Your privacy, taken seriously.

Safe Healing (“Safe Healing,” “we,” “us,” or “our”) operates an online marketplace at safehealing.app that helps adults discover, book, and communicate with independent, licensed psychologists and therapists.

We are not a clinic, hospital, or healthcare provider. The psychologists and therapists listed on the platform are independent professionals. They are solely responsible for their own clinical advice, sessions, records, and professional conduct. Safe Healing facilitates discovery, booking, communication, and payment between you and them, and is not a party to the therapeutic relationship.

Business contact: Safe Healing, 285 Lane G2, WAPDA Town Phase 1, Lahore, Pakistan. Email: contact@safehealing.app. Full details on our Contact page.

The data we hold falls into a few buckets:

Things you give us

• Account details: name, email, phone number, date of birth, and the password hash for your login.
• Intake answers: what's bringing you to therapy, history, preferences (language, gender of psychologist, therapeutic approach), and any risk screening answers.
• Journal entries, mood logs, calm tool activity: anything you write or track inside the app.
• Booking and communication data: the appointments you schedule, in-app messages with your psychologist, and any note you send our support team.
• Payment data: processed by our regulated payment partner. We receive a transaction confirmation, the last four digits of your card, the card brand, and a non-reversible token. We never see or store your full card number, CVV, or banking PIN.

Things your psychologist creates

Your psychologist may keep clinical notes after each session. Those notes belong to their independent professional record and are held to the standards a licensed practitioner would apply offline. Safe Healing provides secure storage as part of the platform, but the notes themselves are controlled by the professional.

Things we collect automatically

Basic device, browser, and IP information so we can keep the service secure and debug errors. We do not run advertising trackers or sell analytics data.

Only for reasons you'd expect from a therapy marketplace:

• To help match you with independent psychologists based on your intake.
• To let you book sessions, message, journal, and track mood.
• To process payments through our payment partner and send receipts.
• To keep accounts secure (detecting fraud, preventing abuse).
• To send you account related email such as confirmations, reminders, and service notices.
• To comply with the law when we're legally required to.

We don't profile you for advertising. We don't train AI models on your journal entries, session content, or messages.

You, always. Everything you've shared is visible to you in your account.

Your matched psychologist sees your intake, the journal entries you've chosen to share with them, and your messages. Psychologists only see the clients matched to them, never anyone else's records.

A small set of Safe Healing staff can access account data when it's strictly needed: supporting a user who has asked for help, investigating a security incident, or complying with a legal order. Every access is logged.

Our service providers process specific data on our behalf under written agreements: a cloud host, a transactional email provider, our payment partner, and Google Meet for video sessions. They only receive what they need to do their job and are bound by their own published privacy and security standards.

We don't sell your data. We don't share it with advertisers. We don't disclose it to third parties except as described here or when the law requires us to.

Payments for sessions and subscriptions are processed by a regulated third party payment processor. When you pay, your card or wallet details are sent directly to the processor over an encrypted connection. Safe Healing does not receive your full card number, expiry, CVV, or banking PIN.

From the processor we receive a payment confirmation, the amount, the last four digits of the card (or wallet identifier), the card brand, and a non-reversible token we use to recognise saved cards on your account. The processor has its own privacy policy that governs how it handles your payment information. Please review it on the processor's own website.

Refund decisions are made by Safe Healing in line with our Refund and Cancellation Policy. The refund itself is executed by the same processor that handled the original payment.

Sessions happen on Google Meet. Safe Healing does not record sessions, and we ask psychologists not to record either unless you've given explicit written consent for a specific clinical reason. Google's own privacy terms apply to the call itself. We only store the meeting link, time, and attendance status.

Data is encrypted in transit (TLS) and at rest. Backups are encrypted. Access to production systems requires multi factor authentication and is audit logged. Journal entries, session notes, and messages are held in an encrypted data store with access controls tighter than the rest of the platform.

No system is perfectly safe. If we ever discover a breach that affects you, we'll tell you promptly and in plain language, along with what happened and what we're doing about it.

While your account is open, we keep your data so you can use the service. When you close your account, we delete your personal data within 30 days, except:

• Clinical notes created by an independent psychologist, which are retained for the period required by Pakistan's professional practice norms (typically 7 years).
• Financial records (invoices, receipts, payment processor references) we need to keep for tax and accounting law.
• A minimal audit trail of the fact the account existed, to prevent fraud and reuse.

Whether or not Pakistan's data protection law requires it, we offer every user:

• Access: see what we hold on you.
• Export: download your journal entries, intake answers, and message history in a portable format.
• Correction: fix anything that's wrong.
• Deletion: close your account and remove your data (subject to the retention carve outs above).
• Object: tell us to stop specific processing you don't want.

Most of these you can do yourself in settings. For anything else, email contact@safehealing.app and we'll respond within 30 days.

Safe Healing is for adults 18 and older. Some services accommodate ages 16 and up with guardian involvement, per the independent psychologist's acceptance. We don't knowingly collect data from anyone under 16. If you believe a minor has created an account without consent, email us and we'll investigate.

Our infrastructure is hosted on major cloud providers with Asia Pacific regions. Some processing (email delivery, error monitoring, payments) may happen in other regions. In every case, the provider is bound by contract to the protections described here.

We use essential cookies to keep you signed in and to remember your preferences. We run a minimal product analytics tool to understand how the service is used (pages visited, feature adoption). It doesn't follow you around the web, and it doesn't see your journal or messages. We do not run advertising or marketing trackers.

If we materially change how we handle your data, we'll notify you in the app and by email before the change takes effect. Small clarifications will be published here with an updated date at the top.

Privacy questions, requests, or complaints go to contact@safehealing.app. If you're not satisfied with our response, you have the right to raise a concern with the relevant authority in Pakistan. Postal correspondence: 285 Lane G2, WAPDA Town Phase 1, Lahore, Pakistan.