Legal Document

Privacy Policy

Last updated: April 17, 2026 · Effective date: April 17, 2026 · App version: 1.3.3

        The short version: StatusVault processes all media 100% on your device. We do not upload, store, or view any of your WhatsApp statuses or saved files. The only data we collect is what is strictly necessary for your Pro subscription and app analytics.
      

1. Who We Are

StatusVault ("App", "we", "us") is an independent Android application developed by Binan (the "Developer", "I"). The app allows users to view, save, and share WhatsApp and WhatsApp Business statuses on Android devices.

Contact: ahmedsameerbinan2@gmail.com

This Privacy Policy applies to the StatusVault Android application and the associated website.

2. Information We Collect

2.1 Information You Provide

Google Account (optional): If you choose to sign in with Google to sync your Pro subscription, we collect your Google UID, email address, and display name. Sign-in is only required to use the paid Pro subscription across devices.
Payment Information: Payments are processed by Razorpay. We never see or store your card number, bank details, or UPI PIN. Razorpay shares only a payment confirmation token and your email/phone with us, which we store to verify your subscription.

2.2 Information Collected Automatically

Device ID: A unique identifier generated on your device, used only to associate your subscription with your device when you are not signed in.
Android Version: Collected to determine the correct storage method (Legacy / Scoped / SAF) for your device.
Subscription Status: Stored in Firebase Firestore (Google Cloud) to validate your Pro membership status across devices and sessions.
AdMob Analytics: Google AdMob may collect anonymised analytics and ad-interaction data as described in Google's Privacy Policy. This applies only to free-tier users seeing ads.
Crash Reports: If the app crashes, anonymised crash data may be sent to Expo/EAS to help us fix bugs. No personal data is included.

2.3 What We Do NOT Collect

We do not access, read, upload, or transmit any WhatsApp statuses, images, or videos to any server.
We do not read your WhatsApp messages or contacts.
We do not track your location.
We do not sell your data to third parties.
We do not use your data for targeted advertising (beyond what Google AdMob does autonomously on the free tier).

3. How We Use Your Information

To verify and activate your Pro subscription.
To send you a payment receipt (via Razorpay's email system).
To display ads to free-tier users via Google AdMob.
To diagnose and fix technical issues using anonymised crash data.
To communicate with you about support requests you initiate.

4. Data Storage and Security

Subscription data is stored in Google Firebase Firestore, which is hosted on Google Cloud infrastructure with encryption at rest and in transit (TLS/SSL). Payment order records are retained for up to 7 years as required by Indian tax law (GST compliance).

We implement the following security measures:

HMAC-SHA256 signature verification on all Razorpay payments
Firebase Authentication token verification on every authenticated API request
No raw payment credentials stored on our servers
All API communication over HTTPS

5. Third-Party Services

Razorpay: Payment processing. Razorpay Privacy Policy
Google Firebase: Authentication and database. Firebase Privacy Policy
Google AdMob: Advertising (free users only). Google Privacy Policy
Google Sign-In: Optional account authentication. Google Privacy Policy
Expo / EAS: App runtime and crash reporting. Expo Privacy Policy

6. Storage Permissions

StatusVault requests storage permissions solely to read WhatsApp status files from your device and to save media to your gallery. We never access any other files on your device. All file operations happen locally — no files are ever transmitted to any server.

Permissions requested:

READ_EXTERNAL_STORAGE / READ_MEDIA_IMAGES / READ_MEDIA_VIDEO — to read WhatsApp status files
WRITE_EXTERNAL_STORAGE — to save statuses to your gallery (Android < 10 only)
POST_NOTIFICATIONS — for optional status reminder notifications
com.google.android.gms.permission.AD_ID — required by Google AdMob

7. Children's Privacy

StatusVault is not directed to children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided personal information to us, please contact us and we will delete it promptly.

8. Your Rights (GDPR & Indian IT Act)

If you are in the European Economic Area or India, you have the following rights:

Access: Request a copy of your personal data we hold.
Correction: Request correction of inaccurate data.
Deletion: Request deletion of your account and associated data. You can do this directly in the app via Settings → Delete Account, or by emailing us.
Portability: Request your data in a machine-readable format.
Objection: Object to processing of your data.

To exercise these rights, contact us at ahmedsameerbinan2@gmail.com.

9. Data Retention

Subscription records: Retained for 7 years (GST/tax compliance)
Account data: Deleted within 30 days of account deletion request
Payment order logs: Retained for 7 years
Crash/analytics data: Anonymised; retained per Expo's policy

10. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of this page. Continued use of the app after changes constitutes acceptance of the updated policy. For material changes, we will notify you via an in-app notice.

11. Contact Us

Developer: Binan

App: StatusVault (com.binan.statussaver)

Email: ahmedsameerbinan2@gmail.com

Response time: Within 7 working days

Grievance Officer (India): Binan — reachable at the email above as per the IT (Intermediary Guidelines and Digital Media Ethics Code) Rules, 2021.