HUR — DOCUMENTS

Privacy Policy

Hurr is an app that blocks pornographic content on your device. We do not sell your data, do not show ads, and do not log what you browse. This page explains exactly what we do collect, why, and where it is stored.

Last updated
25 April 2026
Language
Français العربيّة
01

The principle

Hurr was designed to help you walk away from pornography — a personal subject by nature. So our handling of your data follows one rule: we do not collect anything Hurr doesn't need to function. What we don't need, we don't ask for, don't receive, and don't store.

We are not an advertising company and never will be. Hurr is funded by optional Premium subscriptions, not by your data.

One-line summary: Hurr uses your Google email to sign you in, and syncs your block lists and settings across your devices. That is all.

02

What we collect

Sign-in account

When you sign in with Google, the app receives your email address, the unique account identifier Firebase generates for you (the Firebase UID), and the name and photo associated with your Google account. We use the email and Firebase UID to identify your account and link your synced settings. Your name and photo stay locally on your device only and are not uploaded to our servers.

Synced app settings

Once you are signed in, the following data is synced to Google's Cloud Firestore so you can recover it after a fresh install or on a different device:

  • The list of apps you have chosen to block (package names such as com.example.app, with their display names and icons).
  • The list of websites you have chosen to block.
  • The list of keywords you have chosen to block.
  • Your Focus Mode schedules (start and end times, allowed apps, enabled state).
  • Your general settings (language, notifications toggle, adult-content blocking toggle, list of enabled features).
  • Your blocked-screen settings (message text, countdown duration, redirect URL if you set one).
  • Your Uninstall Protection enabled-state.
  • The PIN you optionally set to lock the settings — stored as a hash. The original PIN never reaches us and cannot be recovered from the hash.

Subscription state

If you subscribe to Hurr Premium, we record that your account has an active entitlement. This is handled by RevenueCat, which links your account identifier (Firebase UID) to the subscription you purchased through Google Play. Your card number and payment details never pass through our servers — that is handled exclusively by Google Play.

Crash reports

The app currently does not send us any crash reports or usage analytics. There are no tracking SDKs in Hurr — no Firebase Analytics, no Crashlytics, no Sentry, no third-party telemetry. If we ever decide to add optional crash reporting, we will update this page and ask for your explicit consent before turning it on.

03

What we never collect

This is not an exhaustive list, but it covers what we get asked about most:

  • Your browsing history. No URLs, no page titles, no page content.
  • Your searches. Neither the queries you typed nor the results.
  • Images or videos displayed by your browser or blocked by the app.
  • Your contacts, messages, or personal files.
  • Your geographic location.
  • Your behaviour inside other apps beyond what is strictly required to enable blocking.
  • Any advertising or third-party tracking identifier. Hurr contains no advertising SDKs.
04

What stays on your device

For Hurr to block pornographic content in your browser, it needs to read what the browser is displaying in real time. This reading happens locally on your device only, and is discarded immediately after the blocking decision is made. It is never saved, never uploaded, and never sent to any server — neither ours nor a third party's.

The same principle applies to the list of apps installed on your device, and your patterns of use: the app reads them locally to decide when to activate blocking, and uploads none of it.

05

Permissions the app requests

Every permission Hurr requests has one reason, tied to blocking. We do not request permissions for future use.

Accessibility
To read what the browser is displaying and block pornographic content before it appears. Reading is local and instantaneous.
Display over apps (SYSTEM_ALERT_WINDOW)
To show the blocking screen on top of a blocked app.
Usage stats (PACKAGE_USAGE_STATS)
To know which app is currently in the foreground, so we activate blocking only on apps you have selected. We do not read your historical usage log.
Installed-apps inventory (QUERY_ALL_PACKAGES)
To display the list of apps on your device on the "Choose apps to block" screen. Reading is local; the list is never uploaded.
Stop background processes (KILL_BACKGROUND_PROCESSES)
To close a blocked app the moment you try to open it, instead of merely covering it with the blocking screen.
Foreground service (FOREGROUND_SERVICE)
To keep the blocker running continuously in the background.
Run at boot (RECEIVE_BOOT_COMPLETED)
To restart the blocker automatically after the device reboots.
Internet (INTERNET)
To sync your settings (when you are signed in) and verify your subscription state. It is not used to send browsing content.
Device Admin
Optional — requested only if you enable "Uninstall Protection," to prevent Hurr from being uninstalled before the duration you chose has elapsed. You can revoke this permission at any time from Android system settings.
06

Service providers we rely on

Hurr relies on a small number of third-party services, each for a defined operational purpose. None of them receives the content of your browsing.

  • Google Firebase (Google LLC) — for Google sign-in and for storing your synced settings in Cloud Firestore.
  • Google Play Billing — to process subscription purchases. Hurr does not see your card details.
  • RevenueCat (RevenueCat, Inc.) — to verify your subscription state after purchase, using your Firebase account identifier.

Each of these services is governed by its own privacy policy. We choose our providers based on their security standards, and we give them the minimum data strictly required.

07

Transfers of data outside Morocco

Some of your data (Firebase UID, email, synced settings, subscription state) is stored on servers operated by Google Firebase and RevenueCat, both US-based companies operating servers in the United States and Europe. This means your data may be transferred outside Moroccan territory.

We are required, under law 09-08 on the protection of natural persons with regard to the processing of personal data, to obtain prior authorization from the National Commission for the Control of Personal Data Protection (CNDP) before such transfers, and to enter contractual safeguards with our providers ensuring an adequate level of protection. The official authorization reference is: {{cndp_ref}}.

If you are not comfortable with your data being transferred outside Morocco, you can use Hurr without signing in. The core free features work without an account, and no data leaves your device.

08

Your rights under law 09-08

Under articles 7, 8 and 9 of law 09-08, you have the following rights regarding your data:

  • Right of access. Email us at privacy@hurr.app and we will send you a copy of the data we hold about your account within thirty days.
  • Right of rectification. Most of your data is visible inside the app and you can edit it directly. For anything else, email us.
  • Right of erasure. Email us to delete your account and all its settings from our servers. We complete deletions within seven business days. Deletion is final and cannot be undone. We are currently adding a "Delete account" button inside the app's settings so this can be done in one tap.
  • Right of objection. You may object, on legitimate grounds, to the processing of your data. You can sign out at any time to immediately stop synchronization.

If you are not satisfied with our response, you have the right to file a complaint directly with the National Commission for the Control of Personal Data Protection (CNDP) — Hay Riad, Mahaj Riad, Building n°7, Rabat — via www.cndp.ma.

09

Children

Hurr is intended for adults who have made a conscious decision to disengage from pornographic content. The app does not target children under thirteen, and we do not knowingly collect data from anyone we know to be under that age. If we become aware of such a case, we delete the account immediately.

10

Changes to this policy

We may update this policy as the app evolves. For any material change, we will update the "Last updated" date above and notify active users inside the app a reasonable time before the change takes effect. A French version of this policy is available at /fr/privacy/, and an Arabic version at /privacy/. In case of any divergence in interpretation before Moroccan authorities, the French version is the binding one.

11

Contact us

For any question about your rights regarding your data, or to request access, rectification, or deletion, email us at privacy@hurr.app. We read every message and reply within seven business days at most.

For general questions or technical support: support@hurr.app.

Data controller {{legal_entity_name}}{{legal_entity_form}}, share capital: {{capital_social}}, Trade register: {{rc_number}}, Common Enterprise Identifier (ICE): {{ice}}, Tax Identifier (IF): {{if_number}}, registered office: {{legal_entity_address}}.