Privacy Policy
Effective Date:
13 Feb 2026
Last Updated:
02 May 2026
What changed in this update:
This version adds disclosures required by Google Play's Data Safety policy and by Meta's Platform Terms (effective Feb 2025) and TikTok's Developer Terms regarding the integration of three advertising and analytics SDKs: the Meta (Facebook) App Events SDK, the TikTok App Events SDK, and the Firebase Analytics (Google) SDK. Specifically, Sections 3, 5, 7, and a new Section 8A have been added or expanded. All other sections remain unchanged.
1) Who we are:
This Privacy Policy describe show Cellusion Tech FZE ("we," "us," "our") handles information in the mobile application Anti Spy Sneak My Phone – WTMP, also marketed as My Phone Guard (the "App"). If you have questions, contact us at: support@cellusion.net.
2) What the App does
The App helps you deter unauthorized access and unwanted handling of your phone by enabling protective modes (for example: Anti-Sneak, Anti-Theft, and Charge Guard).
When enabled, the App may record incident details such as time and optional photo evidence inside the App's incident vault. Important operational note (iOS): On iOS, certain features — especially photo evidence — may require the App to remain active in the foreground due to Apple operating-system limitations. We clearly explain within the App when foreground access is required.
When enabled, the App may record incident details such as time and optional photo evidence inside the App's incident vault. Important operational note (iOS): On iOS, certain features — especially photo evidence — may require the App to remain active in the foreground due to Apple operating-system limitations. We clearly explain within the App when foreground access is required.
3) Information we collect
We aim to minimise data collection. Depending on the features you enable, the App may collect and store the following:
A. Account information
• Email address — used for sign-in and verification.
• One-time verification codes (OTP) — used for authentication only; not stored long-term.
B. Incident data (generated when protection isactive)
• Incident timestamps
• Protection mode used (Anti-Sneak / Anti-Theft /Charge Guard)
• Sensitivity settings and app configuration related to that incident
• Optional photo evidence — only if you enable this feature and grant camera permission
• Optional approximate location metadata — only if you explicitly enable it (if this feature is added)
C. Advertising and analytics data (collected by third-party SDKs)
To enable us to run and measure advertising campaigns on Facebook, Instagram, TikTok, and Google, the App integrates three third-party software development kits (SDKs). These SDKs automatically collect certain technical data when the App is opened or when specific events occur (such as a subscription purchase). This data is transmitted to the respective platform for advertising measurement and optimisation purposes.
The types of data collected bythese SDKs include:
• Device identifiers — including Android Advertising ID (GAID) and other device-level identifiers.
• App events — such as app install, app open,account registration, in-app subscription / purchase, and 2-day retention.
• In-app purchase data — including subscription amount and currency (used for revenue-based campaign optimisation).
• IP address — used to infer approximate geographic location for ad targeting.
• App version, OS version, and device model
The three SDKs and their respective providers are:
MetaApp Events SDK (Facebook / Instagram)
• Provider: Meta Platforms, Inc.
• Data collected: Device identifiers, app events (install, open, registration, subscription/purchase), IP address, appand OS version.
• Purpose: To measure the performance of advertising campaigns run on Facebook and Instagram, to attribute installs and purchases to specific ads, and to optimise ad delivery toward users likely to subscribe.
• Privacy policy: https://www.facebook.com/privacy/policy/
TikTokApp Events SDK
• Provider: TikTok Pte. Ltd. / TikTok Inc.
• Datacollected: Device identifiers, app events (install, open, registration, subscription/purchase, 2-day retention), IP address, app and OS version.
• Purpose: To measure and attribute installs and subscription conversions to TikTok advertising campaigns, and to optimise ad delivery.
• Privacy policy: https://www.tiktok.com/legal/page/row/privacy-policy/en
FirebaseAnalytics SDK — Google Analytics for Firebase (GA4F)
• Provider: Google LLC
• Datacollected: Device identifiers, appe vents (install, open, registration, subscription/purchase), IP address (anonymised), app and OS version.
• Purpose: To measure advertising campaign performance in Google Ads, to track in-app conversions, and to enable Google Ads to optimise delivery toward users likely to subscribe.
• Privacy policy: https://policies.google.com/privacy
You may opt out of interest-based advertising by resetting or opting out of your Android Advertising ID in your device Settings under Privacy > Ads. Note that opting out does not stop the App from functioning, but it does limit the data these SDKs can use for ad personalisation.
A. Account information
• Email address — used for sign-in and verification.
• One-time verification codes (OTP) — used for authentication only; not stored long-term.
B. Incident data (generated when protection isactive)
• Incident timestamps
• Protection mode used (Anti-Sneak / Anti-Theft /Charge Guard)
• Sensitivity settings and app configuration related to that incident
• Optional photo evidence — only if you enable this feature and grant camera permission
• Optional approximate location metadata — only if you explicitly enable it (if this feature is added)
C. Advertising and analytics data (collected by third-party SDKs)
To enable us to run and measure advertising campaigns on Facebook, Instagram, TikTok, and Google, the App integrates three third-party software development kits (SDKs). These SDKs automatically collect certain technical data when the App is opened or when specific events occur (such as a subscription purchase). This data is transmitted to the respective platform for advertising measurement and optimisation purposes.
The types of data collected bythese SDKs include:
• Device identifiers — including Android Advertising ID (GAID) and other device-level identifiers.
• App events — such as app install, app open,account registration, in-app subscription / purchase, and 2-day retention.
• In-app purchase data — including subscription amount and currency (used for revenue-based campaign optimisation).
• IP address — used to infer approximate geographic location for ad targeting.
• App version, OS version, and device model
The three SDKs and their respective providers are:
MetaApp Events SDK (Facebook / Instagram)
• Provider: Meta Platforms, Inc.
• Data collected: Device identifiers, app events (install, open, registration, subscription/purchase), IP address, appand OS version.
• Purpose: To measure the performance of advertising campaigns run on Facebook and Instagram, to attribute installs and purchases to specific ads, and to optimise ad delivery toward users likely to subscribe.
• Privacy policy: https://www.facebook.com/privacy/policy/
TikTokApp Events SDK
• Provider: TikTok Pte. Ltd. / TikTok Inc.
• Datacollected: Device identifiers, app events (install, open, registration, subscription/purchase, 2-day retention), IP address, app and OS version.
• Purpose: To measure and attribute installs and subscription conversions to TikTok advertising campaigns, and to optimise ad delivery.
• Privacy policy: https://www.tiktok.com/legal/page/row/privacy-policy/en
FirebaseAnalytics SDK — Google Analytics for Firebase (GA4F)
• Provider: Google LLC
• Datacollected: Device identifiers, appe vents (install, open, registration, subscription/purchase), IP address (anonymised), app and OS version.
• Purpose: To measure advertising campaign performance in Google Ads, to track in-app conversions, and to enable Google Ads to optimise delivery toward users likely to subscribe.
• Privacy policy: https://policies.google.com/privacy
You may opt out of interest-based advertising by resetting or opting out of your Android Advertising ID in your device Settings under Privacy > Ads. Note that opting out does not stop the App from functioning, but it does limit the data these SDKs can use for ad personalisation.
4) Permissions and why we ask
The App may request system permissions only when needed for a feature:
• Camera: to capture photo evidence for incidents (if enabled).
• Photos / Storage: to save or export incident images (if you choose to export).
• Notifications: to alert you when a protection event triggers.
• Biometrics (Face ID / Touch ID): to secure access to the vault or to disarm protection.
You can control permissions in your device Settings. If you deny a permission, some features may not work until you enable it
• Camera: to capture photo evidence for incidents (if enabled).
• Photos / Storage: to save or export incident images (if you choose to export).
• Notifications: to alert you when a protection event triggers.
• Biometrics (Face ID / Touch ID): to secure access to the vault or to disarm protection.
You can control permissions in your device Settings. If you deny a permission, some features may not work until you enable it
5) How we use the information
We use information to:
• Provide the core protection features you turn on
• Show incident history inside the vault
• Send on-device alerts (notifications and alarms)
• Help you export or share incident reports (only when you choose)
• Improve stability and performance (if diagnostics are enabled)
• Measure the effectiveness of our advertising campaigns on Facebook, Instagram, TikTok, and Google, including tracking how many users install the App and how many subscribe to a paid plan, after seeing one of our ads
• Optimise ad delivery — we share subscription/purchase event data (including revenue amount and currency) with Meta, TikTok, and Google so that their algorithms can identify and reach users most likely to become paying subscribers
We do not sell your personaldata.
• Provide the core protection features you turn on
• Show incident history inside the vault
• Send on-device alerts (notifications and alarms)
• Help you export or share incident reports (only when you choose)
• Improve stability and performance (if diagnostics are enabled)
• Measure the effectiveness of our advertising campaigns on Facebook, Instagram, TikTok, and Google, including tracking how many users install the App and how many subscribe to a paid plan, after seeing one of our ads
• Optimise ad delivery — we share subscription/purchase event data (including revenue amount and currency) with Meta, TikTok, and Google so that their algorithms can identify and reach users most likely to become paying subscribers
We do not sell your personaldata.
6) Where data is stored:
Local (on your device)
Incident records and any photo evidence are stored on your device and protected using security measures suchas encryption and device-level protections where available.
Cloud (only if you enable it)
If we introduce optional cloud backup/sync in a future version, we will explain it clearly in-app. Cloud backup would be encrypted and tied to your account. If you do not enable cloud backup, your data remains local.
Third-party SDK servers
Data collected by the Meta, TikTok, and Firebase SDKs (as described in Section 3C) is transmitted to and stored on the servers of those providers. Meta processes data primarily in the United States and Ireland. TikTok processes data in Singapore, Malaysia, Ireland, and the United States. Google processes data in the United States and other regions where Google operates. These transfers are governed by each provider's standard contractual clauses or equivalent transfer mechanisms.
Incident records and any photo evidence are stored on your device and protected using security measures suchas encryption and device-level protections where available.
Cloud (only if you enable it)
If we introduce optional cloud backup/sync in a future version, we will explain it clearly in-app. Cloud backup would be encrypted and tied to your account. If you do not enable cloud backup, your data remains local.
Third-party SDK servers
Data collected by the Meta, TikTok, and Firebase SDKs (as described in Section 3C) is transmitted to and stored on the servers of those providers. Meta processes data primarily in the United States and Ireland. TikTok processes data in Singapore, Malaysia, Ireland, and the United States. Google processes data in the United States and other regions where Google operates. These transfers are governed by each provider's standard contractual clauses or equivalent transfer mechanisms.
7) Sharing and disclosure
We share data only in these cases:
• When you choose to export/share — for example, emailing an incident report.
• Service providers for essential functionality — for example, email/OTP delivery providers, limited to what is strictly necessary.
• Advertising and analytics partners (SDK providers): we share app event and subscription/purchase data with Meta Platforms Inc., TikTok Pte. Ltd./TikTok Inc., and Google LLC through their respective SDKs, solely for the purposes described in Sections 3C and 5. Each provider is bound by its own privacy policy and applicable data protection laws.
• Legal requirements: if we must comply with applicable law or valid legal requests.
We do not share incident photos, vault content, or OTP codes with any third party, including advertising partners.
• When you choose to export/share — for example, emailing an incident report.
• Service providers for essential functionality — for example, email/OTP delivery providers, limited to what is strictly necessary.
• Advertising and analytics partners (SDK providers): we share app event and subscription/purchase data with Meta Platforms Inc., TikTok Pte. Ltd./TikTok Inc., and Google LLC through their respective SDKs, solely for the purposes described in Sections 3C and 5. Each provider is bound by its own privacy policy and applicable data protection laws.
• Legal requirements: if we must comply with applicable law or valid legal requests.
We do not share incident photos, vault content, or OTP codes with any third party, including advertising partners.
8) Data retention and deletion
• You can delete incidents inside the App and the App will remove them from local storage.
• If cloud backup is enabled in the future, deletion may also remove synced copies — we will specify the exact behaviour inside the App and here.
• Data held by Meta, TikTok, and Google through their SDKs is subject to each provider's own retention and deletion policies. You may submit deletion requests directly to those providers via their privacy portals.
• If cloud backup is enabled in the future, deletion may also remove synced copies — we will specify the exact behaviour inside the App and here.
• Data held by Meta, TikTok, and Google through their SDKs is subject to each provider's own retention and deletion policies. You may submit deletion requests directly to those providers via their privacy portals.
9) Your advertising and data rights
In connection with the advertising SDKs described in Section 3C, you have the following rights and controls:
• Opt out of personalised advertising: On Android, go to Settings > Privacy > Ads and select "Opt out of Ads Personalisation" or reset your Advertising ID. This limits the data the advertising SDKs can use for targeting, though the SDKs may still collect non-personalised event data for aggregate measurement.
• Request deletion of your data from SDK providers: You may contact Meta, TikTok, and Google directly through their respective privacy portals to request access to or deletion of any data they hold aboutyou via our App's SDK integrations.
• Withdraw consent: If you do not wish to have advertising SDK data collected, you may uninstall the App. We do not currently offer a granular in-app toggle to disable advertising SDKs independently of thecore App features, but we will consider adding this in a future update.
Meta Privacy Centre: https://www.facebook.com/privacy/center/
TikTok Privacy Centre: https://www.tiktok.com/legal/report/privacy
Google Privacy Controls: https://myaccount.google.com/data-and-privacy
• Opt out of personalised advertising: On Android, go to Settings > Privacy > Ads and select "Opt out of Ads Personalisation" or reset your Advertising ID. This limits the data the advertising SDKs can use for targeting, though the SDKs may still collect non-personalised event data for aggregate measurement.
• Request deletion of your data from SDK providers: You may contact Meta, TikTok, and Google directly through their respective privacy portals to request access to or deletion of any data they hold aboutyou via our App's SDK integrations.
• Withdraw consent: If you do not wish to have advertising SDK data collected, you may uninstall the App. We do not currently offer a granular in-app toggle to disable advertising SDKs independently of thecore App features, but we will consider adding this in a future update.
Meta Privacy Centre: https://www.facebook.com/privacy/center/
TikTok Privacy Centre: https://www.tiktok.com/legal/report/privacy
Google Privacy Controls: https://myaccount.google.com/data-and-privacy
10) Security
We use reasonable technical safeguards to protect your data, including encryption for sensitive vault content and restricting vault access via biometrics or device authentication where configured. No system is 100% secure, but we work to reduce risk. The advertising SDK providers (Meta, TikTok, Google) each maintain their own security programmes as described in their respective privacy policies.
11) Children
The App is not intended for children under 13. We do not knowingly collect personal data from children under 13. The advertising SDKs integrated into the App are configured not to collect data from users identified as being under 13. If you believe a child has provided personal data through the App, contact us at support@cellusion.net and we will take steps to address it.
12) International users and data transfers
Data you provide directly (such as email) and data collected by the App's advertising SDKs may be processed in countries outside your country of residence, including the United States, Ireland, Singapore, and Malaysia, where our service providers and SDK partners operate. Such transfers are conducted in accordance with applicable law, including through standard contractual clauses or equivalent transfer mechanisms recognised by your jurisdiction.
13) Changes to this policy
We may update this policy as features evolve — for example, if cloud backup is added, or if we integrate additional advertising partners. We will update the "Last Updated" date and, where required by law or platform policy, provide additional notice. Continued use of the App after an update constitutes acceptance of the revised policy.
14) Contact
• Questions or requests: support@cellusion.net
• Company / Developer: Cellusion Tech FZE
• Privacy policy URL: https://myphoneguard.com/privacy-policy
• Company / Developer: Cellusion Tech FZE
• Privacy policy URL: https://myphoneguard.com/privacy-policy