Privacy & GDPR

Privacy Notice for Priya WhatsApp Concierge

Last updated: 2/27/2026

1. Purpose

Priya is a matrimonial concierge delivered over WhatsApp and a secure web dashboard. We collect only the data needed to facilitate introductions, profile curation, and support. This policy explains how we handle personal data in compliance with GDPR, CCPA, and other global privacy laws.

2. Data we collect

  • Clerk account data (name, email, auth identifiers).
  • WhatsApp phone numbers and chat content processed through Meta APIs.
  • Optional profile attributes shared during onboarding (age, preferences, cultural considerations).
  • Technical logs (IP, device, timestamps) for security and abuse prevention.

3. How we use it

  • Provide AI-assisted matchmaking via WhatsApp and the FastAPI backend.
  • Operate recommendation and compatibility engines.
  • Detect fraud, enforce our Terms, and comply with legal requests.
  • Send transactional notifications about onboarding or profile updates.

4. Legal bases (GDPR)

We rely on contract performance (delivering the concierge service), legitimate interest (platform security and product analytics), and consent (marketing, optional data fields). When we rely on consent, you may withdraw it at any time.

5. Data retention

Conversations and profiles are retained for up to 24 months after inactivity to let families revisit the journey. You may request earlier deletion using the form below. Aggregated, anonymized statistics may be kept indefinitely.

6. Data transfers

We operate from the United States using infrastructure hosted on compliant providers (AWS/Postgres, Vercel, Clerk, Meta). When we transfer data outside the EEA/UK, we rely on SCCs or equivalent safeguards.

7. Your rights

  • Access: request a copy of the personal data we store.
  • Rectification: ask us to fix inaccuracies.
  • Portability: request chat transcripts or profile data in CSV/JSON.
  • Erasure: delete your Clerk account and WhatsApp history at any time.
  • Objection/Restriction: limit certain processing, such as analytics.

Use the form below or email privacy@priya.ai.

8. Subprocessors

We rely on Clerk (authentication), Meta (WhatsApp API), OpenAI/Anthropic/Groq (LLMs), Postgres/AWS, Vercel, and Twilio (legacy fallback). Each maintains strong security controls and DPA commitments.

Exercise your rights

Submit the email you use with Clerk or the WhatsApp number associated with your profile. We reply within 72 hours with confirmation of deletion or data export.

There is no penalty for requesting deletion. We'll verify identity using the Clerk session and WhatsApp confirmation before purging records in both the FastAPI database and WhatsApp message archive.