Messages - Smart Messages AI | Privacy Policy
Privacy
Policy for Messages - Smart Messages AI
Effective
Date: 01 May 2026
Welcome
to Messages - Smart Messages AI ("we," "us," or
"our"). Your privacy is our top priority. We designed this
application with a strict "Privacy First" philosophy. The core
functionality of the app—including its AI features—operates entirely locally on
your device.
This
Privacy Policy explains how we collect, use, and protect your information when
you use our application.
This
Privacy Policy explains how we collect, use, disclose, and safeguard your
information when you use our mobile application. It also outlines your rights
under global privacy laws, including the GDPR (Europe), CCPA/CPRA (California),
and CalOPPA (California).
Your
Consent – please read carefully.: By downloading, installing, accessing and/or
using the App you agree to the terms and conditions set forth in this Privacy
Policy, including to the collection and processing of your Personal Information
(as defined below). If you disagree to any term hereof, you may not download,
install, access or use the App, and must promptly and permanently remove the
App and any part thereof from your systems and devices, and cease any and all
use thereof.
Please
note: you are not obligated by law to provide us with any Personal Information.
You hereby acknowledge and agree that you are providing us with Personal
Information at your own free will, for the purposes described herein, and that
we may retain such Personal Information in accordance with this Privacy Policy
and any applicable laws and regulations.
1. Our Core Privacy Promise
Your
personal data, including your Contacts, Call Logs, and SMS messages, never
leaves your device. We do not upload, sync, store, or process your
personal address book or call history on any external servers. The "AI
Assistant," "Spam Shield," and all daily insights are calculated
locally on your phone. We do not sell, share, or rent your local personal
data to anyone.
2. Permissions We Request & On-Device
Processing
To
provide a fully functional dialer and contact manager, Phonebook AI requires
certain Android permissions. These are processed strictly on-device:
Contacts (READ_CONTACTS, WRITE_CONTACTS): Used to display your address book, allow editing, and show caller IDs. Never uploaded to the cloud.
SMS Messages : The app may access SMS messages only to provide its core features, including:
• Smart message categorization
• OTP detection and management
• Scam detection and analysis
• AI-powered message organization
• Search and filtering
• Message insights and analytics
Your SMS data is processed on your device whenever
possible and is never sold to third parties.
Scheduled Messages : Information related to scheduled messages is
stored locally on
your device to deliver messages at the selected time.
Display
Over Other Apps (SYSTEM_ALERT_WINDOW): Necessary to display the
incoming-call screen over your lock screen or other apps.
3. Third-Party Services & Data Collection
While
your personal contacts and call logs are never shared, our app uses standard
third-party SDKs for advertising and analytics. These services collect
technical identifiers (not your contacts or call logs).
Google AdMob: We use AdMob to serve ads that keep the app free. AdMob may collect your device’s Advertising ID, IP address, and interaction data to serve personalized ads.
Firebase Analytics: Used to understand aggregate user behavior (e.g., feature usage, theme preferences). This data is anonymized and helps us improve the app.
Firebase
Crashlytics: Collects technical crash reports (device model, OS version,
stack traces) to help us fix bugs quickly.
4. GDPR Compliance (For Users in the EEA, UK, and
Switzerland)
If you
are a resident of the European Economic Area (EEA), the United Kingdom, or
Switzerland, you have specific rights under the General Data Protection
Regulation (GDPR) and equivalent laws.
Legal
Basis for Processing:
· Consent: We
rely on your explicit consent (via a consent banner in the app) to process your
Advertising ID and IP address for personalized advertising (AdMob).
· Legitimate
Interest: We rely on legitimate interest to collect anonymized crash
reports and basic analytics (Firebase) to ensure app stability and improvement.
Your GDPR
Rights:
· Right
to Access, Rectify, and Erase: Because your personal contacts and call
logs are stored exclusively on your device, you can access, rectify, or erase
them directly within the app. To erase all data associated with the app, you
may simply uninstall it.
· Right
to Withdraw Consent: You can withdraw consent for personalized ads at any
time by navigating to your Android device settings (Settings > Privacy >
Ads) and opting out of personalized advertising, or via the consent management
tool within our app.
· Right
to Restrict or Object to Processing: You may object to data processing for
analytics by disabling this feature in the app settings (if available) or by
adjusting your device-level tracking permissions.
· International
Transfers: Data collected by Google/Firebase may be transferred outside
the EEA (e.g., to the United States). These transfers are safeguarded by
Standard Contractual Clauses (SCCs) implemented by Google.
5. CCPA, CPRA, and CalOPPA Compliance (For
California Residents)
This section
applies specifically to California residents and addresses requirements under
the California Consumer Privacy Act (CCPA), the California Privacy Rights Act
(CPRA), and the California Online Privacy Protection Act (CalOPPA).
Categories
of Personal Information Collected (Past 12 Months):
· Identifiers: IP
address, unique device identifiers, and Advertising IDs (collected via
AdMob/Firebase).
· Internet/Electronic
Network Activity: Information regarding your interaction with our application
(collected via Firebase Analytics).
· Note on Sensitive Personal Information
(CPRA): While our app accesses sensitive data like Call Logs and
Contacts, this data is strictly processed on-device. We do not
"collect" it on our servers, nor do we share or sell it.
Sale and
Sharing of Personal Information: Under the CCPA/CPRA, the use of
third-party advertising cookies/SDKs can be considered "sharing" for
cross-context behavioral advertising, or a "sale."
· We
"share" Identifiers and Network Activity with Google AdMob to
provide targeted advertising.
· We
DO NOT sell or share your contacts, call logs, SMS data, or personal
notes.
Your
California Privacy Rights:
· Right
to Know and Access: You have the right to request the categories and
specific pieces of personal information we have collected about you.
· Right
to Delete: You have the right to request deletion of your personal
information.
· Right
to Correct: You have the right to correct inaccurate personal information.
· Right
to Opt-Out of Sale/Sharing ("Do Not Sell or Share My Personal
Information"): You can opt-out of targeted advertising by going to
your Android device settings: Settings > Privacy > Ads > "Opt out
of Ads Personalization" or "Delete advertising ID."
· Right
to Limit Use of Sensitive Personal Information: As we do not process
sensitive personal information off-device, there is no off-device processing to
limit.
· Right
to Non-Discrimination: We will not discriminate against you (e.g., by
denying services or changing features) for exercising any of your CCPA/CPRA
rights.
CalOPPA
"Do Not Track" Signals: CalOPPA requires us to disclose how we
respond to web browser "Do Not Track" (DNT) signals. As a mobile
application, we respond to the mobile equivalent: the Android device-level
"Opt out of Ads Personalization" setting. If you enable this, AdMob
will not serve targeted ads based on your user profile. Furthermore, in compliance
with CalOPPA, users can use our core offline features completely anonymously.
6. Data Retention and Deletion
· Local
Data: Your contacts, call logs, AI insights, and notes remain on your
device. Uninstalling the app permanently deletes all app-specific data (like
your notes and AI insights) from your storage.
· Analytics/Ad
Data: Data collected by Firebase and AdMob is retained according to
Google’s retention policies, typically up to 14 months for analytics, after
which it is automatically deleted.
7. Security
All
sensitive processing happens locally. Therefore, the security of your data
relies heavily on your device's security. We strongly recommend securing your
smartphone with a PIN, biometric lock, or password. We implement standard
security protocols for the transmission of anonymous crash and ad data.
8. Children’s Privacy
Our
application is not intended for children. We do not knowingly collect personal
information from children under the age of 16 (for EU/California residents) or
13 (in other jurisdictions). If we discover that a child has provided us with
off-device personal data, we will delete it immediately.
9. Changes to This Privacy Policy
We may
update this Privacy Policy periodically. Under CalOPPA and general best
practices, we will notify you of any material changes by updating the
"Effective Date" at the top of this page and, where appropriate, via
an in-app notification.
Contact
Information and Data Protection Officer (DPO):
- We are committed to protecting
your privacy and handling your personal data with transparency and care.
In accordance with applicable data protection laws such as the GDPR and
LGPD, we have appointed a Data Protection Officer (DPO) to oversee our
data protection strategy and ensure compliance with relevant regulations.
If you have any questions, concerns, or requests regarding this Privacy
Policy or our data practices—including exercising your rights to access,
correct, delete, or object to the processing of your personal information—you
may contact our Data Protection Officer at:
Data
Protection Officer (DPO):
Our DPO
is available to assist you with any inquiries related to how we collect, use,
store, or disclose your personal information, or to help you exercise your
privacy rights under applicable data protection laws. Data Controller The data
controller responsible for your personal information is:
Utsav
Apps
Email: utsavcreation12@gmail.com
Country:
India
10. Contact Us
If you
have any questions, concerns, or suggestions regarding this Privacy Policy or
how we handle your data, please contact us at:
· Email: utsavcreation12@gmail.com