Privacy Policy for MyBuddy

Last updated: November 6, 2025

Thank you for using MyBuddy ("the App"). Your privacy is important. This policy explains what information the App accesses, how it's used and shared, and your choices.

1. Information We Collect (Data Accessed by the App)

To provide its features, the App accesses the following types of data:

• Precise Location:
  • Permissions: ACCESS_FINE_LOCATION, ACCESS_COARSE_LOCATION, ACCESS_BACKGROUND_LOCATION
  • Why Collected: This is the core function of the app. It allows us to determine your exact geographical location for display, sharing (at your command), and for optional background features like "Private Journeys" and "Safety Zones". Background access is required for these services to work when the app isn't open.
• SMS (Send Only): Two Features
  • Permission: SEND_SMS
  • Why Collected: This permission is used for two distinct features:
    • Instant Location SMS: The core, no-login feature for sending your current location to a contact.
    • Buddy System Replies: When a trusted, pre-authorized Buddy requests your location, your phone uses this permission to automatically send them an SMS reply. This feature is **off by default**.
  • Important Note: The App **does not require the ability to read or receive your SMS messages**. It cannot and does not read any of your incoming SMS messages for any purpose.
• Device Information for Push Notifications: Optional Buddy System
  • Data Collected: Firebase Cloud Messaging (FCM) Token.
  • Why Collected: To enable the "Buddy System" feature, the app generates a unique, anonymous identifier for your app installation called an FCM token. This token is sent to our server and associated with your account. It is used solely by our server to send silent push notifications to your specific device to trigger a location request from a Buddy. This token does not give us access to any personal information on your device.
• Service Reliability Permissions (for optional background features):
  • Permissions: FOREGROUND_SERVICE, FOREGROUND_SERVICE_LOCATION, FOREGROUND_SERVICE_DATA_SYNC, WAKE_LOCK, REQUEST_IGNORE_BATTERY_OPTIMIZATIONS, POST_NOTIFICATIONS
  • Why Collected: These permissions work together to ensure optional background features are reliable and transparent.
    • FOREGROUND_SERVICE and its types (LOCATION, DATA_SYNC) are required by Android for any app that needs to perform long-running tasks in the background, like periodically checking your location for Journeys/Safety Zones or maintaining a connection for the Buddy System.
    • This service displays a **persistent notification** (requiring POST_NOTIFICATIONS) to ensure you are always aware that the app is actively running in the background.
    • WAKE_LOCK allows the app to briefly wake the device's CPU to complete a task (e.g., get a location fix), ensuring updates are not missed even if the phone is idle.
    • REQUEST_IGNORE_BATTERY_OPTIMIZATIONS allows the app to ask for an exemption from aggressive battery-saving modes that could otherwise shut down background services unexpectedly.
• Contacts Information (via Picker):
  • Permission: READ_CONTACTS
  • Why Collected: To allow you to easily select a recipient for sharing your location or adding a Buddy, without manually typing their number.
  • How Used: The App receives the name and phone number of the **single contact you select** to pre-fill the recipient field. The App does **not** upload, store, or access your entire contact list.
• Network State:
  • Permissions: ACCESS_NETWORK_STATE, INTERNET
  • Why Collected: To check for internet connectivity and to communicate with web services. This is vital for fetching map data, converting coordinates to street addresses, and for sending data to our server if you enable any cloud features.
• Activity Recognition for Location Accuracy: Optional Feature
  • Permission: ACTIVITY_RECOGNITION
  • Why Collected: This permission is used to significantly improve location accuracy for features like "Safety Zones" by combating "GPS drift." GPS drift occurs when your reported location moves slightly even if you are standing still. By recognizing that you are stationary (not walking or driving), the app can filter out these small, inaccurate movements, which prevents false alerts and improves battery life.
• Vibration Control:
  • Permission: VIBRATE
  • Why Collected: To provide haptic feedback (a short vibration) to confirm that an action, like sending a location, was successful.

Data Not Collected: The App does **not** collect personal information like your name or email unless you explicitly create an account. It does not read your SMS messages or call logs.

2. How We Share Information

Sharing only occurs for core app functionality when initiated by you, or as part of an enabled cloud feature:

• With Your Trusted Contacts: When you share your location via SMS or WhatsApp, the App prepares the message and hands it off to your default messaging application. For the optional "Buddy System" feature, the app will automatically send an SMS reply on your behalf to an authorized contact after receiving a valid, secure request from our server.
• With our Server (if cloud features are enabled): If you enable "Private Journeys," "Safety Zones," or the "Buddy System," your location data and FCM token are sent securely via HTTPS to our servers so they can be viewed and used by people you authorize.
• With Geocoding Services: To get street addresses, the App sends only geographic coordinates (latitude and longitude) to the Nominatim (OpenStreetMap) service.

Your data is **never** shared with third-party advertisers.

3. Data Storage

• The App stores your personal settings (such as whether a feature is enabled) in its private, local storage on your device.
• To prevent data loss when you are offline, the App also temporarily stores a queue of unsent locations on your device. This data is securely sent to our servers and removed from the local queue as soon as your internet connection is restored.
• If you use the cloud features, your successfully uploaded location history and FCM token are stored securely on our servers.

4. Data Security

• Communication between the app and our servers is secured using HTTPS/SSL encryption.
• We use standard security practices, but no method is 100% secure.

5. Data Deletion

You have the right to request the deletion of your data at any time. We provide multiple ways for you to do this:

• Local App Data: Uninstalling the MyBuddy app from your device will remove all data stored locally by the app.
• Web Service Data (Logged-in Users): If you can log into your account on our web portal, you can delete your location history or your entire account directly from your account settings page. This action is irreversible.
• Web Service Data (If You Cannot Log In): If you are unable to access your account, you can request the deletion of your account and associated data by using our secure web form. This form allows us to verify your request and process it manually.
  • Access the Data Deletion Request Form here.

6. User Controls

• You control all permissions through your Android device's system settings. Revoking permissions will limit app functionality.
• You can enable or disable all optional cloud features (Private Journeys, Safety Zones, Buddy System) at any time within the app's settings.

7. Children's Privacy

The App is not intended for children under the age of 13. We do not knowingly collect personal information from them.

8. Changes to This Privacy Policy

We may update this policy occasionally. We will notify you of any significant changes by updating the "Last updated" date at the top of this policy.

9. Contact Us

If you have any questions about this Privacy Policy, please contact us:

• By email: apps@placemeguardian.com
• By visiting this page on our website: https://www.placemeguardian.com/PG-Feedback.php