Privacy policy for AirGuard

This project is part of a scientific thesis to earn the degree of Bachelor of Science. To protect private data, we have used the Minimal Data Usage principle and the Offline First principle. Accordingly, all personal data is stored only locally on the device. In addition, we do not collect any data that is not necessary for the use of the app.

Responsibility

Responsible for the development of the app and our study server is Niklas Bittner, student of computer science at the Technical University of Darmstadt. The main supervisor of this work is Alexander Heinrich, M.Sc. as a PhD student and research assistant at the Technical University of Darmstadt at the Secure Mobile Networking Lab.

Address: Alexander Heinrich Pankratiusstra├če 2, 64289 Darmstadt

Study

There is also the voluntary possibility to participate in a scientific study. In this study we would like to find out how often people are threatened by tracking (stalking). Whether Apple's Find My devices are actually used for tracking people. And ultimately, how well we can protect people from this through our app.

In case of consent, the app then sends anonymized data to our server, which is later analyzed and published as part of the study. With the help of this data, it is not possible for us to identify participants in the study.

Data collection

Unless you participate in the study, all data generated is stored only on your device and cannot be viewed by us. This includes the following types of data:

In case of voluntary participation in the study, only anonymized data is collected, which does not allow us to identify participants, even if we have only one participant. The following data will be collected anonymously:

This app does not include advertisements to users, ad libraries or tracking frameworks. Your data will never be shared with a third party

Data access

The app accesses your location data (if consent is given) through the Android location services. Furthermore, we use the Bluetooth Android API to scan for nearby devices. We filter our scans, so we only find those Bluetooth devices that are sending AirTag / Find My messages.

Data storage and usage

We store our study data on a server hosted at the Technical University of Darmstadt. Only the two responsible persons have access to it.

The data on your device is not accessible to other apps.

Purpose of usage

The data on your device is necessary for the app to work.

The data on the server is only for voluntary participation in our study.

Sharing of user data

Identifiable user data is not shared with ourselves and not with any third party.

Anonymized user data gathered during our study can be published in an aggregated form. This data does not allow to identify any user.

Duration of storage

The app's local data is stored as long as the app is installed.

The data that is part of the study will be published when the study is completed.

Rights of the users

Information

According to the GDPR, there is a right to information. This allows you to view your personal data processed by any organization. However, since we do not store or process personal data, we cannot show it to you.

Deletion of data

To delete all personal data, it is sufficient to delete the app. Data that was collected voluntarily for the purpose of the study cannot be deleted, as it is not identifiable

Right of objection

You have the right to object to the use of the data. If you no longer wish to participate in the study, simply deactivate the corresponding setting.

Other

Any changes to the privacy policy require the user to agree to it once again.

Changes to the privacy policy will be listed under the "Changes" section

AirTag, FindMy, iPhone, etc are trademarks protected by Apple.

This privacy policy is effective as of 2021-08-04!

Changes

2022-01-25