At BeyondScreen.ai, we respect your privacy and are committed to protecting your personal data. This privacy policy explains how we collect, use, and safeguard your information when you use our AI-powered messaging application.
1. Information We Collect
1.1 Account Information
- Email Address: Required for account creation and authentication
- Name: First and last name (optional)
- Phone Number: For SMS verification and contact discovery (optional)
- Profile Picture: Avatar image from your account or third-party providers
1.2 Device and Technical Information
- Device Identifiers: Hardware-based device fingerprints for multi-device sync
- Device Information: Device model, operating system, app version
- IP Address and Location: For security, fraud prevention, and location-based features
- Usage Analytics: App usage patterns, feature usage, and performance metrics
1.3 Communication Data
Important: All personal messages are end-to-end encrypted. We cannot read your message content.
- Message Metadata Only: Message timestamps, delivery status, and participant information (not message content)
- Contacts: Contact information you choose to sync (with your permission, stored locally on your device)
- AI Messages: Messages sent to AI assistants are processed but not permanently stored
1.4 Image and Media Data
Image Sharing and Saving: Our app allows you to save and share images from conversations:
- Image Saving: Images can be saved to your device's photo gallery (with your permission)
- Image Sharing: Images can be shared with other apps on your device using your device's native sharing system
- Local Processing: Image saving and sharing is processed locally on your device - we do not access or store the images on our servers
- Permissions: These features require device permissions for photo library access and file system access
1.5 Optional Plugin Integration Data
All plugin connections are optional and require your explicit approval. When you choose to connect third-party services through our plugin system, we may access:
- Google Services: Calendar events, availability, scheduling information, and basic profile information
- Other Connected Services: Data from other plugins you voluntarily enable (weather, events, productivity tools, etc.)
2. How We Use Your Information
2.1 Core Services
- Create and manage your account
- Facilitate secure messaging between users
- Sync your data across multiple devices
- Provide customer support and respond to inquiries
2.2 AI Features
- Message Processing: AI assistants process your messages to provide responses
- Context Understanding: Recent conversation history is used to maintain context
- Plugin Integration: AI accesses connected services (like Google Calendar) to fulfill requests
- Smart Features: Content analysis for features like link previews and smart replies
2.3 Image and Media Features
- Image Display: Display images shared in conversations
- Image Saving: Enable you to save images to your device's photo gallery when you choose to do so
- Image Sharing: Enable you to share images with other apps on your device using native sharing functionality
- Local Processing: All image operations are performed locally on your device - we do not process or store images on our servers
2.4 Plugin Integrations
All plugin integrations require your explicit consent. When you voluntarily connect services like Google Calendar, we use the data to:
- Answer questions about your connected services ("What's on my calendar today?")
- Perform actions you request via natural language commands
- Provide intelligent suggestions based on connected data
Important: Plugin data is accessed in real-time only when needed and not permanently stored on our servers.
3. Data Security and Encryption
3.1 End-to-End Encryption
- All personal messages are encrypted
- Only you and your intended recipients can read your messages
- We cannot access the content of your encrypted messages
- Encryption keys are generated and stored locally on your devices
3.2 AI Message Processing
- AI Conversations: Messages sent to AI assistants are not end-to-end encrypted to enable processing
- Temporary Processing: AI messages are processed in real-time and not permanently stored
- Context Limitation: Only recent conversation context is used for AI responses
3.3 Additional Security Measures
- Data transmission is secured using TLS encryption
- Access controls and authentication protect your account
- Regular security audits and updates
- Secure data centers with physical and digital protections
4. Data Sharing and Third Parties
4.1 AI Service Providers
We work with AI service providers (such as OpenAI and Anthropic) to power our AI features. When you interact with AI assistants:
- Your messages and relevant context are sent to these providers for processing
- These providers process data according to their own privacy policies
- We do not share your personal information beyond what's necessary for AI processing
4.2 Connected Services
When you connect third-party services (Google Calendar, etc.):
- We access only the data necessary for the requested functionality
- You can revoke access to these services at any time
- Data access is governed by OAuth permissions you explicitly grant
4.3 Service Providers
We work with trusted third-party service providers to operate our service, including:
- Cloud Infrastructure: Hosting and data storage
- Communication Services: Email delivery and SMS verification
- Payment Processing: Subscription billing
- Analytics: Usage analytics to improve our service
These providers only receive the minimum data necessary to perform their specific functions and are bound by confidentiality agreements.
4.4 Legal Requirements
We may disclose information when required by law, such as:
- Responding to legal process or government requests
- Protecting our rights, property, or safety
- Preventing fraud or abuse of our services
5. Data Retention
- Account Data: Email, name, device information - retained while your account is active
- Messages: End-to-end encrypted messages stored locally on your devices only. We cannot read or access message content.
- Message Metadata: Timestamps, delivery status, participant lists - retained for service functionality
- Images and Media: Images shared in conversations are stored locally on your devices only. When you save images to your device's photo gallery, they are stored in your device's photo library under your control.
- AI Conversations: Processed in real-time only, not permanently stored on our servers
- Plugin Data: Accessed in real-time when you use plugins, not permanently stored (e.g., Google Calendar)
- Usage Analytics: Aggregated usage patterns for service improvement
6. Your Privacy Rights
6.1 Access and Control
- Access: Request a copy of your personal data
- Correction: Update or correct your information
- Deletion: Delete your account and associated data
- Portability: Export your data in a portable format
6.2 Communication Preferences
- Control notification settings
- Manage connected services and permissions
- Opt out of non-essential communications
6.3 Third-Party Connections
- Disconnect Google Calendar or other services at any time
- Revoke OAuth permissions through your Google account settings
- Control which plugins and integrations have access to your data
7. International Data Transfers
Your data may be processed in countries other than your own. We ensure appropriate safeguards are in place for international data transfers, including standard contractual clauses and adequacy decisions where applicable.
8. Children's Privacy
Our service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.
9. Changes to This Policy
We may update this privacy policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last Updated" date. Your continued use of our service after changes constitutes acceptance of the updated policy.
10. Google OAuth and Plugin Permissions
Our application uses Google OAuth for authentication and to access Google services only with your explicit permission. The specific scopes we request are:
- Basic Profile: Email address and basic profile information for account creation
- Calendar Access: Read and manage your Google Calendar (only when you voluntarily enable the Google Calendar plugin)
User Control: You can revoke these permissions at any time through your Google Account settings. Calendar and other plugin access is only requested when you explicitly choose to enable specific plugin features. All plugin connections are optional and require your active consent.
11. Contact Us
If you have any questions about this privacy policy or our data practices, please contact us:
- Email: hello@beyondscreen.ai
- Website: https://beyondscreen.ai
For data protection inquiries or to exercise your privacy rights, please use the same contact information above.