Privacy Policy
Last updated: May 2026
1. Ephemeral Document Storage
Destination5 utilizes government IDs (CNIC) and institutional proofs strictly for one-time manual verification. We do not build a document archive. Upon human review (approval or rejection), all physical image files are permanently and irreversibly wiped from our local storage and Fly.io volumes. We retain only metadata (verification status, timestamps, and admin notes) to ensure compliance with the Personal Data Protection Act of Pakistan (PDPA) 2026.
2. Strict Purpose Limitation
We collect your email, sector-level route preferences, gender, role type, and departure timings. This data is collected under the legal basis of contract fulfillment and is used exclusively to facilitate peer-to-peer commute matching within Islamabad. We do not integrate third-party trackers, collect background GPS data, or harvest device telemetry.
3. Zero Data Exploitation
Your data is never sold, rented, shared, or brokered to advertisers, marketing agencies, or data brokers. The platform is not monetized. Your personal information remains strictly within the Destination5 database infrastructure, replicated securely via Litestream to Cloudflare R2 solely for disaster recovery purposes.
4. Sector-Level Anonymity
Your exact address, name, phone number, and Google profile photo remain completely hidden during the discovery and swiping phases. Profiles display only sector-level origins and destinations (e.g., "G-11" to "Blue Area") alongside your professional status and departure window. Direct contact information is exchanged exclusively after both parties mutually accept a match and have successfully passed the identity verification gate.