VeriCortex

Privacy Policy for OmoSafe

Privacy Policy for OmoSafe

Effective Date: October 29, 2025

Thank you for choosing OmoSafe (“we,” “us,” “our”), a premium child safety application powered by VeriCortex. This Privacy Policy is to inform you about how we collect, use, and protect your information, especially in relation to the sensitive permissions required for OmoSafe to function.

Your privacy is our top priority. We only use these permissions to provide the core safety and security features of the app.

1. Summary of Core Features & Sensitive Permissions

To provide its safety features, OmoSafe requests the following sensitive permissions. We do not use these permissions for undisclosed purposes like advertising or data brokering.

  • AccessibilityService API: This is a high-privilege permission required for our most advanced safety features. It is used only to:
    1. Advanced Threat Detection: Monitor content within social media apps, web browsers, and other applications to detect and block cyberbullying, predators, and inappropriate content in real-time.
    2. Remote Screen Viewing: Securely stream screen activity to the parent’s device.
    3. Enforce Restrictions: Prevent the app from being bypassed and ensure content filtering rules are applied.
  • VpnService: Used to provide our primary Content Filtering feature. This creates a secure, on-device (local) filter to block malicious websites, adult content, or other categories you choose.
    • We DO NOT collect, log, or redirect your network traffic for external analysis. The VpnService is used only for local, on-device filtering and does not send your personal browsing data to our servers.
  • Device Administrator (BIND_DEVICE_ADMIN): This permission is essential for core safety features. It is used only to:
    1. Prevent Uninstallation: To stop the app from being easily removed (e.g., by a child) without your authorization.
    2. Enforce Security: To allow for remote device lock or to enforce screen lock policies as configured by the parent or account owner.
  • SMS & Call Log Access (READ_SMS, READ_CALL_LOG): This permission is required for the “Remote SMS/Message Access” feature. It is used only to:
    1. Display Messages: Allow the parent account to read SMS messages remotely.
    2. Risk Detection: Analyze message content for potential risks, such as cyberbullying or contact from predators, as part of our Advanced Threat Detection.
  • Screen Recording (MediaProjection API): This permission is used only to enable the “Remote Screen Viewing” feature, allowing a parent to access live or near-real-time screen activity for deeper oversight.
  • Location Data (ACCESS_FINE_LOCATION / ACCESS_COARSE_LOCATION / ACCESS_BACKGROUND_LOCATION): This is used for our location-based safety features, such as:
    1. Find My Device / Enhanced Location Tracking: Allowing you to see your device’s movement history and last known location.
    2. Geo-fencing: Alerting you if the device enters or leaves a designated safe zone.
    • To provide these features, OmoSafe may need to collect location data even when the app is running in the background (requiring ACCESS_BACKGROUND_LOCATION). This data is used solely to provide the safety feature you have enabled.
  • App Usage Statistics (PACKAGE_USAGE_STATS): This permission is required for our App Management features. It allows OmoSafe to see which apps are being used and for how long. It is used only to:
    1. Monitor App Time: Show you reports of app usage.
    2. Enforce App Time Limits: Block apps based on time-limit rules you set.
  • Query All Packages (QUERY_ALL_PACKAGES): This permission is used by our App Management features to get a list of all apps installed on the device. This is used only to:
    1. Display App List: Show you a complete list of installed apps so you can choose which ones to block or manage.
  • Photo and Video Access (via Photo Picker):
    • To comply with Google Play policy and best protect your privacy, OmoSafe does not request broad access to your photo library.
    • When a feature requires a photo (like setting a profile picture), we use the secure, built-in Android Photo Picker. This lets you select a specific photo, and our app only gets access to the single photo you choose.

2. What Information We Collect

We may collect the following categories of information:

  • Information You Provide:
    • Contact Information: Name, email address, and phone number used to create and secure your account.
    • Account Information: Your relationship (e.g., parent) and any associated child accounts you create.
  • Information from Your Use of the Service (collected to provide safety features):
    • Service-Related Data: The settings and rules you create (e.g., blocked website categories, geo-fenced areas, managed app lists, and time limits).
    • Message & Call Data: Copies of SMS messages and call logs.
    • In-App Content: Text and content from third-party apps, collected via the AccessibilityService for threat detection.
    • Screen Activity: Screen recordings or screenshots for remote viewing.
    • Installed App Data: A list of installed applications on the device.
    • App Usage Data: Information on app usage (app name, duration).
    • Location Data: Your device’s location and movement history.
    • Usage Data: Technical information about your device, such as IP address, app version, device model, and crash logs for debugging and service improvement.

3. How We Use Your Information

We use your personal information to:

  • Deliver Core Services: Provide the content filtering, app management, device admin, and location-tracking features you have configured.
  • Provide Advanced Safety Features: Analyze in-app content, SMS, and messages for cyberbullying, predators, and inappropriate content using our advanced AI.
  • Enable Parental Oversight: Provide remote access to SMS, call logs, and screen activity to the authorized parent account.
  • Support & Communication: Respond to your inquiries, provide priority customer support, and send you essential service updates.
  • Improve Our App: Analyze crash data and usage patterns to fix bugs and improve our offerings.
  • Legal Obligations: Fulfill any legal or regulatory obligations.

Our Lawful Basis for Processing (GDPR)

If you are in the European Economic Area (EEA), our legal basis for collecting and using your personal information is as follows:

  • Performance of a Contract: We process your data to provide and maintain the OmoSafe services you have subscribed to.
  • Legitimate Interests: We process data for security, bug fixing, and service improvement, where our legitimate interests do not override your fundamental rights.
  • Consent: For certain features, we may ask for your explicit consent to process data.
  • Legal Obligation: We may process data to comply with legal or regulatory requirements.

4. How We Share Your Information

We do not sell your personal data. We only share your information in the following limited circumstances:

  • With Our Parent Company (VeriCortex): OmoSafe is a product of VeriCortex. To provide our “Advanced Threat Detection” powered by cutting-edge AI, we securely share service-related data (such as message content, in-app text, and screen activity) with VeriCortex for processing. VeriCortex is bound by this Privacy Policy and only uses this data to operate, secure, and improve the OmoSafe service.
  • Legal Requirements: We may disclose information to regulatory or legal authorities if required by law.
  • To Fulfill Your Service: Your child’s data (such as location, app usage reports, and messages) is shared with the parent account you have linked as the core function of the OmoSafe service.

5. How We Protect Your Information & Compliance

We implement industry-standard security measures to protect your data, including:

  • Encryption for data in transit (SSL) and at rest.
  • Strong access control and authentication mechanisms.
  • Regular system monitoring and auditing.
  • Adherence to global privacy standards, including the principles of the:
    • Children’s Online Privacy Protection Act (COPPA)
    • Nigeria Data Protection Act (NDPA)
    • EU General Data Protection Regulation (GDPR)
    • California Consumer Privacy Act (CCPA) & California Privacy Rights Act (CPRA)

6. Data Retention and Your Rights

We retain personal data only as long as your account is active or as necessary to provide our services and comply with legal requirements.

You have certain rights regarding your personal data, subject to local law. These include the right to:

  • Access your personal data.
  • Correct or update inaccurate data.
  • Delete your personal data.
  • Withdraw consent at any time (though this may disable core app features).
  • File a complaint with a data protection authority.

Your European Rights (GDPR)

If you are a resident of the EEA, you have additional rights:

  • Right to Rectification: Correct any inaccurate personal data.
  • Right to Erasure (“Right to be Forgotten”): Request the deletion of your data.
  • Right to Restrict Processing: Request that we limit how we use your data.
  • Right to Data Portability: Request a copy of your data in a machine-readable format.
  • Right to Object: Object to our processing of your data based on legitimate interests.

To exercise these rights, please contact us at support@vericortex.com.

Your California Rights (CCPA/CPRA)

If you are a California resident, you have the following rights:

  • Right to Know: Request details about the categories and specific pieces of personal information we have collected.
  • Right to Delete: Request the deletion of your personal information, subject to certain exceptions.
  • Right to Correct: Request the correction of inaccurate personal information.
  • Right to Limit Use of Sensitive Personal Information: You have the right to limit our use of sensitive data (like precise location or message content) to only what is necessary to provide the service.
  • Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights.
  • “Do Not Sell or Share”: We do not sell or share your personal information as defined by the CCPA.

To exercise these rights, please contact us at support@vericortex.com.

7. International Data Transfers & “Do Not Track”

International Data Transfers

OmoSafe is a global service. Your information may be stored and processed in any country where we or our service providers (like VeriCortex) operate. If you are in the EEA, this may mean transferring your data outside the EEA. We take all necessary measures to ensure these transfers are lawful and that your data is protected by appropriate safeguards (such as Standard Contractual Clauses).

Do Not Track Signals (CalOPPA)

Some browsers transmit “Do Not Track” (DNT) signals. Our service does not currently respond to or alter its practices when it receives a DNT signal.

8. Changes to This Policy

We may update this policy. We will notify you of any significant changes by posting the new policy in the app and on our website.

9. Contact Us

If you have any questions about this Privacy Policy, our practices, or to exercise your privacy rights, please contact our Data Privacy team at:

VeriCortex Email: support@vericortex.com Website: www.vericortex.com/omosafe