Privacy Policy

Last Updated: November 1, 2024

1. Introduction

Welcome to POP Remote. We are committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and services.

By using POP Remote, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our application.

Important: POP Remote is a remote desktop client. We do not have access to or store the content of your remote desktop sessions. Connection credentials are stored locally on your device using encrypted storage.

2. Information We Collect

2.1 Information You Provide

  • Account Information: When you sign in with Google, we collect your name, email address, and profile picture from your Google account.
  • Connection Information: Remote computer hostnames, IP addresses, usernames, and connection settings you configure (stored locally on your device).
  • AI Task Descriptions: Text descriptions you provide for AI automation tasks.
  • Voice Input: Audio recordings when you use voice control features (Premium tier only).

2.2 Automatically Collected Information

  • Usage Data: App usage patterns, feature usage frequency, session duration, and error logs.
  • Device Information: Android version, device model, screen resolution, and device identifiers.
  • Network Information: IP address, network type (WiFi/cellular), and connection quality metrics.
  • Performance Data: App performance metrics, crash reports, and diagnostic information.

2.3 Screenshots for AI Processing

  • When you use AI Tasks, we capture screenshots of your remote desktop session and send them to Azure OpenAI for analysis.
  • Screenshots are temporarily processed and not stored permanently by us or Azure OpenAI.
  • Screenshots may contain any visible information on your remote desktop screen.

3. How We Use Your Information

3.1 Core Functionality

  • Establish and maintain remote desktop connections (RDP, VNC)
  • Authenticate you and manage your account
  • Store and retrieve connection bookmarks
  • Process subscription payments through Google Play Billing

3.2 AI Automation Features

  • Process screenshots and task descriptions using Azure OpenAI's Computer Use Automation (CUA) service
  • Transcribe voice commands using Azure OpenAI's speech-to-text service (Premium only)
  • Generate voice responses using Azure OpenAI's text-to-speech service (Premium only)
  • Track weekly usage quotas for AI tasks and voice tasks

3.3 Analytics and Improvements

  • Analyze app usage patterns to improve features and user experience
  • Monitor app performance and identify bugs or crashes
  • Generate anonymized usage statistics and analytics
  • Understand which features are most valuable to users

3.4 Communication

  • Send important service announcements and updates
  • Respond to your support requests and inquiries
  • Notify you about subscription status and quota usage
  • Provide customer support and troubleshooting assistance

4. Third-Party Services

POP Remote integrates with the following third-party services that may collect and process your data:

4.1 Firebase (Google)

  • Firebase Authentication: Manages user sign-in with Google accounts
  • Firebase Analytics: Tracks app usage events and user behavior
  • Firebase Crashlytics: Collects crash reports and diagnostic data

Privacy Policy: https://firebase.google.com/support/privacy

4.2 Azure OpenAI (Microsoft)

  • Computer Use Automation: Processes screenshots and task descriptions for AI automation
  • Speech-to-Text: Transcribes voice commands (Premium only)
  • Text-to-Speech: Generates AI voice responses (Premium only)

Privacy Policy: https://privacy.microsoft.com/privacystatement

4.3 Google Play Services

  • Google Play Billing: Processes subscription payments
  • Google Sign-In: Authenticates users with Google accounts

Privacy Policy: https://policies.google.com/privacy

4.4 Azure API Management

  • Facilitates secure communication with Azure OpenAI services
  • Manages API authentication and rate limiting

5. Data Storage and Security

5.1 Local Storage

  • Connection Credentials: Stored locally on your device using Android's EncryptedSharedPreferences
  • Connection Bookmarks: Stored in local SQLite database
  • App Settings: Stored locally on your device

5.2 Cloud Storage

  • User Profile: Name, email, and authentication tokens stored in Firebase
  • Usage Analytics: Anonymized usage data stored in Firebase Analytics
  • Crash Reports: Error logs and diagnostic data stored in Firebase Crashlytics

5.3 Security Measures

  • Transport Layer Security (TLS) encryption for all network communications
  • Encrypted local storage for sensitive data (credentials, tokens)
  • Certificate validation for RDP and VNC connections
  • Secure authentication with Firebase and Google Sign-In
  • Regular security updates and vulnerability patches
Note: While we implement industry-standard security measures, no method of electronic storage or transmission is 100% secure. We cannot guarantee absolute security of your data.

6. Data Retention

  • Account Data: Retained as long as your account is active
  • Connection Information: Stored locally until you delete connections or uninstall the app
  • Screenshots for AI: Processed in real-time and not retained by us or Azure OpenAI
  • Usage Analytics: Retained for up to 2 years
  • Crash Reports: Retained for up to 90 days
  • Voice Recordings: Processed in real-time and not permanently stored

7. Your Privacy Rights

7.1 Access and Control

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your account and data
  • Opt-out of analytics data collection
  • Export your connection bookmarks
  • Withdraw consent for data processing

7.2 GDPR Rights (EU Users)

If you are in the European Economic Area (EEA), you have additional rights under GDPR:

  • Right to data portability
  • Right to restriction of processing
  • Right to object to processing
  • Right to lodge a complaint with supervisory authorities

7.3 California Privacy Rights (CCPA)

California residents have specific rights under the CCPA:

  • Right to know what personal information is collected
  • Right to delete personal information
  • Right to opt-out of sale of personal information (we do not sell your data)
  • Right to non-discrimination for exercising privacy rights

7.4 Exercising Your Rights

To exercise any of these rights, please contact us at: privacy@popremote.com

8. Children's Privacy

POP Remote is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If we discover that we have collected personal information from a child under 13, we will promptly delete such information.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

9. Data Sharing and Disclosure

9.1 We Do Not Sell Your Data

We do not sell, rent, or trade your personal information to third parties for their marketing purposes.

9.2 Sharing with Service Providers

We share data with trusted service providers who help us operate our service:

  • Microsoft Azure (AI processing)
  • Google/Firebase (authentication, analytics, crash reporting)
  • Google Play (payment processing)

9.3 Legal Requirements

We may disclose your information if required by law or in response to:

  • Legal processes (subpoenas, court orders)
  • Government or regulatory requests
  • Protection of our rights and safety
  • Investigation of potential violations

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws.

We use Azure OpenAI services which may process data in Microsoft data centers worldwide. Firebase services may process data in Google data centers worldwide.

By using POP Remote, you consent to the transfer of your information to these countries.

11. Cookies and Tracking Technologies

POP Remote uses minimal tracking technologies:

  • Firebase Analytics: Uses identifiers to track app usage
  • Device Identifiers: Android Advertising ID (opt-out available in Android settings)
  • Local Storage: SharedPreferences and SQLite for app data

You can opt-out of Firebase Analytics in the app's Settings menu.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

  • Posting the new Privacy Policy in the app and on our website
  • Updating the "Last Updated" date at the top of this policy
  • Sending a notification through the app or email (for significant changes)

Your continued use of POP Remote after changes become effective constitutes your acceptance of the updated Privacy Policy.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: privacy@popremote.com
Support: Contact Form
Data Protection Officer: dpo@popremote.com

14. Consent

By using POP Remote, you consent to:

  • Collection and use of information as described in this Privacy Policy
  • Processing of screenshots and voice recordings for AI features
  • Use of third-party services (Firebase, Azure OpenAI, Google Play)
  • International data transfers to service provider locations
  • Storage of connection credentials on your local device

You may withdraw your consent at any time by discontinuing use of the app and requesting account deletion.

This Privacy Policy is effective as of November 1, 2024 and will remain in effect except with respect to any changes in its provisions in the future, which will be in effect immediately after being posted on this page.