Legal

Privacy Policy

Your privacy matters to us. Here's how we handle your data.

Last Updated: February 24, 2026

ScamSense ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application ScamSense (the "App") and our website scamsenseapp.com (the "Website"). Please read this policy carefully. By using the App or Website, you consent to the practices described herein.

1. Information We Collect

1.1 Information You Provide Directly

  • Account Information: When you create an account, we collect your email address and a display name. We use secure authentication and never store your password in plain text.
  • Scan Content: When you submit text messages, URLs, or screenshots for scam analysis, we process this content to provide our detection service. See Section 3 for how we handle this data.
  • Community Reports: If you choose to submit public scam reports, we collect the report content, category, and optional location data you provide.
  • Support Communications: If you contact us via email at sales@xigmapro.com, we retain your correspondence to assist you.

1.2 Information Collected Automatically

  • Device Information: Device type, operating system version, unique device identifiers, and mobile network information.
  • Usage Data: App usage patterns, features accessed, scan frequency, and session duration. This data is anonymized and used to improve the App.
  • Log Data: IP address, browser type, access times, and referring URLs when you visit our Website.
  • Crash Reports: Anonymized crash and performance data to help us identify and fix bugs.

1.3 Information We Do NOT Collect

  • We do not read your personal messages, emails, or contacts without your explicit action.
  • We do not access your camera, microphone, or files unless you initiate a screenshot scan.
  • We do not sell, rent, or trade your personal information to third parties for marketing purposes.

2. How We Use Your Information

We use the information we collect for the following purposes:

  • Scam Detection: To analyze submitted content (text, URLs, screenshots) and provide scam risk assessments.
  • Service Improvement: To understand usage patterns, improve our AI detection algorithms, and enhance user experience.
  • Account Management: To create and manage your account, authenticate logins, and manage your subscription.
  • Communication: To send service-related notifications, security alerts, and (with your consent) product updates.
  • Community Safety: To aggregate anonymized scam reports for the Scam Trend Radar feature, helping protect the broader community.
  • Legal Compliance: To comply with applicable laws, regulations, and legal processes.

3. Scan Data Processing

We take extra care with the content you submit for scanning:

  • Transient Processing: Text and URL scans are processed in real-time and are not permanently stored on our servers. After analysis, the raw content is discarded.
  • Screenshot Handling: Uploaded screenshots are processed using OCR (Optical Character Recognition) to extract text, analyzed for scam indicators, and then immediately deleted from our servers.
  • AI Analysis: We use OpenAI's API to assist with scam analysis. Content sent to OpenAI is subject to their privacy policy. We do not send personally identifiable information to OpenAI — only the content you submit for scanning.
  • Anonymized Insights: We may retain anonymized, aggregated scam patterns (e.g., "delivery scam attempts increased 40% this month") to improve detection accuracy. These insights cannot be traced back to any individual user.

4. Data Storage and Security

  • Encryption: All data transmitted between the App and our servers is encrypted using TLS 1.2 or higher (HTTPS).
  • Server Security: Our servers are hosted on secure cloud infrastructure with industry-standard firewalls, intrusion detection, and regular security audits.
  • Password Security: User passwords are hashed using bcrypt with salt, making them unreadable even to our team.
  • Data Minimization: We only collect and retain the minimum data necessary to provide our services.
  • Access Controls: Access to user data is restricted to authorized personnel on a need-to-know basis.

5. Data Sharing and Disclosure

We do not sell your personal data. We may share information only in these limited circumstances:

  • Service Providers: Trusted third-party services that help us operate (e.g., cloud hosting, analytics). These providers are contractually obligated to protect your data.
  • AI Processing: OpenAI for scam content analysis (anonymized content only).
  • Legal Requirements: When required by law, subpoena, or court order, or to protect rights, safety, or property.
  • Business Transfers: In connection with a merger, acquisition, or sale of assets, with notice to affected users.
  • Community Reports: If you choose to make a scam report public, the report content (not your personal details) may be visible to other users.

6. Your Rights and Choices

You have the following rights regarding your data:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request correction of inaccurate or incomplete data.
  • Deletion: Request deletion of your account and associated data. We will process deletion requests within 30 days.
  • Data Portability: Request your data in a machine-readable format.
  • Opt-Out: Unsubscribe from marketing emails at any time using the link in the email or by contacting us.
  • Withdraw Consent: Withdraw consent for data processing at any time, though this may limit your ability to use certain features.

To exercise any of these rights, contact us at sales@xigmapro.com.

7. Children's Privacy

ScamSense is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we discover that a child under 13 has provided us with personal data, we will delete it immediately. If you believe a child has provided us with personal information, please contact us at sales@xigmapro.com.

8. Third-Party Links

Our App and Website may contain links to third-party websites or services (e.g., Google Play Store, social media). We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing personal information.

9. Cookies and Tracking (Website)

Our Website uses minimal cookies:

  • Essential Cookies: Required for the Website to function properly (e.g., session management).
  • Analytics: We may use anonymized analytics to understand Website traffic and improve user experience. No personally identifiable information is tracked.

You can control cookies through your browser settings. Disabling cookies may affect Website functionality.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place, including standard contractual clauses and compliance with applicable data protection regulations.

11. Data Retention

  • Account Data: Retained as long as your account is active, plus 30 days after deletion request.
  • Scan Data: Processed in real-time and not permanently stored.
  • Usage Analytics: Anonymized data may be retained indefinitely for service improvement.
  • Support Emails: Retained for up to 2 years after resolution.

12. Changes to This Policy

We may update this Privacy Policy from time to time. When we make significant changes, we will:

  • Update the "Last Updated" date at the top of this page.
  • Notify you via in-app notification or email for material changes.
  • Post the updated policy on our Website.

Continued use of the App or Website after changes constitutes acceptance of the updated policy.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your data, please contact us:

Want to see ScamSense in action?

Download ScamSense Free