Qolina
← Back to home

Legal

Privacy Policy

Effective date: February 2026 · Last updated: February 2026

1.

Introduction

Qolina Business ("we", "our", "us") is a mobile application designed for business owners to receive and manage customer signals in real time.

This Privacy Policy explains how we collect, use, and protect personal data when you use the Qolina Business mobile application (the "App").

This policy applies exclusively to the Qolina Business Flutter mobile application.

2.

Geographic Availability

Qolina Business is designed for and made available exclusively to businesses operating in the Kingdom of Morocco.

The application is distributed only in Morocco through the Apple App Store and Google Play Store. It is not intended for use outside Morocco.

By using the App, you confirm that your business operates within Morocco.

Access to Qolina Business is subject to a prior partner application process. Businesses must submit a request to become a partner, which is reviewed by our team.

Applications from businesses operating outside the Kingdom of Morocco are automatically rejected. We reserve the right to refuse or terminate access if a business is found to operate outside Morocco or does not meet our eligibility criteria.

3.

Data We Collect

We collect only the data strictly necessary to operate the App.

3.1 Owner Account Information

When a business owner registers and uses Qolina Business, we collect:

  • Full name
  • Business name
  • Email address

This information is required to:

  • Create and manage the owner account
  • Authenticate access to the App
  • Provide service-related communications

We do not collect payment information inside the application.

3.2 Partner Application & Contact Forms (Optional)

The App may include forms that allow you to request partnership or contact our team. When you submit these forms, we may collect the information you provide, which can include:

  • Full name
  • Email address
  • Phone number (optional)
  • Business name
  • City / location details
  • Message content

This information is used only to process your request and communicate with you.

3.3 Technical, Push & Analytics Data

Push Notifications

If you enable push notifications, the App may register a device push token (e.g., Firebase Cloud Messaging token) to deliver service notifications. This token is used only for delivering notifications and maintaining service functionality.

Firebase Analytics & Crash Reporting

To ensure performance, reliability, and stability, we use Firebase services:

  • Firebase Analytics (usage analytics)
  • Firebase Crashlytics (crash reporting)

These services may collect:

  • Device type and OS version
  • App version
  • Anonymous usage events
  • Crash logs
  • App/device identifiers used for analytics and push delivery

This data is used strictly to:

  • Improve application performance
  • Fix bugs and crashes
  • Understand general feature usage

We do not use analytics data for advertising.

Security / Abuse Prevention (Backend Technical Data)

To protect the Service and prevent abuse, technical metadata may also be processed by our backend (e.g., device information and a hashed IP value). We do not store raw IP addresses for this purpose.

Local Storage (Device Only)

The App stores certain preferences locally on your device, such as your selected language (locale), in order to personalize your experience. This information remains on your device and is not transmitted to our servers.

3.4 Customer Phone Numbers (Opt-in Only)

Customers may voluntarily provide their phone number through a separate QR-based web form (not part of the Qolina Business mobile application) when explicitly requesting to be contacted.

Important

  • Phone numbers are collected only when the customer actively enables the "be contacted" option on the web form.
  • The phone number is visible only to the business owner associated with that business inside the Qolina Business app.
  • Phone numbers are never sold, shared, or used for marketing by Qolina.

Qolina acts solely as a technical processor of this information on behalf of the business.

4.

How We Use the Data

We use collected information to:

  • Provide and maintain the App
  • Authenticate and manage owner accounts
  • Deliver customer signals to the correct business
  • Improve stability and user experience
  • Prevent abuse or misuse

We do not sell personal data.

We do not display customer signals publicly.

5.

Legal Basis

Processing is based on:

  • Contractual necessity (owner account management)
  • Legitimate interest (service improvement and security)
  • Explicit consent (customer phone number opt-in)

Processing is carried out in compliance with Moroccan Law 09-08 on the protection of individuals with regard to the processing of personal data.

6.

Data Retention

  • Owner account data may be retained even if the subscription is no longer active, unless the account is deleted. Upon deletion request, data may be permanently deleted or anonymized in accordance with applicable data protection laws.
  • Customer phone numbers are retained only as long as necessary for the business to handle the signal.
  • Crash and analytics data are retained according to Firebase standard retention policies.

Data may be deleted or anonymized when no longer required.

7.

Data Sharing

We do not sell personal data.

We may share data only with:

  • Infrastructure providers (secure hosting)
  • Appwrite (backend platform used to operate core service features)
  • Firebase (Analytics, Crashlytics, and push notification delivery)
  • Legal authorities if required by law

All third-party services are bound by confidentiality and data protection standards.

8.

Data Security

We implement appropriate technical and organizational measures, including:

  • Encrypted HTTPS communication
  • Secure backend infrastructure
  • Role-based access control
  • Server-side validation for sensitive operations
9.

Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access your data
  • Correct inaccurate data
  • Request deletion
  • Object to processing

You may request account deletion directly from the App's Profile screen (where the Delete Account option is available) or by contacting contact@qolina.ma.

If you request account deletion, we may delete or anonymize your data in accordance with applicable laws and legitimate retention needs (e.g., security, fraud prevention, or legal obligations).

To exercise your rights, contact:

contact@qolina.ma
10.

Children's Privacy

Qolina Business is intended for business owners. It is not directed at children under 18 years of age, and we do not knowingly collect personal data from minors.

11.

Updates to This Policy

We may update this Privacy Policy periodically. The "Last updated" date will reflect the most recent revision.

Continued use of the App constitutes acceptance of any updates.