Data Policy — Nudge Call Manager by BFY

✦ Complete data map

Every piece of data Nudge Call Manager touches, where it lives, and what happens to it:

Data	Where stored	Sent anywhere?	Purpose
Incoming call number	Device RAM only — never persisted	Never	Real-time spam check
Call history log	Local device storage (MMKV)	Never	Display recent calls in app
Bond circle contacts	Local device storage (MMKV)	Never	Priority call allow-list
PIN (hashed)	Local device storage (MMKV)	Never	App lock authentication
App settings & preferences	Local device storage (MMKV)	Never	Persist user choices
Trial start timestamp	Local device storage (MMKV)	Never	Track 7-day trial period
Google Play subscription token	Local device storage (MMKV)	Google Play only	Verify Pro subscription status
Spam database (numbers list)	Local device storage	Download from server	One-way download, no upload
Crash reports (opt-in only)	Not stored locally	Anonymised receipt only	Bug fixing — no personal data included
Device language / timezone	Read from OS, not stored	Never	Auto-detect currency & language

🔐 Security measures

Even though everything stays on your device, we take security seriously:

🔒

MMKV encrypted storage

All local data is stored using MMKV, a high-performance key-value store with AES-256 encryption. Your data is encrypted at rest on-device.

🔑

PIN never stored in plain text

Your PIN is hashed before storage. Even if someone accessed your device's storage, they could not recover your PIN from the stored value.

📵

No network calls for call screening

Call screening runs entirely on-device. When an unknown number calls, nothing is sent over the internet — the check is instant and private.

✅

HTTPS-only for all network requests

The spam database download and Google Play token verification both use TLS 1.2+ HTTPS connections. No plain-text network traffic.

🗑️

Full deletion on uninstall

Uninstalling Nudge Call Manager or clearing app data permanently deletes all locally stored information. We have no copy, and cannot restore it.

🚫

No third-party analytics or ad SDKs

Nudge Call Manager does not include Firebase, Google Analytics, Facebook SDK, Adjust, Amplitude, or any other analytics or advertising library.

🚫 Community spam database

Nudge Call Manager uses a community-sourced list of known spam and telemarketer numbers. Here is exactly how it works:

What is downloaded — a compressed list of phone number hashes and spam category labels.
What is NOT sent — your phone number, your call history, which numbers you looked up, or any identifier about you or your device.
When it downloads — periodically in the background when you have internet access. The core app functions without this update.
Request headers — the download request contains only standard HTTPS headers (User-Agent, Accept). No device ID, IMEI, or advertising ID is included.

In the future, we may allow users to contribute number reports back to the community database. This will be strictly opt-in, and you will be notified before any outbound report is sent.

⏱ Data retention

Because all data is stored locally on your device, you control retention entirely. There is no server-side retention period to manage.

Within the app

Call history is retained locally for as long as the app is installed. You can clear call history from within the app settings at any time.

Support emails

If you email us for support, we retain your email and message for up to 2 years to provide ongoing support, then delete it. You can request deletion sooner at any time.

Crash reports (opt-in)

Anonymised crash reports are retained for 90 days for debugging, then automatically deleted.

⚖️ Your rights & regulatory compliance

Nudge Call Manager is designed to comply with major data protection regulations by minimising data collection to near-zero. Regardless, you retain the following rights:

Right to access — your data is on your device. Open the app to see it.
Right to erasure — uninstall the app or use "Clear app data" in Android Settings.
Right to restriction — disable individual permissions via Android Settings at any time.
Right to object — disable crash reporting by not opting in (or opting out in Settings).
Right to portability — we don't hold your data server-side, so there's nothing to export from us.

For EU/EEA users (GDPR), UK users (UK GDPR), California users (CCPA), and Indian users (DPDP Act 2023) — your applicable rights above apply in full. Contact us if you need to exercise any right we handle server-side (e.g., deletion of support emails).

📧 Data requests: hello@bfyai.in — we aim to respond within 72 hours.

▶ Google Play & payments

All subscription payments are processed by Google LLC through the Google Play Store. bfyaı does not receive, store, or process any payment card information.

Google may collect device identifiers and payment information in accordance with their own Privacy Policy. We have no control over Google's data practices.

The only data we receive from Google Play is a subscription receipt token confirming whether your subscription is active. This token is stored locally on your device and used only to unlock Pro features.

✉ Questions about your data

bfyaı — Data & Privacy
Email: hello@bfyai.in
Website: bfyaı.in
Response time: within 72 hours