1. Introduction
1.1 About This Policy
This Privacy Policy (“Policy”) describes how DIGIGRACE PTY LTD (“Company,” “we,” “us,” or “our”), an Australian company, collects, uses, discloses, and protects your personal information when you use the Protect-Me mobile application (“App,” “Service”).
We are committed to protecting your privacy and handling your personal information in accordance with:
- The Australian Privacy Principles (APPs) contained in the Privacy Act 1988 (Cth)
- The California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA)
- The Personal Information Protection and Electronic Documents Act (PIPEDA) of Canada
- Other applicable data protection laws in the regions where we operate
Service availability: Protect-Me is currently available in the United States and Canada, with planned expansion to Australia and New Zealand. The Service is not offered in the European Union or European Economic Area. If you reside in those regions, please do not use the Service.
1.2 Your Consent
By downloading, installing, or using our App, you consent to the collection, use, and disclosure of your information as described in this Policy. If you do not agree with this Policy, please do not use our Service.
1.3 Children’s Privacy
Our Service is intended for users aged 13 years or older per our Terms and Conditions. In accordance with the Children’s Online Privacy Protection Act (COPPA), we do not knowingly collect personal information from children under 13 years of age. If you believe we have collected information from a child under 13, please contact [email protected] and we will delete the information promptly.
1.4 Geographic Restrictions
This Service is not available in certain regions (see our Terms and Conditions for the full list). If you are in a restricted region, you should not use this Service.
2. Information We Collect
2.1 Information You Provide
We collect: your email address (used for login and breach monitoring; encrypted at rest, never plain text), the email addresses you choose to monitor (also encrypted), an optional name (may be a pseudonym), and pre-defined dropdown selections for region, language, and comic character preference. If you use deepfake detection, the image you submit is processed transiently — sent to our AI image-analysis provider, the result returned to your phone, and the image itself is never retained on our servers. Support inquiries you send us are held by our email provider for continuity of conversation.
2.2 Information Collected Automatically
When you use the app we automatically collect: device type, operating system, and app version (for service optimization); a push notification token (for delivery — not linked to your identity); a coarse country derived from your IP address (no GPS, no precise location — used for fraud prevention and regional scam-alert localization); and basic server access logs (IP, endpoint, timestamp).
2.3 Information from Third Parties
We receive: authentication tokens and your verified email from our third-party authentication provider when you sign in; anonymous purchase receipts and subscription status from Apple App Store / Google Play and our subscription management provider when you subscribe; and breach records matching your monitored emails from Have I Been Pwned (HIBP) when we run breach checks on your behalf.
2.4 Sensitive Information
Our app cannot collect sensitive information. All data inputs in the app are either email addresses or pre-defined selections (region, language, character preference). There are no free-text fields, so there is no path through which racial or ethnic origin, political opinions, religious beliefs, health information, sexual orientation, criminal records, or other special-category data could enter our systems.
3. How We Use Your Information
3.1 Primary Purposes
We use your data to provide and maintain the Service, process subscriptions via app stores, monitor for data breaches affecting you, send security alerts and notifications, provide customer support, and authenticate your identity. The legal basis for all of these is contract performance (or, for authentication, our legitimate interest in keeping your account secure).
3.2 Secondary Purposes
We may also use limited, non-identifying signals (described in Section 5.1) to prevent fraud and abuse, comply with legal obligations, and improve our help content.
We do not send newsletters, marketing emails, or product-update mailings, and we do not maintain a marketing contact list. The only emails you will receive from us are transactional: breach alerts, account / billing notices, and support replies.
3.3 Automated Decision-Making
Our Service uses automated processing to calculate risk scores, determine breach severity levels, and generate security recommendations. These automated processes inform but do not make legally binding decisions about you. You can request human review of any automated assessment by contacting us.
4. Information Sharing and Disclosure
4.1 We Do NOT Sell Your Data
We do not sell, rent, or trade your personal information to third parties for their marketing purposes.
For California residents: We do not “sell” or “share” personal information as defined under the CCPA.
4.2 Third-Party Service Providers
We share information with service providers who assist in operating our Service:
| Provider Type | Purpose | Data Shared |
|---|---|---|
| Cloud Hosting (our third-party hosting provider, a third-party CDN and DDoS protection provider) | Server infrastructure, CDN, DDoS protection | Encrypted service data, request metadata |
| Apple App Store / Google Play | App distribution and in-app purchase processing | Purchase receipts (no card data) |
| third-party subscription management service | Cross-platform subscription management | Anonymous subscriber ID, entitlement status |
| third-party email delivery provider | Breach notification and account emails | Email address, alert content |
| third-party authentication provider | User authentication | Auth tokens, verified email |
| third-party push notification service | Push notifications | Device token, notification payload |
| AI image-analysis provider | AI image analysis; alert-image generation | Submitted images (transient, not retained); no user identity |
| Have I Been Pwned (HIBP) | Breach monitoring queries | Monitored email addresses (hashed k-anonymity where supported) |
| third-party object storage | Comic image storage | Generated comic images only (no user PII) |
All service providers are contractually bound to use data only for specified purposes, maintain appropriate security measures, not disclose data to other parties, and delete data upon contract termination.
4.3 Threat Intelligence Queries
Email breach monitoring: We send your monitored email addresses to Have I Been Pwned to check for exposure in known data breaches. Queries do not include your name, password, device ID, or other account information.
Image analysis: Images you submit from your camera or photo gallery are transmitted to our third-party AI image-analysis provider. They are used solely to produce the assessment shown to you, are not retained on our servers after analysis, and are not associated with your account identity at the provider. Provider terms are available on request.
Third-party privacy policies. The processors listed in §4.2 each operate under their own published privacy policies. We will provide a current copy or link for any of those processors on request — email [email protected]. The single processor whose policy we link directly is Have I Been Pwned, because users need to be able to independently query the public breach database themselves: haveibeenpwned.com/Privacy.
4.4 Legal Disclosures
We may disclose your information when required to comply with applicable laws, respond to lawful requests from public authorities, protect our rights, enforce our Terms and Conditions, or investigate potential violations or fraud.
4.5 Business Transfers
If we are involved in a merger, acquisition, or sale of assets, your information may be transferred. We will notify you before your information becomes subject to a different privacy policy.
5. Data Retention
We are deliberately stingy about what we keep. Most of what you see in the app exists for as long as your account does, and is permanently deleted when you ask us to close it. The table below is the complete picture of every category of personal data we touch.
5.1 Data Lifecycle
Anything not in this table is not retained.
| What | Where it lives | How long | Why |
|---|---|---|---|
| Your email address (encrypted) | Server-side | Until you delete your account | Login, breach monitoring |
| Email addresses you monitor (encrypted) | Server-side | Until you delete your account | Breach monitoring |
| Optional name; region, language, comic character preference | Server-side | Until you delete your account | Personalized scam alerts |
| Subscription status (received from app store) | Server-side | Until you delete your account | Premium-feature gating |
| Push notification token | Server-side | Until you delete your account or disable notifications | Push delivery |
| Names + detection dates of breaches your emails appeared in | Server-side (names only — never breach contents) | Until you delete your account | “1 new breach this month” delta |
| Full breach details (passwords, leaked field types, descriptions, dates) | Your phone only — never written back to our servers | Until you uninstall the app or delete your account | In-app breach history |
| Deepfake images you submit | Never stored — sent transiently to our AI image-analysis provider; result returned to your phone | N/A | One-time analysis |
| Deepfake scan results (verdict + confidence; no image) | Server-side | Until you delete your account | In-app scan history |
| Scam alert comics | Cached on your phone; canonical catalog held server-side | On phone: until you uninstall. Server: until library updated. | Offline viewing |
| Help-article interaction logs (which articles you tapped) | Server-side (anonymous to article codes; never the wording of any question or answer) | 180 days, then auto-purged | Help-content quality |
| Email correspondence with help@ | Server-side (per third-party email provider defaults) | Per third-party email provider defaults | Continuity of support conversations |
| Server access logs (IP, endpoint, timestamp) | Server-side (per hosting provider defaults — typically up to 90 days) | Per hosting provider defaults | Security and debugging |
| Account-deletion audit record (a hashed identifier and the timestamp of your deletion request — never the email itself) | Server-side | Indefinite legal hold | Proof we honored your deletion request if challenged |
What we do not retain at all:
- Your password — authentication is handled by our third-party authentication provider; we never see it.
- The plain text of your email address — only the encrypted form and a hash for lookups.
- The images you submit for deepfake analysis — passed transiently to the AI provider and dropped.
- The content of breaches your email appeared in — only breach names and detection timestamps.
- Any in-app analytics, behavioural tracking, screen-view, feature-use, or user-journey data — the app does not collect them and we do not run any analytics or crash-reporting SDK.
- Any marketing list — we do not run marketing campaigns, send newsletters, or share your details with marketers.
5.2 Account Deletion
You can delete your account at any time from Settings → Account → Delete Account in the app, or by emailing [email protected] from the address associated with your account with the subject line “Delete My Account”. On deletion:
- Your authentication record at our third-party authentication provider is removed.
- Every row in §5.1 marked “Until you delete your account” is permanently deleted within 30 days.
- Backups containing your data are purged within 90 days.
- The only surviving record is the account-deletion audit row described in §5.1 — a hashed identifier plus a timestamp, demonstrating compliance with your request if challenged.
6. Data Security
6.1 Security Measures
Technical Safeguards:
- Encryption in transit and at rest using industry-standard methods
- Secure password hashing
- Database access controls
- Network firewalls and monitoring
- Regular security audits
Organizational Safeguards:
- Employee access restrictions
- Security awareness training
- Incident response procedures
- Vendor security assessments
6.2 Security Limitations
While we take reasonable steps to protect your information, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.
6.3 Privacy-First Architecture
Email addresses are NEVER stored in plain text in our database.
All email addresses are encrypted at rest and additionally hashed for lookups. Your actual email address is never kept in readable form. Even in the event of a database compromise, your email address cannot be recovered by an attacker.
Most of your sensitive data never leaves your phone.
When we check your monitored email addresses against breach databases, the result — which breaches your address appeared in, what types of information were leaked, and when — is delivered to your phone and held there. Our servers retain only:
- A count of how many breaches were found
- The name of each breach detected, and when we detected it (used to tell you “1 new breach this month” — not the breach contents)
The breach details — the leaked field types, the breach description, the breach date — are not written to our servers. They remain on your phone and are gone when you uninstall the app or delete your account.
The same principle applies to deepfake image checks: the image is sent to our AI image-analysis provider, the result is returned to your phone, and the image itself is never retained on our servers.
Scam alert comics are cached on your phone for offline viewing; we keep the canonical copy server-side so the same comic can be re-delivered if you reinstall.
6.4 Security Incidents
In the event of a data breach affecting your information:
- We will notify you and the relevant supervisory authorities as soon as practicable after becoming aware, and in any event within any timeframe required by applicable law
- We will provide information about steps you can take
7. Your Privacy Rights
7.1 What you can do, today, in-app
These controls are available to every user, regardless of location:
| Capability | Where to find it |
|---|---|
| Delete your account — removes all server-side records (encrypted email, monitored addresses, breach counts and names, scan history, comic preference) within 30 days; backups purge within 90 days. The only surviving record is a hashed audit row demonstrating the deletion happened. | Settings → Account → Delete Account |
| Add or remove monitored email addresses | Settings → Monitored Emails |
| Change your comic preference (region, character, language) | Settings → Comic Profile |
| Adjust which transactional notifications you receive (breach alerts, comic alerts, account & billing) | Settings → Notifications |
Because the app collects only your name, email, and dropdown preferences — and stores most of the interesting data on your phone, not on our servers — the data you can see in the app is the data we have. There is no separate “data export” feature; the in-app screens are the export.
7.2 Australian Privacy Rights
Under the Privacy Act 1988 (Cth), Australian residents have the right to access their personal information, request correction of inaccurate information, and lodge a complaint with the OAIC about privacy practices.
7.3 Canadian Privacy Rights (PIPEDA)
Canadian residents have the right to access the personal information we hold about them, request correction of inaccurate information, withdraw consent for the collection, use, or disclosure of personal information (subject to legal and contractual restrictions), and lodge a complaint with the Office of the Privacy Commissioner of Canada.
7.3.1 EU / EEA Residents
The Service is not offered in the European Union or European Economic Area. If you are located in those regions, please do not create an account. If you have previously created an account from one of these regions, contact [email protected] and we will delete your data.
7.4 California Privacy Rights (CCPA/CPRA)
California residents have the right to:
| Right | Description |
|---|---|
| Know | Know what personal information we collect and why |
| Delete | Request deletion of personal information |
| Correct | Correct inaccurate personal information |
| Opt-out | Opt-out of “sale” or “sharing” of personal information |
| Non-discrimination | Not be discriminated against for exercising rights |
Notice at Collection (CCPA/CPRA § 1798.100). In the preceding 12 months, we have collected the following categories of personal information:
- Identifiers — email address (encrypted at rest), optional display name or pseudonym, authentication ID issued by our third-party authentication provider, push notification token
- Commercial information — subscription state passed to us by the platform store (Apple App Store / Google Play). We do not receive or store payment card details.
- Visual information — images you voluntarily submit for deepfake analysis. Images are transmitted transiently to our third-party AI image-analysis provider and are not retained by us afterwards. We keep only the result of the analysis, never the image itself.
- Internet or network activity — server-side access logs (IP address, endpoint, timestamp) retained by our hosting provider per their default retention. We do not use these for profiling.
We do not collect geolocation beyond what an IP address inherently reveals, do not run any analytics or crash-reporting SDKs in the app, and do not maintain a marketing list. We do not sell and do not share personal information as those terms are defined under the CCPA/CPRA, and we honor Global Privacy Control (GPC) signals as an opt-out request. We do not use or disclose sensitive personal information for purposes outside those permitted by CPRA § 1798.121.
7.5 Exercising Your Rights (including Account Deletion)
To access, correct, or delete your account and associated data, you have three options:
- In-App: open the Protect-Me app and navigate to Settings > Account > Delete Account.
- Web deletion request: email [email protected] from the address associated with your account with the subject line “Delete My Account”. We will confirm and process the request.
- Written request: send a letter to the contact address in Section 12.
We will respond within 30 days for Australian and Canadian requests, or 45 days for CCPA requests (extendable once to 90 days with notice). We may request identity verification before processing a deletion request. Upon deletion, personal identifiers are removed within 30 days and purged from backups within 90 days.
7.6 Right to Complain
If you are unsatisfied with our response, you may lodge a complaint with:
- United States (California): California Privacy Protection Agency (cppa.ca.gov) or the California Attorney General (oag.ca.gov)
- United States (other states): your state Attorney General’s consumer protection office
- Canada: Office of the Privacy Commissioner of Canada — priv.gc.ca — 1-800-282-1376
- Australia: Office of the Australian Information Commissioner (OAIC) — oaic.gov.au — 1300 363 992
8. Mobile App Specific Information
8.1 App Permissions
| Permission | Purpose | Required? |
|---|---|---|
| Internet | Core functionality | Yes |
| Notifications | Security alerts | Recommended |
| Camera | Deepfake image detection | Optional |
| Photo Gallery | Deepfake image detection | Optional |
8.2 Local Storage
The App stores certain data locally on your device: authentication tokens (secure storage), user preferences, and cached breach data. This data is encrypted and remains on your device unless synced to our servers.
8.3 Push Notifications
We use push notifications to alert you about new data breaches affecting your monitored emails, critical security updates, and subscription status changes. You can manage notification preferences in App Settings > Notifications or your device’s notification settings.
8.4 In-App Analytics
The Protect-Me app does not collect in-app analytics, behavioural tracking, screen-view events, feature-use metrics, or user-journey data. No third-party analytics SDK, crash-reporting SDK, attribution SDK, or comparable telemetry SDK is integrated into the mobile app.
Server-side access logs (IP address, endpoint hit, timestamp, response status) are managed by our hosting provider per their default retention — see § 5.1. Crash reports may be collected at the operating-system level by Apple (iOS) or Google Play (Android); those are governed by the respective platform’s privacy policies, not by us.
9. International Data Transfers
9.1 Data Location
Your data is processed primarily in the United States via our third-party hosting provider, and in other regions by our third-party providers for authentication, push notifications, AI image analysis, email delivery, and subscription management. DIGIGRACE PTY LTD is incorporated in Australia, so contractual governance and company records are held in Australia.
9.2 Transfer Safeguards
When data is transferred across borders, we rely on Data Processing Agreements with all sub-processors and on the contractual and security certifications (e.g., SOC 2, ISO 27001) maintained by those providers.
9.3 Australian Privacy Principle 8
Before disclosing personal information to overseas recipients, we take reasonable steps to ensure those recipients comply with the Australian Privacy Principles or equivalent protections.
10. Third-Party Links and Services
Our Service may reference external resources for security guidance. We are not responsible for the privacy practices of third-party websites or services. The App is distributed through the Apple App Store and Google Play Store, whose privacy policies govern app download, in-app purchase processing, and app review data. All sign-in to the Service is via email and password through third-party authentication provider; we do not offer sign-in via Apple ID, Google account, or other social providers.
11. Changes to This Policy
We may update this Policy periodically. Changes will be indicated by an updated “Last Updated” date, in-app notification for material changes, and email notification for significant changes. Your continued use of the Service after changes constitutes acceptance of the updated Policy. Previous versions are available upon request.
12. Contact Information
Privacy Inquiries
Privacy Officer
DIGIGRACE PTY LTD
Email: [email protected]
Address: Contact via [email protected]
General Contact
Email: [email protected]
Response Times
We aim to respond to privacy inquiries within 5 business days for general questions and 30 days for formal access/correction requests.
13. Summary of Key Points
- We collect account info, usage data, and monitoring data to provide our Service
- We use your data to deliver breach alerts and improve our Service
- We do NOT sell your personal information to third parties
- We share data only with service providers necessary to operate the Service
- We protect your data with encryption and security best practices
- You can delete your account, add or remove monitored email addresses, change your comic preference, and adjust notification settings at any time from the in-app Settings screen
- We retain server-side data only while your account is active; account deletion is permanent within 30 days, with backups purged within 90 days
- Your rights apply equally wherever you live. Local laws (California CCPA/CPRA, Canada PIPEDA, Australia Privacy Act) give you additional formal rights and we honor all of them. The Service is not offered in the EU/EEA.
Document Version: 2.1 · Last Reviewed: April 18, 2026