Photo Recovery Tool Privacy Policy
Effective Date: March 26, 2026
Thank you for choosing to use Photo Recovery Tool (hereinafter referred to as "this application" or "we"). We understand the importance of your personal information and are committed to protecting your personal information security in a legal, legitimate, necessary, and transparent manner. This policy (hereinafter referred to as "this policy") complements the "Photo Recovery Tool Terms of Service" and aims to clearly explain to you how we collect, use, store, share, and protect your personal information, as well as your related rights. Please read and fully understand this policy carefully before using this application.
This policy only applies to file recovery services related to this application. If you are redirected to a third-party platform/service through this application, their information processing is subject to their own privacy policies, and we assume no joint liability.
Scope and Method of Information Collection
We strictly adhere to the principle of minimum necessity, collecting only the information necessary to achieve the core file recovery function and ensure the stable operation of the application. All collection is based on your voluntary authorization. We do not collect your file content; file scanning and recovery operations are completed locally on your device.
(I) Necessary Data Regarding Storage Permissions
To implement the core file scanning and recovery functions, we will obtain the file directory structure of the device's storage media and the identifiers of lost files (not the file content) after you grant storage permissions. This information is only used to identify recoverable photos, audio, and video files, and will save the files you select for recovery to a specified location on the device.
Authorization Method: We only dynamically request storage permissions when the user actively triggers the scan/recovery function; there are no mandatory authorization requirements. If the user refuses storage permissions, they will only be unable to use the core scan/recovery functions.
(II) Device and Operational Information
During your use of this application, we will automatically collect anonymized basic device information and application operation logs, including: device model, operating system version, network type, screen resolution, application crash records, scan operation trigger time, and functional interaction behavior.
Purpose of Collection: To adapt to different devices, troubleshoot application operation failures, optimize scanning and recovery algorithms, and ensure the overall stability of the application. This information is anonymized and cannot individually identify your personal identity.
(III) Information Collected by Third-Party SDKs
To maintain the operation of this application, we have integrated third-party SDKs that comply with Google Play Store requirements. These SDKs collect anonymized, non-personally identifiable information only when you use the corresponding functions, and all collection activities comply with their own privacy policies:
Advertising SDKs: Collect device identifiers, ad display/click data, and application usage interaction data for ad placement and performance monitoring; these are not associated with personal identities.
Data Analysis SDKs: Collect application crash logs and function usage statistics for generating overall application operation analysis reports; these contain no personally identifiable information.
Third-party SDK privacy policy links:
Google Play Services
https://policies.google.com/privacy?hl=en
Firebase
https://firebase.google.com/support/privacy/
Google Admob
https://transparency.google/our-policies/product-terms/google-admob/
https://www.facebook.com/about/privacy
Pangle
https://www.pangleglobal.com/privacy
Topon
https://www.toponad.com/en/privacy-policy
Personalized ad opt-out method (Android devices only): Open your device's "Settings" → Go to "Google" → Select "Advertising" → Turn on "Oppose interest-based ads"; This operation is based on your device. If you change your device or reset your device identifier, you will need to repeat the settings.
Information Usage Rules
We will only use the information we collect for the purposes explicitly stated in this policy. Without your explicit consent, we will never use it beyond the agreed scope. All information usage adheres to the principle of "purpose limitation," and specific uses include:
Implementing core services: Based on storage permissions, we will complete the scanning and recovery of lost files;
Ensuring application operation: Through device and operational information, we will troubleshoot technical faults, adapt to different device systems, and improve service experience;
Responding to user requests: Using the information you actively submit, we will process inquiries, complaints, and requests to exercise privacy rights, and provide timely feedback on the processing results;
Fulfilling compliance obligations: We will conduct information processing-related work in accordance with the laws, regulations, and regulatory requirements of the country/region in which we operate;
Enhancing security: We will detect and prevent application cracking, malicious use, data abuse, and other behaviors to protect the legitimate rights and interests of this application and its users.
Information Sharing, Transfer, and Disclosure
We will never sell, rent, or trade any of your personal information, nor will we use the information for sharing purposes outside of this policy. We will only share or disclose information in limited circumstances under the following legal, compliant, and necessary conditions, and all shared information will be anonymized and non-personally identifiable information:
(I) Sharing with Third-Party Service Providers
Solely for the service purposes stipulated in this policy, we will share anonymized device operation information and advertising interaction data with strictly screened third-party SDK service providers (such as Google AdMob and Firebase) that possess robust data security capabilities. Third parties may only process the information within the authorized scope and may not sub-delegate or use it for other purposes.
(II) Disclosure/Transfer Based on Legal Circumstances
Complying with Legal Requirements: Relevant information will be disclosed to the extent necessary, in accordance with laws and regulations, judicial decisions, and the legal requirements of administrative/regulatory agencies.
Protecting Legitimate Rights: Information will be disclosed to the extent reasonably necessary to protect the life, property, and legitimate rights and interests of us, users, or the public.
Compliant Transfer of Business: In the event of a merger, acquisition, asset transfer, or other commercial transaction involving the transfer of information, you will be notified in advance via in-app notifications, and the receiving party will be required to continue to comply with this policy. If the receiving party changes the purpose of information processing, your explicit consent must be obtained again.
(III) Legal Circumstances Without Authorization
According to relevant laws and regulations and international privacy guidelines, the sharing and disclosure of information does not require your prior authorization in the following circumstances:
Directly related to national security, defense security, or significant public interests;
Directly related to judicial procedures such as criminal investigation, prosecution, and trial;
For the purpose of protecting your or others' significant legitimate rights and interests, and where obtaining your consent is difficult;
Information that you have voluntarily disclosed to the public;
Non-personally identifiable information collected from legally publicly disclosed information.
Information Storage and Security Protection
(I) Storage Principles and Duration
Storage Scope: Only your anonymized device operation information and proactively submitted requests will be stored. No file content will be stored, and all file data will always remain locally on your device.
Cross-border Storage: Personal information will be stored on servers that comply with international security standards. If cross-border transfer is necessary, EU standard contract terms and data encryption will be implemented to ensure compliance and protection.
Storage Duration: Information will only be retained for the period necessary to achieve the purposes stipulated in this policy.
(II) Security Protection Measures
We employ industry-leading technology and management dual security measures to ensure that collected information is not accessed, used, disclosed, or tampered with without authorization:
Technical Level: Data transmission uses SSL/TLS encryption, storage uses encrypted storage, and device identifiers are anonymized to prevent information leakage.
Management Level: Strict employee access control is established, allowing only authorized personnel to access limited information. Regular privacy protection and data security training is conducted.
Emergency Response Level: A comprehensive information security incident emergency plan has been developed. In the event of suspected information leakage, remedial measures will be taken immediately, and you and relevant regulatory agencies will be notified promptly in accordance with laws and regulations.
Special Note: The internet environment is not absolutely secure. We cannot completely avoid information security risks caused by third-party attacks, equipment malfunctions, force majeure, or other reasons beyond our control. In the event of such situations, we will do our best to cooperate with relevant investigations and handling.
Your Legally Entitled Privacy Rights
In accordance with the General Data Protection Regulation (GDPR) and relevant national/regional privacy laws and regulations, as a data subject, you are entitled to the following privacy rights. We will provide you with channels and services to exercise these rights and will not discriminate against or reduce service quality because of your exercise of these rights:
(I) Right to Know and Right to Access
You have the right to request us to confirm whether your personal information is being processed and to obtain details of your information processing (including processing purpose, information scope, storage period, sharing targets, etc.) and a copy of the information.
(II) Right to Correction and Right to Supplementation
If you find that the personal information we process is inaccurate or incomplete, you have the right to request us to correct or supplement the relevant information in a timely manner.
(III) Right to Deletion (Right to Be Forgotten)
You have the right to request us to immediately delete your personal information in the following circumstances:
The purpose of information processing has been achieved and there is no need for continued retention;
You withdraw your consent to information processing and there are no other legitimate reasons for processing;
Our information processing behavior violates laws and regulations or the provisions of this policy;
It is necessary to delete information to fulfill legal obligations.
Exception: If laws and regulations require the retention of relevant information (such as fulfilling judicial obligations), your right to deletion will be subject to corresponding restrictions.
(IV) Right to Restrict Processing
In specific circumstances, you have the right to request us to suspend the processing of your personal information, including: when you object to the accuracy of the information and verification is required; when the processing behavior is illegal but you object to the deletion of the information; and when we do not need to retain the information but you need it for rights protection.
(V) Right to Data Portability
For personal information you provide based on your consent and processed in an automated manner, you have the right to request us to transmit the information to you in a structured, general, machine-readable format (such as JSON, CSV), or, where technically feasible, directly to a third party designated by you.
(VI) Right to Withdraw Consent
You have the right to withdraw your consent to information processing at any time by disabling relevant permissions through your device settings. Withdrawing consent will not affect the information processing based on legal authorization prior to the withdrawal; however, disabling storage permissions will render the core functions of this application unusable.
(VII) Right to Object
You have the right to object to our processing of your information based on "legitimate interests" according to your specific circumstances; you also have the unconditional right to object to the use of your information for direct marketing purposes, in which case we will immediately cease such processing.
(VIII) Right to Complain
If you believe that our information processing violates GDPR or the privacy laws and regulations of your country/region, you have the right to file a complaint with the data protection regulatory authority in your place of habitual residence, workplace, or the place where the infringement occurred.
(IX) Method of Exercising Rights
You can submit a request to exercise your rights through the contact email address at the end of this policy. To protect your information security, we will conduct reasonable verification of your identity.
For clearly unfounded or excessively repetitive requests to exercise rights, we have the right to charge reasonable administrative fees or legally refuse such requests.
Special Protection for Children's Privacy
This application strictly adheres to Google Play's age restriction policy and is only intended for users aged 13 and above. It is not designed for children under the age of 13. We do not knowingly collect or process any personal information from children. If a guardian discovers that a child has used this application without consent and provided information, they can contact us immediately. We will delete the relevant information after verification and will not retain it.
Updates and Publication of Privacy Policy
We reserve the right to revise this policy in accordance with updates to laws and regulations, adjustments to Google Play policies, and optimizations to business functions. The revised policy will continue to be displayed on this page.
Continuing to use constitutes consent: If you continue to use this application after the policy change takes effect, it constitutes your consent to the revised policy; if you do not agree, you can immediately stop using and uninstall this application.
Your Privacy Controls on Your Device
You can manage the information collection and usage permissions of this application through your device's system settings, maintaining complete control over your privacy. Specific operations include:
Permission Management: Device "Settings" → "Applications" → "Photo Recovery Tool" → "Permissions," where you can enable/disable all permissions, including storage.
Advertising Settings: Exit interest-based personalized ads.
Application Uninstallation: Uninstall this application at any time. After uninstallation, we will immediately cease all information collection and processing activities; your file data will remain locally on your device.
Contact Us
If you have any questions, comments, complaints, or wish to exercise your privacy rights as stipulated in this policy, please contact us through the following methods:
Contact Email: [email protected]
This policy is an integral part of the "Photo Recovery Tool Terms of Service" and has the same legal effect as the Terms of Service. In case of any matters not covered in this policy, the Terms of Service shall prevail.