Privacy Policy

Last updated:

Introduction

Guardexa (xyz.forgebase.guardexa) is an anti-theft and intrusion detection app for Android. We are committed to protecting your privacy. This Privacy Policy explains what data the app accesses, how it is used, and the choices you have.

Intrusion evidence (such as intrusion photos, videos, audio, and event location records) is designed to remain in app-private local storage on your device. Guardexa may also use limited third-party services for analytics, crash reporting, billing, and optional email alerts, as described below.

By using Guardexa you agree to the practices described in this policy. If you do not agree, please uninstall the app.

Camera

Guardexa may use your device camera to capture photos or videos when a potential intrusion is detected. All captured media is stored locally on your device in app-private storage. It is never uploaded to any external server or shared with third parties.

Microphone

The microphone permission is used solely to record audio as part of intrusion-detection video capture. Audio recordings are stored locally on your device and are not transmitted externally.

Location

Location data may be collected when an intrusion event is detected, allowing you to see where your device was at the time. This data is stored locally on your device and is not sent to any server. If you have email alerts enabled, location information may be included in the alert email sent through your own Gmail account.

Notifications

Guardexa uses notifications to alert you about intrusion events and to maintain required foreground-service notices on Android. Notification content stays on your device and is not collected or tracked.

Email Alerts

Guardexa offers an optional Gmail-based Email Alerts feature. This feature is disabled by default and is used only if you choose to connect a Google account. Guardexa uses Google Sign-In and requests only the Gmail scope https://www.googleapis.com/auth/gmail.send to send alert emails from your connected Gmail account.

Guardexa does not read Gmail inbox messages, email history, contacts, labels, drafts, or mailbox content. Guardexa does not modify, delete, scan, or store Gmail messages. Alert emails are sent only to recipient addresses configured by you and may include intrusion details such as detection time, captured evidence, and optional location information based on your enabled settings.

You can disable or disconnect Gmail Email Alerts at any time from app settings. Google account credentials are managed by Google authentication services and are not stored by Guardexa.

Google User Data

Guardexa uses Google user data only for the optional Gmail-based Email Alerts feature. This feature is disabled unless you choose to connect a Gmail account and grant Gmail send permission.

Data Accessed: Guardexa requests access only to https://www.googleapis.com/auth/gmail.send, which is required to send email messages from your connected Gmail account. Guardexa does not access, read, collect, scan, modify, delete, or store Gmail inbox messages, email history, labels, contacts, drafts, or mailbox content.

Data Usage: The Gmail send permission is used only to send optional security alert emails configured by you. These alerts may include intrusion-related details such as detection time, captured evidence, and optional location information, depending on your enabled settings.

Data Sharing: Guardexa does not sell Google user data. Guardexa does not share Google user data with advertisers, analytics providers, or unrelated third parties. Email alerts are sent only to recipient addresses configured by you for security notifications.

Data Storage & Protection: Guardexa does not store Gmail mailbox content. Google account credentials are managed by Google authentication services and are not stored by Guardexa. Any authentication or account-connection data required for Gmail Email Alerts is used only to provide the feature and is handled with reasonable security safeguards.

Data Retention & Deletion: Guardexa does not retain Gmail inbox data or mailbox content. You can disconnect Gmail Email Alerts at any time from app settings. You may request deletion of app-related data by contacting contact@forgebase.xyz.

Device Administrator Access

Guardexa requests Device Administrator privileges for the following limited purposes only:

No other Device Administrator capabilities are used.

Local Storage

All intrusion photos, videos, and location data are stored locally on your device in app-private storage. Guardexa does not upload intrusion evidence to a developer-operated backend server or cloud storage.

Some limited data may still be processed by third-party services used by the app, including analytics and crash reporting (Firebase), subscriptions and purchases (Google Play Billing and RevenueCat), and optional account authentication/send-email flows (Google Sign-In and Gmail API). These services are described in this policy.

Analytics and Crash Reporting

Guardexa uses Firebase Analytics and Firebase Crashlytics, services provided by Google. Firebase Analytics helps us understand app usage and improve product experience. Firebase Crashlytics helps us diagnose crashes, errors, and app stability issues.

Depending on Firebase behavior and app configuration, Google Firebase may process limited technical and app data on our behalf, such as:

Guardexa does not use Firebase Analytics or Crashlytics to collect intrusion evidence content, including intrusion photos, intrusion videos, audio recordings, Gmail message content, or locally stored intrusion history. Guardexa also does not intentionally log precise intrusion-location records to Firebase unless custom analytics/crash logging is explicitly implemented for that purpose.

Learn more: Google Privacy Policy and Firebase Privacy and Security.

Premium Subscriptions

Guardexa offers optional premium features through Google Play Billing, managed via RevenueCat. Purchase and subscription information is handled by Google Play and RevenueCat in accordance with their own privacy policies. Guardexa does not directly collect or store your payment information.

Learn more: RevenueCat Privacy Policy.

Background Operation

To function as an anti-theft and intrusion detection tool, Guardexa may run in the background and request a battery-optimization exemption. This allows the app to reliably monitor for intrusion events. Background operation does not involve transmitting data externally.

Stealth Mode

Guardexa includes an optional stealth mode that minimizes the app's visible presence on your device. This feature is designed to prevent a potential thief from discovering and disabling the app. Stealth mode does not change how your data is collected or stored.

Data Security

We take your data security seriously. Intrusion evidence is stored locally in app-private storage and protected by Android's built-in sandboxing and file-permission model.

Limited technical, analytics, crash-reporting, purchase/subscription, and authentication/send-email related data may be processed by the third-party services described in this policy.

While no method of storage or transmission is 100% secure, we strive to use reasonable safeguards to protect your information.

Children's Privacy

Guardexa is not intended for use by children under the age of 13. We do not knowingly collect personal information from children. If you believe a child has provided data through the app, please contact us so we can address the situation.

Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be reflected on this page with a revised "Last updated" date. We encourage you to review this page periodically.

Contact

If you have any questions or concerns about this Privacy Policy or Guardexa's data practices, please contact Forgebase, the company behind Guardexa: