Back to Home

Privacy Policy

Last Updated: January 28, 2025

Introduction

Welcome to Purifyt ("we," "our," or "us"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application (the "App"). Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the App.

We reserve the right to make changes to this Privacy Policy at any time and for any reason. We will alert you about any changes by updating the "Last Updated" date of this Privacy Policy. You are encouraged to periodically review this Privacy Policy to stay informed of updates.

Information We Collect

Personal Information

When you create an account and use our App, we may collect the following personal information:

  • Account Information: Email address, username, phone number, password (encrypted)
  • Profile Information: Date of birth, gender, profile picture
  • Physical Measurements: Height, weight, goal weight, activity level

Health and Fitness Data

To provide our fitness tracking features, we collect:

  • Workout Data: Exercises performed, sets, repetitions, weights lifted, workout duration, and personal records
  • Cardio Sessions: Distance, duration, pace, calories burned, and GPS route coordinates (when you enable location tracking during cardio activities)
  • Activity Data: Daily step counts, calories burned, and distance traveled
  • Weight Tracking: Weight logs with timestamps and progress history
  • Health Integration: If you choose to connect Apple HealthKit (iOS), we may access steps and heart rate data with your permission

Nutrition Data

To provide our nutrition tracking features, we collect:

  • Meal Information: Meal names, descriptions, calories, protein, carbohydrates, fats, and micronutrients
  • Food Analysis: When you use our AI food analysis feature, photos of your food are temporarily processed to estimate nutritional information
  • Barcode Scans: Product barcode data to retrieve nutritional information from food databases

Prayer and Religious Data

To provide our Islamic prayer tracking features, we collect:

  • Prayer Records: Which prayers you've completed, when they were completed, and where (home or mosque)
  • Prayer Streaks: Streak history, achievements, and milestones
  • Quran Progress: Reading sessions, favorite verses, and progress tracking
  • Dhikr Counts: Daily supplication counts
  • Location Data: Your current location is used to calculate accurate prayer times. We only store your most recent location request, not a history of your movements

Menstruation Data (Optional)

If you choose to use our period tracking feature, we collect:

  • Period Information: Start and end dates of menstrual periods
  • Cycle Data: Cycle length and predictions

This data is entirely optional and only collected if you enable this feature.

Social and Gamification Data

  • Friend Connections: Friend requests, friendships, and group memberships
  • Leaderboard Data: Rankings, scores, XP points, and achievement levels
  • Activity Sharing: Daily activity snapshots shared with friends (if enabled)

Technical and Device Data

  • Device Information: Device type, operating system, app version
  • Usage Data: App interactions and feature usage
  • Push Notification Tokens: Device tokens to send you notifications
  • Security Data: IP address and login attempt history (for security purposes)
  • Timezone and Locale: To provide localized experiences and accurate prayer times

How We Use Your Information

We use the information we collect to:

  • Provide App Functionality: Track your workouts, nutrition, prayers, and health metrics
  • Calculate Prayer Times: Use your location to determine accurate prayer times for your area
  • Analyze Food: Process food photos to estimate nutritional content using AI
  • Personalize Your Experience: Customize recommendations based on your goals and preferences
  • Send Notifications: Deliver prayer time alerts, workout reminders, and other notifications you've enabled
  • Manage Subscriptions: Process and manage your subscription to Purifyt Pro
  • Improve Our Services: Analyze usage patterns to fix bugs and improve app performance
  • Ensure Security: Detect and prevent fraudulent activity and protect user accounts
  • Provide Social Features: Enable friend connections, leaderboards, and activity sharing

Third-Party Services

We use the following third-party services to operate our App:

Service Purpose Data Shared
Supabase Cloud database and authentication Account data, health data, all user-generated content
Sentry Error tracking and crash reporting Error logs, device information, app state during crashes
RevenueCat Subscription management User ID, purchase history, subscription status
Firebase Cloud Messaging Push notifications Device tokens
OpenAI AI-powered food image analysis Food photos (processed via API, may be retained up to 30 days for safety monitoring)
Open Food Facts Nutritional database Barcode queries
Google Maps Cardio route visualization (iOS) GPS coordinates during cardio sessions
Apple HealthKit Health data synchronization (iOS) Steps, heart rate (with your permission)

Each third-party service has its own privacy policy governing the use of your information. We encourage you to review their policies.

Legal Basis for Processing (GDPR)

We process your personal data based on the following legal grounds:

  • Contract Performance: Processing necessary to provide you with our services (account management, fitness tracking, prayer features)
  • Consent: For sensitive data including health information, religious data, and menstruation tracking, we rely on your explicit consent which you provide when enabling these features. You may withdraw consent at any time.
  • Legitimate Interests: For security monitoring, fraud prevention, and service improvement, where our interests do not override your rights
  • Legal Obligation: Where we are required to process data to comply with applicable laws

Special Category Data: Health data, religious data, and menstruation data are classified as "special category data" under GDPR. We only process this data with your explicit consent, which you provide by voluntarily entering this information into the App. You can delete this data at any time through the App or by contacting us.

Data Storage and Security

We take data security seriously and implement appropriate measures to protect your information:

  • Encryption in Transit: All data transmitted between your device and our servers is encrypted using TLS/HTTPS
  • Secure Cloud Storage: Your data is stored securely in Supabase with row-level security policies ensuring you can only access your own data
  • Local Encryption: Sensitive credentials on your device are stored using encrypted secure storage
  • Access Controls: We limit access to personal information to employees and contractors who need it to provide our services
  • Security Monitoring: We implement rate limiting, account lockout policies, and monitor for suspicious activity

Your Rights Under GDPR

If you are located in the European Economic Area (EEA), you have certain rights regarding your personal data:

  • Right to Access: You can request a copy of the personal data we hold about you
  • Right to Rectification: You can request correction of inaccurate or incomplete data
  • Right to Erasure: You can request deletion of your personal data (see "Account Deletion" below)
  • Right to Restrict Processing: You can request that we limit how we use your data
  • Right to Data Portability: You can request your data in a machine-readable format
  • Right to Object: You can object to processing of your personal data
  • Right to Withdraw Consent: You can withdraw consent at any time where we rely on consent to process your data

To exercise these rights, please contact us at support@purifyt.com.

California Privacy Rights (CCPA)

If you are a California resident, you have the following rights under the California Consumer Privacy Act:

  • Right to Know: You can request information about the categories and specific pieces of personal information we have collected about you
  • Right to Delete: You can request deletion of your personal information
  • Right to Opt-Out: You have the right to opt-out of the sale of your personal information. We do not sell your personal information.
  • Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights

To exercise these rights, please contact us at support@purifyt.com.

Data Retention

We retain your personal information for as long as your account is active or as needed to provide you services. If you request account deletion:

  • All your personal data will be permanently deleted from our systems
  • This includes your profile, fitness data, nutrition logs, prayer records, social connections, and all associated data
  • Deletion is performed as a cascade delete across all data tables
  • Some anonymized or aggregated data may be retained for analytical purposes

Account Deletion

You can delete your account at any time through the App settings. When you delete your account:

  1. All personal information is permanently removed
  2. All health and fitness data is deleted
  3. All prayer and religious data is deleted
  4. All social connections are removed

Important: If you have an active subscription, you must cancel it separately through the App Store (iOS) or Google Play Store (Android) before deleting your account. Deleting your account does not automatically cancel your subscription billing.

This process is irreversible. Please export any data you wish to keep before deleting your account.

Children's Privacy

Our App is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If we discover that a child under 13 has provided us with personal information, we will promptly delete it. If you believe a child under 13 has provided us with personal information, please contact us at support@purifyt.com.

International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence, including the United States where our third-party service providers (Supabase, OpenAI, Sentry, RevenueCat) operate. These countries may have data protection laws that are different from the laws of your country.

When we transfer your information internationally, we rely on:

  • Standard Contractual Clauses (SCCs) approved by the European Commission for transfers to countries without an adequacy decision
  • Data Processing Agreements with our service providers that include appropriate data protection commitments
  • Your consent for transfers necessary to provide you with our services

By using the App, you acknowledge and consent to the transfer of your information to these countries.

Push Notifications

With your permission, we may send push notifications to your device for:

  • Prayer time reminders
  • Workout reminders
  • Achievement notifications
  • Friend activity updates
  • App updates and announcements

You can disable push notifications at any time through your device settings or within the App.

Location Services

We use your location data to:

  • Calculate accurate prayer times based on your geographical position
  • Track cardio routes during outdoor activities (with your permission)
  • Find nearby mosques (if you use the mosque finder feature)

Location Data Retention

  • For prayer time calculations, we only retain your most recent location request. We do not store a history of your movements or track your location over time.
  • For cardio sessions, GPS route data is stored only if you choose to save the activity. You can delete individual cardio sessions and their associated route data at any time.
  • We do not track your location when you are not actively using the App.

Route Privacy

  • Cardio route maps are private by default and only visible to you.
  • If you share activities with friends, you control what information is visible.
  • Consider the sensitivity of your routes (e.g., home address, workplace) when sharing activities.

You can disable location services at any time through your device settings. Note that some features may not function properly without location access.

Artificial Intelligence and Machine Learning

We use AI and machine learning technologies to enhance your experience:

How We Use AI

  • Food Image Analysis: We use OpenAI's vision models to analyze photos of your meals and estimate nutritional content
  • Workout Planning: AI-powered suggestions for workout routines based on your goals and preferences
  • Personalized Recommendations: Machine learning helps us suggest relevant content and features based on your usage patterns

Your Data and AI

  • AI features are optional - you can use the App without engaging with AI-powered features
  • Food photos sent for AI analysis are processed in real-time and are not used to train AI models
  • We do not use your personal health data, religious data, or menstruation data to train any machine learning models
  • AI-generated recommendations (such as nutritional estimates) should be verified and are not a substitute for professional medical or nutritional advice

Transparency

  • When content or recommendations are AI-generated, we aim to make this clear within the App
  • You can provide feedback on AI recommendations to help us improve accuracy

Additional Information for Specific Features

AI Food Analysis

When you use our AI-powered food analysis feature:

  • Your food photos are sent to OpenAI's servers for processing via their API
  • OpenAI may retain images for up to 30 days for trust and safety purposes, in accordance with their data usage policies
  • OpenAI does not use API data to train their models (as per their API data usage policy)
  • The analysis results (nutritional estimates) are stored in your account
  • We recommend not including identifiable information (faces, documents) in food photos

Apple HealthKit Integration (iOS)

If you choose to connect Apple HealthKit:

  • We only access the specific data types you authorize (steps, heart rate)
  • HealthKit data is used solely to sync your health metrics within the App
  • We do not share HealthKit data with third parties for advertising or marketing purposes

Subscription Information

Subscription purchases are processed through the App Store (iOS) or Google Play Store (Android). We receive information about your subscription status through RevenueCat but do not have access to your payment card details.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by:

  • Updating the "Last Updated" date at the top of this page
  • Sending a notification through the App for significant changes
  • Posting a notice within the App

Your continued use of the App after any changes indicates your acceptance of the updated Privacy Policy.

Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us at:

Email: support@purifyt.com

We will respond to your inquiry within 30 days.

This Privacy Policy is effective as of January 28, 2025.