Privacy Policy

Effective date: June 19, 2026

This Privacy Policy describes how NoteAfloat (“we”, “us”, or “the App”) handles information when you use the NoteAfloat Android application.

By installing or using the App, you acknowledge and agree to the practices described in this Privacy Policy.

1. App Information

• App name: NoteAfloat
• Developer: Md Abdul Ahad Khan
• Contact email: noteafloatteam@gmail.com

2. Information We Collect

2.1 User-Created Content (Notes)

The App allows users to create notes and related content. All notes and related data are stored locally on the user’s device only. We do not collect, upload, sync, or store user notes on any server.

2.2 Google Sign-In and Billing Authentication

Certain features of the App, including premium access and purchase restoration, require users to sign in with a Google account through Firebase Authentication. We use this sign-in solely to authenticate users and support billing-related functionality. The App does not intentionally store the user's name, email address, or profile photo in the App for our own purposes.

Firebase Authentication may process a unique user identifier (UID) and related authentication data necessary to provide sign-in functionality. Google Play Billing processes in-app purchases through Google Play, and payment information is stored in the user's Google Account and is not shared with us as the app developer.

2.3 Information we do not collect

We do not directly collect, store, or transmit personal information such as names, phone numbers, contact lists, or precise location data. However, third-party services integrated into the App, including Google AdMob, Firebase Authentication, and Google Play Billing, may process limited account-related, technical, diagnostic, and purchase-related information as described in this Privacy Policy.

Permissions

• Notifications — used to deliver reminders that you create. Notification delivery and reminder scheduling are performed on-device; the App will request the relevant runtime permission where required and you may disable notifications at any time.
• Exact alarms — used only when you add reminders to notes. The App will request and verify the appropriate permission at runtime on devices/OS versions that require it, and will follow Android platform guidance regarding alarm scheduling.
• Camera — used solely to capture photos for attachment to notes. Captured images are stored locally on your device.
• Microphone and audio recording — used exclusively to record voice notes; all recordings are stored locally on your device.
• Storage — used only to persist media (photos, videos, audio) that you create with the App. Storage access is requested according to Android’s scoped-storage model and applicable runtime permission rules.
• Draw over other apps — used only to display one or two floating assistive buttons that provide quick access to note creation and viewing. The overlay is optional and may be disabled by the user via system settings.
• Foreground service — used to support ongoing, user-initiated activities such as the overlay. When a foreground service is active a persistent system notification is displayed; you may stop the service at any time.
• Screen capture / Media projection / Background audio recording — used only to capture screenshots or record the device screen and/or background audio when explicitly requested by the user. Any such captures are performed with user consent and are stored locally.
• Package usage stats — used only to filter notes by the package names of installed applications after you grant Usage access. You may withdraw this permission at anytime via your device's system settings.
• Advertising ID (AD_ID) — used by advertising and analytics services, such as Google AdMob, to support ad delivery, measure ad performance, prevent fraud, and improve advertising relevance. The advertising ID is a user-resettable identifier managed by Google Play services and may be disabled or reset through your device’s system settings.

If we add or change permissions, we will update this Privacy Policy and the App’s Data Safety disclosure in the Play Console.

2.4 Payments and Subscriptions

The App may offer paid subscriptions or in-app purchases. All payments are processed exclusively through Google Play Billing.

We do not collect or process payment card information. Payment details are handled directly by Google in accordance with Google’s own privacy and security policies.

2.5 Voluntary Communications

If you contact us via email for support or feedback, you may voluntarily provide information such as your email address or message content. This information is used solely to respond to your inquiry.

3. How We Use Information

Any information handled by the App is used only for the following purposes:

• Providing core note-taking functionality
• Displaying notifications and reminders requested by the user
• Enabling paid features through Google Play subscriptions
• Responding to user support requests

We do not sell or rent personal information. We may, however, share limited diagnostic and crash data with third-party service providers (such as Firebase Crashlytics) to improve the App; such sharing is described below and governed by those providers’ privacy policies.

4. Third-Party Services

We currently use the following third-party services:

• Google Play Billing — to process subscriptions and other digital purchases in the App. Google Play Billing is used solely for payment processing. Use of paid features is also subject to Google’s terms and privacy policies.
• Google Mobile Ads (AdMob) — to display advertisements. The Google Mobile Ads SDK may automatically collect and share IP address, user product interactions, diagnostic information, and device/account identifiers for advertising, analytics, and fraud prevention.
• Firebase Authentication — to provide authentication functionality, including anonymous sign-in. Firebase can create temporary anonymous accounts so users can use authentication-protected features without creating a personal account first.
• Firebase Crashlytics, a third-party crash-reporting service provided by Google, to collect crash reports and diagnostic data that help us identify and fix stability issues. Crashlytics may collect technical data such as stack traces, app version, OS version, device model, and an installation identifier. Crash reports and related diagnostic metadata are transmitted to and processed by Google under its privacy policies. If you would like to opt out of crash reporting where permitted by law, you may disable Crashlytics collection in the App’s Settings. Disabling crash reporting prevents Crashlytics from automatically sending crash reports from your device; see the App Settings to change this preference.

We also use Firebase Firestore and Cloud Functions, to securely store and process limited app-related data such as trial eligibility, subscription status, feature access, and related technical information necessary for app functionality and fraud prevention.

If we add or change any third-party services or SDKs in the future that affect how user data is collected or shared, we will update this Privacy Policy to reflect those changes and ensure compliance with applicable legal and platform requirements.

5. Data Storage and Deletion

User-created notes remain on the user’s device until they are deleted by the user or the App is uninstalled.

Users may delete notes using in-app features or by clearing the App’s data through Android system settings. Uninstalling the App removes locally stored data from the device.

We cannot delete data that exists only on a user’s device without access to that device.

6. Children’s Privacy

NoteAfloat is not directed to children under the age of 13.

We do not knowingly collect personal information from children under 13.

The App is intended for general use. Parents and guardians are responsible for supervising children’s use of the App and the device.

7. User Rights

Depending on your jurisdiction, you may have rights related to personal data, including access, correction, deletion, or restriction of processing.

Because the App stores data locally and collects minimal information, most user control can be exercised directly on the device. For developer-held data (such as support emails), requests may be sent to our contact email.

8. Security

We use reasonable measures to protect any information we directly control. However, the security of locally stored notes also depends on the security of the user’s device.

Users are encouraged to enable device locks, encryption, and backups according to their preferences.

9. International Use and Governing Law

The App is available to users worldwide. This Privacy Policy is governed by the laws of Bangladesh, without regard to conflict-of-law principles.

Users in other jurisdictions may have additional rights under applicable local laws.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When changes are made, the “Effective date” at the top of this page will be updated.

Continued use of the App after changes become effective constitutes acceptance of the revised Privacy Policy.

11. Contact Us

If you have questions or concerns about this Privacy Policy, please contact:

Email: noteafloatteam@gmail.com