Skip to content
SS Infotek LogoSS Infotek

Privacy Policy

PhoneShield

Last Updated: May 2026Developer: SS Infotek Inc.

Your Data. Your Privacy. Your Control.

PhoneShield is built with privacy at its core. We (SS Infotek Inc.) have NO access to any of your data. PhoneShield does not collect, store, receive, or share any of your personal information — ever.

All data is processed and stored entirely on YOUR device. You are the sole owner and controller of your data.

OUR PRIVACY PROMISE

  • We (SS Infotek Inc.) have ZERO access to your data.
  • We do NOT have servers that store your information.
  • We do NOT collect, track, or monitor your activity.
  • We do NOT sell, share, or transmit your data to anyone.
  • We do NOT use analytics, ads, or tracking tools.
  • All processing happens on YOUR phone, offline.
  • You have complete control to view, delete, or export your data at any time.

Processed On Your Phone

  • Photos & Camera: PhoneShield accesses both front and rear cameras in the background, without requiring the app to be open, to capture photos during failed unlock attempts or SIM card removal. All captures stay on your phone.
  • Background GPS Location: PhoneShield accesses your device's precise location in the background, even when the app is closed, to record exactly where security events (failed unlocks, SIM removal) occur.
  • Date & Time: Records event timestamps. Stays on your phone.
  • SIM Changes: Detects SIM changes if enabled. Never sent anywhere.
  • Device & Network Telemetry: Processes device diagnostics—including battery percentage, network connection type (Wi-Fi/Cellular), and device manufacturer/model—to compile complete event logs. Stays on your phone unless emailed via Pro+.

Processed Only If You Choose

  • Face Data: For Owner Identity recognition, your phone creates a numeric code from your face. The front camera is used locally during setup to generate this biometric code. The camera feed is processed in real-time and discarded. It never leaves your phone.
  • Email Address: Used as a unique identifier via "Sign-in with Google." Stored on your phone only. See Account Identity section below for full details.
  • Google Account: For cloud backup to YOUR personal Drive. We have no access.

Background Location & Camera Processing

PhoneShield accesses both Precise Location and Camera (Front & Rear) in the background, even when the app is closed or not in use. This background processing is essential to provide the user with the exact location and photographic evidence of a security breach (e.g., failed unlock attempt or SIM card removal) while the device is locked. This data is stored locally or in the user's private cloud and is never shared with SS Infotek or third parties.

Face Recognition & Biometric Data (BIPA/CUBI Schedule)

  • Your phone uses an on-device Machine Learning (ML) SDK to create a numeric code from a face. This code is a string of numbers — not a photo.
  • Face data is NEVER uploaded to any server. It stays on your phone only. We do not have servers and cannot access this data.
  • The local machine learning algorithms run ENTIRELY on your phone — no internet connection is needed.
  • Biometric Retention and Destruction Schedule: In compliance with biometric regulations (such as Illinois BIPA and Texas CUBI), numeric face embeddings are stored only for the duration that your "Owner Identity" remains active. The biometric face embeddings are permanently and irreversibly destroyed immediately (within seconds) upon selecting "Remove Identity" or uninstalling the application.

Google API Services User Data Policy Disclosure

PhoneShield utilizes Google API Services (specifically the Gmail API and Google Drive API) to provide its core security and device recovery features. Our use and transfer of information received from Google APIs to any other app will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

End-to-End Encrypted Cloud Directives (The Google Shield):All cloud-synchronized security reports are sent directly and encrypted to Google's endpoints. SS Infotek Inc. does not host, process, view, or manage your Google cloud files. Your storage of PhoneShield alerts on Gmail or Google Drive remains governed exclusively by your personal terms and agreements with Google LLC.

1. Scopes and Purpose

  • Gmail API (gmail.send): We use this scope strictly to send automated security evidence reports from your own Gmail account to your designated backup email addresses. This ensures that you receive real-time alerts if an intruder attempts to access your device.
  • Google Drive API (drive.file): We use this scope to create a secure, private backup of intruder evidence (photos and location data) directly to your personal Google Drive.

2. Data Minimization & Limited Access

  • No Reading or Modification: PhoneShield does not have permission to, and will never, read, scan, modify, or delete your existing emails or files. The app's access is limited strictly to the files it creates.
  • Direct Transmission: PhoneShield operates on a "Self-to-Self" model. Your data is transmitted directly from your device to Google's servers. We do not use intermediary third-party servers to process or store your Google user data.
  • Human Review: No human beings at SS Infotek or any third party will ever have access to or read your Google user data.

3. User Control & Consent

These features are disabled by default. You must explicitly opt-in via the in-app settings after reviewing our prominent disclosure. You may revoke access to these Google services at any time through the app settings or your Google Account security dashboard.

Account Identity (Email Address)

PhoneShield utilizes "Sign-in with Google" to establish a secure link between your device and your recovery settings.

Usage: Your Google email address is used as a unique identifier to route security alerts and to authorize access to your private Google Drive for evidence backups.
No Third-Party Storage: We do not transmit or store your email address on our own servers. It is processed locally on your device to interact with Google's official APIs.
No Marketing: We will never use your email address for marketing purposes, nor will we share it with any third parties. It is used strictly for core app functionality (sending intruder alerts).
Deletion: To delete this identity link, you must revoke the app's permissions through your Google Security Dashboard.

How Your Data is Protected

Private Storage: All data is stored in your phone's private app storage. Other apps cannot access it.

Hidden Photos: Intruder photos are saved in an internal directory that is not visible in your phone's gallery.

Encrypted Transfer: If you use cloud backup or email alerts, data is transferred using Google's encrypted connection directly between your phone and your accounts.

Your Rights

You are in full control. Open the Log tab to view all events and photos. Swipe to delete individual logs, or uninstall the app to remove everything permanently. Delete your Owner Identity to eliminate face data from your phone.

How to Delete Your Data & Storage Logic

1. In-App: Open the Log tab in PhoneShield and swipe on any individual log to permanently delete that entry, including photos, location data, and timestamps.

2. Biometric Data: To delete your face recognition data, go to Settings → Owner Identity → Remove. This permanently destroys all stored face embeddings from your device.

3. Stop Email Alerts: To discontinue receiving email evidence reports, navigate to PhoneShield Settings and set the 'Enable Email Alerts' toggle to OFF. This immediately stops all outgoing alert emails from your Gmail account.

4. Stop Google Drive Backup: To discontinue cloud synchronization of evidence reports, navigate to PhoneShield Settings and set the 'Enable Google Drive Backup' toggle to OFF. No further data will be uploaded to your Google Drive.

5. Automatic Storage Limit (Free Tier FIFO): To protect device storage, the Free tier operates on a rolling First-In, First-Out (FIFO) basis with a maximum limit of 5 stored events (the 6th security trigger will automatically overwrite and permanently purge the oldest 1st event log). Pro+ has unlimited local event storage, restricted only by the physical storage capacity of your local hardware.

6. Uninstall: Uninstalling PhoneShield permanently deletes ALL locally stored data and biometric embeddings from your device.

7. Account Deletion (Sign-in with Google): Since PhoneShield is a non-custodial app, we do not store your profile on our servers. To fully "delete" your app account and revoke our access to your Google services, please use the Google Security Dashboard to remove "PhoneShield" from your authorized apps.

Note: SS Infotek Inc. does not have access to your data. Since all information is stored exclusively on your device or in your personal Google Drive, only you can initiate these deletions. For assistance with the deletion process, you may contact us at info@ssinfotek.com.

Global Privacy Compliance

Because all data remains exclusively on your device, YOU are the sole Data Controller and Data Processor of your personal data. SS Infotek Inc. does not collect, receive, or process your data.

  • GDPR / UK GDPR compliant (Zero data collection removes processing requirements).
  • CCPA / CPRA compliant (We do not sell or share any personal information).
  • CalOPPA compliant (No targeted tracking).

Children's Privacy & Age Limits (18+)

PhoneShield is strictly intended for adult users. We do not knowingly collect, process, or maintain any personal information or biometric face embeddings from children under the age of 18.

If we discover or suspect that an individual under the age of 18 has installed the app or registered an Owner Identity face embedding, we will not store or process any of their data. Because all data is stored on-device, we encourage parents or guardians to immediately uninstall the app from the minor's device to permanently purge all local security logs and biometric embeddings.

Changes to This Privacy Policy

We reserve the right to update this Privacy Policy from time to time to reflect changes in our features, Google API requirements, or legal compliance standards. When updates are made, we will revise the "Last Updated" date at the top of this policy. We encourage you to periodically review this page to stay informed of our data protection practices.

Contact Us

If you have questions regarding this policy, you may contact us at:

SS Infotek Inc. info@ssinfotek.com