Most of what you do in Tahajjud+ stays on your device. The few things that don't are listed below, explicitly.
These are stored only in local app storage on your phone and are never sent to any server unless you explicitly enable cloud sync:
If you choose to sign in with Apple ID or Google, the following sync to Google Firestore across your devices:
Only you can read your private entries. Firestore security rules enforce this at the server level — even our team cannot read what you write. Sign out at any time to stop syncing.
Some features are intentionally public when you opt in:
If you tap "Publish" on the Dua Wall, your dua text appears anonymously to other users. We store your Firebase user ID server-side to enforce rate limits and respond to reports — but it is never displayed alongside the dua.
Stories you submit through "Share Your Story" go to a moderation queue. If approved, they appear in the community feed under whatever author name you entered ("Anonymous", a first name, etc.) — never your account information.
If you enable Bedtime Intelligence in Settings, we read your past 14 days of sleep duration from Apple Health to suggest an optimal bedtime for Tahajjud.
This data is processed entirely on your device. Your raw sleep timestamps are never transmitted to our servers, to any analytics service, or to anyone. Computation happens in the app; the result (a suggested bedtime) is shown only to you.
We request location access to calculate accurate prayer times and Qibla direction for your area. Your coordinates are processed on your device. We do not transmit your location to our servers.
You can disable location at any time in iOS Settings → Tahajjud+ → Location. The app will then ask you to set a manual location.
When the app crashes, we send anonymized crash details to Sentry so we can fix the bug. This includes:
We explicitly do NOT send: the content of your journal entries, letters, dua text, or any spiritual content. Our code filters these out before transmission. We also do not send your name, email, or location.
We track anonymous events like "app launched", "tab switched", "paywall viewed" via PostHog so we know which features get used. This helps us improve the app.
We explicitly do NOT track: which verses you read, what you write in your journal, what duas you publish, your name, email, location, or any other content. We use only an anonymous random identifier — never something tied to your identity.
Premium subscriptions are processed by Apple's App Store. We never see your credit card or Apple ID password. We use RevenueCat as middleware to verify your subscription status — RevenueCat sees anonymized purchase receipts.
Manage or cancel subscriptions in iOS Settings → Apple ID → Subscriptions.
Quran translations and audio recitations are fetched from public APIs:
These APIs receive HTTP requests for surah numbers. They do not receive any of your personal data.
Uninstall the app, or in iOS Settings → Tahajjud+ → "Delete App."
Settings → Sync & Cloud → "Delete My Account" permanently deletes all your Firestore data and signs you out. We process within 30 days.
Email us at tahajjud.letters@gmail.com — we'll add your anonymous ID to a deny-list. An in-app toggle is on the roadmap.
Email us with the email tied to your account. We respond within 30 days.
Tahajjud+ does not knowingly collect personal information from children under the age of 13. If you believe a child has provided us with personal data, please contact us and we will delete it.
We update this policy when we change what we collect. Major changes are announced in-app with a banner you must acknowledge before continuing. Minor wording changes are posted here with a new "Last updated" date.
Questions, requests, or concerns:
tahajjud.letters@gmail.com