Privacy Policy

Noti Cloud ("the App") is developed and maintained by BuiltTruly. We are committed to protecting your privacy. This policy explains what data the App collects, why it collects it, how it is stored, and your rights regarding your data.

The App has two modes: Free (local only) and Premium (cloud sync enabled). Data collection differs based on which mode you use.

Always Collected (Free & Premium)

• Notification content: Title, body, and metadata of notifications received on your device.
• App names and identifiers: The name and package identifier of apps that sent each notification.
• Timestamps: When each notification was received.
• Device information: Android device ID and device name for multi-device support.

Collected Only With Premium Subscription

• Email address: Captured via Google Sign-In to identify your account.
• Google account ID: A unique identifier used for authentication.
• Subscription purchase tokens: Used to verify your active subscription with Google Play.
• Cloud-synced notifications: A copy of your notifications stored on our servers for cross-device access.

What We Do NOT Collect

We do not collect your phone number, contacts, location, photos, browsing history, or any data from outside the notifications themselves. We do not use analytics or tracking SDKs.

Local Storage

All notification data is first saved locally on your Android device in a private, app-only database protected by Android's standard application sandbox. Other apps cannot access this data.

Cloud Storage (Premium only)

If you subscribe to Premium, your notifications are uploaded to our cloud infrastructure provided by Supabase (a service provider operating PostgreSQL databases on secure cloud hosting). Data is transmitted via HTTPS (TLS encryption) and stored with industry-standard infrastructure-level encryption at rest.

Access controls (row-level security policies) ensure that your data is only readable by your authenticated account. We do not perform additional end-to-end encryption with user-held keys; content is technically accessible to Supabase as the infrastructure provider, governed by their data processing terms.

Cloud Data Retention

Cloud-synced notifications are automatically deleted after 30 days. This is enforced by our backend and applies to all users on Premium.

• To display your notification history within the App.
• To allow you to search, filter, and browse past notifications.
• To synchronize your notifications across devices when Premium is active.
• To verify your Premium subscription status with Google Play.
• To respond to support requests you initiate.

We do not use your notification data for advertising, profiling, machine learning training, analytics about you, or any other purpose. Your data is used solely to provide the features of the App to you.

We do not sell, rent, or share your data with third parties for marketing or advertising purposes.

We use the following service providers, who process data on our behalf under appropriate data processing agreements:

• Supabase: Cloud database and authentication hosting for synced notifications and account data.
• Google Sign-In: For authenticating your identity. Google's privacy practices apply to your interactions with their sign-in service.
• Google Play Billing: For processing Premium subscription payments. Google's privacy practices apply to billing data.

We may disclose your data if required by law, subpoena, or court order, but only to the extent legally compelled.

The App requests the following Android permissions:

• Notification Listener Service (BIND_NOTIFICATION_LISTENER_SERVICE): Required to read notifications as they arrive. This is the core permission the App relies on. You can revoke it at any time via Android system settings.
• Internet: Required only for Premium features (cloud sync, authentication, subscription verification).
• Query installed apps (QUERY_ALL_PACKAGES): Used to display the icon and name of apps that sent notifications, and to manage your app blocklist.

We use these permissions solely for the purposes described in this policy. Notification content is never used outside the App's functionality declared in our Google Play listing.

• Revoke notification access: Disable the App's notification listener permission in Android Settings → Notifications → Notification access.
• Delete local data: Clear all notifications in-app via Settings, or uninstall the App to remove all local data.
• Cancel Premium: Manage your subscription via Google Play Store. Cloud sync will stop after your subscription expires.
• Delete cloud data: Sign out from the App, or contact us to permanently delete all cloud-stored data associated with your account.
• Access your data: Email us to request a copy of any data we hold about you.
• Account deletion: Email us to request complete deletion of your account and all associated data.

Requests are processed within a reasonable timeframe (typically within 30 days).

Local data: Retained on your device until you delete it manually or uninstall the App.

Cloud data (Premium): Automatically deleted after 30 days. You can also request immediate deletion at any time by signing out, or by contacting us at support@builttruly.com.

Account data: Email and account identifiers are retained while your account is active. If you delete your account, this data is removed within 30 days, except where retention is required by law (e.g., transaction records for tax purposes).

We take reasonable steps to protect your data:

• Data in transit is encrypted using HTTPS / TLS.
• Data at rest is protected by infrastructure-level encryption from our cloud provider.
• Authentication tokens are stored using Android's secure storage mechanisms.
• Database row-level security ensures users can only access their own data.
• Subscription verification is performed server-side to prevent tampering.

While we work to protect your information, no method of electronic storage is 100% secure. We cannot guarantee absolute security.

Noti Cloud is not directed to children under the age of 13 (or 16 in some jurisdictions). We do not knowingly collect personal information from children. If you believe a child has used the App and their data may have been collected, please contact us and we will promptly delete it.

The App is operated from India. If you use the App from outside India, your data may be transferred to, stored, and processed in India and other countries where our service providers operate. By using the App, you consent to this transfer.

We may update this privacy policy from time to time. When we do, we will update the "Last updated" date at the top of this page. For material changes, we will provide additional notice within the App. Continued use of the App after changes constitutes your acceptance of the updated policy.

If you have any questions, concerns, or requests about this privacy policy or your data, please contact us:

support@builttruly.com