SafeEcho (the "App") is a personal safety tool designed to facilitate location sharing and emergency signaling. All messages are delivered as encrypted push notifications over the internet (Firebase Cloud Messaging). No central server stores your family's data. This policy explains our commitment to handling your data transparently as we provide critical safety features.
2. Data Collection and Usage
We minimize data collection to the absolute necessity required for functionality:
Device Identifiers (FCM Tokens/UUIDs): The App stores anonymized identifiers on a secure database solely to route messages between paired devices.
Location Data: To support "presence_check" and emergency tracking, the App accesses location data. We do not store your location history on any central server.
Communication Content: Every location coordinate the App transmits — including the coordinates attached to an SOS alert — is encrypted on the sending device with a key that only your paired family devices hold. Messages pass through our relay solely so they can be forwarded to the recipient; the relay cannot decrypt them and deletes each message immediately after delivery. General system requests (for example, a request to make the phone ring) may be sent in plain text for efficiency. We do not store your location history on any central server.
Contacts: The App never reads your contact list. A parent selects one trusted contact through Android's own contact picker, and only that contact's details are transmitted, via an encrypted command, to the paired child's device, where the App saves it to the local address book. We do not store or harvest this data on any central server.
Purchase & Subscription Data: If you purchase SafeEcho Pro, our server stores the Google Play purchase token, the plan type, its expiry date, and your anonymized device identifier in a secure database, solely to verify your purchase and prevent fraud. All payments are processed by Google Play; we never receive or store your payment card details.
3. Critical Permissions Used
To fulfill its safety mission, SafeEcho requires the following permissions. The App requests no permission to place phone calls (CALL_PHONE) or to read your contacts (READ_CONTACTS):
Location (Fine, Coarse, & Background): Essential for monitoring safety zones even when not in active use.
Notifications: Required to deliver safety alerts — location replies, SOS, and safety zone events — while the App is running in the background.
Foreground Services (Location): Ensures reliable location tracking as required by Android 15 (API 35).
Contacts (Write only): Lets the App save a trusted contact, sent by a parent through an encrypted command, into the child's address book. The emergency call button does not place a call itself: it opens your phone's dialer with the number filled in, and you decide whether to call.
Other: Camera (scanning the QR code when pairing family devices), Audio/Vibration (emergency alerts), and Wi-Fi State (presence_check logic).
4. Disclaimers
GPS Accuracy: Precision depends on hardware; 100% accuracy is not guaranteed.
Service Reliability: The App delivers messages over the internet, so a device without mobile data or Wi-Fi cannot send or receive safety messages. We are not liable for communication failures or delays caused by loss of data coverage, cellular network outages, push notification delays, or satellite signal loss.
5. Data Deletion & Retention
We only store anonymized identifiers (FCM tokens and UUIDs) required for core safety functions.
Users can trigger data deletion by unpairing devices within the App, which immediately removes associated routing tokens from our database.
Uninstalling the App will also render the associated tokens invalid.
Purchase verification records (purchase token, plan, expiry, and device identifier) are retained only while your subscription or license remains active, and are removed by periodic cleanup once they are no longer needed.
When you send us a question through the in-app FAQ, we store its text along with basic diagnostic details (device model, Android version, app version, and your anonymous device identifier) so that we can answer it.
Your question and our reply are also placed on a page that can be opened only with an unguessable link held by your device.
We never ask for your name, email address, or phone number.
For privacy-related inquiries, please contact us at: support@rovina.ee Rovina OÜ, Vanakuu 2-8, Tallinn, Harjumaa, Estonia