قصة
Qissah
Sign in
← Back
Legal
Privacy Policy
Last updated: 27 June 2026 (child avatars)
Qissah is operated by Qissah LTD ("we", "us", "our"). This Privacy Policy explains what personal information we collect when you use Qissah, how we use it, who we share it with, and the rights you have over it. We collect the minimum needed to run the Service — and because Qissah is used by families with young children, we treat the information you give us with extra care.
1. Who this policy is for
This policy is for the parent or legal guardian who creates a Qissah account. Children do not create accounts themselves and do not interact with Qissah directly. Any information you enter about a child is provided by you, on their behalf, under your supervision.
2. What we collect
Account details (about you): your display name, email address, and a hashed password (we never store the plaintext). If you sign in with Google, we receive a stable Google account identifier and your email — not your password. If you sign in with Apple, we receive a stable Apple identifier and an email address — which may be Apple's private-relay forwarding address if you choose to hide your real one — again, never your password.
Avatar photos (optional): if you choose to create an avatar — of yourself, or of your child — you upload a photo. We use it once to generate a stylized, cartoon-style avatar (not a realistic likeness), then delete the original photo — we keep only the generated avatar, which you can remove at any time. Uploading a photo is entirely optional and parent-initiated, and the act of uploading is your consent to this processing. See section 7 for how this applies to a child's photo.
Child profile details (about your child): first name (or a chosen nickname), age, gender, English fluency, optional interests, and any free-text notes you choose to add. You decide what to share; no field other than name + age is required.
Stories you generate: the prompt you submit (theme, length, tone, parent notes), the generated narrative, the cover image, any narrated audio files, and the linked verse/hadith references.
Billing information: if you subscribe to a paid plan on the web, your payment details are handled by Stripe; if you subscribe inside our iOS app, the purchase is processed by Apple's App Store (In-App Purchase) and managed through RevenueCat. In either case we never see or store your full card number — we store only the opaque customer and subscription identifiers needed to keep your plan in sync.
Technical data: a session cookie (HTTP-only, SameSite=Lax) so you stay signed in; your IP address (used for per-IP rate limiting and abuse prevention); and basic server logs (request path, timestamp, status code) for operational debugging.
Usage activity: a lightweight behavioural log of how the Service is used — pages visited, key actions taken (e.g. a story generated, a checkout started), and a random per-browser visitor id used to group activity before you sign in. This log is structural only: it records event types, page paths, and small identifiers (such as a topic or story id) — never your child's name, the story text, scripture, your email, or your password. We use it for product analytics and abuse prevention, and it is automatically deleted after 90 days.
3. What we do with it
We use the information above only to:
Generate personalised stories for your child;
Display the stories you've created in your account;
Keep you signed in across visits;
Charge subscriptions (via Stripe on the web, or Apple's App Store in the iOS app) and enforce your plan limits;
Prevent abuse (rate limiting, account-bound fraud checks);
Improve the Service through aggregate, non-identifying analytics.
We do not sell your data to advertisers. We do not build advertising profiles. Your child's profile data is never used to target anyone with ads — yours or anyone else's.
4. Who we share it with (sub-processors)
To run the Service we use a small number of trusted sub-processors. Each sees only the minimum data needed for their part of the job:
Anthropic / OpenRouter (LLM provider): receives the story prompt — child first name, age, interests, theme, parent notes — so it can generate a narrative. Sacred text (Qur'an verses, hadith) is never sent to the LLM; it is retrieved separately from our content store. The LLM provider does not train on our prompts under their enterprise terms.
OpenAI (images): receives a one-sentence "scene" string to generate a story's cover illustration. If you create an avatar, it also receives the photo you upload, in order to generate your stylized avatar; the photo is used only for that and is not retained by OpenAI under their API terms. Generated images are returned to us and stored on your account.
ElevenLabs (audio narration): receives the finalised story narrative to synthesise the read-aloud audio, which is returned to us and stored on your account. Only the story prose is sent — never the Qur'an or hadith text.
Stripe (web payments): handles all card details and PCI compliance. We receive only the customer / subscription identifiers and the current plan status.
Apple (iOS in-app purchases): if you subscribe inside our iOS app, Apple's App Store processes the payment. We receive only your subscription status — never your card details.
RevenueCat (subscription management): coordinates iOS in-app purchases and reports your current plan to us. It receives the account identifier we assign you, a device identifier (Apple's vendor identifier, used to match a purchase to your install), and your purchase/renewal events — not your payment details.
Google (optional sign-in): if you choose Google sign-in, Google verifies your identity and shares your email address with us. We never see your Google password.
Render (hosting): operates the servers and database where Qissah runs. Data at rest is encrypted by the host; transit is over HTTPS.
Sentry (error monitoring, optional): receives uncaught server errors so we can debug them. We have configured Sentry to avoid auto-capturing request headers, cookies, or the request body, so personal data should not normally appear in error reports.
We do not share your data with anyone else for any purpose other than the ones listed in this policy.
5. Where it lives and how long we keep it
Qissah's database and storage are hosted on Render. Generated stories — including the narrative, cover image, and any narrated audio — are stored against your account for as long as your account exists.
Session cookies expire after 7 days of inactivity. Server logs are retained for up to 30 days. Stripe retains billing records as required by financial regulation in the jurisdiction where Stripe processes the payment (typically 7 years).
If you cancel your subscription, your account stays active on the Free tier — your stories remain accessible. If you delete your account (see section 6), all of your stories, child profiles, avatars, and account details are removed from our systems within 30 days, except where retention is required by law (e.g. Stripe's invoice records).
6. Your rights and choices
You can, at any time:
Access your data — every story and child profile is visible in your account.
Edit or delete any story, child profile, or your own account from inside the app.
Export a story — use the Print action on the story page to save a copy.
Withdraw consent — delete your account to revoke every permission you've granted us.
Depending on where you live, you may also have additional rights under data-protection law (for example, GDPR in the EU/UK, or CCPA in California). To exercise any of those rights, email us at support@qissah.io and we'll respond within 30 days.
7. Children's privacy
Qissah is designed to be used by parents on behalf of their children. We do not knowingly collect personal information directly from children. The child profile fields are filled in by you, in your role as parent or guardian.
If you are based in the United States, this puts the collection of child information under the parental-consent model contemplated by COPPA — your creation of the account and the child profile is the consent. If you are based in the EU/UK, our lawful basis for processing your child's data is your consent as the parent or guardian, which you may withdraw at any time by deleting the child profile or your account.
We deliberately do not ask for surnames, addresses, phone numbers, school names, or any other detail that could identify a child off-platform.
Child avatar photo (optional). You may, if you choose, upload a photo of your child to create a stylized, cartoon-style avatar (not a realistic likeness). This is entirely optional and parent-initiated. We use the photo once to generate the avatar and then delete the original immediately — we never store a child's photograph; only the generated cartoon avatar is kept, and you can delete it at any time. As with all child information, your upload is the parental consent for this processing, and you may withdraw it by deleting the avatar, the child profile, or your account.
8. Security
All traffic to and from Qissah is encrypted in transit (HTTPS). Passwords are stored only as bcrypt hashes; session tokens are stored hashed in the database, with the raw value living only in your browser cookie. Card details are handled exclusively by Stripe; we never see or store them.
No system is perfect. If you believe your account has been compromised or if you discover a vulnerability, please email us at support@qissah.io so we can investigate.
9. International transfers
Some of our sub-processors operate servers outside the United Kingdom. Where data is transferred internationally, we rely on the standard contractual clauses or equivalent legal mechanisms offered by each sub-processor to protect that transfer.
10. Changes to this policy
If we change this policy materially — for example, adding a new sub-processor or a new category of data — we'll update the "Last updated" date at the top of this page and, where the change is significant, notify you in the app or by email. Continued use of the Service after a change means you accept the updated policy.
11. Contact
Questions, concerns, or requests about your data? Email us at support@qissah.io — we read every message.
By using Qissah you acknowledge that you have read and understood this Privacy Policy.
© 2026 Qissah. All rights reserved.
Terms and Conditions
Privacy Policy
Contact us
قصة
Qissah