Last Updated: November 08, 2025
Welcome to Flashlight: Flash Alert, Torch ("App"), developed by Blood Pressure Apps ("Company", "we", "us", or "our"). This Privacy Policy explains how we collect, use, store, and protect your personal data when you use our App or related services ("Services"). It also outlines your rights under applicable data protection laws, including the EU General Data Protection Regulation ("GDPR"), the California Consumer Privacy Act ("CCPA"), the Brazilian General Data Protection Law ("LGPD"), and Google Play policies. Our goal is to be transparent about our data practices and ensure your privacy is protected.
This Privacy Policy is an integral part of our End User License Agreement ("EULA"). Any capitalized terms not defined here have the meanings given in the EULA.
Device Information
What We Collect: We collect device-related data, such as hardware model, operating system version, and system settings. This helps us optimize the App's performance and ensure compatibility with your device.
Network and Internet Access
What We Collect: The App requires internet access to enable certain features, such as cloud synchronization, analytics, and ad display. We may collect information about your network connection to facilitate these features, but we do not track your browsing history or personal online activities.
Notification Access
What We Collect: The App may send notifications to your device to alert you about features like flashlight status or updates. We do not collect personal content from these notifications.
All data related to contacts is stored locally on your device. We do not upload or store this data on external servers. Any analytics data collected through third-party services (e.g., Firebase) is anonymized to protect your identity.
We employ appropriate security measures to protect your personal data, including encryption and regular security audits. However, no method of data transmission over the internet or electronic storage is 100% secure. We strive to use commercially acceptable means to protect your information, but we cannot guarantee its absolute security.
We request only the permissions necessary for the App's core functionality. Below, we explain each permission in detail, including why it is needed and how it is used. These permissions comply with Google Play policies, which require clear explanations and minimal data access.
1. Camera Permission (Used only on Android 14 and above)
Permission: android.permission.CAMERA
Description:
Required to control the flashlight LED on devices running Android 14 (API 34) and higher. The permission is used solely to enable or disable the device’s torch light through the camera hardware. No images, videos, or personal data are captured, recorded, or transmitted. Not requested or used on Android 13 or lower.
2. Read Phone State Permission
Permission: android.permission.READ_PHONE_STATE
Description:
Used to detect incoming and outgoing call events for controlling the flashlight. This permission enables the app’s “flash blink” feature, which flashes the device’s LED during incoming and outgoing calls as a visual alert. No call logs, phone numbers, contact data, or personal identifiers are accessed, stored, or shared. The permission is used solely for detecting call state changes to trigger flashlight effects in real time.
3. Boot Receive Permission
Permission: android.permission.RECEIVE_BOOT_COMPLETED
Description:
Allows the app to automatically restore the flashlight or widget state after the device restarts. This ensures that user preferences remain consistent even after reboot. No user data is collected, transmitted, or processed in the background.
4. Foreground Service Permission
Permission: android.permission.FOREGROUND_SERVICE
Description:
Enables the flashlight to operate in the background as a foreground service. The service remains active with a visible notification, ensuring the flashlight continues to function even when the app is minimized. Used strictly for maintaining flashlight operation; no additional background processing or data collection occurs.
5. Foreground Service Camera Permission
Permission: android.permission.FOREGROUND_SERVICE_CAMERA
Description:
Specifically required on Android 13 (API 33) and above for running a foreground service that accesses the camera hardware. This ensures compliance with Android’s security model for camera-based services like flashlight control. The camera is used only for LED (torch) operations; no images or recordings are made. The app runs a dedicated foreground service to manage flashlight operations. The service ensures the flashlight stays ON even when the app is backgrounded or the device screen is off. A persistent notification is displayed while the flashlight is active, allowing the user to control it easily. The service performs no data collection, network communication, or camera recording operations.
6. Post Notifications Permission (Android 13 and above)
Permission: android.permission.POST_NOTIFICATIONS
Description:
Used to display a persistent notification when the flashlight is active. This ensures the user can easily control or turn off the flashlight from the notification panel. Required for Android 13 (API 33) and above to post system notifications. The permission is not used for marketing, tracking, or any other unrelated purpose.
7. Message Notification Permission
Permission: android.permission.BIND_NOTIFICATION_LISTENER_SERVICE
Description:
Grants your app the ability to receive and process system notifications (from other apps) via a NotificationListenerService. This permission cannot be requested at runtime — it must be granted manually by the user through the settings screen that your intent opens. The app uses the Notification Access permission to detect when you receive SMS or message notifications from your phone’s default messaging apps (such as Google Messages, Samsung Messages, or similar). This permission is used to detect incoming SMS or message notifications so the app can trigger the phone’s flashlight for visual alerts.
We use third-party libraries and SDKs to enhance the App's functionality. These comply with Google Play policies and data protection regulations. Below is a detailed list:
1. Firebase SDK
Dependencies:
com.google.firebase:firebase-analytics
com.google.firebase:firebase-crashlytics
com.google.firebase:firebase-messaging
com.google.firebase:firebase-config
com.google.firebase:firebase-perf:19.1.0
com.google.firebase:firebase-bom:32.0.0
Description: Firebase is a platform developed by Google for creating mobile and web applications. These specific dependencies provide analytics (user tracking), crash reporting, cloud messaging (push notifications), remote configuration (dynamic configuration updates), and performance monitoring. All data shared with Firebase is anonymized.
2. Koin (Dependency Injection)
Dependencies: io.insert-koin:koin-android:4.0.0
Description: koin-android is the Android-specific module of Koin, a lightweight, pragmatic Dependency Injection (DI) framework built entirely in Kotlin. It’s designed to wire up dependencies at runtime using a Kotlin DSL, without annotation processors, kapt, or code generation. Version 4.0.0 brings: Kotlin 2.x compatibility, better Compose integration (koinViewModel), enhanced KMM (Kotlin Multiplatform Mobile) support, and performance and API improvements over Koin 3.x.
All Application data is stored locally on your device. If you delete the App, all locally stored data will be deleted from your device. Any data collected by third-party services is subject to their data retention policies.
Third-Party Data: Any data collected by third-party services (e.g., Firebase Analytics, Google AdMob) is subject to their respective data retention policies. We do not control these retention periods but ensure that any data we share is anonymized.
NOTE: No In-App Purchases or subscriptions have been added to the App as of now, but we may add them in the future.
The App offers both subscription-based and in-app purchase options to unlock premium features.
Subscriptions:
We offer multiple subscription plans (e.g., monthly, yearly). Prices vary by country and are displayed in the App or Google Play Store. Payments are charged to your Google Pay account upon purchase confirmation. Subscriptions automatically renew unless auto-renew is disabled at least 24 hours before the current period ends. Your Google Pay account will be charged for renewal within 24 hours of the period’s end, at the price shown. You can manage or cancel subscriptions via the App’s Account Settings or the Google Play Store. If a free trial is offered and you subscribe before it ends, the unused trial period will be forfeited.
In-App Purchases:
Options such as “Remove Ads” or “Premium Lifetime” are available, with prices varying by country. These are one-time purchases that unlock specific features permanently.
Payment Security:
Payments are processed by trusted third-party providers like Google Pay, adhering to PCI-DSS standards. We do not store or process your payment card details. For more details, see Google's Privacy Policy at <https://policies.google.com/privacy>.
The App itself does not use cookies. However, third-party services like Google AdMob or Firebase Analytics may use cookies or similar technologies (e.g., device identifiers) to collect anonymized data for analytics or advertising.
You can manage cookie settings through your device or browser settings. Disabling cookies may affect certain features, such as personalized ads.
We use third-party services for the following purposes:
Analytics: Firebase Analytics collects anonymized data to help us understand how users interact with the App, enabling us to improve its performance and features.
Advertising: Google AdMob serves ads within the App. These ads may be personalized based on anonymized data.
Behavioral Remarketing: Services like Google Ads or Facebook may use anonymized data to show you relevant ads on other platforms.
Payment Processing: Google Play Services handles all in-app purchases and subscriptions securely.
We ensure that any data shared with third parties is anonymized and complies with applicable data protection laws.
If you are a resident of the European Economic Area (EEA), you have the following rights under the GDPR:
Right to Access: Request access to the personal data we hold about you.
Right to Rectification: Request correction of inaccurate or incomplete data.
Right to Erasure: Request deletion of your personal data.
Right to Restrict Processing: Request limitations on how your data is processed.
Right to Data Portability: Receive your personal data in a structured, machine-readable format.
Right to Object: Object to the processing of your data, particularly for advertising purposes.
To exercise these rights, please contact us as described in the Contact Us section.
If you are a California resident, you have the following rights under the CCPA:
Right to Notice: You must be informed about the categories of personal data collected and their purposes.
Right to Access/Request: Request details about the personal data we’ve collected about you in the past 12 months, including: Categories of personal data collected, sources of that data, business or commercial purposes for collecting or sharing it, third parties with whom we share it, and specific pieces of personal data collected.
Right to Deletion: Request deletion of personal data collected in the past 12 months.
Right to Opt-Out of Sale: Request that we do not sell your personal data. You can submit this request via our “Do Not Sell My Personal Information” link if available, or by contacting us.
Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA rights, such as by denying services, charging different prices, or providing a different level of service.
To exercise your CCPA rights, contact us as described in the Contact Us section. We will provide the requested information free of charge.
The App complies with the California Online Privacy Protection Act (CalOPPA). We honor “Do Not Track” signals from your browser or device, meaning we will not track your activity for advertising purposes if this setting is enabled. Note that third-party services like Google AdMob may have their own “Do Not Track” policies, which you should review.
We take steps to ensure the App is free from malware and other harmful components. Our App is regularly scanned for vulnerabilities, and we prohibit any unauthorized use of our Services that could harm users or networks, such as distributing malware or engaging in phishing.
The App may contain links to third-party websites or services not operated by us (e.g., links in advertisements). We are not responsible for the content, privacy policies, or practices of these third-party sites. We recommend reviewing the privacy policies of any third-party sites you visit.
The App is not intended for users under the age of 13 (or 16 in the EEA). We do not knowingly collect personal data from children under these ages. If we become aware that a child has provided personal data, we will delete it immediately. If you believe a child under 13 (or 16 in the EEA) has provided data, please contact us.
We may process or share your data to comply with legal obligations, such as responding to lawful requests from public authorities or fulfilling regulatory requirements. We will only do so in accordance with applicable laws.
We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. Updates will be posted on this page, and the “Last updated” date will be revised. We recommend checking this page regularly for updates. Continued use of the App after changes constitutes acceptance of the updated policy.
If you have any questions about this Privacy Policy or need assistance, feel free to contact us at contact.bloodpressureapp@gmail.com or by post to:
Developer Name: Blood Pressure Apps