Privacy Policy

Last updated: 30 March 2026

🔒 Khadiramina does not collect, store, or process any personally identifiable information (PII). Your name, email address, and card number are used only at the moment of pass generation and are never saved to our servers.

What we do

Khadiramina lets you add your existing loyalty cards to Apple Wallet or Google Wallet. When you generate a card:

Your name and card number are embedded directly into the wallet pass file that is downloaded to your device.
This data is processed entirely in memory and is never written to a database.
Once the pass file is delivered to your browser, these values are discarded from our server.

What we track

We record anonymous, non-identifying metadata for internal statistics only:

Which store card was generated (e.g. "Woolworths", "Lidl")
Which platform was used (Apple or Google)
Pass lifecycle status (issued, active on device, or removed)
Timestamp of when the pass was generated

None of this data can be linked to you as an individual. There is no name, email, card number, IP address, or device identifier stored alongside it.

Apple Wallet callbacks

Apple Wallet sends automated, anonymous device callbacks when a card is added to or removed from a device. These callbacks contain only:

A random device identifier generated by Apple
An opaque push notification token
The pass serial number (a random string we generated)

We use these solely to update the aggregate "active" and "removed" counts. No personal data is involved.

Google Wallet

Google Wallet does not provide lifecycle callbacks. Google passes are generated via a signed JWT link — Google handles the save process entirely. We have no visibility into whether the pass was saved or later removed.

Cookies & local storage

Khadiramina uses browser localStorage for two functional preferences only:

Theme — whether you've chosen light or dark mode
Country — your selected country for filtering store cards

No tracking cookies, analytics scripts, or third-party trackers are used.

Third-party services

The only external service contacted is api.country.is for approximate geolocation (country-level only, based on your IP). This is used solely to pre-select your country filter. Your IP is not stored by Khadiramina.

Data retention

Since we do not store personal data, there is nothing to retain, export, or delete. The anonymous pass metadata is kept indefinitely for aggregate statistics.

Contact

Questions about this policy? Reach out at privacy@khadiramina.com.