Jadhr

Privacy Notice

Last updated: 11 May 2026

1. Who we are

Jadhr is operated by Shahen Bhupendra Dalia, an individual sole trader, who acts as the data controller for personal data processed through the Service.

2. Personal data we collect

  • Account data — email address, display name (from sign-up or sign-in provider).
  • Authentication data — login tokens and session metadata.
  • Service content — words you look up, words you save, spaced-repetition history, audio playback requests.
  • Technical data — IP address, device and browser information, basic usage events for security and reliability.
  • Support communications — messages you send us.
  • Order data — handled by Paddle (see "Sharing" below); we receive subscription status, plan, billing period, and a Paddle customer ID.

3. How we use it

  • To create and operate your account (contract performance).
  • To provide lookups, vocabulary, audio, and reviews (contract performance).
  • To enforce free-tier limits and grant Pro access (contract performance).
  • To prevent fraud, abuse, and secure the Service (legitimate interests).
  • To improve the Service, debug issues, and produce aggregate analytics (legitimate interests).
  • To respond to support requests (legitimate interests / contract performance).
  • To meet legal and tax obligations (legal obligation).

4. Sharing

We share personal data with:

  • Paddle.com Market Limited — Merchant of Record. Paddle handles checkout, billing, taxes, invoicing, and refunds, and is an independent data controller for that data. See Paddle's privacy notice.
  • Hosting and infrastructure providers — Lovable Cloud and its underlying infrastructure (Supabase, Cloudflare) host the application, database, and storage.
  • AI model providers — Arabic analysis prompts are sent to Google (Gemini) via the Lovable AI Gateway. Audio is generated by ElevenLabs.
  • Authentication provider — Google (if you sign in with Google).
  • Professional advisers and authorities — where required by law.

5. International transfers

Some processors are located outside the UK/EEA. Where this is the case, transfers are protected by appropriate safeguards such as the European Commission's Standard Contractual Clauses or an adequacy decision.

6. Data retention

We keep account and service data for as long as your account is active. If you delete your account, we delete or anonymise associated personal data within a reasonable period, except where we must retain records for legal, tax, or fraud-prevention purposes. Cached audio and dictionary entries do not contain personal data and may be retained indefinitely to improve the Service.

7. Your rights

Subject to applicable law, you have the right to access, correct, delete, restrict, port, or object to processing of your personal data, and to withdraw consent. You can also lodge a complaint with your local data-protection authority. To exercise any of these rights, contact us via the support channel in your Paddle receipt. We will respond within one month.

8. Security

We use appropriate technical and organisational measures, including encryption in transit, access controls, and managed authentication, to protect personal data.

9. Cookies

We use only essential cookies and local storage required to keep you signed in and to operate the Service. We do not use advertising cookies.

10. Changes

We may update this Notice from time to time. Material changes will be notified by email or via the Service.