Privacy Policy

Last updated: January 2026

1. Introduction

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Android App Hosting platform ("Service"). We are committed to protecting your privacy and handling your data in an open and transparent manner.

By using the Service, you agree to the collection and use of information in accordance with this policy. If you do not agree with this policy, please do not use our Service.

2. Data Controller

For the purposes of the General Data Protection Regulation (GDPR), we are the data controller responsible for your personal data.

3. Information We Collect

We collect and process the following types of personal data:

3.1 Information You Provide

Data Type	Purpose	Legal Basis
Email Address	Account authentication, communication	Contract performance

3.2 Information Collected Automatically

Data Type	Purpose	Retention
IP Address	Security, fraud prevention, rate limiting	30 days (then anonymized)
User Agent	Service optimization, debugging	30 days (then anonymized)
Activity Logs	Security auditing, service improvement	90 days (configurable)
Session Tokens	Authentication	7 days or until logout

4. How We Use Your Information

We use your personal data for the following purposes:

Authentication: To verify your identity and provide secure access to the Service
Service Delivery: To provide access to Android apps and builds you are authorized to view
Security: To detect, prevent, and respond to fraud, abuse, or security incidents
Communication: To send login codes and important service notifications
Legal Compliance: To comply with legal obligations and respond to lawful requests

5. Legal Basis for Processing (GDPR)

We process your personal data based on the following legal grounds:

Contract Performance (Article 6(1)(b)): Processing necessary to provide the Service you requested
Legitimate Interests (Article 6(1)(f)): Security monitoring, fraud prevention, and service improvement
Consent (Article 6(1)(a)): For optional marketing communications (if applicable)
Legal Obligation (Article 6(1)(c)): When required by law

6. Data Sharing and Third Parties

We may share your data with the following third parties:

Service Provider	Purpose	Data Shared
Resend (Email Service)	Sending login codes	Email address

We do not sell your personal data to third parties.

7. Data Retention

We retain your personal data for the following periods:

Account Data: Until you delete your account
IP Addresses: 30 days (then anonymized)
Audit Logs: 90 days (then deleted)
Session Data: 7 days or until logout

8. Your Rights (GDPR)

Under the GDPR, you have the following rights:

Right of Access (Article 15): Request a copy of your personal data
Right to Rectification (Article 16): Request correction of inaccurate data
Right to Erasure (Article 17): Request deletion of your data ("right to be forgotten")
Right to Restrict Processing (Article 18): Request limitation of processing
Right to Data Portability (Article 20): Receive your data in a portable format
Right to Object (Article 21): Object to processing based on legitimate interests
Right to Withdraw Consent (Article 7): Withdraw consent at any time

To exercise these rights, you can:

Use the "Export My Data" feature in the app settings
Use the "Delete My Account" feature in the app settings
Contact us using the information provided below

9. Data Security

We implement appropriate technical and organizational measures to protect your personal data, including:

Encryption of data in transit (HTTPS/TLS)
Secure password-less authentication
Hashing of sensitive tokens and API keys
Rate limiting to prevent abuse
Regular security audits
Access controls and authentication requirements

10. Cookies and Local Storage

We use browser local storage to store:

Authentication tokens: To keep you logged in
User preferences: To remember your settings

We do not use tracking cookies or third-party analytics.

11. International Data Transfers

Your data may be processed in countries outside the European Economic Area (EEA). When we transfer data outside the EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses.

12. Children's Privacy

Our Service is not intended for children under 16 years of age. We do not knowingly collect personal data from children under 16.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

14. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:

By email: [Your contact email]

You also have the right to lodge a complaint with a supervisory authority if you believe your rights have been violated.