Effective Date: March 13, 2026 | Last Updated: June 14, 2026
VoxGuard ("we," "us," "our") operates the VoxGuard mobile application (the "App") and the website at https://www.vox-guard.com (the "Website"). This Privacy Policy explains what information we collect, how we use it, and what choices you have.
VoxGuard is a call-screening application for Android. When an unknown caller reaches your phone number, the call is routed through our server-side system. The caller is prompted to say your key phrase and record a reason for calling. You then receive a push notification and can listen to the caller's recorded reason, read a text transcript, and decide whether to approve or decline the call — all within a 120-second decision window.
This Privacy Policy applies to information collected through the App and our backend services. By using VoxGuard, you agree to the collection and use of information as described in this policy.
| Information | Why We Collect It |
|---|---|
| Phone number (US mobile number in E.164 format) | Account creation, phone verification via SMS one-time passcode (OTP), call forwarding setup, and service-related SMS messages (see SMS Communications section below) |
| Key phrase (a word or phrase you choose; defaults to "pineapple") | Call screening — callers must say this word to proceed |
| Call decisions (approve or decline) | Core functionality — you decide whether to connect or reject screened calls |
| Contact phone numbers (from your device's contacts list, if permission granted) | Identifying known callers so they can bypass screening and reach you directly |
| Information | Why We Collect It |
|---|---|
| FCM device token (Firebase Cloud Messaging) | Delivering push notifications about incoming screened calls |
| Device ID (a UUID generated at registration) | Identifying your device for push notification delivery |
| Crash data (stack traces, device model, OS version, app state) | Monitoring app stability through Firebase Crashlytics |
| Basic usage analytics (screen views, session duration, engagement metrics) | Improving the app through Firebase Analytics (automatic collection only) and PostHog (app usage events and masked session replay). See the PostHog section below for details. |
| Device information (device model, Android version, app version) | Stored on our server during device registration for push notification delivery, diagnostics, and support |
| Carrier information (carrier name, mobile network code) | Collected during call forwarding setup to determine the correct forwarding commands for your carrier |
| Error reports (error type, message, stack trace, device model, OS version, app version) | Sent to our server when the app encounters an error, to help us diagnose and fix issues |
| Diagnostic logs (log level, category, message) | Sent to our server for troubleshooting app issues |
| App integrity attestation data | Fraud prevention through Firebase App Check with the Google Play Integrity API |
| API access logs (IP address, request path, HTTP method, response status, user agent) | Security monitoring, abuse prevention, and infrastructure protection |
| Advertising ID (Google Advertising ID) and app events (app install, app open) | Shared with our advertising partners — Meta Platforms (Facebook) and TikTok (ByteDance) — to measure and optimize advertising that promotes VoxGuard. Applied under their Limited Data Use. See the Meta Platforms and TikTok sections below for exactly what is and is not shared. |
VoxGuard collects the device's advertising identifier (Google Advertising ID) and shares it with our advertising partners — Meta Platforms, Inc. (Facebook) and TikTok (ByteDance) — to measure and optimize the advertising campaigns we run to promote the VoxGuard app, for example to understand which ads led people to install VoxGuard. VoxGuard does not display advertisements inside the app, and we do not use these partners for any other purpose. See the Meta Platforms (Facebook) and TikTok (ByteDance) sections under Third-Party Services below for a clear list of exactly what we do and do not share, and "Your Privacy Choices" for how to opt out.
When a call is screened through our system, the following information is delivered to your device:
| Information | Why We Collect It |
|---|---|
| Caller phone number | Displayed so you can identify who called |
| Caller name (when available) | Displayed for caller identification |
| Caller voice recording (WAV audio) | You listen to the caller's stated reason for calling |
| Caller transcript (text) | You read the caller's stated reason for calling |
| Call status and timestamps | Showing call history and decision outcomes |
We want to be clear about what VoxGuard does not collect:
We use the information we collect to:
VoxGuard relies on the following third-party services to operate. Each service receives only the data necessary for its function.
We use several Firebase services:
Google's use of information collected through Firebase is governed by Google's Privacy Policy.
We use PostHog, a product analytics platform, to understand how users interact with the VoxGuard app and improve the experience. PostHog receives:
Events are identified by your VoxGuard tenant ID (an internal identifier). PostHog does not receive your phone number, key phrase, call recordings, transcripts, or contact list.
Data is sent to PostHog's US infrastructure at us.i.posthog.com. PostHog's handling of this data is governed by PostHog's Privacy Policy.
VoxGuard uses the Meta SDK (the facebook-core module) for one purpose only: to measure and optimize the advertising campaigns we run to promote the VoxGuard app on Facebook and Instagram. This lets us see which ads lead to app installs so we spend our advertising budget effectively. VoxGuard does not display ads inside the app, and we do not use Facebook Login, social features, or the Graph API.
What we share with Meta:
What we do NOT share with Meta:
Limited Data Use. We enable Meta's Limited Data Use (LDU) for all users by default. Under LDU, Meta is restricted to using this data for measurement and basic optimization only — it is not used to build advertising profiles, custom audiences, or lookalike audiences.
You can limit or opt out of this sharing at any time — see "Your Privacy Choices" below. Meta's handling of this data is governed by Meta's Privacy Policy.
VoxGuard uses the TikTok Business SDK for one purpose only: to measure and optimize the advertising campaigns we run to promote the VoxGuard app on TikTok. As with Meta, this lets us see which ads lead to app installs. VoxGuard does not display ads inside the app, and we do not use any TikTok login, social, or content features.
What we share with TikTok:
What we do NOT share with TikTok:
Limited Data Use. We enable TikTok's Limited Data Use (LDU). For users TikTok identifies as residents of US states with applicable privacy laws (such as California), TikTok restricts processing of this data to measurement and limited optimization.
You can limit or opt out of this sharing at any time — see "Your Privacy Choices" below. TikTok's handling of this data is governed by the TikTok Ad Network Privacy Policy.
VoxGuard Pro subscriptions ($4.99/month with a 7-day free trial) are processed entirely through Google Play. Google handles all payment processing. VoxGuard receives only purchase tokens and subscription status information to verify that your subscription is active. We never receive or store your credit card number, billing address, or other payment details.
Google's handling of payment information is governed by Google Play's Terms of Service and Google's Privacy Policy.
When a caller records their reason for calling, VoxGuard sends the audio recording to a third-party speech-to-text service for transcription. The service receives only the audio file — it does not receive your phone number, the caller's phone number, or any other personal information.
We use a third-party telecommunications provider to deliver service-related SMS messages to your phone number. The provider receives your phone number and the SMS message content solely to complete message delivery. The provider does not receive any other personal information.
Incoming calls to your VoxGuard screening number are routed through a third-party telephony provider. SIP signaling between the provider and our backend is encrypted using TLS 1.2, and media (audio) streams are encrypted using SRTP. The provider transmits the caller's phone number, caller name (when available from the PSTN), and call signaling data to our backend server. The provider also generates call detail records (CDRs) that include call timing, duration, and routing outcomes.
Our backend server, hosted at api.vox-guard.com, powers the call-screening service. The server receives your phone number, FCM device token, key phrase, call decisions, and purchase tokens. All communication between the App and our server is encrypted using HTTPS, and all requests are authenticated with JWT (JSON Web Token) bearer tokens.
VoxGuard stores a limited set of data locally using Android DataStore Preferences:
This local data is protected by Android's file-based encryption. VoxGuard does not use a local database (no SQLite or Room).
All communication between the App and our backend server uses HTTPS encryption. The App enforces HTTPS-only communication at the Android operating system level, preventing any cleartext network traffic. API requests are authenticated using JWT bearer tokens. Voice calls between our backend and our telephony provider use TLS-encrypted SIP signaling and SRTP-encrypted media streams. Upstream of our telephony provider, encryption depends on the originating carrier network, which is outside our control.
Call recordings, transcripts, and call metadata are stored on VoxGuard servers. Our servers employ automated intrusion prevention systems that detect and block unauthorized access attempts.
Note: If you have questions about data retention for your specific account, contact us at support@vox-guard.com.
VoxGuard may send you service-related SMS messages to the mobile phone number associated with your account. These messages are transactional and operational in nature — they are not marketing or promotional messages.
By creating a VoxGuard account and providing your mobile phone number, you consent to receive the service-related SMS messages described above. Message frequency is minimal — typically no more than 1–2 messages per account event. Message and data rates may apply.
You can opt out of SMS messages at any time by replying STOP to any VoxGuard SMS. After opting out, you will receive a confirmation message and no further SMS messages will be sent. You may also contact us at support@vox-guard.com to opt out.
For help with VoxGuard SMS messages, reply HELP to any message or contact support@vox-guard.com.
No mobile information will be shared with third parties/affiliates for marketing/promotional purposes. Your mobile phone number and any information collected in connection with SMS messaging is used solely to provide VoxGuard's call-screening service and related operational communications. We will never sell, rent, or share your mobile phone number with third parties for their marketing or promotional purposes.
We do not sell your personal information. We do not share your phone number, contacts, call content, or other "mobile information" with any third party or affiliate for their marketing or promotional purposes. We do share a limited set of data — your device advertising identifier and app install/launch events — with our advertising partners, Meta Platforms (Facebook) and TikTok (ByteDance), to measure and optimize the advertising we run to promote VoxGuard, as described in the Meta Platforms and TikTok sections above. Under the California Consumer Privacy Act (CCPA/CPRA) this advertising-measurement sharing may be considered "sharing." We apply Meta's and TikTok's Limited Data Use, and you can opt out as described in "Your Privacy Choices" below.
We share data only with the following parties, and only as necessary to provide and promote the service:
None of the third parties listed above receive your "mobile information" (your phone number and SMS-related data) for marketing or promotional purposes. Apart from the advertising-measurement data shared with Meta and TikTok described above, data is shared with these parties solely to operate the VoxGuard service.
We may also disclose information if required by law, such as in response to a valid subpoena, court order, or government request.
You can limit or stop the advertising-measurement data we share with Meta at any time, using any of these options:
If you are a California resident, you have the right to opt out of the "sharing" of your personal information for cross-context behavioral advertising. The only such sharing VoxGuard performs is the advertising-measurement data shared with Meta and TikTok described above. You can exercise this right using any of the options under "Your Privacy Choices" above. We do not sell your personal information, and we do not knowingly share the personal information of users under 16 years of age.
| Data | Retention Period |
|---|---|
| Local app data (DataStore Preferences) | Cleared when you log out of the App. Also removed if you uninstall the App or clear its data through Android settings. |
| Server-side call recordings, transcripts, voicemails, and call history | Retained indefinitely for the life of your account, so that if you change phones or reinstall the App you can recover your data. Not automatically purged on a time-based schedule. You can delete individual voicemails from within the App at any time; for a full wipe of your data, email support@vox-guard.com. Deleting your account also removes all associated data automatically. |
| Firebase Authentication records (phone number–to–UID mapping) | Retained until you delete your account |
| Firebase Analytics data | Retained for 14 months per Google's default retention policy |
| Firebase Crashlytics data | Retained for 90 days per Google's default retention policy |
| PostHog analytics data | Retained per PostHog's data retention policies |
| Google Play Billing records | Managed by Google per their data retention policies |
| Error reports and diagnostic logs | Retained for up to 90 days |
| Carrier and device information | Retained while your account is active; deleted upon account deletion |
| API access logs | Automatically deleted after 30 days |
If you are a California resident, the California Consumer Privacy Act (CCPA) provides you with the following rights:
To exercise these rights, contact us at support@vox-guard.com. We will verify your identity before processing your request by confirming the phone number associated with your account.
VoxGuard is not directed at children under 13. We do not knowingly collect personal information from children under 13. If we learn that we have collected personal information from a child under 13, we will take steps to delete that information promptly.
We may update this Privacy Policy from time to time. When we make changes, we will update the "Last Updated" date at the top of this page. If we make material changes to how we handle your personal information, we will notify you through the App or by other means before the changes take effect.
We encourage you to review this Privacy Policy periodically. Your continued use of VoxGuard after any changes indicates your acceptance of the updated policy.
If you have questions or concerns about this Privacy Policy or our data practices, contact us at:
VoxGuard
Email: support@vox-guard.com
Website: https://www.vox-guard.com
This privacy policy is published at https://www.vox-guard.com/privacy-policy.