Rook & Crown LLC ("we," "us," or "our") operates the Dhikr mobile application (the "App"). This Privacy Policy explains how we collect, use, store, and protect your information when you use our App.
By using the App, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree, please do not use the App.
1. Information We Collect
a) Account Information
When you create an account using Sign in with Apple or Google Sign-In, we receive:
- Name (if provided by the sign-in service; Apple users may choose not to share their name)
- Email address (Apple users may choose to use Apple's "Hide My Email" relay service, in which case we receive an anonymized relay address)
- Unique user identifier provided by the authentication service
We do not collect passwords. Authentication is handled entirely by Apple and Google.
b) App Usage Data
We collect data you create through your use of the App:
- Dhikr counter values and daily statistics
- Saved/bookmarked items (dhikr, duas, Names of Allah)
- Collection data and custom practice sessions
- Daily streak and activity history
- Daily goal settings and preferences
- App preferences (theme mode, notification settings)
c) Subscription Data
We collect and store information related to your subscription:
- Subscription status (active, expired)
- Subscription type (monthly or lifetime)
- Subscription start and expiration dates
- Apple App Store transaction identifiers (for receipt validation)
d) Push Notification Tokens
If you enable push notifications, we collect your device push notification token to send you reminders and notifications. You can disable notifications at any time through the App's settings or your device settings.
e) Technical Data
We may collect basic technical information to ensure the App functions correctly:
- Device type and operating system version
- App version
We do not use any third-party crash reporting or analytics services. We do not collect crash data, performance diagnostics, or device advertising identifiers.
2. How We Use Your Information
We use the information we collect for the following purposes:
- App Functionality: To provide the core features of the App, including dhikr counting, saving items, tracking streaks, and syncing your data across devices
- Authentication: To create and manage your account securely
- Subscription Management: To verify your subscription status and provide access to the App
- Cloud Sync: To synchronize your data across your devices (for active subscribers)
- Notifications: To send you dhikr reminders and streak notifications (if you opt in)
- Customer Support: To respond to your inquiries and support requests
We do not use your data for advertising, marketing, or tracking purposes. We do not share your data with any artificial intelligence or machine learning services.
3. Third-Party Services
The App uses the following third-party services to operate. Each service receives only the minimum data necessary for its function:
| Service | Purpose | Data Received |
|---|---|---|
| Supabase | Authentication, database, cloud storage | Account info, app usage data, subscription data |
| RevenueCat | Subscription management, purchase validation | Anonymous app user ID, purchase history, subscription status |
| Apple (Sign in with Apple) | User authentication | Authentication tokens |
| Google (Google Sign-In) | User authentication | Authentication tokens |
| Apple App Store | Subscription payment processing | Payment and transaction data |
Each third-party service provider is contractually obligated to protect your data consistent with this Privacy Policy and applicable law.
We do not sell, rent, or trade your personal information to any third party. We do not share data with third-party advertisers.
4. Data Storage and Security
Storage
- Cloud storage: Your account data, usage data, and subscription information are stored on Supabase servers located in the United States.
- Local storage: Your preferences and cached data are also stored locally on your device for offline access (available to active subscribers).
- Encryption: All data transmitted between the App and our servers is encrypted using TLS (Transport Layer Security). Data at rest is encrypted on Supabase servers.
Security Measures
- Row Level Security (RLS) is enforced on our database, ensuring users can only access their own data
- Authentication tokens are securely managed through Apple and Google's OAuth protocols
- Access to user data in our systems is restricted to essential operations only
- We conduct regular reviews of our security practices
While we implement industry-standard security measures, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security.
5. Data Retention
- Active accounts: Your data is retained for as long as your account remains active.
- Deleted accounts: Upon account deletion, all personal data is permanently removed from our servers within 30 days. See Section 7 for details on account deletion.
- Subscription records: Transaction identifiers may be retained as required for financial record-keeping and legal obligations.
- Push notification tokens: Tokens are deleted when you disable notifications or delete your account.
6. Data Sharing
We may disclose your information only in the following circumstances:
- Service providers: As described in Section 3, to operate the App
- Legal requirements: When required by law, regulation, legal process, or governmental request
- Protection of rights: To enforce our Terms of Use, protect our rights, or ensure the safety of our users
- Business transfer: In connection with a merger, acquisition, or sale of assets, in which case you will be notified of any change in ownership or use of your data
7. Account Deletion
You can delete your account at any time from within the App by navigating to Settings > Account > Delete Account.
When you request account deletion:
- All your personal data (account information, usage data, saved items, streaks, preferences) will be permanently deleted from our servers within 30 days
- Your locally stored data will be removed from the device immediately
- If you signed in with Apple, your Sign in with Apple credentials for this App will be revoked
- You will receive confirmation when the deletion process is complete
8. Subscription Terms
The App offers a free tier with basic functionality, including a dhikr counter and a limited selection of duas and dhikr. Full functionality — including all content, cloud sync, collections, streaks, and additional features — requires an active subscription.
- Monthly Subscription: $9.99 per month (auto-renewable)
- Lifetime Access: $79.99 one-time purchase
For the monthly subscription, payment is charged to your Apple ID account at confirmation of purchase. Your subscription automatically renews unless auto-renewal is turned off at least 24 hours before the end of the current period. Your account will be charged for renewal within 24 hours prior to the end of the current period at the applicable subscription rate. You can manage and cancel your subscription in your Apple ID Account Settings after purchase. The Lifetime Access option is a one-time, non-recurring purchase that grants permanent access to the App.
9. Children's Privacy
The App is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that we have inadvertently collected personal data from a child under 13, we will take steps to delete that information promptly. If you believe a child under 13 has provided us with personal information, please contact us at support.team@dhikranddua.com.
10. International Data Transfers
Your data is processed and stored on servers located in the United States (via Supabase). If you are accessing the App from outside the United States, your data will be transferred to and processed in the United States.
By using the App, you consent to the transfer of your data to the United States. We ensure that data transfers comply with applicable data protection laws and that appropriate safeguards are in place.
For users in the European Economic Area (EEA): the legal basis for processing your data is your consent (provided when you create an account) and the performance of our contract with you (providing the App's services).
11. Your Rights
Depending on your jurisdiction, you may have the following rights regarding your personal data:
- Access: Request a copy of the personal data we hold about you
- Correction: Request correction of inaccurate or incomplete data
- Deletion: Request deletion of your account and associated data (see Section 7)
- Portability: Request your data in a portable, machine-readable format
- Withdraw consent: Withdraw your consent to data processing at any time (which may result in loss of access to the App)
For California residents (CCPA): You have the right to know what personal information we collect, request deletion, and opt out of the sale of personal information. We do not sell personal information.
For EEA residents (GDPR): You have the right to lodge a complaint with your local data protection authority.
To exercise any of these rights, contact us at support.team@dhikranddua.com. We will respond within 30 days.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. When we make material changes, we will:
- Update the "Last Updated" date at the top of this policy
- Notify you through the App or by email
Your continued use of the App after changes are posted constitutes your acceptance of the updated Privacy Policy.
13. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy, contact us at: