Privacy Policy

ISHIP DEV ("we", "us", "our", "Company") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and protect information in connection with the Activity Recorder & Tracker mobile application (the "App", "Service"). This policy applies to all users of the App.

Important: This App is designed to collect screen activity data (screenshots and videos) from monitored devices. You are solely responsible for ensuring your use complies with applicable privacy and data protection laws in your jurisdiction.

1. Information we collect

We collect different types of information depending on how you interact with our App:

1.1 Information you provide directly

Payment and account information

When you purchase an activation code, we collect:

• Email address — To send your activation code and purchase confirmation
• Payment information — Processed by our third-party payment processor (we do not store credit card details)
• Billing information — Name, billing address, ZIP code as required by payment processor

Activation code validation

When you activate the App on a device, we collect:

• Activation code — To validate your license
• Device identifier — Unique identifier to tie the code to one device
• Activation timestamp — Date and time of activation

1.2 Information collected by the App on the monitored device

Critical: The App collects extensive screen activity data from the monitored device. This data goes directly to your personal Google Drive (if connected) or remains on the device. We never see, access, or store this data on our servers.

Screen activity data

• Screenshots — Still images of the device screen captured at intervals you configure (e.g., every 2, 5, 10, or 20 seconds)
• Screen recordings (videos) — Continuous video capture of screen activity (if video mode enabled)
• Audio recordings — Device audio during video recording (if audio recording enabled)
• Timestamps and metadata — Date, time, file size, recording mode for each capture

Device information

• Android version and device model (for compatibility purposes)
• Available storage space (to prevent recording failures)
• App state information (which apps are active during recording for "In Selected Apps" trigger mode)

What the screen data may contain

Depending on what appears on the monitored device's screen, recordings may capture:

• Social media activity, posts, messages, and profiles
• Messaging app conversations (WhatsApp, Messenger, Telegram, Signal, etc.)
• Browser history, search queries, and website content
• Photos, videos, and other media viewed on the device
• Email content, calendar events, notes
• Gaming activity, app usage patterns
• Any other content visible on the screen during recording

1.3 Information we do not collect

The App does not collect:

• GPS location or geolocation data
• Keystroke logs (keylogger functionality)
• Direct access to SMS, call logs, or contacts (only screen visibility)
• Passwords or authentication credentials (system protections prevent capture)
• Banking app content (Android system restrictions prevent this)
• Biometric data (fingerprints, face scans)

2. How we use your information

2.1 Information we use (payment & activation data)

We use the information you provide directly (email, payment info, activation codes) for:

• Processing payments and transactions
• Delivering activation codes via email
• Validating licenses and preventing fraud (ensuring one code = one device)
• Providing customer support (responding to inquiries, troubleshooting)
• Sending service-related communications (purchase confirmation, activation instructions, critical updates)
• Complying with legal obligations (tax reporting, fraud prevention)

2.2 Information we do not use (screen activity data)

We do not access, view, store, or process any screen activity data (screenshots, videos, audio) collected by the App. This data goes directly from the monitored device to your Google Drive account or remains stored locally on the device. We have zero access to your recordings.

You (the App user) are the data controller for all screen activity data. We are not a data processor for this data because we never receive, access, or process it. Your use of screen activity data is governed by your own privacy obligations and applicable laws.

3. How we share your information

3.1 Third-party service providers

We share your payment and contact information with trusted third-party service providers who assist us in operating our business:

• Payment processors — To process credit card transactions and deliver activation codes (e.g., Stripe, PayPal)
• Email service providers — To send purchase confirmations and activation codes
• Cloud hosting providers — To host our website and backend infrastructure for activation validation
• Analytics providers — To understand website traffic and user behavior (e.g., Google Analytics)

These service providers are contractually obligated to protect your information and use it only for the purposes we specify.

3.2 Google Drive integration

If you choose to connect Google Drive, the App uploads screen recordings directly from the monitored device to your Google Drive account using Google's APIs. This data transfer occurs between the device and Google's servers — we are not involved in this process and have no access to the files. Google's Privacy Policy governs how Google handles data in your Drive.

3.3 Legal requirements

We may disclose your information if required by law or in response to:

• Valid legal process (subpoena, court order, warrant)
• Requests from law enforcement or government authorities
• Protection of our rights, property, or safety, or that of others
• Investigation of suspected fraud or illegal activity

3.4 Business transfers

If we are involved in a merger, acquisition, sale of assets, or bankruptcy, your information may be transferred as part of that transaction. We will notify you via email and/or prominent notice on our website before your information becomes subject to a different privacy policy.

3.5 We do not sell your information

We do not sell, rent, or trade your personal information to third parties for their marketing purposes.

4. Data storage and security

4.1 Where your data is stored

Payment and activation data

• Stored on secure servers located in [Jurisdiction/Region]
• Retained for as long as necessary to provide services and comply with legal obligations
• Encrypted in transit (HTTPS/TLS) and at rest

Screen activity data (recordings)

• Local storage: Temporarily stored in a hidden folder on the monitored device
• Cloud storage: Uploaded to your Google Drive account (if connected) using encrypted connections (HTTPS)
• Company access: None — we never receive or store screen activity data on our servers

4.2 Security measures

We implement industry-standard security measures to protect your information:

• Encryption in transit (TLS/SSL) for all data transmissions
• Encryption at rest for stored payment and activation data
• Secure backend infrastructure with access controls
• Regular security audits and vulnerability assessments
• Limited employee access to systems containing personal data

4.3 Your responsibility for screen activity data

Since screen activity data goes to your Google Drive, you are responsible for:

• Securing your Google account (strong passwords, 2-factor authentication)
• Managing storage space in your Drive
• Controlling who has access to your Google Drive
• Deleting recordings when no longer needed
• Complying with data protection laws applicable to the recorded content

5. Data retention

5.1 Payment and activation data

We retain your payment and activation information:

• Email and payment records: 7 years (for tax and accounting purposes)
• Activation codes and device IDs: Indefinitely (to prevent code reuse and fraud)
• Support communications: 3 years after case closure

5.2 Screen activity data

We do not control retention of screen activity data because it goes directly to your Google Drive. You determine how long recordings are kept in your Drive. You can delete files at any time. We recommend establishing a retention policy based on your monitoring purpose and applicable legal requirements.

6. Your privacy rights

Depending on your location, you may have certain rights regarding your personal information. These rights apply only to data we control (payment and activation data), not to screen activity data stored in your Google Drive.

6.1 Rights under GDPR (EU/UK/EEA residents)

If you are located in the European Union, United Kingdom, or European Economic Area, you have the following rights:

• Right to access: Request a copy of the personal data we hold about you
• Right to rectification: Request correction of inaccurate or incomplete data
• Right to erasure ("Right to be Forgotten"): Request deletion of your data in certain circumstances
• Right to restriction: Request that we limit processing of your data
• Right to data portability: Receive your data in a structured, machine-readable format
• Right to object: Object to processing based on legitimate interests or direct marketing
• Right to withdraw consent: Where processing is based on consent, withdraw it at any time

To exercise these rights, contact us at contact@ar-tracker.com. We will respond within 30 days.

6.2 Rights under CCPA/CPRA (California residents)

If you are a California resident, you have the right to:

• Know: Request disclosure of personal information collected, sources, purposes, and third parties with whom it's shared
• Delete: Request deletion of personal information we've collected
• Correct: Request correction of inaccurate personal information
• Non-discrimination: We will not discriminate against you for exercising your rights

6.3 Other U.S. state privacy rights

Residents of Virginia, Colorado, Connecticut, Utah, Indiana, Kentucky, Rhode Island, and other states with comprehensive privacy laws have similar rights to access, delete, correct, and obtain copies of their data. Contact us to exercise these rights.

6.4 Limitations on rights

We may deny your request if:

• We cannot verify your identity
• The request is manifestly unfounded or excessive
• We are required by law to retain the information
• The information is necessary to prevent fraud or enforce our legal rights

6.5 How to exercise your rights

To exercise any of these rights, contact us at:

Email: contact@ar-tracker.com
Subject line: "Privacy Rights Request - [Your Name]"

We will verify your identity and respond within the timeframes required by applicable law (typically 30–45 days).

7. Children's privacy

The App is intended for use by adults (18+) only. We do not knowingly collect personal information from children under 13 (or 16 in the EU) for our own purposes. If you believe we have inadvertently collected data from a child, contact us immediately at privacy@ar-tracker.com, and we will delete it.

Important note: While the App may be used to monitor devices used by children, the screen activity data collected goes to your Google Drive, not to us. You are responsible for handling that data in compliance with children's privacy laws (e.g., COPPA in the U.S., laws regarding parental authority in the EU).

8. International data transfers

Our servers are located in [Jurisdiction]. If you are accessing the App from outside this region, your payment and activation data may be transferred to, stored, and processed in [Jurisdiction]. By using the App, you consent to this transfer.

For users in the European Economic Area (EEA), United Kingdom, or Switzerland, we rely on Standard Contractual Clauses (SCCs) or other appropriate safeguards approved by the European Commission to protect your data during international transfers.

Screen activity data (recordings) is not transferred through us — it goes directly from the monitored device to your Google Drive, which may be stored in any location you choose within Google's infrastructure.

9. Cookies and tracking technologies

9.1 Website cookies

Our website uses cookies and similar tracking technologies:

• Essential cookies: Required for website functionality (e.g., shopping cart, login sessions)
• Analytics cookies: Help us understand how visitors use our site (e.g., Google Analytics)
• Marketing cookies: Track visitors across websites to display relevant ads (optional, requires consent)

You can control cookies through your browser settings. Note that disabling cookies may affect website functionality.

9.2 App tracking

The App itself does not use cookies, tracking pixels, or analytics libraries. We do not track user behavior within the App.

10. Third-party links and services

Our website may contain links to third-party websites, services, or resources (e.g., payment processors, Google Drive documentation). We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any personal information.

When you connect Google Drive, Google's Privacy Policy governs how your data is handled in your Drive account. We recommend reviewing Google's privacy practices at https://policies.google.com/privacy.

11. Changes to this privacy policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or service features. When we make material changes, we will:

• Update the "Last updated" date at the top of this policy
• Notify you via email (if you provided one for activation code delivery)
• Post a prominent notice on our website

Your continued use of the App after changes become effective constitutes acceptance of the updated policy. We encourage you to review this policy periodically.

12. Contact information

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Data protection contact

For EU/UK residents: If you are located in the EU or UK and are not satisfied with our response, you have the right to lodge a complaint with your local data protection authority (supervisory authority).

Quick reference: what data we handle

This table summarizes what data exists and who controls it: