Privacy Policy

Effective May 18, 2026 · Last updated May 18, 2026

Bayt Muslim is operated by Bayti LLC, a Florida limited liability company. We take your privacy seriously, and we designed this product around the principle that your data belongs to you. This policy explains what we collect, why we collect it, who we share it with, and how you can control or delete it.

Quick summary

• We collect only what we need to run the platform.
• We do not sell your data. We do not run third-party advertising.
• You can delete your account permanently from inside the app or by emailing us.
• We use trusted service providers (listed below) and require them to handle your data safely.

1. Who we are

Bayt Muslim ("we", "us", "the app", "the platform") is a service of Bayti LLC, a Florida limited liability company headquartered at 1511 Legacy Club Dr, Maitland, FL 32751. We operate the website at baytmuslim.com, the web app at app.baytmuslim.com, and the Bayt Muslim iOS application on the Apple App Store.

2. Information we collect

2.1 Information you provide directly

• Account information: when you sign up, we collect your email address and your first and last name. If you sign in with Apple, you may choose to share or hide your email; we respect that choice.
• Profile information: if you complete your profile, you may add a phone number and a photo. These are optional.
• Host information: if you become a host, we collect listing details (title, description, address, photos, pricing, faith-aware attributes such as prayer space and halal kitchen) and Stripe Connect onboarding data (legal name, date of birth, government ID — collected and processed by Stripe, not stored on our servers).
• Booking information: when you book a stay or meal, we record check-in/check-out dates, guest count, total paid, and the corresponding payment confirmation from Stripe.
• Identity verification: some bookings require ID verification, which is performed by Stripe Identity. Stripe stores the ID document and selfie; we only receive a pass/fail verification status.
• Communications: when you email us, we keep the message so we can respond and improve the product.

2.2 Information collected automatically

• Authentication tokens: a session token from our auth provider (Clerk) so the app knows you are signed in. The token is stored securely in your device's keychain (iOS) or local storage (web).
• Basic device and request data: when the app or website contacts our servers, we log the request (URL, status code, timestamp, generic user-agent string) for security and debugging. We do not associate this log with your name.

2.3 Information we do not collect

• We do not run analytics SDKs that profile you across apps.
• We do not collect your location unless you explicitly add it to a listing or booking.
• We do not access your contacts, camera, photos, or microphone except when you choose to upload a listing photo or profile picture.
• We do not use Apple's advertising identifier (IDFA) or any cross-app tracking technology.

3. How we use your information

• To provide the platform: account creation, sign-in, browsing, booking, hosting, payments, payouts.
• To communicate with you: booking confirmations, check-in reminders, host onboarding updates, password resets, and important account notices. All transactional emails are sent via Resend.
• To verify hosts and guests: Stripe Connect onboarding (for hosts) and Stripe Identity (for bookings requiring verification).
• To enforce our terms of service and prevent fraud, abuse, or unsafe behavior on the platform.
• To comply with legal obligations (tax reporting for hosts, lawful requests from authorities).

4. Service providers we share data with

We use the following third parties to operate Bayt Muslim. Each processes your data only as required to provide their service to us and is contractually bound to handle your data securely.

• Clerk — authentication and user management (email, name, sign-in events).
• Stripe — payments, host payouts (Stripe Connect), and identity verification (Stripe Identity). Stripe is the data controller for payment and ID verification data; refer to their privacy policy.
• Neon — our PostgreSQL database (hosts the records described above).
• Vercel — hosting for the web app and the marketing site. Vercel processes basic request logs.
• Vercel Blob — storage for listing photos and profile photos.
• Resend — transactional email delivery.
• Expo (EAS) — mobile build and update distribution. Does not receive user account data.
• Apple — only when you sign in with Apple; Apple receives an authentication request and returns a token. Apple does not see your Bayt Muslim activity beyond the sign-in event.
• Google — only when you sign in with Google; same as Apple, scoped to the authentication event.

We do not sell, rent, or trade your personal information to anyone. We do not share your data with advertisers.

5. How long we keep your data

• Account and profile information: kept until you delete your account.
• Booking and payment records: retained for 7 years for tax and accounting compliance, even after account deletion (anonymized where possible — your bookings are deleted with you; the host's revenue records may retain anonymized references).
• Communications you send to us: kept for 2 years for customer support history, then deleted.
• Server access logs: 90 days.

6. Your rights and choices

6.1 Delete your account

You can permanently delete your account at any time:

• In the iOS app: Profile tab → Delete account → Delete forever.
• On the web: sign in at app.baytmuslim.com and contact us at hello@baytmuslim.com to request deletion.

Account deletion is immediate and irreversible. Your profile, your bookings as a guest, and (if you host) your listings will be removed. Some records (financial transactions older than the current tax year) may be retained in an anonymized form for legal compliance, as described above.

6.2 Access, correct, or export your data

Email hello@baytmuslim.com with the subject "Data request" and we will respond within 30 days. If you are in California (CCPA), the European Union (GDPR), or the United Kingdom, you have additional statutory rights including portability, restriction of processing, and the right to lodge a complaint with a supervisory authority.

6.3 Communications preferences

Transactional emails (booking confirmations, payment receipts, check-in reminders) are required to operate the service and cannot be opted out of without closing your account. Marketing emails — if we send any in the future — will include a one-click unsubscribe.

7. Children's privacy

Bayt Muslim is intended for users 18 and older. We do not knowingly collect personal information from anyone under 18. If you believe a minor has signed up, contact us and we will remove the account.

8. International users

Bayt Muslim is operated from the United States. If you access the service from outside the U.S., your data will be transferred to and stored in the U.S., which may have data protection rules different from those in your country. By using the service, you consent to that transfer.

9. Security

We use industry-standard practices to protect your data: encrypted connections (HTTPS) for all traffic, encrypted storage at rest with our providers, secure session token storage on your device, and least-privilege access controls inside our team. No system is perfectly secure, but we take this seriously and improve constantly.

10. Changes to this policy

We may update this policy as our product evolves or as regulations change. The "Last updated" date at the top of this page reflects the most recent revision. Material changes (new categories of data collected, new sharing) will be announced at least 30 days in advance via email to existing users.

11. Contact

Questions, concerns, or data requests? Reach us at hello@baytmuslim.com.

Bayti LLC
1511 Legacy Club Dr, Maitland, FL 32751
United States