Privacy Policy - Veilbreaker

01

Overview

Veilbreaker ("the App") is designed with privacy at its core. We collect the minimum data necessary to provide the service. Your scan data stays on your device unless you explicitly choose to sync or share it.

Your scans are yours. We never see them unless you share them.

02

Data We Collect

Account Data

If you sign in with Google, we receive your name, email address, and profile photo from Google. This is used solely for account identification and is stored in Firebase Authentication.

Scan Data

WiFi network information, Bluetooth device data, magnetometer readings, IR camera captures, and physical check results are processed locally on your device. Scan results with findings (threat level 1+) are stored in local SQLite storage. Clean sweeps are not persisted.

Analytics

We use Firebase Analytics to collect anonymous usage data such as which tools are used, scan completion rates, and app crashes. This data does not include scan results, device names, network names, or any personally identifiable information from your scans.

Crash Reports

Firebase Crashlytics collects crash logs and device information to help us fix bugs. These reports do not contain scan data.

03

Image & Device Processing

Paid tier features may send IR camera screenshots and device fingerprints to our secure cloud servers for analysis. Images are processed in real-time and are not stored after processing. Device classification results are cached locally by fingerprint hash to minimize server calls.

Analysis is ephemeral. Nothing is retained server-side after processing.

04

Data We Do NOT Collect

Your WiFi password or network credentials
Contents of network traffic
GPS location or precise coordinates
Contacts, messages, or call history
Data from other apps on your device

05

Data Storage & Security

Local data is stored in SQLite on your device. If cloud sync is enabled, sweep data is stored in Firebase Firestore with security rules that restrict access to authenticated users viewing their own data. Evidence reports (PDFs) are stored locally and shared only when you explicitly use the share function.

06

Third-Party Services

The App uses the following third-party services:

Firebase (Google) — Authentication, Analytics, Crashlytics, Firestore
Stripe — Payment processing for subscriptions
Cloud Analysis — Image analysis and device classification (paid tier)

Each service has its own privacy policy governing data they process.

07

Data Deletion

You can delete all local scan data by clearing the app's storage. To delete your account and all associated cloud data, contact our contact form. Account deletion requests are processed within 30 days.

08

Children's Privacy

Veilbreaker is not intended for use by children under 13. We do not knowingly collect data from children under 13.

09

Changes to This Policy

We may update this policy from time to time. Changes will be communicated through the App. Continued use after changes constitutes acceptance.

10

Contact

For privacy-related questions or data deletion requests, contact us at our contact form.