Authenticator App Privacy Policy
Privacy Policy for Authenticator App - SafeLock
Effective Date: 12 April 2024
This Privacy Policy describes how "we," Ping Creative Apps collects, uses, and discloses your information in connection with your use of our mobile application, that is Authenticator App - SafeLock.
Your privacy is important to us. This privacy statement explains the personal data we processes, how we processes it, and for what purposes.
• Information We Collect
We are committed to collecting only the minimum amount of information necessary to achieve the stated purposes. Here's a breakdown of the information we collect:
• Information You Directly Provide (Optional)
- Device Information: When you use the App, we may collect certain information about your device, including device model, operating system version, unique device identifiers, and network information (with ACCESS_NETWORK_STATE and ACCESS_WIFI_STATE permissions). This information is used for troubleshooting and to understand how the App is used on different devices.
- Legal Basis for Processing: Legitimate Interest (to ensure the App functions properly). We strive to minimise this data and only collect what's essential for functionality.
Optional Features and Data Storage
- 2FA Accounts: You may choose to add accounts for two-factor authentication (2FA) within the App using the QR code scanner (CAMERA permission) or manual entry. We only store the secret keys necessary to generate the 2FA codes. We do not store your actual login credentials or passwords for these accounts.
- Legal Basis for Processing: Contractual (to provide the 2FA functionality). This data is encrypted using industry-standard encryption and stored locally on your device. You are responsible for securing your device with a strong password or biometric authentication.
- ID Card Holder & Password Holder & Notes: These features allow you to store digital copies of your ID cards, passwords, and notes within the App (with READ_EXTERNAL_STORAGE permission for potential import). We do not access or store this information. It is stored locally on your device.
- Import/Export: You may choose to import or export your 2FA accounts using JSON or URI files (with READ_EXTERNAL_STORAGE and WRITE_EXTERNAL_STORAGE permissions). This data transfer occurs entirely on your device and is not transmitted to our servers.
- Legal Basis for Processing: Contractual (to provide the import/export functionality).
• Deleting Locally Stored Information:
You can easily delete the information you store within the App at any time. This includes deleting your 2FA accounts, ID card copies, passwords, and notes. This can be done from within the App settings or by deleting the App itself. The operating system settings on your device may also provide options to clear app data and cache.
• Information Collected Through Third-Party Services
- Firebase Analytics and Crashlytics: We use Firebase Analytics and Crashlytics from Google to collect usage data and crash reports (with INTERNET permission). This information helps us understand how users interact with the App and identify and fix any issues. Google's Privacy Policy can be found here: https://policies.google.com/privacy?hl=en-US. We have implemented data minimisation techniques within these services to reduce the amount of personal data collected. You can opt-out of data collection by Google Analytics for advertising and personalisation by visiting https://tools.google.com/dlpage/gaoptout/.
- Legal Basis for Processing: Legitimate Interest (to improve the App). Users can opt-out of data collection within the App settings.
• Advertising: We may integrate advertising services from third parties like AdMob, Ad Manager, and Facebook (with INTERNET permission and com.google.android.gms.permission.AD_ID permission). These services may collect information about your device and interests to deliver targeted advertising within the App. You can also control your advertising preferences through your device settings.
Legal Basis for Processing: Consent (you can opt-out of personalised advertising).
- AdMob and Ad Manager Privacy Policy: https://support.google.com/admob/answer/6128543?hl=en
- Facebook Data Policy: https://m.facebook.com/about/privacy/previous
• Required Permissions:
- android.permission.CAMERA (Optional): This permission is only required if you choose to use the QR code scanning functionality to add 2FA accounts. The camera is not accessed for any other purpose.
- android.permission.INTERNET (limited): This permission allows the app to send limited information for crash reporting (Firebase Crashlytics) and potentially deliver ads (if enabled by you). We do not collect any browsing activity or personal information through this permission.
- android.permission.ACCESS_NETWORK_STATE & android.permission.ACCESS_WIFI_STATE: These permissions allow the app to understand your network connectivity (cellular data or Wi-Fi) to ensure optimal performance.
- android.permission.VIBRATE: This permission allows the app to vibrate the device for notifications (optional).
- android.permission.READ_EXTERNAL_STORAGE: This permission is required if you choose to import your 2FA accounts using JSON or URI files stored on your device.
- android.permission.WRITE_EXTERNAL_STORAGE: This permission allows the app to export your 2FA accounts as JSON or URI files to your device's storage.
• Optional Permissions:
- android.permission.CHANGE_NETWORK_STATE: This permission may be required for some advanced functionalities that are not currently implemented in the app. We will update this policy if this permission becomes necessary in the future.
- android.permission.SYSTEM_ALERT_WINDOW: This permission is not currently used by the app. We may request this permission in a future update for features that require drawing overlays on top of other apps (e.g., accessibility features). We will clearly communicate any changes to permission requirements before such an update.
- com.google.android.gms.permission.AD_ID: This permission is used by advertising services like AdMob, Ad Manager, and Facebook to deliver targeted advertising within the App. You can opt-out of personalised advertising through your device settings.
• In-App Purchases (IAP)
Our App offers an optional In-App Purchase (IAP) for a premium ad-free experience. If you choose to purchase the premium upgrade, we may collect the following information through the payment processor (e.g., Google Play Billing, Apple App Store):
- Transaction Details: Date and time of the purchase, item purchased, and price of the item.
- Unique Device Identifier: Assigned by the app store or operating system to your device.
- User ID : Provided by the app store to identify your account.
We do not collect or store your full credit card information. The payment processor may collect additional information about you in accordance with their own privacy policies. We recommend that you review the privacy policies of the payment processors you use.
• Your Choices
You have control over the information you provide to us and how we use it:
- Device Information: If you're uncomfortable with us collecting device information for troubleshooting and app usage insights, you can choose not to use the App.
- Optional Features: 2FA Accounts, ID Card Holder, Password Holder, and Notes are entirely optional. You decide whether to use them and what information to store.
- Advertising: Opt-out of personalised advertising within the App settings or through your device settings.
- Data Deletion: Delete your stored data within the App at any time, including 2FA accounts, ID card copies, passwords, and notes. This can be done through App settings or by deleting the App itself.
• Updates to this Privacy Policy
We may update this Privacy Policy periodically. We'll notify you by posting the new policy on link to where the policy is posted within the App . We encourage you to review this Privacy Policy regularly for any changes.
• For Users Subject to GDPR
We are committed to complying with the General Data Protection Regulation (GDPR). Here's what this means for you:
- Data Controller: We are the data controller for your information provided through the App. This means we're responsible for how your information is collected, used, and protected.
- Data Retention: We only retain your information for as long as necessary to fulfil the purposes for which it was collected or as required by law.
- Data Transfer: We will not transfer your information to third-party countries outside the European Economic Area (EEA) without your consent.
• Your GDPR Rights: As mentioned earlier, you have the following rights under the GDPR:
- Right to Access: Request a copy of the information we hold about you.
- Right to Rectification: If any information is inaccurate or incomplete, request that we correct it.
- Right to Erasure: Request that we erase your information.
- Right to Restriction of Processing: Request that we restrict the processing of your information.
- Right to Data Portability: Request that we transfer your information to another party in a structured, commonly used, and machine-readable format. To exercise any of these rights, please contact us at pingcreativeapps@gmail.com.
• Cookies
Cookies are files with a small amount of data that are commonly used as anonymous unique identifiers. Our Application does not use these “cookies” explicitly. However, the app may use third-party code and libraries that use “cookies” to collect information and improve their services.
• Children
These Services do not address anyone under the age of 14. We do not knowingly collect information from children under 14. In the case we discover that a child under 14 has provided us with personal information, we immediately delete this from our servers. If you are a parent or guardian and you are aware that your child has provided us with personal information, please contact us so that we will be able to do the necessary actions.
• Consent
By using the App, you consent to the collection, use, and disclosure of your information as described in this Privacy Policy.
• Contact Us
Have questions about this Privacy Policy or your rights under GDPR? Contact us at pingcreativeapps@gmail.com . We're also here for any other privacy-related concerns.We take your privacy seriously and are committed to protecting your information. If you have any questions or concerns, please do not hesitate to contact us.
Effective Date: 12 April 2024
This Privacy Policy describes how "we," Ping Creative Apps collects, uses, and discloses your information in connection with your use of our mobile application, that is Authenticator App - SafeLock.
Your privacy is important to us. This privacy statement explains the personal data we processes, how we processes it, and for what purposes.
• Information We Collect
We are committed to collecting only the minimum amount of information necessary to achieve the stated purposes. Here's a breakdown of the information we collect:
• Information You Directly Provide (Optional)
- Device Information: When you use the App, we may collect certain information about your device, including device model, operating system version, unique device identifiers, and network information (with ACCESS_NETWORK_STATE and ACCESS_WIFI_STATE permissions). This information is used for troubleshooting and to understand how the App is used on different devices.
- Legal Basis for Processing: Legitimate Interest (to ensure the App functions properly). We strive to minimise this data and only collect what's essential for functionality.
Optional Features and Data Storage
- 2FA Accounts: You may choose to add accounts for two-factor authentication (2FA) within the App using the QR code scanner (CAMERA permission) or manual entry. We only store the secret keys necessary to generate the 2FA codes. We do not store your actual login credentials or passwords for these accounts.
- Legal Basis for Processing: Contractual (to provide the 2FA functionality). This data is encrypted using industry-standard encryption and stored locally on your device. You are responsible for securing your device with a strong password or biometric authentication.
- ID Card Holder & Password Holder & Notes: These features allow you to store digital copies of your ID cards, passwords, and notes within the App (with READ_EXTERNAL_STORAGE permission for potential import). We do not access or store this information. It is stored locally on your device.
- Import/Export: You may choose to import or export your 2FA accounts using JSON or URI files (with READ_EXTERNAL_STORAGE and WRITE_EXTERNAL_STORAGE permissions). This data transfer occurs entirely on your device and is not transmitted to our servers.
- Legal Basis for Processing: Contractual (to provide the import/export functionality).
• Deleting Locally Stored Information:
You can easily delete the information you store within the App at any time. This includes deleting your 2FA accounts, ID card copies, passwords, and notes. This can be done from within the App settings or by deleting the App itself. The operating system settings on your device may also provide options to clear app data and cache.
• Information Collected Through Third-Party Services
- Firebase Analytics and Crashlytics: We use Firebase Analytics and Crashlytics from Google to collect usage data and crash reports (with INTERNET permission). This information helps us understand how users interact with the App and identify and fix any issues. Google's Privacy Policy can be found here: https://policies.google.com/privacy?hl=en-US. We have implemented data minimisation techniques within these services to reduce the amount of personal data collected. You can opt-out of data collection by Google Analytics for advertising and personalisation by visiting https://tools.google.com/dlpage/gaoptout/.
- Legal Basis for Processing: Legitimate Interest (to improve the App). Users can opt-out of data collection within the App settings.
• Advertising: We may integrate advertising services from third parties like AdMob, Ad Manager, and Facebook (with INTERNET permission and com.google.android.gms.permission.AD_ID permission). These services may collect information about your device and interests to deliver targeted advertising within the App. You can also control your advertising preferences through your device settings.
Legal Basis for Processing: Consent (you can opt-out of personalised advertising).
- AdMob and Ad Manager Privacy Policy: https://support.google.com/admob/answer/6128543?hl=en
- Facebook Data Policy: https://m.facebook.com/about/privacy/previous
• Required Permissions:
- android.permission.CAMERA (Optional): This permission is only required if you choose to use the QR code scanning functionality to add 2FA accounts. The camera is not accessed for any other purpose.
- android.permission.INTERNET (limited): This permission allows the app to send limited information for crash reporting (Firebase Crashlytics) and potentially deliver ads (if enabled by you). We do not collect any browsing activity or personal information through this permission.
- android.permission.ACCESS_NETWORK_STATE & android.permission.ACCESS_WIFI_STATE: These permissions allow the app to understand your network connectivity (cellular data or Wi-Fi) to ensure optimal performance.
- android.permission.VIBRATE: This permission allows the app to vibrate the device for notifications (optional).
- android.permission.READ_EXTERNAL_STORAGE: This permission is required if you choose to import your 2FA accounts using JSON or URI files stored on your device.
- android.permission.WRITE_EXTERNAL_STORAGE: This permission allows the app to export your 2FA accounts as JSON or URI files to your device's storage.
• Optional Permissions:
- android.permission.CHANGE_NETWORK_STATE: This permission may be required for some advanced functionalities that are not currently implemented in the app. We will update this policy if this permission becomes necessary in the future.
- android.permission.SYSTEM_ALERT_WINDOW: This permission is not currently used by the app. We may request this permission in a future update for features that require drawing overlays on top of other apps (e.g., accessibility features). We will clearly communicate any changes to permission requirements before such an update.
- com.google.android.gms.permission.AD_ID: This permission is used by advertising services like AdMob, Ad Manager, and Facebook to deliver targeted advertising within the App. You can opt-out of personalised advertising through your device settings.
• In-App Purchases (IAP)
Our App offers an optional In-App Purchase (IAP) for a premium ad-free experience. If you choose to purchase the premium upgrade, we may collect the following information through the payment processor (e.g., Google Play Billing, Apple App Store):
- Transaction Details: Date and time of the purchase, item purchased, and price of the item.
- Unique Device Identifier: Assigned by the app store or operating system to your device.
- User ID : Provided by the app store to identify your account.
We do not collect or store your full credit card information. The payment processor may collect additional information about you in accordance with their own privacy policies. We recommend that you review the privacy policies of the payment processors you use.
• Your Choices
You have control over the information you provide to us and how we use it:
- Device Information: If you're uncomfortable with us collecting device information for troubleshooting and app usage insights, you can choose not to use the App.
- Optional Features: 2FA Accounts, ID Card Holder, Password Holder, and Notes are entirely optional. You decide whether to use them and what information to store.
- Advertising: Opt-out of personalised advertising within the App settings or through your device settings.
- Data Deletion: Delete your stored data within the App at any time, including 2FA accounts, ID card copies, passwords, and notes. This can be done through App settings or by deleting the App itself.
• Updates to this Privacy Policy
We may update this Privacy Policy periodically. We'll notify you by posting the new policy on link to where the policy is posted within the App . We encourage you to review this Privacy Policy regularly for any changes.
• For Users Subject to GDPR
We are committed to complying with the General Data Protection Regulation (GDPR). Here's what this means for you:
- Data Controller: We are the data controller for your information provided through the App. This means we're responsible for how your information is collected, used, and protected.
- Data Retention: We only retain your information for as long as necessary to fulfil the purposes for which it was collected or as required by law.
- Data Transfer: We will not transfer your information to third-party countries outside the European Economic Area (EEA) without your consent.
• Your GDPR Rights: As mentioned earlier, you have the following rights under the GDPR:
- Right to Access: Request a copy of the information we hold about you.
- Right to Rectification: If any information is inaccurate or incomplete, request that we correct it.
- Right to Erasure: Request that we erase your information.
- Right to Restriction of Processing: Request that we restrict the processing of your information.
- Right to Data Portability: Request that we transfer your information to another party in a structured, commonly used, and machine-readable format. To exercise any of these rights, please contact us at pingcreativeapps@gmail.com.
• Cookies
Cookies are files with a small amount of data that are commonly used as anonymous unique identifiers. Our Application does not use these “cookies” explicitly. However, the app may use third-party code and libraries that use “cookies” to collect information and improve their services.
• Children
These Services do not address anyone under the age of 14. We do not knowingly collect information from children under 14. In the case we discover that a child under 14 has provided us with personal information, we immediately delete this from our servers. If you are a parent or guardian and you are aware that your child has provided us with personal information, please contact us so that we will be able to do the necessary actions.
• Consent
By using the App, you consent to the collection, use, and disclosure of your information as described in this Privacy Policy.
• Contact Us
Have questions about this Privacy Policy or your rights under GDPR? Contact us at pingcreativeapps@gmail.com . We're also here for any other privacy-related concerns.We take your privacy seriously and are committed to protecting your information. If you have any questions or concerns, please do not hesitate to contact us.
Comments
Post a Comment