App Privacy Policy
1) Purpose of this Notice
This App Privacy Policy explains what information we collect when you use our Apps, why we collect it, how we use it, and the choices and rights available to you. It covers both the Guardian Dashboard used by parents/legal guardians and the Child App installed on a child’s device with appropriate consent. This Notice forms part of our overall privacy framework and should be read together with any in-app disclosures, permission prompts, or platform-specific privacy statements. Where local law grants you stronger protection, those rights prevail.
2) Who we are
MSURFER OÜ (“MuslimSurfer”, “we”, “us”, “our”) is the controller for the personal data processed via the Apps, unless stated otherwise. We are established in Estonia and operate within the European Union.
3) What we provide
MuslimSurfer offers parental-supervision tools that help parents/legal guardians manage children’s digital use (e.g., category blocking, time limits, activity overviews, location features where enabled, and safety alerts). Features may vary by device, operating system, country and subscription tier.
4) The Apps and permissions
We make available software to access the Service via compatible mobile devices. Some functionality requires device permissions (for example, Accessibility services, Notifications, Location, Usage stats, Overlay, Storage). Permission prompts appear in-app and can be adjusted in your device settings. Disabling a required permission may limit or disable specific features.
5) Products covered
- Guardian Dashboard (parent app and/or web): used by adults to configure and manage child profiles, view activity summaries and adjust settings.
- Child App (Android/iOS): installed on a child’s device with appropriate consent to enable protective and supervision features chosen by the guardian.
6) Information we collect
We collect information in two primary ways:
(A) Information you provide: account details (e.g., guardian name, e-mail), child profile data (e.g., name or nickname, age/date of birth, relationship to guardian), support requests, feedback, and billing details for paid plans.
(B) Information generated by use of the Apps: depends on your configuration, the platform, and permissions granted.
6.1 Guardian Dashboard (parent app/web)
From the parent’s own device we generally collect only guardian account data and diagnostic/analytics necessary to secure, operate and improve the Service (e.g., crash logs, performance measures). We do not collect the parent device’s call history, contacts, installed apps or precise location via the Dashboard.
6.2 Child App (Android)
Subject to your settings, subscription and permissions granted, the Child App on Android may process:
- Device information: model, OS version, identifiers, network information;
- Usage information: app/package names, app-usage durations, screen-time metrics;
- Web activity: browsing history/URLs/domain categories where monitoring is enabled;
- Installed applications: list of installed apps to enable App Blocker/limits;
- Communications metadata (where enabled): call logs and SMS metadata/content;
- Contacts: address book entries to help guardians identify interactions;
- Media signals (where enabled): images or thumbnails processed to detect potentially inappropriate content for safety purposes;
- Location data (where enabled): approximate and/or precise location; periodic background updates may occur to provide geofencing, check-ins and safety alerts;
- Operational signals: start-up, background operation, notifications, overlay/Accessibility events needed to enforce limits and show mandatory notices.
6.3 Child App (iOS)
Due to platform differences, iOS features may be more limited. Where enabled/available, the Child App may process:
- Device information and operational diagnostics;
- Installed applications and usage summaries (where supported);
- Contacts (where enabled);
- Location data (where enabled) for geofencing, check-ins and alerts.
We design our Apps with transparency and child-safety in mind. In all cases, the exact data processed depends on which features you activate and the permissions you grant.
7) Lawful bases for processing (GDPR/EU)
- Consent (e.g., verifiable parental consent for a child’s device; opt-in analytics/marketing where required).
- Contract (to provide the Service you requested).
- Legitimate interests (e.g., to maintain security, prevent abuse, improve the Apps), balanced against your rights and expectations.
- Legal obligation (e.g., accounting, responding to lawful requests).
8) How we use the information
- provide, configure and maintain the Service and its safety features;
- show guardians dashboards, summaries and alerts based on their chosen settings;
- enforce time limits, app/category blocking and similar controls;
- provide customer support and troubleshoot issues;
- improve reliability, performance and safety (including analytics and anti-tamper measures);
- manage billing, payments and subscriptions;
- comply with legal duties and respond to lawful requests.
We do not sell personal data.
9) Children’s privacy and guardian responsibilities
Our Apps are intended to be set up and managed by adults (parents/legal guardians). Children must not create guardian accounts. Guardians are responsible for obtaining any required consent and providing appropriate notice to the child and other device users; configuring features lawfully and proportionately; and installing the Child App only on devices they own or are authorised to control. If you believe data about a child has been collected without proper authority, contact us so we can investigate and act.
10) Data sharing and disclosures
- Your family group: information visible to guardians within the same family account (e.g., locations, usage summaries) as configured.
- Service providers: payment processors, hosting, analytics, security and support partners who act under written instructions and confidentiality obligations.
- Corporate transactions: in the event of a merger, acquisition or restructuring, subject to safeguards and applicable law.
- Legal compliance and safety: where required by law or to protect users, our rights, or the Service (e.g., responding to lawful requests, preventing fraud or misuse).
We do not disclose personal data to third parties for their own marketing.
11) International transfers
Where data is processed outside your country, we implement appropriate safeguards consistent with EU law (for example, contractual protections and technical/organisational measures) to protect your information.
12) Data retention
We retain personal data only for as long as necessary for the purposes described above, including to provide the Service, comply with legal obligations, resolve disputes and enforce agreements. Retention periods vary depending on the data type and your settings. If you close your account, we will delete or anonymise personal data within a reasonable period, subject to lawful retention needs.
13) Your choices and controls
- Permissions: you can enable/disable device permissions in your OS settings; some features require certain permissions to function.
- Notifications and e-mails: service-related notices are essential and may not be switched off; marketing e-mails (if any) can be unsubscribed from.
- Child profiles: guardians control what features are enabled for each child.
- Cookies/SDK settings: you can adjust in-app settings and device preferences to limit certain data uses where available.
14) Your rights (GDPR/EU/UK)
Subject to legal limits, you may have the right to: access, rectify, erase, restrict or object to processing, and data portability. Where processing is based on consent, you can withdraw consent at any time (this does not affect prior lawful processing). To exercise your rights, contact info@muslimsurfer.com. We may need to verify your identity and, for child data, verify your status as the legal guardian.
15) Security
We use appropriate technical and organisational measures designed to protect personal data against unauthorised access, loss, misuse or alteration. No system is completely secure; you share information at your own risk. Keeping devices updated, using strong credentials and limiting access to your guardian account help protect your data.
16) Automated decision-making
We do not engage in solely automated decisions that produce legal or similarly significant effects on users. Certain automated checks (e.g., category detection, anomaly signals) support safety features but do not replace guardian review and judgement.
17) Third-party sites and services
The Apps may reference third-party services (for example, app stores or OS-level controls). We are not responsible for the privacy practices of third parties. Please review their privacy information directly within their platforms. This policy intentionally contains no external links.
18) Changes to this policy
We may update this policy from time to time. Material changes will be highlighted in-app or on first launch after the update. The “Last updated” date at the top shows when this policy was most recently revised.
19) Contact
MSURFER OÜ — Sepapaja 6, 15551 Tallinn, Estonia, EU
E-mail: info@muslimsurfer.com
If we cannot resolve your concern, you may have the right to contact your local data protection authority.
20) Summary of key differences by platform (informative)
Android: broader feature set enabled by permissions such as Accessibility, Usage Access, Overlay and Background Location; may include app usage metrics, web history, call/SMS metadata/content, contacts, installed apps, images/thumbnails for safety detection, and location (where enabled).
iOS: platform limitations may restrict certain features; where enabled, data may include installed apps, limited usage summaries, contacts and location.
In all cases, the guardian’s configuration and granted permissions determine what is collected and shown.