Privacy Policy
Last Updated: March 31, 2026 Effective Date: March 31, 2026
Application: Ezan ve Dua — Kuran, Kıble (also known as: Athan and Dua, اذان ودعاء, Gebetszeiten und Dua, Athan et Doua, Athan y Dua, Азан и Дуа, Adzan dan Doa, Azan dan Doa, Athan en Dua, اذان و دعا, আযান ও দোয়া, Adhana na Dua)
Developer: Ezan ve Dua Development Team ("we", "us", "our")
Contact: help@ezanvedua.com
1. Introduction
This Privacy Policy explains how your personal data is collected, processed, stored, protected, and deleted when you use the Ezan ve Dua mobile application ("App").
Our App is designed to support Islamic daily practices: prayer times, Quran reading, dhikr tracking, khatm (Quran completion), dua (supplications), qibla direction, adhan sounds, family worship network, and many more features. We are fully aware of the special sensitivity of data related to our users' religious lives; such data is classified as special category personal data under the Turkish Personal Data Protection Law No. 6698 ("KVKK") and the EU General Data Protection Regulation ("GDPR"), and is protected at the highest level.
By downloading, installing, or using the App, you acknowledge that you have read and accepted this policy.
2. Data We Collect
2.1. Account and Identity Data
When you first open the App, an anonymous session is automatically created; no personal information is requested at this stage. You may optionally convert your account to a permanent one:
| Data | Required? | Purpose |
|---|---|---|
| Email address | If you register, yes | Account verification, password reset |
| Password | If you register, yes | Authentication (stored as hash) |
| Apple ID | If you use Sign in with Apple | Authentication (only token stored) |
| Display name | No | Profile and community interactions |
| Avatar selection | No | Profile appearance |
2.2. Worship and App Usage Data
We collect and store the following data to provide the App's core functions:
- Prayer records: Prayers performed, missed prayer (qada) records, prayer streak data
- Quran reading data: Pages read, khatm progress, bookmarks, reading duration
- Dhikr records: Tasbih counts, dhikr goals and completion rates
- Fasting records: Fasts observed, Ramadan and voluntary fasting tracking
- Recitation (tilawah) data: Quran recitation sessions, voice evaluation results
- Khatm data: Personal and group khatm progress, juz assignments
- Dua and routine tracking: Daily dua routine completion status
- Gamification data: XP points, Nur units, badges, level progress, avatars
- Seyr (discovery) feed: Saved cards, reading history
All of this data constitutes religious belief and worship data and is protected as special category personal data.
2.3. Location Data
Your location information is used for the following purposes, only when you grant permission:
- Calculating prayer times (local calculation using latitude/longitude)
- Determining qibla direction
- Showing nearby mosques
- Bereket Map (halal venue map) for listing nearby places
Your location data is only obtained with foreground permission; no background location tracking is performed. Your city and country are saved to your profile, but precise coordinates are not stored on the server (approximate location only).
2.4. Camera and Photo Data
- Product label scanning: Photos taken from the camera or selected from the gallery are processed on-device using OCR (Google ML Kit) to extract text. Photos are not sent to the server.
- Profile photo: If selected, stored encrypted in Supabase Storage.
- Bereket Map review photos: Uploaded to the server and displayed on the halal venue profile.
2.5. Audio and Speech Data
- Microphone: During Quran memorization (hifz mode) and recitation evaluation, your voice is processed by the on-device speech recognition engine.
- Voice recordings are not sent to the server; they remain on the device and are deleted at the end of the session.
- Adhan sounds and nasheed playback are output-only; no listening or recording occurs.
2.6. Analytics Data
We collect the following anonymous usage events to improve the App:
- Screen views (which screen was opened)
- Feature usage (which module was used)
- Prayer logging, Quran reading, dhikr completion, khatm start/completion
- Premium views, onboarding completion, streak achievements
This data is stored associated with user ID but device fingerprinting, advertising identifiers (IDFA/GAID), or cross-app tracking is never used. You can disable analytics data collection from the Settings screen.
2.7. Notification Data
Your device token (Expo Push Token) is stored for push notifications. This token is used only for prayer time and adhan reminders, not for marketing purposes.
2.8. Artificial Intelligence (AI) Interaction Data
If you use the in-app AI chat feature:
- Your messages and AI responses are stored on the server.
- This data is used solely to show you your chat history.
- AI chat data is not used for model training.
- Community submissions are automatically reviewed for content moderation (Anthropic Claude Haiku API).
2.9. Purchase Data
Premium subscription transactions are processed through RevenueCat infrastructure via Apple App Store or Google Play Store payment systems. Your credit card or payment information is never seen, collected, or stored by us. Only your premium status (active/inactive) and purchase date are kept in our system.
3. Purposes of Data Processing
We process your personal data for the following purposes:
- Providing the App's core functions: Prayer time calculation, qibla direction, Quran reading tracking, dhikr counter, khatm progress, dua routine
- Providing personalized experience: Prayer times based on madhab preference, language settings, location-based city info
- Operating the gamification system: XP/Nur points, levels, badges, rankings
- Providing community features: Group khatm, dua requests, family worship network, Vefa memorial pages
- Content moderation: Reviewing community submissions automatically and/or manually
- Improving the App: Bug detection and feature improvement through anonymous usage statistics
- Sending notifications: Prayer time reminders, adhan alerts, khatm reminders
- Fulfilling legal obligations: KVKK, GDPR, App Store and Google Play requirements
4. Data Sharing
We never sell your personal data. Your data is not shared with third parties except in the following limited cases:
| Service Provider | Shared Data | Purpose | Location |
|---|---|---|---|
| Supabase (Western Europe) | Account info, worship data, profile | Database, authentication, file storage | European Union |
| RevenueCat | Anonymous user ID, purchase status | Subscription management | USA |
| Apple / Google | Payment token | In-app purchase processing | USA |
| Expo (EAS) | Push token | Notification delivery | USA |
| Anthropic | AI chat messages, moderation text | AI responses, content moderation | USA |
| ElevenLabs | Text (TTS) | Audio content generation (education module) | USA |
| Google ML Kit | Camera image (on-device) | OCR text extraction | On device |
| Google Maps | Approximate location | Map display | USA |
Advertising and Tracking
- Our App contains no advertisements.
- No IDFA, GAID, or any advertising identifier is collected.
- No user tracking permission under Apple App Tracking Transparency (ATT) is requested because no cross-app or web tracking is performed.
- No third-party analytics SDK (Google Analytics, Facebook SDK, etc.) is used.
5. Data Storage and Security
5.1. Retention Period
- Account data: Stored as long as your account is active.
- Worship data: Stored as long as your account is active; you can permanently delete all your data through account deletion.
- Analytics data: Automatically anonymized or deleted 12 months after collection.
- AI chat data: Stored until account deletion.
- Push tokens: Deleted when the account is deleted or the app is uninstalled.
5.2. Security Measures
- All data transfers are protected with TLS 1.2+ encryption.
- Database is encrypted with AES-256 (Supabase infrastructure).
- Passwords are stored using bcrypt hash algorithm; never saved as plain text.
- Row Level Security (RLS) is applied server-side; each user can only access their own data.
- API keys and sensitive information are stored in environment variables, not in client code.
- Sensitive data (session tokens) is protected on the device using SecureStore (iOS Keychain / Android Keystore).
6. Your Rights
6.1. Under KVKK (Article 11) and GDPR
You have the following rights regarding your personal data:
- To learn whether your personal data is being processed
- To request information if it has been processed
- To learn the purpose of processing and whether it is used in accordance with its purpose
- To know the third parties to whom your data is transferred domestically or abroad
- To request correction if your data is incomplete or inaccurately processed
- To request deletion or destruction under the conditions set forth in the law
- To request notification of corrections, deletions, or destructions to third parties
- To object to results arising against you through analysis exclusively by automated systems
- To claim compensation if you suffer damage due to unlawful processing
6.2. Under Apple and Google Platforms
- Account deletion: You can permanently delete all your data from Profile > Account > "Delete My Account". This action is irreversible and all your worship records, khatm progress, family network memberships, AI chat history, and profile information will be permanently deleted.
- Data portability: You can request a copy of your data by writing to help@ezanvedua.com.
- Analytics opt-out: You can stop analytics data collection by turning off "Usage Data" in the Settings screen.
7. Cookies and Local Storage
Our App does not use web browser cookies. The following local storage methods are used on your device:
- MMKV: High-performance key-value store for app settings, cache data, and offline data.
- SecureStore: Encrypted storage for session tokens and sensitive credentials (iOS Keychain / Android Keystore infrastructure).
- SQLite: Quran text and offline data cache.
8. Policy Changes
We may update this Privacy Policy from time to time. When significant changes are made:
- An in-app notification will be sent.
- The "Last Updated" date at the top of the policy will be changed.
- A reasonable period will be provided before the changes take effect.
If you do not accept the updated policy, you may stop using the App and delete your account.
9. Contact
For any questions, requests, or complaints regarding our privacy policy or your personal data:
Email: help@ezanvedua.com
Applications will be responded to within 30 days at the latest.
This policy has been prepared in accordance with the Turkish Personal Data Protection Law No. 6698 (KVKK) and the EU General Data Protection Regulation (GDPR). Disputes arising from the use of the App are subject to the jurisdiction of Istanbul Courts and Execution Offices.