Back to home

Noor Al-Quran – Privacy Policy

Privacy Policy

Effective Date: April 12, 2026

Noor Al-Quran helps you listen to, download, and track your Quran recitations. This privacy policy explains what data we collect, how we use it, and the choices you have. We are committed to transparency and safeguarding your privacy.

1. Information You Provide Directly

Account creation is optional. If you choose to create an account, we collect:

  • Email address – used for account authentication and password reset.
  • Password – securely hashed and stored via Firebase Authentication. We never store passwords in plain text.
  • Display name – used for identification within the app and on leaderboards. If not provided, a random name is generated automatically.

If you sign in with Google, we receive your name, email address, and profile photo URL from Google. We do not access any other data from your Google account.

2. Information Collected Automatically

  • Country code – auto-detected from your device's locale settings, used for country-based leaderboards and localization. You can change this at any time.
  • Timezone – auto-detected from your device, used for time-related calculations. You can change this in settings.
  • Network type (WiFi, mobile data, or none) – checked in real-time to support the WiFi-only download feature. This information is not stored or transmitted.
  • Listening statistics – daily listening duration per calendar date, tracked automatically during audio playback. Stored locally on your device.
  • Achievement points – points earned based on the percentage of each Surah listened to, calculated and stored per Surah, per day, with an all-time total.
  • Bookmarks – marked positions in Quranic audio (reciter, Surah number, playback position, timestamp). Up to 50 bookmarks stored locally.
  • Favorites – your favorite reciters and Surah combinations, stored locally.
  • Playback state – your position in each audio track, playback speed, repeat mode, and last played reciter/Surah for the resume feature.
  • Download records – metadata about which Surahs you have downloaded for offline listening.

3. Information We Do Not Collect

  • We do not collect your precise geolocation (GPS).
  • We do not collect device identifiers (IMEI, advertising IDs).
  • We do not use analytics services (Google Analytics, Firebase Analytics, Amplitude, Mixpanel, etc.).
  • We do not use crash reporting services (Crashlytics, Sentry, etc.).
  • We do not display advertisements or use ad tracking networks.
  • We do not access your contacts, camera, microphone, or phone data.
  • We do not perform behavioral tracking or profiling for advertising purposes.

4. How We Use Your Information

  • Account authentication – email, password, or Google credentials.
  • Personalization – display name, language preference, theme, and country.
  • Audio playback & resume – playback position, last session state, and bookmarks.
  • Listening progress tracking – listening duration and achievement points.
  • Leaderboard & rankings – display name, country, and total points.
  • Cloud backup & sync – achievement history, total points, display name, and country (only if you have an account).
  • Offline listening – download metadata and audio files on your device.
  • Notifications – local playback notifications only (no push notifications from our servers).
  • Home screen widget – currently playing track, last session info, and daily athkar.

We do not profile users, sell data, or use targeted advertising.

5. Data Storage

Local Storage

The majority of your data is stored locally on your device, including settings, listening statistics, bookmarks, favorites, download metadata, and audio files. Local data is protected by your device's built-in operating system security.

Cloud Storage (Firebase)

If you create an account or sign in, the following data is stored on Google Firebase servers:

  • Display name
  • Country code
  • Total achievement points
  • Daily point history (per-Surah listening fractions and points)
  • Last backup timestamp
  • Ranking position (worldwide and per-country)

Using the App Without an Account

You can use the app fully without creating an account. In this case, all data remains on your device only, no personal data is sent to any server, and leaderboard features will not be available.

6. Third-Party Services & Data Sharing

Firebase (Google)

We use Google Firebase for authentication and database services. Firebase processes data in accordance with Google's Privacy Policy and Firebase's Data Processing Terms.

Google Sign-In

If you choose Google Sign-In, authentication is handled via Google's OAuth 2.0 protocol. We receive only your name, email, and profile photo URL.

External Content Providers

  • QuranicAudio – for downloading Quran recitation audio files. Only standard HTTP request data is shared (IP address, user-agent). No personal identifiers are sent.
  • Al-Quran Cloud API – for fetching Arabic Quranic text. Only the Surah number is sent. No personal data is transmitted.
  • Hisn Muslim API – for Islamic remembrances (Athkar) audio and text. Only the Athkar ID is sent. No personal data is transmitted.
  • Islamic Radio Stations – embedded radio stream URLs. Only standard network connection data is shared with stream providers.

We do not sell, rent, lease, or trade your personal information to any third party. The app contains no advertisements and we do not share data with advertising networks or data brokers.

7. Leaderboard & Public Visibility

If you have an account and access the Rankings tab, your data may appear on public leaderboards. The following information is publicly visible:

  • Display name
  • Country
  • Total points
  • Rank position

Your email address, timezone, listening history details, bookmarks, and favorites are never publicly visible.

8. Permissions

The app requests only the permissions necessary for its core features:

  • Internet – to download audio, sync data, and fetch Quran text.
  • Network State – to check WiFi connectivity for download settings.
  • Foreground Service – to continue audio playback in the background.
  • Wake Lock – to prevent device sleep during audio playback.
  • Notifications – for local playback and reminder notifications (opt-in on iOS).

The app does not request permissions for camera, microphone, contacts, location, phone, SMS, calendar, or storage beyond app-specific directories.

9. Data Security

  • All communications with Firebase and external APIs use HTTPS/TLS encryption.
  • Passwords are hashed by Firebase Authentication and never stored in plain text.
  • Google Sign-In uses industry-standard OAuth 2.0 protocol.
  • Local data is stored in app-specific directories protected by your device's operating system.
  • Firebase Security Rules restrict database access so each user can only read and write their own data.

While we take reasonable measures to protect your information, no method of electronic transmission or storage is 100% secure.

10. Data Retention & Deletion

Local Data

All locally stored data is retained on your device until you manually delete it within the app, clear the app's data through device settings, or uninstall the app.

Cloud Data

Your cloud data is retained for as long as your account exists. When you delete your account, we remove your user profile, ranking data, and achievement history from Firebase.

After account deletion, any locally stored data (listening statistics, bookmarks, favorites, downloaded audio) remains on your device and must be cleared separately.

11. Your Rights & Choices

  • Access & Review – view your personal data at any time through the Profile, Stats, Rankings, and Settings pages.
  • Correction – update your display name, country, language preference, theme, and playback settings at any time.
  • Deletion – delete individual bookmarks, downloaded content, or use the "Delete Account" option to remove all cloud data. Clear all local data via device settings or by uninstalling the app.
  • Opt-out of Cloud Sync – use the app without creating an account, and no data is sent to our servers.
  • Data Portability – you may contact us to request a copy of your data stored on our servers.

12. Children's Privacy

Noor Al-Quran is suitable for all ages and does not knowingly collect personal information from children under the age of 13 (or the applicable age in your jurisdiction) without parental consent. The app does not contain age-inappropriate content, advertisements, or in-app purchases. If you are a parent or guardian and believe your child has provided personal information through account creation, please contact us and we will take steps to delete that information.

13. International Data Transfers

If you create an account, your data may be processed and stored on Firebase servers located outside your country of residence. Google Firebase stores data in accordance with Google's data processing agreements and applicable data protection laws. By using the app with an account, you consent to the transfer of your data to servers that may be located in a different jurisdiction.

14. Updates to This Policy

We may update this policy to reflect improvements or legal requirements. When changes occur, we will update the effective date within the app and on our website. Continued use of Noor Al-Quran confirms acceptance of the updated policy.

15. Contact Us

If you have questions, concerns, or requests regarding privacy: