Site Inspector

# Privacy Policy for Site Inspector

**Effective Date:** March 17, 2026

**Contact:** muhammadilyas15@gmail.com

## 1. Introduction

Site Inspector ("we", "our", "the app") is a comprehensive website inspection and monitoring toolkit for Android. It allows users to analyze websites for broken links, HTTP headers, SSL certificates, technology stack, SEO performance, page speed, accessibility, cookie/tracker usage, carbon footprint, and more. Users can also monitor website uptime with push notifications and track response time history.

By using Site Inspector, you agree to the collection and use of information as described in this policy.

## 2. Information We Collect

### 2.1 Information You Provide

- **Website URLs:** URLs you enter for inspection, monitoring, or comparison. These are stored locally in the app's database for history and monitoring purposes.

- **Monitored Sites:** Website names and URLs you add for uptime monitoring, along with your chosen check interval preferences.

- **Feedback Messages:** Subject, message, and category when you contact us through the app's Contact Us form.

### 2.2 Information Collected Automatically

- **Device Information:** Device manufacturer, model, Android version, and app version are collected only when you submit a feedback message via the Contact Us form. This information is appended to your email to help us diagnose issues.

- **Crash Reports:** If the app crashes, Firebase Crashlytics automatically collects crash logs, device state, and stack traces to help us identify and fix bugs.

- **App Usage Analytics:** Firebase Analytics collects anonymous usage data such as screens visited and feature usage to help us improve the app.

- **Advertising Identifiers:** For free-tier users, Google AdMob collects device advertising identifiers and ad interaction data to serve relevant advertisements.

### 2.3 Website Data Fetched During Inspection

When you inspect a website, the app fetches the following data from the target website:

- **HTML Content:** The page's HTML source code is temporarily held in memory for analysis (link extraction, SEO checks, technology detection, tracker audit, accessibility check). It is NOT stored permanently.

- **HTTP Response Headers:** Server response headers are displayed and can be exported as PDF. Not stored permanently.

- **SSL Certificate Details:** Certificate issuer, subject, expiration date, and validity status. Not stored permanently.

- **DNS Records:** IP addresses resolved from domain names. Not stored permanently.

**Important:** This data belongs to the website being inspected, not to you. It is publicly accessible information that any web browser retrieves when visiting a website.

### 2.4 Network Information (My IP Feature)

When you use the "My IP" feature:

- **Public IP Address:** Fetched from a third-party API (ipapi.co or ipwhois.app). Your IP address is sent to these services to determine your geolocation.

- **Geolocation Data:** Country, city, region, postal code, timezone, and ISP — derived from your public IP by the third-party API.

- **Local Network Info:** Local IPv4/IPv6 addresses, WiFi SSID, gateway, DNS, and subnet mask are read from your device's network interfaces. This data stays on your device and is NOT transmitted to any server.

## 3. How We Use Your Information

We use collected information to:

- **Provide core functionality:** Inspect websites for links, headers, SSL, technology, SEO, speed, accessibility, trackers, and carbon footprint.

- **Monitor website uptime:** Periodically check monitored sites and send push notifications when sites go down, recover, or have expiring SSL certificates.

- **Track response time history:** Store response times for monitored sites to display performance trends.

- **Save inspection history:** Store past inspection results locally so you can review them later.

- **Generate PDF reports:** Create exportable reports of inspection results for sharing or record-keeping.

- **Display advertisements:** Show banner and interstitial ads to free-tier users via Google AdMob.

- **Improve app stability:** Use crash reports to identify and fix bugs.

- **Process purchases:** Handle subscription and one-time premium purchase transactions via Google Play Billing.

## 4. Data Storage and Security

### 4.1 Local Storage

All your data is stored locally on your device:

- **Room Database** (`site_inspector.db`): Stores inspection history, extracted links, monitored sites, and response time logs.

- **SharedPreferences:** Stores app settings (theme, stamp preferences, premium status, inspection limits).

- **Cache Directory:** Temporary storage for exported CSV, TXT, and PDF files.

### 4.2 No Cloud Storage

Site Inspector does **not** use cloud storage or cloud sync. There is no user account system. All your data remains on your device and is not uploaded to any server.

### 4.3 Data Transmitted to External Services

| Data Sent | Destination | Purpose |

|-----------|-------------|---------|

| Target website URL | Target website server | Fetch HTML, headers, SSL cert for inspection |

| Your public IP | ipapi.co / ipwhois.app | My IP feature — geolocation lookup |

| Device crash logs | Firebase Crashlytics | Crash reporting |

| Anonymous usage events | Firebase Analytics | App improvement |

| Ad requests | Google AdMob | Serving advertisements |

| Purchase tokens | Google Play Billing | Subscription/purchase verification |

### 4.4 Security Measures

- All network communication uses HTTPS/TLS encryption.

- Exported files use Android's FileProvider for secure sharing.

- No passwords or authentication credentials are stored.

- No user account required — no personal login data collected.

## 5. Data Sharing

### 5.1 We Do NOT Sell Your Data

We do not sell, trade, or rent your personal information to third parties.

### 5.2 Third-Party Services

We use the following third-party services that may collect data:

| Service | Purpose | Data Accessed | Privacy Policy |

|---------|---------|--------------|----------------|

| Google AdMob | Advertising (free tier) | Device ID, ad interactions | [Google Privacy Policy](https://policies.google.com/privacy) |

| Firebase Crashlytics | Crash reporting | Crash logs, device state | [Firebase Privacy](https://firebase.google.com/support/privacy) |

| Firebase Analytics | App improvement | Anonymous usage data | [Firebase Privacy](https://firebase.google.com/support/privacy) |

| Google Play Billing | Subscriptions & purchases | Purchase history | [Google Privacy Policy](https://policies.google.com/privacy) |

| Google UMP | Ad consent | Consent preferences | [Google Privacy Policy](https://policies.google.com/privacy) |

| ipapi.co | IP geolocation | Your public IP address | [ipapi.co Privacy](https://ipapi.co/privacy/) |

| ipwhois.app | IP geolocation (fallback) | Your public IP address | [ipwhois.app Privacy](https://ipwhois.app/privacy/) |

### 5.3 Ad Personalization

- Free-tier users see advertisements served by Google AdMob.

- AdMob may use device identifiers and usage data for ad personalization.

- The app uses Google's User Messaging Platform (UMP) to obtain your consent before showing personalized ads.

- You can opt out of personalized ads through your device settings (Settings > Google > Ads).

- Premium subscribers (monthly, yearly, or lifetime) see no advertisements.

## 6. Website Monitoring & Background Activity

### 6.1 Background Monitoring

If you add websites to the monitoring feature, the app performs periodic background checks using Android's WorkManager:

- **What is checked:** HTTP HEAD request to each monitored site (status code and response time).

- **Frequency:** Configurable per site (15 minutes to 24 hours). Free users: minimum 1 hour. Premium users: minimum 15 minutes.

- **SSL checks:** Daily check of SSL certificate expiration dates.

- **Data stored:** Status code, response time, and timestamp for each check (stored locally in Room database).

- **Notifications:** Push notifications sent when a site goes down, recovers, or has an SSL certificate expiring within 7 days.

### 6.2 Background Data Usage

Background monitoring makes lightweight HTTP HEAD requests (no page content downloaded). Data usage is minimal — approximately 1-5 KB per check per site.

## 7. Children's Privacy

Site Inspector is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If we discover that a child under 13 has provided us with personal information, we will delete it promptly.

## 8. Your Rights and Choices

### 8.1 Access and Control

- You can view all your data within the app at any time (inspection history, monitored sites, response time logs).

- You can delete individual inspections, monitored sites, or clear all history.

- You can export your data as CSV, TXT, or PDF for your records.

### 8.2 Data Deletion

- Delete inspection history: History screen > swipe to delete or Clear All.

- Delete monitored sites: Monitoring screen > swipe to delete.

- Response time logs older than 30 days are automatically deleted.

- Uninstalling the app removes **all** locally stored data permanently.

- There is no cloud data to delete (no account system).

### 8.3 Notifications

- You can disable monitoring notifications at any time through device Settings > App Notifications.

- You can disable individual site monitoring within the app.

### 8.4 Ad Preferences

- Premium subscription (monthly, yearly, or lifetime) removes all advertisements permanently.

- You can opt out of personalized ads via device settings (Settings > Google > Ads).

## 9. GDPR Compliance (European Users)

If you are located in the European Economic Area (EEA), you have additional rights:

- **Right to access** — view all your data within the app.

- **Right to rectification** — edit monitored site settings.

- **Right to erasure** — delete your data from within the app, or uninstall to remove all data.

- **Right to restrict processing** — disable monitoring or revoke notification permissions.

- **Right to data portability** — export your data as CSV or PDF.

- **Right to object** — opt out of personalized advertising via device settings.

The app uses Google's User Messaging Platform (UMP) to obtain consent for data processing and personalized advertising in compliance with GDPR.

To exercise any of these rights, contact us at muhammadilyas15@gmail.com.

## 10. Data Retention

- **Inspection history:** Retained until you delete it or uninstall the app.

- **Monitored sites:** Retained until you delete them or uninstall the app.

- **Response time logs:** Automatically deleted after 30 days.

- **Inspection results (links, headers, etc.):** Held in memory during inspection only — not stored permanently.

- **Exported files (CSV/TXT/PDF):** Stored in app cache until device clears cache or app is uninstalled.

- **Crash reports:** Retained by Firebase for 90 days per Google's policy.

- **Analytics data:** Retained per Google's standard retention policies (14 months).

## 11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by:

- Updating the "Effective Date" at the top of this policy.

- Posting a notice within the app.

Your continued use of the app after changes constitutes acceptance of the updated policy.

## 12. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, contact us at:

**Email:** muhammadilyas15@gmail.com