Privacy Policy

We only collect what is necessary to operate Mistri and connect you with verified Mistris. Specifically:

• Account information: your name, email address, phone number, password (stored hashed), and the role you choose (customer or Mistri).
• Profile data: profile photo, city, neighbourhood, and any optional details you add to your profile.
• Mistri verification data (Mistris only): CNIC front and back photos, CNIC number, date of birth, expiry date, WhatsApp number, office address, postal code, years of experience, services offered, and price ranges. CNIC numbers are encrypted at rest; only a masked version is displayed in our internal tools.
• Booking and chat data: service requests, scheduled times, addresses, notes, agreed prices, payment method, and messages exchanged with a Mistri through our platform.
• Device and usage data: basic technical information such as browser, device type, IP address, language preference, and pages viewed. This helps us improve the product and detect abuse.
• Cookies and local storage: only what is required to keep you signed in, remember your language, and operate the Progressive Web App. We do not use third-party advertising trackers.

Your data is used only to deliver and improve the Mistri service. That means:

• Creating and securing your account, and signing you in.
• Showing verified Mistris to customers, and showing relevant booking requests to Mistris.
• Letting you and a Mistri communicate to confirm a booking (for example via WhatsApp deep links).
• Verifying Mistri identity through CNIC, phone, and (when applicable) police clearance, before a Mistri is approved.
• Sending you booking updates, security alerts, and operational messages.
• Detecting fraud, spam, abuse, and violations of our Terms of Service.
• Improving our service through aggregated, non-identifying analytics.

We do not use your information for behavioural advertising, and we do not build profiles of you for marketing.

This is the core of our approach:

• We will never sell your data. Not to advertisers, not to data brokers, not to anyone.
• We will never share your personal information with third parties without your explicit consent, except in the limited cases listed in section 4 below.
• Customer details stay private from Mistris until you book. A Mistri only sees the information needed to fulfil a booking you have initiated (name, contact, address for the job, and the notes you choose to share).
• You control your profile visibility. Customers can use Mistri without a public profile. Mistris choose what to publish in their listing.
• You can withdraw consent at any time by updating your profile, deleting your account, or emailing us (see section 9).

We only share information in these narrow, necessary cases:

• With a Mistri you choose to book. When you submit a booking, the Mistri receives the details needed to complete it (your name, contact, and service address).
• With service partners that help us operate Mistri, such as our hosting provider (Vercel), database and authentication provider (Supabase), push notification service (Firebase), and (in the future) payment processor (Safepay). These partners are bound by confidentiality and process data only on our instructions.
• To verify identity, our admin team reviews CNIC photos and police clearance documents internally. This is not shared externally.
• When required by law, such as a valid order from a Pakistani court or regulatory authority. We will challenge requests we believe to be unlawful or overbroad.
• To protect rights and safety, when there is a credible risk of fraud, abuse, or harm to a user.
• With your explicit consent, for anything else.

• All traffic to Mistri is encrypted with HTTPS.
• Your password is hashed using industry-standard algorithms; we never see your plaintext password.
• CNIC numbers are encrypted at rest using PostgreSQL pgcrypto; only a masked form is shown in internal tools.
• CNIC photos and identity documents live in a private storage bucket, accessible only through short-lived signed URLs to authorised reviewers.
• Row Level Security is enforced on every database table, so a user can only read or write their own records.
• Admin accounts use a separate, role-gated dashboard with audit logs for every status change.

No online service can promise perfect security, but we apply current best practices and review them regularly.

• Account data: kept for as long as your account is active.
• Booking records: retained for up to 24 months after the booking, for dispute resolution and quality assurance.
• Mistri verification documents: retained for the duration of an active Mistri account, then deleted within 90 days of account closure unless required by law.
• Aggregated analytics: retained indefinitely in a non-identifying form.

When you delete your account, we remove or anonymise your personal data within 30 days, except records we are legally required to keep.

You have the right to:

• Access the personal information we hold about you.
• Correct information that is inaccurate or out of date.
• Delete your account and request removal of your personal data.
• Withdraw consent for any optional data use.
• Export your booking history in a portable format.
• Object to processing or request restriction of certain data uses.
• Lodge a complaint with a relevant data protection authority.

To exercise any of these rights, email us at privacy@mistri.pk. We respond within 30 days.

Mistri is intended for users aged 18 and older. We do not knowingly collect data from minors. If you believe a minor has created an account, please contact us and we will remove it.

If we make material changes to this policy, we will notify you through the app or by email before they take effect. The “Last updated” date at the top of this page always reflects the current version.

Questions about your privacy or this policy? Reach us at privacy@mistri.pk. We read every message.