Privacy Policy

Last Updated: April 1, 2026 Effective: April 1, 2026

Account Required None

Data Sold Never

Ads Displayed None

Location Tracked No

Feedback Retention 12 Months

Contact blackbytes.team@protonmail.com

Your data stays yours.

BlackBytes is built on a privacy-first foundation. We don't require accounts, don't sell data, and don't run ads. This policy explains the minimal data we do handle — and why.

Contents

01 Introduction & Scope
02 What We Don't Collect
03 Auto-Collected Information
04 Info You Provide
05 AI Processing
06 Third-Party Services
07 How Information Is Used
08 Data Retention
09 Storage & Security
10 Your Privacy Rights
11 Do Not Track
12 Children's Privacy
13 International Transfers
14 Policy Changes
15 Consent
16 Contact

Introduction & Scope

Welcome to BlackBytes. This Privacy Policy explains how we handle information when you use the BlackBytes mobile application — an AI-powered news aggregation and summarization app that presents concise, swipeable summaries while always displaying the original source.

This policy applies to all users regardless of location and is designed to comply with GDPR (EU), CCPA/CPRA (California), CalOPPA (California), PIPEDA (Canada), and the Privacy Act 1988 (Australia).

By using the BlackBytes App, you acknowledge that you have read and understood this Privacy Policy.

Information We Do NOT Collect

BlackBytes is designed with privacy as a core principle. We want to be transparent about what we never collect:

Personal identifiers (name, email)

Account or login information

Contact lists or address book

Location data (precise or approximate)

Photos, videos, or device files

Financial or payment information

Biometric data of any kind

Health or fitness information

Messages, emails, or communications

⚑ We do NOT sell, rent, trade, or share your personal data with third parties for marketing or advertising purposes — ever.

Information That May Be Automatically Collected

While we minimize data collection, certain limited technical information may be collected through third-party services to keep the App functioning and improving.

3.1 Device Information

When you use the App, the following may be collected in a non-identifying manner:

Data Point	Example
Device type & model	"Android Phone"
Operating system version	"Android 14"
App version number	"1.2.0"
Language & region settings	"en-US"
Screen resolution	"1080 × 2400"

3.2 Crash Reports & Diagnostics

To improve App stability, crash logs may include technical stack traces, device state at time of crash (memory, battery), and app performance metrics. This data contains no direct personal identifiers such as name or email.

Information You Voluntarily Provide

When you use the feedback or contact form within the App, we may collect:

Field	Required	Purpose
Message content	Yes	Respond to your inquiry
Name	No	Contact forms only
Email	No	Contact forms only
Rating	No	Feedback forms only
Device platform	Auto	Diagnosed technical issues
App version	Auto	Diagnosed technical issues
Timestamp	Auto	Track improvements

ℹ All user-submitted information is securely stored in Google Firestore and retained for up to 12 months, after which it is automatically deleted. It is never shared for marketing purposes.

AI Processing Disclosure

BlackBytes uses automated AI systems to generate concise summaries of news articles. Here's what you need to know:

Your personal info is never sent to AI services

User data is not used to train AI models

No automated decision-making or profiling

AI summaries may occasionally contain inaccuracies

⚑ We strongly recommend reviewing the original source article for complete and accurate information.

Third-Party Services

BlackBytes uses the following third-party services to operate and improve the App:

Firebase Cloud Messaging Google LLC

PurposeDeliver push notifications about new content and updates

DataUnique device token for notification delivery

ControlDisable via device system settings at any time

Firebase Crashlytics Google LLC

PurposeCollect crash reports to improve App stability

DataTechnical crash data (see §3.2) — no personal identifiers

Google Firestore Google LLC

PurposeSecurely store user feedback and contact form submissions

DataInformation you voluntarily provide (see §4)

SecurityEncrypted in transit and at rest

Content Delivery Remote Servers

PurposeFetch news content and articles

Data SentOnly technical request information

IP AddressNot stored directly; Google Firebase may process for infrastructure purposes

For more: Google Privacy Policy · Firebase Privacy & Security

How Information Is Used

Purpose	Legal Basis (GDPR)
Delivering enabled push notifications	Consent / Legitimate Interest
Improving App features and UX	Legitimate Interest
Fixing bugs and improving stability	Legitimate Interest
Ensuring security and preventing abuse	Legitimate Interest
Responding to user feedback	Consent / Legitimate Interest
Complying with legal obligations	Legal Obligation

ℹ We never use collected information for targeted advertising, user profiling, selling to third parties, cross-app tracking, or marketing communications.

Data Retention Policy

We retain information only as long as necessary for the purposes described in this policy:

Data Type	Retention Period
Crash Reports	Up to 90 days
FCM Tokens	Until App is uninstalled or token is refreshed
Local App Data	Until you clear App data or uninstall
User Feedback / Contact Submissions	Up to 12 months

After the retention period, data is automatically deleted or anonymized so it can no longer be associated with your device.

Data Storage & Security

9.1 Local Storage

News content may be cached locally on your device for offline access. This data is stored in the App's private storage area, is not accessible to other apps, and is deleted when you uninstall.

9.2 Security Measures

Encrypted data transmission (HTTPS/TLS)

Secure third-party providers (Google Firebase)

Regular security reviews

Minimal data collection practices

No method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security.

Your Privacy Rights

10.1 GDPR — European Union

Access

Request info about data processing

Rectification

Request correction of inaccurate data

Erasure

Request deletion ("right to be forgotten")

Restriction

Request limitation of processing

Portability

Receive your data in a portable format

Object

Object to certain types of processing

Withdraw Consent

Withdraw at any time without affecting prior processing

10.2 CCPA/CPRA — California

Know

Request disclosure of data collected about you

Delete

Request deletion of your personal information

Opt-Out

Opt out of sale/sharing (we do not sell)

Non-Discrimination

Not discriminated against for exercising rights

Correct

Request correction of inaccurate data

10.3 PIPEDA — Canada

Access

Access personal information we hold

Challenge

Challenge accuracy and completeness

Withdraw Consent

Withdraw consent for data collection

10.4 Australia — Privacy Act 1988

Access

Access your personal information

Correction

Request correction of inaccurate info

Complain

Lodge complaints with the OAIC

ℹ To exercise any of these rights, contact us at blackbytes.team@protonmail.com. We respond within the timeframe required by applicable law (typically 30 days).

Do Not Track Signals

Some web browsers transmit "Do Not Track" (DNT) signals. As BlackBytes is a mobile application — not a website — traditional DNT signals do not apply. You can control data collection through the App's Settings menu.

Children's Privacy

BlackBytes is intended for a general audience and is not directed toward children under the age of 13 (or the applicable age of digital consent in your jurisdiction).

We do not knowingly collect personal information from children under 13. As the App does not require account creation or sensitive personal information, age verification is not enforced. If you believe a child has provided us personal information, please contact us immediately.

We comply with COPPA and similar international regulations.

International Data Transfers

As we use Google Firebase services, some technical data may be processed on servers located outside your country of residence, including in the United States. Google maintains appropriate safeguards for international transfers, including Standard Contractual Clauses (SCCs) approved by the European Commission and compliance with the EU-US Data Privacy Framework where applicable.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we do, we will update the "Last Updated" date at the top of this policy, provide in-app notification for significant changes, and post the updated policy within the App.

Your continued use of the App after changes are posted constitutes your acceptance of the updated policy.

Consent

Where required by applicable law, we rely on your consent for certain processing activities such as push notifications. By downloading, installing, and using the BlackBytes App, you acknowledge the practices described in this Privacy Policy.

You may withdraw consent at any time by disabling relevant features in App settings, uninstalling the App, or contacting us directly.

Contact Information

BlackBytes is the data controller responsible for processing personal information described in this policy. If you have any questions, concerns, or requests, reach out:

BlackBytes Support Team

India · Data Controller

blackbytes.team@protonmail.com

EU residents: contact your local Data Protection Authority

🇦🇺 Australia — www.oaic.gov.au

🇨🇦 Canada — www.priv.gc.ca