Effective Date: December 27, 2025

This Privacy Policy (hereinafter "this Policy") explains how PhoneKit AI handles, processes, collects, uses, and protects your personal information and data when you download, install, access, or use the PhoneKit AI mobile application and its associated services. We are profoundly committed to protecting your privacy and maintaining transparency regarding our data practices. The foundational principle of PhoneKit AI is privacy by design – we minimize data collection, store information only when necessary, and never exploit your personal information for profit or unauthorized purposes.

Please read this Policy carefully before using PhoneKit AI. By downloading, installing, or using PhoneKit AI, you consent to the data practices described herein. If you do not agree with any aspect of this Policy, please refrain from using PhoneKit AI and uninstall it from your device.

1. Overview and Core Philosophy

1.1 About PhoneKit AI: PhoneKit AI is an intelligent mobile device management and privacy protection application engineered specifically for iOS devices. The App provides advanced features including photo and video deduplication, calendar optimization, contact consolidation, device security assessment, and encrypted private file storage.

1.2 Privacy-First Design: PhoneKit AI operates on the principle of zero-knowledge architecture wherever possible. This means:
* We do not collect, store, or transmit your personal identifiable information.
* All core functions execute locally on your device without sending your data to external servers.
* We do not build profiles, track behaviors, or monetize your information.
* Your photos, videos, calendar entries, and contacts remain entirely under your control.

1.3 Data Minimization: We collect and retain only the minimum data necessary to deliver the Services and comply with legal obligations. Data collection is limited, purposeful, and transparent.

2. What Personal Information We Do NOT Collect

PhoneKit AI is explicitly designed to avoid collecting your personal information:

2.1 No Personal Identification Data: We do not collect:
* Your name, email address, or postal address.
* Phone number, date of birth, or government identification numbers.
* Apple ID information, iCloud credentials, or device identifiers (IDFA, UDID).
* Precise geographical location, GPS coordinates, or location history.

2.2 No Content Monitoring: We do not collect or access:
* The content of your photos or videos (except for local processing on your device).
* Your Safari browsing history, web activity, or search queries.
* Your calendar events, notes, or meeting details beyond what you deliberately upload.
* Your contact list contents, except when you use our contact consolidation feature.
* Your passwords, authentication credentials, or financial information.

2.3 No Behavioral Tracking: We do not:
* Track which features you use most frequently.
* Monitor how long you spend in specific functions.
* Create user behavior profiles or engagement metrics.
* Sell, share, or license your behavioral data to third parties.

2.4 No Cross-App Tracking: We do not:
* Use cross-app tracking technologies.
* Participate in data-sharing networks with other applications.
* Request device advertising identifier (IDFA) for tracking purposes.
* Correlate your identity across different apps or services.

3. Information We May Process Locally On Your Device

PhoneKit AI processes certain information exclusively on your device for service delivery:

3.1 Photo and Video Analysis: When you use the deduplication feature, PhoneKit AI analyzes photos and videos stored on your device to:
* Identify duplicates, similar images, or corrupted files.
* Calculate file hashes and metadata locally.
* Generate optimization recommendations.

Critical: This analysis occurs entirely on your device. Images and videos are not uploaded to our servers or analyzed by external services. Hashes and metadata are generated locally and discarded after analysis.

3.2 Calendar Data Processing: When you initiate calendar cleanup, PhoneKit AI:
* Reviews past calendar entries stored on your device.
* Identifies obsolete or duplicate events.
* Provides recommendations for deletion or consolidation.

Critical: Calendar data remains on your device. We do not upload, store, or transmit your calendar entries.

3.3 Contact Information Management: When you use contact consolidation features, PhoneKit AI:
* Analyzes duplicate entries, conflicting information, or incomplete records.
* Suggests merge operations and optimizations.

Critical: Contact information remains on your device throughout the process.

3.4 Storage Analysis: The storage analysis function:
* Calculates storage usage by file type and application.
* Identifies large files and optimization opportunities.
* Generates device space reports.

Critical: This analysis occurs locally on your device without transmitting detailed file inventories.

3.5 Security Score Assessment: The Security Score feature:
* Evaluates device security configuration based on OS settings.
* Identifies suspicious app permissions.
* Detects security vulnerabilities based on public threat databases.
* Recommends security best practices.

Critical: This assessment is informational, based on device settings and publicly known vulnerabilities. No detailed scan data is transmitted externally.

4. Private Space Functionality and Encryption

4.1 Purpose: PhoneKit AI's Private Space provides encrypted storage for sensitive images and videos that you voluntarily choose to upload and secure.

4.2 Data Uploaded to Private Space:
* Only images and videos you explicitly select and upload are stored in Private Space.
* Private Space is encrypted using industry-standard encryption protocols (AES-256 or equivalent).
* Access to Private Space is protected by your device authentication (Face ID, Touch ID, or passcode).
* Your Private Space data is stored securely on our servers and remains encrypted.

4.3 Data We Receive for Private Space:
* Only the encrypted media files you voluntarily upload.
* Metadata necessary for storage management (file size, upload timestamp, file type).
* Your device identifier (only for account authentication and sync purposes).

4.4 Data We Cannot Access:
* We cannot decrypt or view the content of files stored in Private Space.
* We do not analyze, scan, or process the content of Private Space files.
* Even if compelled by legal process, encrypted Private Space content remains inaccessible to us.

4.5 Security Measures for Private Space:
* Files are encrypted before transmission to our servers.
* Encryption keys are derived from your device authentication and stored locally.
* Server-side access controls restrict unauthorized retrieval.
* We employ standard cybersecurity measures including firewalls, intrusion detection, and access logging.

4.6 Limitations: While we employ robust encryption, we cannot guarantee absolute impermeability against all sophisticated attacks. Users should maintain awareness that no encryption system is 100% unbreakable. We recommend strong device authentication (complex passcodes, biometric locks) as an additional protective layer.

5. Anonymized and Aggregated Data Collection

To maintain, improve, and optimize PhoneKit AI, we may collect limited, anonymized, non-identifying information:

5.1 Technical Device Information:
* Device model (e.g., iPhone 13 Pro, iPhone 14).
* iOS operating system version (e.g., iOS 16.0).
* App version and build number.
* Device memory and storage capacity (approximate).
* Network connectivity type (WiFi, cellular, none).

Purpose: Compatibility testing, performance optimization, and identifying device-specific issues.

5.2 App Performance Metrics:
* App launch time and response times.
* Feature usage frequency (aggregated across all users).
* Crash frequency and error rates.
* Session duration and frequency.

Purpose: Identifying performance bottlenecks, optimizing code, and improving stability.

5.3 Crash Reports:
* Anonymized crash logs generated when PhoneKit AI unexpectedly terminates.
* Stack traces indicating which code functions failed.
* Device state at time of crash (memory usage, available storage, running processes).

Important: Crash reports do not contain:
* Your photos, videos, calendar entries, or personal data.
* Your contacts, location, or identifying information.
* File names, paths, or metadata from your device storage.
* Any content you were working with when the crash occurred.

5.4 Feature Interaction Analytics:
* Which features are most frequently utilized (without tracking individual behavior).
* Which functions experience the most errors or crashes.
* Aggregated usage patterns (e.g., "40% of users employ the photo deduplication feature monthly").

Critical Privacy Protections:
* Data is aggregated across many users, making individual identification impossible.
* User identities are not linked to usage data.
* Data is retained only as long as necessary for analysis (typically 90 days) before deletion.

6. Third-Party Services and Integration

6.1 No Third-Party Analytics: PhoneKit AI does NOT integrate:
* Google Analytics or Firebase.
* Mixpanel, Amplitude, or similar analytics platforms.
* Facebook Pixel or other social media tracking tools.
* Advertising networks or attribution services.

6.2 Apple App Store:
* When you download or update PhoneKit AI through the App Store, Apple may collect information in accordance with its privacy policy.
* If you subscribe to premium features through App Store, Apple processes your payment and subscription data.
* PhoneKit AI does not receive your payment information; only subscription status is communicated to us by Apple.

For Apple's privacy practices, see: https://www.apple.com/privacy/

6.3 Apple Crash Reporting:
* iOS may automatically generate crash reports when apps malfunction.
* These reports are transmitted to Apple per your iOS settings.
* Apple may share anonymized crash data with app developers.
* PhoneKit AI may receive aggregated crash data from Apple to diagnose issues.

6.4 No Embedded Third-Party SDKs: PhoneKit AI does not embed advertising SDKs, marketing analytics SDKs, or other third-party data collection software.

6.5 External Links: PhoneKit AI may contain links to external websites (support pages, documentation, company website). These external sites are governed by their own privacy policies. We assume no responsibility for their content or data practices.

7. Data Security and Protection

7.1 Security Infrastructure:
* Encrypted transmission of all data via HTTPS/TLS 1.3 or higher.
* Server-side encryption for data at rest (AES-256 or equivalent).
* Role-based access controls restricting employee access to personal data.
* Regular security audits and penetration testing.
* Compliance with industry security standards (ISO 27001 principles).

7.2 Employee Access Controls:
* Only authorized personnel with legitimate business needs may access user data.
* Employees sign confidentiality agreements and receive security training.
* Access logs are maintained and monitored for unauthorized attempts.
* Terminated employees' access is immediately revoked.

7.3 Data Breach Response:
* In the event of a confirmed security breach affecting personal information, we will:
* Investigate the breach promptly and thoroughly.
* Notify affected users without unreasonable delay (typically within 30 days).
* Provide information about the breach, data affected, and recommended protective actions.
* Maintain detailed records of the breach and remediation efforts.

7.4 Limitations: No security system is completely impervious. While we employ industry-standard protections, we cannot guarantee absolute immunity against determined, sophisticated attacks. Users are responsible for maintaining strong device authentication and promptly updating iOS to patch security vulnerabilities.

8. Data Retention and Deletion

8.1 Personal Information: Since we do not collect personal information, there is no retention period applicable.

8.2 Anonymized Data:
* Anonymized crash reports are retained for up to 90 days for analysis purposes.
* Aggregated analytics data is retained for up to 12 months to identify trends and improvements.
* After the retention period, data is automatically deleted or anonymized further.

8.3 Private Space Data:
* Data you upload to Private Space is retained as long as you maintain it.
* You can delete Private Space files at any time within the App.
* Upon deletion, files are permanently removed from our servers within 30 days (after which they cannot be recovered).
* If you uninstall PhoneKit AI, Private Space data is retained on our servers unless you explicitly delete it first.

8.4 Customer Support Communications:
* If you contact us via email (advertising@businemore.com), we retain your communications to:
* Address your inquiry and provide support.
* Improve customer service.
* Maintain legal records if disputes arise.
* You may request deletion of your support communications at any time.
* We typically delete support emails after 2 years unless retention is required by law.

8.5 Device-Level Data:
* Local data on your device (duplicate photo analysis, calendar review, etc.) is retained only during your active use of PhoneKit AI.
* Upon uninstalling the App, local temporary data is automatically removed.

9. Your Privacy Rights and Choices

9.1 California Consumer Privacy Act (CCPA) Rights:

If you are a California resident, you have the following rights under CCPA:

• Right to Know: You may request information about:

  • Categories of personal information collected.

  • Purposes for collection.

  • Categories of third parties with whom information is shared.

  • Specific personal information collected about you.

• Right to Delete: You may request deletion of personal information collected from you, subject to legal exceptions.

• Right to Opt-Out: You may direct PhoneKit AI not to:

  • Sell personal information (which we do not do).

  • Share personal information for cross-context behavioral advertising (which we do not do).

• Right to Correct: You may request correction of inaccurate personal information.

• Right to Limit Use: You may restrict our use of your personal information to purposes necessary to provide the Services or as required by law.

• Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA rights through:

  • Denying goods or services.

  • Charging different prices or rates.

  • Providing different quality of service.

  • Suggesting you will receive different treatment.

9.2 How to Exercise CCPA Rights:

To exercise any CCPA right, please contact us at:

Email: advertising@businemore.com

Required Information:

• A clear statement of your request (Know, Delete, Opt-Out, Correct, or Limit).

• Information sufficient to verify your identity.

• Your contact information.

Response Timeline: We will respond to verifiable consumer requests within 45 calendar days. If we need additional time, we will provide written notice explaining the reason for the delay.

9.3 Authorized Agents: You may designate an authorized agent to submit requests on your behalf. The agent must provide:
* Written authorization from you.
* Power of attorney or similar legal document.
* Proof of identity verification.

9.4 Denial of Requests: We may deny requests if:
* We cannot verify your identity.
* The request is fraudulent or frivolous.
* Information does not exist or has already been deleted.
* Legal exceptions apply.

We will provide written explanation if we deny your request.

9.5 Other Privacy Choices:
* App Tracking Transparency: You can limit ad tracking by disabling "Allow Apps to Request to Track" in iOS Settings > Privacy > Tracking.
* Location Services: You can disable location access for PhoneKit AI in Settings > Privacy > Location Services.
* Photos Library Access: You control which photos PhoneKit AI can access via Settings > Privacy > Photos.
* Contacts Access: You control contact access via Settings > Privacy > Contacts.
* Crash Reporting: You can disable crash reporting in iOS Settings > Privacy > Analytics.

10. Virginia Consumer Data Protection Act (VCDPA) Rights

If you are a Virginia resident, you have rights under VCDPA:

• Right to Know: Request what personal data we collect and how it is used.

• Right to Delete: Request deletion of personal information (subject to exceptions).

• Right to Correction: Request correction of inaccurate personal data.

• Right to Data Portability: Request a portable copy of your personal information in a structured, commonly used, machine-readable format.

• Right to Opt-Out: Opt out of targeted advertising, sale of personal data, or profiling.

These rights are exercised by contacting us at advertising@businemore.com.

11. Colorado Privacy Act (CPA) Rights

If you are a Colorado resident, VCDPA-like rights apply under CPA:

• Right to Know, Delete, Correct, and Portability: Same as VCDPA above.

• Right to Opt-Out: Opt out of targeted advertising, sale, or profiling.

• Right to Non-Discrimination: We will not discriminate for exercising CPA rights.

Exercise these rights by contacting us at advertising@businemore.com.

12. Connecticut Data Privacy Act (CTDPA) Rights

If you are a Connecticut resident, the following rights apply:

• Right to Access: Request access to personal data collected.

• Right to Correct: Request correction of inaccurate data.

• Right to Delete: Request deletion of personal data.

• Right to Data Portability: Request your data in a portable format.

• Right to Opt-Out: Opt out of targeted advertising, sale, or profiling.

Contact us at advertising@businemore.com to exercise these rights.