1. 📋 What Data Does FocusLock Handle?
The following table shows every type of data that FocusLock touches and where it lives:
| Data Type | Stored Where | Sent to Servers |
|---|---|---|
| Blocked app list | Local Room database (on-device) | Never |
| Focus session times | Local Room database (on-device) | Never |
| 4-digit PIN | SharedPreferences (SHA-256 hash, on-device) | Never |
| Child lock settings | Local Room database (on-device) | Never |
| Recurring schedules | Local Room database (on-device) | Never |
| Analytics / usage stats | Local Room database (on-device) | Never |
| Device ID / IMEI | Not accessed or stored at all | |
| Location data | Not accessed or stored at all | |
| Contacts / media | Not accessed or stored at all | |
2. 🔑 Android Permissions We Use
FocusLock requests only the permissions strictly necessary for its core function:
- Accessibility Service — Required to detect which app is in the foreground and intercept it if it's blocked. We read only the package name of the active app. We do not read screen content, text, passwords, or any other input.
- POST_NOTIFICATIONS (Android 13+) — Required to show the persistent "Focus Active" notification so you always know your session status.
- QUERY_ALL_PACKAGES (Android 11+) — Required to list installed apps on your device so you can choose which ones to block. This list never leaves your phone.
✅ We do not use camera, microphone, contacts, location, SMS, call logs, or any other sensitive Android permission.
3. 🛡️ How Your PIN Is Protected
Your 4-digit PIN is never stored as plain text. Here is exactly what happens when you set a PIN:
- The PIN is hashed using SHA-256 (a one-way cryptographic function)
- Only the resulting hash is saved to Android SharedPreferences on your device
- When you enter your PIN, the entered digits are hashed and compared — the original PIN is never reconstructed
- Neither we nor anyone else can retrieve your original PIN from the stored hash
4. 👶 Child Lock Data
Child Lock settings — including which apps are locked, which mode is active (Blocked / Password / Timed), daily time limits, and extension history — are all stored exclusively in your device's local Room database.
This information is never transmitted anywhere. Only the person with physical access to the device (and the parent PIN) can view or modify these settings.
5. 🌐 No Third-Party SDKs or Services
FocusLock contains none of the following:
- Advertising networks (Google AdMob, Meta Audience Network, etc.)
- Analytics SDKs (Firebase Analytics, Mixpanel, Amplitude, etc.)
- Crash reporting services (Crashlytics, Sentry, etc.)
- Cloud databases or backend services
- Social login providers (Google, Facebook, Apple, etc.)
6. 📤 Data Sharing
We do not share, sell, rent, or transfer any user data to any third party — because we never have access to it in the first place. There is no data to share.
7. 🗑️ Data Deletion
All data created by FocusLock is local to your device. You can delete it at any time by:
- Clearing app data in Android Settings → Apps → FocusLock → Clear Data
- Uninstalling the app (all data is permanently removed)
There is no server-side data to request deletion of.
8. 👦 Children's Privacy
FocusLock is designed to help parents protect their children's screen time — it is not directed at children as end users. No data about children or anyone else is collected by FocusLock. We comply fully with COPPA and GDPR-K principles by design: no data collection means no risk.
9. 🔄 Changes to This Policy
If we ever update this privacy policy, the new version will be published on this page with a revised date. We will never introduce data collection practices that contradict the zero-collection principle above without clear, prominent notice.
📬 Questions About Privacy?
We're happy to answer any questions about how FocusLock handles (or, more accurately, doesn't handle) your data.