Usage Data: Page views and feature usage via privacy-respecting analytics.
3. How We Use Your Information
- Issue and verify donation receipts.
- Maintain accurate financial records for the Masjid committee.
- Send notifications about account approvals, receipts, and donation reminders.
- Generate anonymized analytics for the Masjid administration.
4. Data Protection
- All data is stored in Supabase (PostgreSQL) with Row Level Security enforced at the database layer.
- Guest donor personal information is restricted to Super Administrators only and is never displayed in the general admin interface.
- Financial records are never hard-deleted; voided receipts are marked as such with an audit trail.
- Data is transmitted over HTTPS/TLS.
5. Your Rights (DPDP Act)
Under the DPDP Act 2023, you have the right to:
- Access your personal data held by us.
- Request correction of inaccurate data.
- Request erasure of your data (subject to legal retention requirements for financial records).
- Withdraw consent for optional data collection (e.g., guest donor information).
6. Data Retention
Financial records (receipts, donation history) are retained indefinitely as required for accounting and audit purposes. Member profiles are deactivated (not deleted) upon request. Guest donor PII is retained only with consent and can be removed upon request.