Skip to content
Prayer Times Near Me
Go Pro

Privacy Policy

Last updated: 2026-05-26

Prayer Times Near Me ("we," "us," or "our") operates prayertimesnearme.com. This Privacy Policy explains what data we collect, how we use it, and your rights. We are committed to handling your information transparently and responsibly.

1. Data We Collect and Why

Account information

When you create an account you provide an email address and password (stored as a salted hash), or you sign in via Google OAuth (in which case we receive your name and email address from Google). We use this data solely to authenticate you and manage your account.

Prayer logs and streak tracking

If you use the prayer journal or streak features, we store your prayer completion records and journal entries in our database (Neon Postgres). This data is linked to your account and is used exclusively to power those features for you.

Saved locations

When you save a location, we store the latitude and longitude coordinates in your account so you can quickly retrieve prayer times without re-entering your location. We do not store street-level address details.

Push notification subscriptions

If you opt in to web push notifications, your browser generates a unique push endpoint URL. We store this endpoint in our database in order to deliver prayer time reminders. You can revoke push permission at any time in your browser settings or from your account dashboard, and we will delete the stored endpoint.

Billing and payment information

Payments for Pro subscriptions are processed by Stripe. We do not see or store your full credit card number, CVV, or bank details — Stripe handles all payment card data under their own PCI-DSS compliance program. We receive and store a Stripe customer ID and subscription status so we can grant you Pro access. You can review Stripe's privacy policy at stripe.com/privacy.

Location data (browser geolocation)

If you use the auto-detect feature, your browser requests your GPS coordinates. These coordinates are processed client-side to calculate prayer times and are sent to the Nominatim reverse geocoding API (see below) to resolve a city name. Coordinates are not stored on our servers unless you explicitly save the location to your account.

Analytics

We use Google Analytics 4 (when configured) and Vercel Analytics to understand aggregate traffic patterns — pages visited, approximate geographic region, and device type. This data is anonymized and aggregated; we cannot identify individual users from it. Google Analytics is loaded only after you accept analytics cookies via our cookie consent banner. Vercel Analytics is a privacy-friendly, cookieless analytics tool; see vercel.com/docs/analytics/privacy-policy.

Contact communications

If you email us or use our contact form at prayertimesnearme.com/contact, we retain your email address and message content only as long as necessary to respond to your inquiry. If you opt in to product updates on the form (checkbox), we may use your email to send occasional notes about new features or seasonal content (e.g. Ramadan). You can unsubscribe at any time.

Calendar export (.ics subscriptions)

Pro subscribers can generate a personal calendar feed URL. The URL contains a random per-account token. Anyone with the URL can subscribe to your prayer times in Apple Calendar, Google Calendar, or any iCal-compatible app. You can revoke the token from your dashboard at any time, which immediately stops feeding any subscribed calendar app.

2. Third-Party Services

Google OAuth: If you sign in with Google, your authentication is handled by Google. We receive your name and email address. See Google's Privacy Policy.

Stripe: Payment processing. Stripe is a PCI Service Provider Level 1 certified payment processor. We never touch raw payment card data.

Nominatim (OpenStreetMap): Reverse geocoding API used to convert GPS coordinates to a city name. Only your coordinates are sent; no account identifiers are included. See nominatim.org/privacy.html.

Google Analytics 4: Traffic analytics (loaded only with your consent). You can opt out via tools.google.com/dlpage/gaoptout.

Vercel: Our hosting provider. Your requests pass through Vercel's infrastructure. See vercel.com/legal/privacy-policy.

3. Lawful Basis for Processing (GDPR)

For users in the European Economic Area, we process your personal data on the following legal bases:

  • Contract performance: Account data, billing records, and Pro feature data are processed to fulfill our agreement with you (providing the service you signed up for).
  • Legitimate interest: We process anonymized analytics data to improve the service and understand how it is used, in a way that does not override your fundamental rights.
  • Consent: Google Analytics 4 cookies are loaded only after you explicitly accept analytics cookies.

4. Data Retention

We retain account data and associated records (prayer logs, journal entries, saved locations, push subscriptions) for as long as your account exists. If you delete your account, all associated personal data is permanently deleted within 30 days. Stripe retains billing records as required by law. Google Analytics data is retained for 26 months by default.

5. Your Rights — Right to Erasure and Data Access

You have the right to access, correct, export, or delete your personal data. You can delete your account at any time from your account dashboard, which will trigger deletion of all your stored personal data. For any other requests — including data portability, objection to processing, or complaints — email us at [email protected]. We will respond within 30 days.

If you are in the EEA, you also have the right to lodge a complaint with your local data protection authority.

6. CCPA Disclosure (California Residents)

We do not sell your personal information. In the past 12 months we have not sold or disclosed personal information for cross-context behavioral advertising. California residents may request disclosure of the categories and specific pieces of personal information we have collected, request deletion, or opt out of any future sale by contacting us at [email protected]. We will not discriminate against you for exercising your CCPA rights.

7. Cookies

We use a cookie (cookie_consent) to remember your analytics preference. If you accept analytics, Google Analytics 4 may set additional cookies in your browser. You can manage or delete cookies through your browser settings at any time.

8. Security

We use industry-standard security practices including TLS encryption in transit, hashed passwords (bcrypt), and access controls on our database. No method of transmission over the internet is 100% secure; we cannot guarantee absolute security.

9. Children's Privacy

Our service is not directed to children under 13. We do not knowingly collect personal data from children under 13. If you believe a child has provided us with personal data, please contact us and we will delete it.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be reflected in the "Last updated" date at the top of this page. Continued use of the service after changes constitutes acceptance of the updated policy.

11. Contact

Privacy questions or requests: [email protected]