Overview
Firdaus ("we", "us", or "our") is an Islamic lifestyle companion application developed for iOS and Android platforms. We are committed to protecting your personal information and being transparent about what data we collect and why.
This Privacy Policy applies to the Firdaus mobile application and any related services, websites, or communications we provide. By using Firdaus, you agree to the collection and use of information in accordance with this policy.
Data We Collect
We collect different types of information depending on how you use the app. Below is a complete breakdown:
| Data Type | What We Collect | Purpose | Storage |
|---|---|---|---|
| Location | GPS coordinates (latitude & longitude) | Calculate prayer times and Qibla direction | Device only |
| Account Info | Name, email address, profile photo (Google Sign-In only) | Account creation and cross-device sync | Firebase (encrypted) |
| App Data | Dhikr counts, habit completions, favorite verses, last read surah | Sync your progress across devices | Firebase / Device |
| Preferences | Language, theme, city, calculation method, notification settings | Personalize the app experience | Device only |
| Usage Analytics | Screen views, feature usage, crash reports (anonymized) | Improve app performance and features | Firebase Analytics |
| Purchase Info | Subscription status (active/inactive) | Unlock Premium features | RevenueCat / Device |
| Device Info | Device model, OS version, app version (for crash reports) | Technical support and debugging | Firebase Crashlytics |
How We Use Your Data
We use the information we collect for the following purposes:
Calculate accurate prayer times and Qibla direction based on your location using the Aladhan API.
Send scheduled local prayer time reminders and optional evening reminders at times you configure.
If you sign in with Google, sync your dhikr counts, favorites, and habits across your devices via Firestore.
Analyze anonymized usage patterns to understand which features are most valuable and fix issues faster.
Verify your Premium subscription status to unlock and maintain access to Premium features.
Serve app content in your preferred language (Turkish, English, Arabic, Indonesian, or Malay).
We do not use your data for advertising, profiling, or selling to third parties. We do not use your data to make automated decisions that produce legal or significant effects.
Data Sharing & Disclosure
We do not sell, trade, rent, or otherwise transfer your personal data to outside parties. We may share limited data only in the following circumstances:
| Recipient | Data Shared | Reason |
|---|---|---|
| Google Firebase | Account data, app data, crash reports | Cloud infrastructure provider |
| RevenueCat | Subscription status, transaction IDs | In-app purchase management |
| Aladhan API | GPS coordinates (no identifier) | Prayer time calculation |
| Quran Cloud API | Surah/verse identifiers (no personal data) | Quran text and audio delivery |
| Apple App Store | Purchase transactions | Payment processing (we never see card details) |
| Law enforcement | As legally required | Compliance with valid legal process only |
All third-party service providers are contractually bound to process your data only as instructed by us and in accordance with applicable privacy laws.
Data Storage & Security
We take the security of your data seriously and implement appropriate technical and organizational measures to protect it.
All data transmitted between the app and our servers is encrypted using TLS/HTTPS. Data at rest in Firebase is encrypted using AES-256.
We use Google Firebase, which is hosted on Google Cloud Platform and complies with ISO 27001, SOC 2, and GDPR standards.
Firebase Security Rules ensure each user can only access their own data. No team member has routine access to individual user data.
GPS coordinates are processed on-device for prayer time calculations and are not transmitted to our servers or stored in the cloud.
While we strive to use commercially acceptable means to protect your personal information, no method of transmission over the Internet or method of electronic storage is 100% secure. We cannot guarantee absolute security.
Third-Party Services
Firdaus integrates with the following third-party services. Each has its own privacy policy which we encourage you to review:
| Service | Provider | Purpose |
|---|---|---|
| Firebase Authentication | Google LLC | User account management and Google Sign-In |
| Cloud Firestore | Google LLC | Cloud database for cross-device sync |
| Firebase Analytics | Google LLC | Anonymized usage analytics |
| Firebase Crashlytics | Google LLC | Crash reporting and diagnostics |
| RevenueCat | RevenueCat, Inc. | In-app subscription management |
| Aladhan API | IslamicNetwork.com | Prayer time calculation |
| Quran Cloud API | IslamicNetwork.com | Quran text and audio content |
| Nominatim | OpenStreetMap Foundation | City search and reverse geocoding |
| Apple App Store | Apple Inc. | App distribution and payment processing |
These services may have access to limited data as necessary to perform their functions. They are not permitted to use that data for other purposes.
Your Rights & Choices
Depending on your location, you may have the following rights regarding your personal data:
-
Right to Access You can request a copy of all personal data we hold about you.
-
Right to Rectification You can correct inaccurate data by updating your profile within the app.
-
Right to Erasure ("Right to be Forgotten") You can request deletion of your account and all associated data by emailing us. We will process your request within 30 days.
-
Right to Restrict Processing You can ask us to stop processing your data under certain circumstances.
-
Right to Data Portability You can request your data in a structured, machine-readable format.
-
Right to Object You can object to processing your data for analytics purposes. To opt out of Firebase Analytics, you may disable analytics in your device settings.
-
Notification Control You can enable or disable individual prayer notifications at any time within Settings → Notifications, or through your device's system settings.
-
Location Control Location permission can be revoked at any time in your device settings. You can use manual city selection as an alternative.
To exercise any of these rights, please contact us at support@firdaus.app. We will respond within 30 days.
Children's Privacy
Firdaus is not directed to children under the age of 13, and we do not knowingly collect personal information from children under 13. If we discover that a child under 13 has provided us with personal data, we will take steps to delete such information immediately.
If you are a parent or guardian and believe your child has provided personal information to Firdaus without your consent, please contact us at support@firdaus.app.
For users between 13 and 18 years of age, we encourage parental guidance when using the app, particularly regarding account creation and in-app purchases.
Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy:
| Data Type | Retention Period |
|---|---|
| Account information | Until account deletion request is received and processed (within 30 days) |
| Dhikr counts, habits, favorites | Until account deletion or data erasure request |
| Anonymized analytics data | Up to 14 months (Firebase Analytics default) |
| Crash reports | 90 days (Firebase Crashlytics default) |
| Purchase records | As required by RevenueCat and applicable tax/financial regulations (typically 7 years) |
| Local device data | Until app is deleted from device |
When you delete your account, we will delete or anonymize your personal data within 30 days, except where we are required by law to retain it for a longer period.
Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. When we make material changes, we will:
- Post the updated policy on this page with a new "Last Updated" date.
- Send an in-app notification if the changes are significant.
- Obtain fresh consent if required by applicable law.
Your continued use of Firdaus after any changes constitutes your acceptance of the new Privacy Policy. We encourage you to review this page periodically.
Contact & Data Requests
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us. We take all privacy inquiries seriously and will respond promptly.
Privacy & Data Protection
For privacy inquiries, data deletion requests, or to exercise any of your rights:
This Privacy Policy was written in English. In the event of any conflict between translated versions and the English version, the English version shall prevail. Governing law: Republic of Turkey.