Privacy Policy

The Am I Secure? app collects only the minimum information necessary to perform the security analysis that the user is requesting, no more.  We do NOT sell any customer information or data and we do NOT use such information or data to enrich datasets that are sold, even in an anonymized capacity. Our entire business revolves around your security, not your information.

There are three usage scenarios for the app, each with a different level of information that is collected. At no time can the app directly access information on your device nor will it request permission to do so. This can be confirmed by reviewing the app's privacy permissions in iOS Settings which will show NO access to your address book, photos, GPS/location, microphone, camera, etc. 

Scenario A: using the app without signing in/creating an account

• No data collected at all

Scenario B: using the app + signing in/creating an account

• Note: signing in/creating an account is unnecessary unless you are also a paid subscriber and utilizing the advanced security scanning functionality.

• We store in Firebase Authentication (see below) the email address and name you provided to Sign in with Apple. You are free to enter any name you want and can use Apple's Hide My Email feature, if available, to ensure that none of your personal details are shared. Firebase Authentication may temporarily retain the IP address of the device that connects to it for security purposes.

  • • Note: entering your real details assists us in communicating with you if a security situation is identified.

• The name and email address provided will NOT be sold, it will also NOT be shared with external parties except for as required by law (i.e. the highly unlikely situation where we are presented with a valid warrant by Canadian law enforcement or a court order to provide such information).

  • • Firebase may also provide this data if required by a warrant or court order.

• If you delete your account, the name and email address provided will be deleted. They may continue to exist for a few days in Firebase systems but will be inaccessible to Numbers Station Inc.

• No other data collected.

Scenario C: using the app + signing in/creating an account + submitting diagnostic data for advanced security scanning (i.e. utilizing the paid subscription)

• We store in Firebase Authentication (see below) the email address and name you provided to Sign in with Apple. You are free to enter any name you want and can use Apple's Hide My Email feature, if available, to ensure that none of your personal details are shared. Firebase Authentication may temporarily retain the IP address of the device that connects to it for security purposes.

  • • Note: entering your real details assists us in communicating with you if a security situation is identified.

• The name and email address provided will NOT be sold, it will also NOT be shared with external parties except for as required by law (i.e. the highly unlikely situation where we are presented with a valid warrant by Canadian law enforcement or a court order to provide such information).

  • • Firebase may also provide this data if required by a warrant or court order.

• If you delete your account, the name and email address provided will be deleted. They may continue to exist for a few days in Firebase systems but will be inaccessible to Numbers Station Inc.

• We only have access to the diagnostic data you specifically select and share with the app. The app is unable to access any other data. Diagnostic data can be retained for up to six months if determined to be non-malicious during the initial scan, this is to allow for future scanning of old submissions as new threats are identified.  Diagnostic data deemed by Numbers Station Inc. to indicate that the submitters device is compromised with malware or spyware may be retained for up to 24 months. When diagnostic data is stored, the IP address of the submitting device at the time of submission is also retained with it by Numbers Station Inc. for the same time period as the diagnostic data itself. The IP address is used to determine trends if a compromise is detected, specifically which country the compromised device was in and what network it was on at the time of submission. The IP address is NOT combined with other data nor used to track nor locate the user in a more prescise way.

  • • Note: deleting your account (i.e. the name and email address) does NOT also delete any submitted diagnostic data/IP addresses but would remove our ability to tie such data back to a specific user and the name and email address they provided when using Sign in with Apple. Diagnostic data can only be deleted by requesting it via an email sent to delete@numbersstation.app from the email address tied to the account and the email must be sent before the account is deleted and must include the user's Am I Secure? user ID that is available in the settings tab (gear symbol) of the app. Once an account is deleted we are unable to associate the data with an account and therefore cannot delete it after the fact.

• Diagnostic data shared with the app may contain information about Wi-Fi networks that the device has connected to, such as the SSID or name of the network. Shared diagnostic data should NOT contain any personal content or personal information such as photos, messages, email addresses, etc. If during manual security analysis any such content is discovered, it will be scrubbed from our systems immediately. It is possible in some cases to utilize Wi-Fi network information to also geolocate where a device was in the past but we do NOT use the data in this way.

• Shared diagnostic data transits through a third party, Firebase (see below), on their way to our analyzer and storage servers but is end-to-end encrypted with an encryption key that is only stored on our analyzer servers so that only we can access or read the submissions. Unencrypted submissions do not leave servers owned and controlled by Numbers Station Inc. Firebase does NOT have any access to or ability to read your diagnostic data.

• If a user's device is assessed as being compromised, no external party will be notified or provided any personally identifying information of the user without the user's express and written consent. In jurisdictions where disclosure of a compromise to government or other organizations is legally required, the user must perform the required disclosure, Numbers Station Inc. does not perform such disclosure on behalf of the user.

Firebase (our 3rd party cloud services provider)

The IP addresses of devices running our app that connect to Firebase may be retained temporarily by Firebase for security purposes.

Our app and servers use the following Firebase products:

Authentication: used to handle part of the Sign in with Apple authentication flow and to store usernames and email addresses and the associated Am I Secure? user ID.

Firestore: a database used to provide information to the app running on your device, such as the latest version of iOS available, security news articles and test results for submitted system diagnose files.

Cloud Storage: storage where end-to-end encrypted system diagnostic data that is submitted for advanced security scanning is temporarily stored until it is downloaded by our analyzer servers at which point it is deleted fom Firebase. At no point is Firebase able to read this data due to the end-to-end encryption.

App Check: a service that uses Apple's App Attest APIs to verify that the version of the Am I Secure? app running on your device has not been modified.  Attestation material does not contain any user identifiable information or content and is not retained.

Note that we do *NOT* use other Firebase products such as Firebase Analytics, Crashlytics, Performance Monitoring, etc. in our product to ensure maximum user privacy.