Privacy Policy

Lockdown — Android Security App · Effective: July 2025 · privacy@lockdownapp.com
Overview We built a privacy app. We actually respect yours.

Lockdown ("we", "our", or "the app") is a security application for Android devices. This Privacy Policy explains what information the app collects, how it is used, and your rights regarding that information.

We collect the absolute minimum data necessary to operate the app. We never sell your personal information to third parties — we make money from subscriptions, not your data.

01 Information we collect
🛡️ Never collected — stays on your device
  • Security scan results, threat levels, and risk scores
  • List of apps installed on your device
  • Permission audit results
  • Wi-Fi scan results and network details
  • DNS query logs from the Network Monitor
  • Sensor Watch alerts (which apps accessed your mic or camera)
  • Your App Lock PIN or biometric configuration
Crash reports (automatic)

If the app crashes, Firebase Crashlytics sends an anonymous crash report containing: the error type, device model, Android version, app version, and a stack trace. This report does not contain your name, scan results, or any personal data.

Purchase & subscription data

If you purchase Premium, Google Play processes the payment. We receive only a confirmation that a valid subscription exists for your Google Play account — not your card details, billing address, or full Google account information.

02 Permissions explained
Permission
Why it's needed
QUERY_ALL_PACKAGES
Required to scan all installed apps for security threats. Without this the app scanner cannot function.
PACKAGE_USAGE_STATS
Lets Sensor Watch read AppOps data to detect when other apps are accessing your mic or camera.
FOREGROUND_SERVICE (specialUse)
Required to run the Network Monitor VPN in the foreground with a visible notification — Android mandates this for all VPN services.
FOREGROUND_SERVICE (microphone)
Keeps Sensor Watch running reliably with screen off. The app itself never records audio.
BIND_VPN_SERVICE
Required to establish the local VPN used for DNS inspection. Traffic is never routed externally.
ACCESS_WIFI_STATE
Reads Wi-Fi connection details (SSID, BSSID, signal, encryption type) for the Wi-Fi Security scanner.
RECEIVE_BOOT_COMPLETED
Restarts Sensor Watch automatically after device reboot if you had it enabled.
USE_BIOMETRIC
Used only if you enable the optional biometric App Lock feature.
INTERNET
Used for: (a) Google Play subscription verification, (b) anonymous crash reporting, (c) forwarding DNS queries to 1.1.1.1 when Network Monitor is active.
03 How we use information

We use the limited data we collect only to:

  • Diagnose and fix crashes via Firebase Crashlytics
  • Verify your subscription status with Google Play Billing
  • Deliver DNS responses through the Network Monitor (queries forwarded to Cloudflare 1.1.1.1 and immediately discarded — we do not log them)

We do not use your data for advertising, profiling, analytics, or any purpose beyond the above.

04 Third-party services
Firebase Crashlytics — Google LLC
Anonymous crash reporting to help us identify and fix bugs.
Privacy policy ↗
Data sent:  Device model · Android version · App version · Stack trace. No personal data.
Google Play Billing — Google LLC
Processing Premium subscription payments through the Play Store.
Privacy policy ↗
Data sent:  We receive only a subscription status token — never your card details or billing address.
Cloudflare 1.1.1.1 — DNS resolver
When Network Monitor is active, inspected DNS queries are forwarded here to get real DNS responses. We do not store or log queries.
Privacy policy ↗
Data sent:  DNS query packets only — no device ID, no account info, no tracking.
05 Data storage & retention

Scan history, sensor alerts, and network logs are stored in an on-device encrypted database — never uploaded to our servers.

Scan history is automatically pruned to the 50 most recent entries. Clear all data instantly by uninstalling the app.

Anonymous crash reports are retained by Firebase Crashlytics for 90 days.

06 Children's privacy

Lockdown is not directed at children under 13. We do not knowingly collect personal information from children. If you believe a child has provided us with data, contact privacy@lockdownapp.com and we will delete it promptly.

07 Your rights

Because scan data is stored only on your device, most rights (access, rectification, portability) are exercised by managing or uninstalling the app.

For data held by third-party processors (Firebase, Google Play), contact those services directly or email us and we'll assist.

Residents of the EEA, UK, and California have additional rights under GDPR, UK GDPR, and CCPA. Contact us to exercise any of these rights.

08 Security

Local scan data is stored in an on-device database. Crash reports are transmitted to Firebase over encrypted HTTPS.

Security concerns about the app? Email security@lockdownapp.com.

09 Changes to this policy

We may update this policy from time to time. Material changes will be notified via an in-app notice. Continued use of Lockdown after changes are posted constitutes acceptance of the updated policy.

10 Contact us
✉️

Get in touch

Questions, requests, or concerns about this policy? We aim to respond within 5 business days.

privacy@lockdownapp.com

Email us