Privacy Policy

Last Updated: February 27, 2026

Prayr ("Prayr," "we," "our," or "us") operates the website and application available at prayr-app.com (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you use our Islamic companion application, including prayer time calculations, prayer and habit tracking, Quran recitation and audio, duas, dhikr, podcasts, articles, zakat calculator, scholar applications, feedback and community features, gamification, and related services.

Please read this Privacy Policy carefully. By accessing or using the Service, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with our policies and practices, please do not use our Service.

1. Scope and Applicability

This Privacy Policy applies to all information collected through the Prayr web application, mobile-responsive website, related public pages (including our landing page, blog, and release notes), and any communications you have with us (including support inquiries and feedback). This policy governs our practices regardless of the device or platform you use to access the Service.

This Privacy Policy does not apply to third-party websites, services, or applications that we link to, embed, or integrate with (such as Google OAuth, Discord OAuth, external Quran audio providers, or podcast feeds). Those third parties are governed by their own privacy notices and terms. We encourage you to review their policies before providing any information to them.

2. Information We Collect

We collect information in several ways: directly from you when you provide it, automatically when you use the Service, from third-party authentication providers when you sign in with them, and from integrated services that support our functionality. The categories of information we may collect include:

2.1 Account and Identity Information

  • First name and last name
  • Email address
  • Account identifiers and user IDs
  • Profile photograph (if you choose to upload one)
  • Authentication metadata (e.g., account creation date, last login)

2.2 Credentials and Access Data

  • Password (stored in encrypted form via our authentication provider)
  • Session tokens and authentication state
  • Password reset tokens (temporary, for account recovery)

2.3 Social Sign-In Data

When you sign in using Google or Discord OAuth, we receive information that those providers share with us according to their permissions and your settings. This may include your name, email address, profile picture, and unique identifier from the provider. We do not control what data these providers share; please review their respective privacy policies.

2.4 Settings and Preference Data

  • Theme preference (light, dark, or system)
  • Language and display preferences
  • Notification settings (e.g., prayer reminders)
  • Prayer calculation method and madhab
  • Prayer time offsets and adjustments
  • Selected reciters, translations, and Quran display options
  • Other in-app preferences you configure

2.5 Location-Related Data

To provide accurate prayer times and location-specific features, we may collect and process:

  • Country, city, state, or region
  • Timezone
  • Approximate or precise geographic coordinates (when you enable location services or search for a location)

You can choose to enter a location manually or use browser/device location. We use this data solely to calculate prayer times and display relevant content.

2.6 Worship and Habit Tracking Data

When you use our prayer tracking, habit logs, and gamification features, we may collect:

  • Prayer logs (prayer name, time, type, quality, completion status)
  • Streaks, achievements, and historical completion statistics
  • Daily habit entries (e.g., Quran reading, dhikr, tahajjud)
  • Points, levels, and other gamification-related data

This data is sensitive as it may reveal religious practice. We process it only to provide the features you choose to use and to personalize your experience.

2.7 Quran, Dua, and Content Interaction Data

  • Bookmarked verses, duas, and content
  • Selected reciters, translations, and tafsir preferences
  • Article views, podcast plays, and listening history
  • Recent activity and progress (e.g., Quran reading progress)
  • Daily dua selections

2.8 Community and Feedback Data

  • Feature requests (title, description, status)
  • Bug reports (title, description, severity, screenshots)
  • Comments, upvotes, and interactions on feedback items
  • Optional image attachments you upload with feedback

2.9 Scholar Application Data

If you submit a scholar application, we collect:

  • Application statements and qualifications
  • Educational background and years of study
  • Expertise areas, languages spoken, and madhab
  • Supporting documents and attachments you upload

This data is used solely for reviewing and processing your application and is handled with additional care given its sensitivity.

2.10 Communication and Marketing Preference Data

  • Opt-in or opt-out choices for product updates and announcements
  • Email communication history (e.g., support correspondence)

2.11 Technical and Usage Data

  • Device type, browser type, and operating system
  • IP address and general geographic region
  • Log data (e.g., access times, pages visited, actions taken)
  • Error reports and crash information
  • Cookies, local storage, and session storage data
  • Analytics events (when Google Analytics or similar tools are enabled in our deployment)

3. How We Use Your Information

We use the information we collect to operate, maintain, and improve the Service. Specifically, we use your information to:

  • Create, manage, and secure your account and sessions
  • Authenticate your identity and prevent unauthorized access or abuse
  • Provide prayer time calculations based on your location and preferences
  • Power prayer tracking, habit logging, and gamification features
  • Deliver Quran recitation, audio, translations, and tafsir content
  • Provide duas, dhikr, podcasts, and Islamic articles
  • Operate the zakat calculator and related tools
  • Personalize your experience (theme, language, notifications, content recommendations)
  • Process scholar applications and manage related review workflows
  • Operate the feedback board, bug reports, and community features
  • Maintain security, detect and prevent fraud, and troubleshoot technical issues
  • Analyze usage patterns to improve usability, performance, and feature quality
  • Send service-related communications (e.g., password resets, important notices)
  • Send product updates and announcements (only if you have opted in)
  • Comply with legal obligations and enforce our Terms of Service

4. Legal Bases for Processing (GDPR and Similar Laws)

Where applicable under data protection laws (such as the GDPR in the European Union and UK), we process your personal data based on one or more of the following legal bases:

  • Performance of a contract: To provide the Service you have requested and to fulfill our obligations under our Terms of Service.
  • Legitimate interests: To operate and improve the Service, maintain security, prevent abuse, and analyze usage for product improvement, where such interests are not overridden by your rights.
  • Consent: For optional features (e.g., marketing communications, certain analytics) where we have obtained your explicit consent.
  • Legal compliance: To comply with applicable laws, regulations, court orders, or government requests.

5. Third-Party Services and Data Sharing

We work with third-party service providers to deliver the Service. These providers may have access to your information only to the extent necessary to perform their functions. Depending on our configuration and the features you use, these may include:

  • Authentication and database: Supabase (and related infrastructure) for user authentication, database storage, and backend services.
  • Cloud storage: AWS S3, Cloudflare R2, or similar providers for file uploads (e.g., profile images, feedback attachments, scholar application documents).
  • Analytics: Google Analytics (when enabled) to understand how users interact with the Service.
  • Email and workflows: Email service providers for transactional emails, password resets, and optional marketing communications.
  • Location and content APIs: Services used for location lookup, prayer time calculations, and Islamic content delivery.
  • OAuth providers: Google and Discord, when you choose to sign in with them.

We require our service providers to protect your information and use it only for the purposes we specify. We do not sell your personal information to third parties.

We may also disclose your information if required by law, court order, or government request; to protect the rights, property, or safety of Prayr, our users, or the public; or in connection with a merger, acquisition, or sale of assets (with appropriate notice where required).

6. International Data Transfers

Prayr may be operated and supported using infrastructure and service providers located in multiple countries. By using the Service, you understand that your information may be transferred to, stored, and processed in countries other than your country of residence, including the United States and other jurisdictions where our service providers operate.

Where required by law (e.g., for transfers from the European Economic Area or UK), we implement appropriate safeguards such as Standard Contractual Clauses (SCCs) or other mechanisms approved by relevant data protection authorities.

7. Data Retention

We retain your information for as long as necessary to provide the Service, maintain your account, resolve disputes, enforce our terms, comply with legal obligations, and protect platform integrity. Retention periods vary by data type:

  • Account data: Retained while your account is active and for a reasonable period after deletion to handle disputes and legal requirements.
  • Activity and usage data: Retained for operational and analytical purposes, typically for a limited period unless longer retention is required by law.
  • Feedback and community content: Retained as long as the content exists and may be retained after account deletion if anonymized or required for legal purposes.
  • Uploaded files: Retained according to our storage policies and deleted when no longer needed or upon account deletion.

When data is no longer required for legitimate business or legal purposes, we delete or de-identify it in accordance with our operational and legal requirements.

8. Security

We implement administrative, technical, and organizational measures designed to protect your personal information from unauthorized access, disclosure, alteration, and destruction. These measures include encryption in transit and at rest (where applicable), access controls, secure authentication practices, and regular security assessments.

However, no method of transmission over the Internet or electronic storage is completely secure. We cannot guarantee absolute security of your information. You are responsible for maintaining the confidentiality of your account credentials and for any activity that occurs under your account.

9. Religious and Sensitive Data

Prayr is a faith-centered platform. Certain features, such as prayer logs, habit tracking, and scholar applications, may reveal information about your religious beliefs or practices. In some jurisdictions, this may be considered "special category" or "sensitive" data under data protection laws.

We process this data solely to provide the features you choose to use. We do not use it for profiling, advertising, or purposes unrelated to the Service. You should use these features based on your own comfort level and in accordance with your local legal context.

10. Cookies, Local Storage, and Similar Technologies

We use cookies, local storage, session storage, and similar technologies to keep you signed in, remember your preferences, maintain application state, and improve the Service. In some deployments, we may use analytics tools (e.g., Google Analytics) to understand feature usage and improve product quality.

You can control cookies and local storage through your browser settings. Disabling or blocking these technologies may affect Service functionality (e.g., you may need to sign in repeatedly, or preferences may not be saved).

11. Your Rights and Choices

Depending on your location, you may have the following rights regarding your personal information:

  • Access: Request a copy of the personal information we hold about you.
  • Correction: Request correction of inaccurate or incomplete information.
  • Deletion: Request deletion of your personal information, subject to certain exceptions.
  • Portability: Request a copy of your data in a structured, machine-readable format.
  • Restriction: Request that we restrict processing of your information in certain circumstances.
  • Objection: Object to processing based on legitimate interests or for direct marketing.
  • Withdraw consent: Where processing is based on consent, withdraw that consent at any time.

To exercise any of these rights, contact us at support@prayr-app.com. We may need to verify your identity before processing your request. You may also have the right to lodge a complaint with a data protection supervisory authority in your jurisdiction.

12. California Privacy Notice (CCPA/CPRA)

If you are a California resident, you may have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA):

  • Right to know: You can request information about the categories and specific pieces of personal information we have collected about you.
  • Right to delete: You can request deletion of your personal information, subject to certain exceptions.
  • Right to correct: You can request correction of inaccurate personal information.
  • Right to opt out of sale/sharing: We do not sell personal information in the traditional sense. We do not share personal information for cross-context behavioral advertising in a way that would constitute a "sale" or "sharing" under California law.
  • Right to limit use of sensitive personal information: You can request that we limit our use of sensitive personal information to certain purposes.
  • Non-discrimination: We will not discriminate against you for exercising your privacy rights.

To submit a request, contact us at support@prayr-app.com. We will respond within the timeframes required by applicable law.

13. Children's Privacy

The Service is not intended for children under the age at which parental consent is required under applicable law (typically 13 in the United States and 16 in the European Union, though this varies by jurisdiction). We do not knowingly collect personal information from children. If you believe that a child has provided us with personal information without appropriate parental or guardian consent, please contact us at support@prayr-app.com, and we will take steps to delete such information.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or the Service. When we make material changes, we will update the "Last Updated" date at the top of this policy and may provide additional notice (e.g., via email or an in-app notification) where appropriate.

Your continued use of the Service after the effective date of any changes constitutes your acceptance of the revised Privacy Policy. We encourage you to review this policy periodically.

15. Contact Us

For questions about this Privacy Policy, to exercise your privacy rights, or to raise any data protection concerns, please contact us at:

Email: support@prayr-app.com

Website: https://prayr-app.com

We will respond to your inquiry as promptly as possible and in accordance with applicable law.