Privacy Policy — Device Fingerprint

Last updated: 2026-05-08 Effective date: 2026-05-08 Policy version: 1.0

Introduction

This privacy policy (“Policy”) describes how Device Fingerprint (the “App”) handles information on your device. The App is published by Nguyen Duong Duc (Android package com.wowsoftware.devicefingerprint).

This Policy applies to the App distributed via the Google Play Store and any direct distribution channels operated by the developer. It does not apply to third-party services that may be linked from the App (for example, the Google Play Store listing itself, or ip-api.com and Google Maps when invoked as described below).

By installing or using the App, you acknowledge that you have read this Policy and understand how the App accesses information on your device.

Summary in plain language

Device Fingerprint is a diagnostic, read-only utility. It reads device identifiers and environment signals exposed by the Android operating system and displays them to you across nine tabs in the app. It does not collect, persist, sell, or share your data with anyone, with two explicit, on-demand exceptions:

1. The Dashboard tab fetches your public IP from ip-api.com to display approximate geolocation.
2. The Location tab renders a map using the Google Maps SDK, which makes its own tile requests.

Outside of those two features, no data leaves your device.

Information accessed on your device

The App reads the following categories of information across its nine tabs (Dashboard, Applications, Accounts, SIM, WiFi, LAN, Bluetooth, Location, Input). Specific items, the Android permissions that gate them, and the third-party services involved are listed in detail in the sections below labeled “Permissions requested”, “Third-party SDKs and services”, and “Data leaving your device”.

Device and hardware identifiers (Dashboard tab)

• Android ID (Settings.Secure.ANDROID_ID)
• App Set ID via Google Play Services
• Advertising ID (resettable, via Google Play Services)
• MediaDRM ID (MediaDrm.PROPERTY_DEVICE_UNIQUE_ID)
• Build properties — manufacturer, model, hardware, fingerprint string, security patch level
• IMEI / MEID / Serial — restricted on Android 10+ for non-privileged apps; the App will report “unavailable” rather than attempting to circumvent these restrictions.

Network information (WiFi + LAN tabs)

• Wi-Fi state — connection presence, link speed, frequency band, signal level
• SSID and BSSID of the currently-connected access point (location permission required on Android 8.1+)
• MAC address — restricted to a randomized per-network value on Android 10+; the App reports the value the OS exposes.
• LAN scan — hosts visible on your local network, with IP/MAC, plus vendor lookup from a bundled OUI database.
• Public IP address — fetched only when the Dashboard tab is opened.

Location (Location tab)

• GPS coordinates with reported accuracy (in meters), provided by LocationManager
• Approximate location (cell-tower-derived) when fine location is not available
• Map view rendered by Google Maps SDK using your current coordinates

Account and application data (Accounts + Applications tabs)

• Google account display names registered on the device (no tokens, no passwords, no email addresses sent anywhere)
• Installed application list (package names; install and update timestamps)

SIM and telephony (SIM tab)

• SIM information — operator, country code, ICC presence (subject to OS restrictions)
• Phone numbers attached to each SIM, where the OS exposes them

Bluetooth (Bluetooth tab)

• Adapter state
• Paired device names and MAC addresses
• Discovered nearby devices during a scan you initiate

Input devices (Input tab)

• Connected keyboards, gamepads, and accessibility services
• Sensor list (without reading sensor values)

Emulator and integrity signals (Dashboard tab)

• Heuristic checks on Build.FINGERPRINT, Build.MODEL, Build.HARDWARE
• A native code scan for emulator artifacts (e.g. /dev/qemu_pipe, Genymotion paths)

Note: the emulator section is for diagnostic transparency. The App does not attempt to defeat emulator detection, root detection, or any anti-tamper system. It simply tells you what those signals look like on your device.

Purpose of access

The App’s sole purpose is research and diagnostic display — showing you what your device exposes to apps. Specifically:

1. Privacy education — let you see what identifiers and signals are accessible.
2. Development support — help developers understand the fingerprinting surface on real devices.
3. System inspection — surface OS- and OEM-specific build properties.

The App does not transmit, upload, or persist this information off-device, except as described under “Data leaving your device” below.

Permissions requested

The Android permissions requested by the App, the data they gate, and their purpose are listed in the Permissions table on this page (rendered automatically from the App’s published manifest declarations).

Granting these permissions is optional:

• If you decline a permission, the corresponding fields will simply read permission not granted — the App does not refuse to run.
• The App will never re-prompt for a denied permission unless you explicitly tap the relevant tab.
• You can revoke any granted permission at any time from Android Settings → Apps → Device Fingerprint → Permissions.

Third-party SDKs and services

The third-party libraries and remote services bundled or invoked by the App are listed in the Third-party SDKs section on this page. For reference, here is the static set as of policy version 1.0:

Each Google component is governed by Google’s own privacy policies. Map tile requests are made by the Google Maps SDK and are subject to Google’s terms.

Data leaving your device

The data items that leave your device are listed in the Data leaving your device section on this page. As of policy version 1.0, those items are:

1. Your public IP address — transmitted to ip-api.com to obtain coarse geolocation, only when the Dashboard tab is opened. The request:

   • Is never made automatically in the background.
   • Uses HTTP (not HTTPS) only because ip-api.com does not offer free HTTPS for unauthenticated traffic. The only payload is your already-public IP.
   • Receives a JSON response with approximate city, region, country, ISP. The response is displayed and discarded — not stored, not associated with any persistent identifier.

2. Map tile requests — issued by the Google Maps SDK when the Location tab is open and rendering. These requests are subject to Google’s privacy policy.

If you do not wish either of these to occur, do not open the corresponding tab.

Data we do not collect

Explicitly: the App does not access, collect, or transmit:

• Contacts content (the READ_CONTACTS permission is used only to surface account display names in the Accounts tab — no contact records are read or sent off-device)
• Messages, call logs, or call history
• Photos, videos, audio, or files
• Calendar events
• Microphone or camera input
• Keystrokes or clipboard contents
• Browsing history
• Any data from other apps’ private storage

Data retention

The App does not maintain a server. It does not retain your information. Readings are fetched on demand, displayed on screen, and discarded when:

• You navigate away from the relevant tab, or
• You close the App, or
• You clear the App’s data via Android Settings.

There is no cloud sync, no backup, and no analytics to retain.

Children

The App is not directed to children under 13 and does not knowingly collect personal information from children. The Play Store listing targets the audience “13+”.

If you are a parent or guardian and you believe a child has used the App in a way that violates this Policy, please contact us at the email address below. Because the App does not collect or store identifying information server-side, the typical action will be to confirm that no such data exists.

Regional rights — GDPR / CCPA / others

Because the App does not collect, store, or transmit personal data to a server (except your public IP for the optional geolocation lookup, which ip-api.com does not persist for free unauthenticated requests as of their stated policy), there is generally no data on file to access, port, or delete.

You retain full local control:

• Right to access — every reading is shown to you in plain text within the App.
• Right to delete — clear the App’s data via Settings → Apps → Device Fingerprint → Storage → Clear data.
• Right to portability — most tabs offer a Copy action that places the values on your clipboard.
• Right to object / restrict processing — uninstalling the App stops all processing immediately.

If you reside in the EU, UK, California, Brazil, or another jurisdiction with data-protection legislation, you may also contact the developer with any rights request. We will respond within the timeframe required by your jurisdiction.

Sale and sharing

We do not sell your data and do not share it with third parties for advertising, analytics, or any other purpose, with the explicit exceptions of the IP geolocation lookup and Google Maps tile requests described above.

There is no advertising ID being shared with ad networks. There are no SDK partners receiving event streams.

Security

Because the App stores no data off-device and only transmits to ip-api.com (your public IP) and Google Maps (map tile requests), the security surface is small. Nonetheless, we follow Android best practices:

• Targets the latest Android SDK at release time (currently API 36).
• Requests permissions at runtime (not at install time) for sensitive groups.
• Does not embed analytics or remote-config SDKs that could be exploited as a code-loading vector.

Changes to this Policy

We may update this Policy as the App evolves. Material changes will be reflected in the “Last updated” and “Policy version” fields above. When the version increments, the previous version is archived in the App’s GitHub repository (when published) and is available on request.

Continued use of the App after updates constitutes acceptance of the revised Policy. If you object to a future version, you may uninstall the App; no further data processing will occur after uninstall.

Governing law

This Policy is governed by the laws of the Socialist Republic of Vietnam. To the extent that local consumer-protection or data-protection laws of your jurisdiction provide stronger rights, those will apply to the extent required by law.

Contact

For questions about this Policy or the App’s data handling, email duongnguyen.geek@gmail.com. Please include:

1. The Policy version at the top of this page (currently 1.0).
2. Your Android version and device model, if your question is technical.
3. The specific tab or feature your question concerns, if applicable.

We aim to respond within five (5) business days.

The remainder of the privacy disclosures — the permissions table, the third-party SDK list, and the data-leaving-device summary — appears below this introduction, rendered automatically from the App’s published metadata. Those sections are part of this Policy.

Permissions requested

Third-party SDKs and services

• Google Play Services — Ads Identifier

  Read advertising ID (AdvertisingIdClient)

• Google Play Services — App Set

  Read App Set ID (AppSet.getClient)

• Google Maps SDK for Android

  Render the map shown in the Location tab

• ip-api.com

  HTTP request from the Dashboard tab to obtain coarse IP-based geolocation (no data persisted)

Data leaving your device

Sale and sharing of data

• Sold to third parties: No
• Shared with third parties: No

Contact

Questions about this privacy policy? Email duongnguyen.geek@gmail.com.