Privacy Policy

Qur'an Widget is a mobile application that provides daily Qur'an verses, widgets for your home and lock screen, reading tracking (including hasanat-style stats and streaks), favorites, collections, reminders, and optional premium features. The app is offered by Umratech. We do not operate a separate web service that stores your personal data; the app is designed so that the vast majority of your information stays on your device.

Our design philosophy is privacy by default: we believe that your spiritual and reading data are personal, and we have built the app so that we do not need to collect or store that data on our own servers. The only data that leaves your device is that which is strictly necessary to provide the service (such as fetching verse text and translations from the Quran.com API, or processing a subscription through Apple or Google). For contact details, see Section 12.

We do not operate a user account system. We do not collect your name, email address, or password for the purpose of an in-app account. The optional display name you may enter during onboarding is stored only on your device and is not transmitted to our servers or used to identify you elsewhere. We do not sell your personal data to third parties for advertising or marketing. We do not use your data to build advertising profiles or to target you with third-party ads based on your in-app behaviour. We do not collect your precise location. We do not require you to sign in with a social account or email to use the core features of the app.

We do not collect your reading history, the verses you have read, your favorites, or your collections on our servers. We do not collect device identifiers for advertising purposes. We do not use cross-app tracking or fingerprinting to identify you across other applications or websites. We do not collect biometric data, health data, or any sensitive category of data as defined under GDPR or similar laws. If we ever change this approach, we will update this policy and, where required by law, obtain your consent before collecting such data.

Most of the data the app uses is stored only on your phone or tablet. This data never leaves your device unless you explicitly back it up via your operating system (e.g. iCloud, Google backup) or uninstall the app (at which point the operating system will typically remove it). We do not have access to this data.

It includes: preferences (language, theme, translation and reciter choices, verse display mode, optional display name, streak goal, onboarding/feature-guide flags); reminders and notifications (enabled, count, time window, reminder content generated locally); favorites and collections (verse keys and collection names); last viewed verse and daily verse override; daily verse style and customisation; reading history and statistics (stored in a local SQLite database—verses read, duration, words/letters for hasanat-style metrics, streaks); streak and milestone data; cached verse/translation/audio metadata; and widget data (shared with widget extension via App Group on iOS or local storage on Android). No widget or reading data is sent to our servers.

This local-only approach means that if you lose or replace your device without using a backup, we cannot restore your reading history, favorites, or collections—because we never had that data. If you use your device's backup feature (e.g. iCloud or Google backup), the app's data may be included in that backup according to your backup settings; we do not control what is included in device backups. On iOS, the app and its widget extension share data only through the App Group container on your device; that data is not transmitted to the internet. On Android, widget data is stored in the app's local storage and is not uploaded to our or any third-party servers.

Verse text, translations, and recitation metadata are loaded from the public API of Quran.com (api.quran.com). Requests may include parameters such as verse key or translation ID; they do not include your name or account identifier. Quran.com has its own privacy policy. We do not control Quran.com's practices; we recommend that you review their policy if you have concerns about how they handle API requests.

If you subscribe or make a purchase, Apple or Google process the transaction. We use RevenueCat to manage subscriptions and restore purchases. RevenueCat may receive device identifier and entitlement status; we do not receive your full payment details. RevenueCat's privacy policy applies. RevenueCat may collect information necessary to validate your subscription and restore it on a new device; we do not use that information for advertising or profiling.

In production we may use Sentry for anonymous error reports (e.g. stack trace, device type, OS version). We do not intentionally send your name, verse content, or reading history to Sentry. Uninstalling stops further data. Error reports help us fix bugs and improve stability; they are not used to track your behaviour or to build a profile of you.

Reminders and (on Android) the optional daily verse notification are scheduled and delivered locally; we do not send notification content to our servers. No third party receives the text of the verses you have saved or the content of your reminders from us. Any data that does leave your device is limited to what is described in this section; we do not have a separate analytics or marketing pipeline that collects your in-app activity.

Notifications: to show reminder notifications and (on Android) the optional persistent daily verse notification. You can deny or revoke; the rest of the app will work but reminders will not be delivered. We do not use notifications for marketing or promotional messages; they are only for the reminder and daily verse features you configure.

Storage / local data: used to store preferences, favorites, reading history, and caches. We do not read your general photo or document storage unless a future feature explicitly lets you choose a file. The app does not scan or index your device's media or documents. Any future feature that allowed you to select a custom image (e.g. for a widget background) would request access only when you actively choose a file, and we would describe that in an updated version of this policy.

Network: used to fetch verses and translations from the Quran.com API and, when you make a purchase, to communicate with Apple, Google, and RevenueCat. We do not use the network to upload your reading history, favorites, or collections to our servers. We do not use the network for advertising, tracking, or analytics beyond the error reporting described in Section 4. If you disable network access for the app, core features that depend on loading verse data or restoring purchases will not work, but all locally stored data remains on your device.

The app does not knowingly collect personal information from children under 13 (or the equivalent minimum age in your country). The app does not require an in-app account. We do not target the app at children, and we do not use the app to collect age or other personal data that would allow us to know a user's age. Because we do not collect account information or reading history on our servers, the amount of personal data we could hold about a child is minimal (e.g. if we used an analytics or error-reporting service that received an identifier). We configure such services to minimise the data sent and do not use them for profiling.

If you are a parent or guardian and believe your child has provided us with personal data, please contact us at the email in Section 12 and we will work to delete it to the extent we have access. Data stored only on the child's device can be removed by uninstalling the app or clearing its data. We encourage parents to supervise their children's use of any mobile application and to use device-level controls (e.g. Screen Time, parental controls) if appropriate.

All data described in Section 3 is stored on your device. We do not retain copies on our servers. If you uninstall the app, the OS will typically remove the app's local data; backup/restore depends on your device and settings. There is no in-app "delete my account" for a central account because we do not hold your data on our servers. To remove local data, uninstall the app and optionally clear backups. RevenueCat and Sentry may retain data per their policies; we do not control their retention.

We do not set a specific retention period for data we hold because we do not hold your reading history, favorites, or preferences on our systems. Any data that third parties (RevenueCat, Sentry, Quran.com) may retain is subject to their respective policies. If you request deletion of data we might hold (e.g. in error logs), we will process that request in accordance with applicable law and delete or anonymise the data where feasible. For data on your device, you control retention by keeping or uninstalling the app and by managing your device backups.

Our app and third-party services (e.g. Quran.com, RevenueCat, Sentry) may be operated or hosted in countries other than your own. By using the app you consent to transfer and processing as described in this policy. If you are in the EEA or UK, such transfers may be subject to appropriate safeguards under GDPR (e.g. adequacy decisions, standard contractual clauses, or other approved mechanisms). We do not transfer your local app data ourselves; any transfer is limited to the third-party interactions described in Section 4 (e.g. API requests to Quran.com, subscription validation via RevenueCat, error reports to Sentry).

We do not use your data for decisions based solely on automated processing that produce legal or similarly significant effects. If that were to change, we would inform you and comply with applicable requirements. Your use of the app from outside the EEA or UK does not change our commitment to treat your data in accordance with this policy and applicable law in your jurisdiction.

Depending on where you live, you may have the right to access, correct, delete, or restrict processing of your personal data, or to data portability or to object to certain processing. Because we do not maintain a central database of your personal data, most of your data is in your control on your device. You can: uninstall the app to remove local data; turn off notifications; contact us to ask about data we might hold or to request deletion. We respond to legitimate requests from data protection authorities. In the EEA/UK, our legal basis is typically performance of our contract and, where relevant, your consent. In California, we do not sell your personal information as defined under the CCPA.

If you wish to exercise your rights, please contact us at the email in Section 12. We will respond within the time required by applicable law (e.g. one month under GDPR, with possible extension where permitted). We may need to verify your identity before processing a request. If you are in the EEA or UK, you have the right to lodge a complaint with a supervisory authority. If you are in California, we do not sell or share your personal information for cross-context behavioural advertising, and we have not done so in the past twelve months. We do not use or disclose sensitive personal information for purposes beyond those permitted under the CCPA.

We rely on your device's security (e.g. lock screen, encryption) and the security of the App Store and Google Play. Local data is stored using the device's standard storage. We do not transmit your reading history, favorites, or collections to our servers. For in-app purchases we use Apple, Google, and RevenueCat; we do not store your payment card details. We do not guarantee immunity from all security risks; keep your device and OS updated.

We do not store passwords or authentication credentials for our own services because we do not offer an in-app account. Any credentials you use (e.g. for the App Store or Google Play) are managed by Apple or Google. We recommend that you use a strong device passcode or biometric lock and keep your operating system and the app updated to receive security fixes. If we become aware of a breach that affects your personal data, we will notify you and the relevant authorities as required by law.

We may update this Privacy Policy from time to time. The "Last updated" date at the top will be revised when we do. Continued use of the app after changes constitutes acceptance of the updated policy. For material changes we may notify you in the app or via our website; where required by law we may seek your consent before applying the new policy to your data.

We encourage you to review this policy periodically. If you do not agree with the updated policy, you should stop using the app and uninstall it if you wish to avoid any further processing described in the new version. Your local data will remain on your device until you uninstall or clear it. We do not change how we use your data in a way that is inconsistent with this policy without updating the policy and, where necessary, obtaining your consent.

For privacy-related questions, requests, or complaints: Umratech, Email: support@umratech.com. We will respond within a reasonable time as required by applicable law (e.g. within one month for requests under GDPR, subject to any permitted extension). You may also have the right to lodge a complaint with a supervisory authority in your country (e.g. the Information Commissioner's Office in the UK, or your local data protection authority in the EEA). We encourage you to contact us first so we can try to resolve your concern. If you are contacting us to exercise your rights (access, deletion, correction, etc.), please include enough information so we can identify and process your request; we may need to verify your identity before disclosing or deleting data.