Privacy Policy

Last Updated: February 2026

  1. Introduction

    Welcome to LittleBear Tech. Your privacy is fundamental to us. SpoofShield is designed to stop spam and spoofing calls by processing data locally on your device to ensure maximum security.

  2. Purpose of the App and Core Features

    SpoofShield is an advanced security service designed for identifying and filtering spam calls. Unlike cloud-based solutions, our app protects user privacy by operating entirely offline using a local learning algorithm that analyzes patterns of Robot Dialer and spoofing.

    • · Retrospective Analysis: Since the app does not use external databases, the only way to train the local algorithm is to analyze the metadata of blocked calls, rejected by the user or identified as spam.
    • · Matrix Generation: The "Analyze and Create" function (Manual/Automatic) extracts numbering patterns from the call history to generate proactive rules. Without this permission, the user would have to manually input each variant of spam numbers, making the service ineffective against modern dynamic spoofing threats.
    • · Authorization and Contextual Consent Flow: The app has been designed following the principle of "Minimum Privilege" and "Contextual Consent":
    • · First Launch (Real-time Configuration): The user views a Prominent Disclosure (Primary Information) before activating protection. The following system roles are requested: Caller ID & Spam for call blocking, access to Call Log to analyze previous calls identified as Spam (blocked and/or rejected) and generate blocking matrices. Phone Management (for detecting Robot Dialer rings) and Notification permission to ensure users receive immediate alerts about blocked calls without violating transparency guidelines for permission management.
  3. Data Collection and Usage

    To provide the service, SpoofShield requires access to specific sensitive information. These data are processed exclusively on your device using our local algorithm:

    • · Call Log: SpoofShield requires access to the Call Log and Phone Management exclusively for its main functionality: identifying and automatically blocking spam calls. The data analysis occurs entirely locally on the device to ensure maximum privacy protection. We do not upload, share, or store your call history or contacts on external servers; all processed data serve only to generate protection rules within the app.
    • · Financial Data: Purchases are managed by Google Play Billing. We only store a locally encrypted token for subscription verification. We do not host or manage any database of personal information from subscribers.
  4. Data Sharing and Disclosure

    We do not sell, trade, or share your personal data with third parties. All filtering logic occurs on the device.

    • · Protection of Minors: The app is not intended for persons under the age of 18.
    • · International Rights (GDPR & CCPA) * GDPR (UE): : The processing is based on contract execution (Art. 6.1.b). You have the right to access, deletion (via uninstallation) and complaint to the Authority for Data Protection.
    • · CCPA: "Do Not Sell My Personal Information" Statement: Littlebeartech does not sell any personal information to third parties.

    We do not sell, trade, or share your personal data with third parties. Since all filtering logic occurs on the device, your sensitive data (such as call logs) never leave your phone. We do not use analytics or advertising SDKs from third parties that track information about your calls.

  5. Data Retention
    • · Call Data: No call data is retained by Littlebeartech. The history of calls blocked by the app is displayed only locally on the device.
    • · User Support: Support emails are retained only for the time necessary to resolve the request.
  6. User Rights and Control

    You have full control over your data:

    • · Revoke Permissions: You can revoke permissions for the Call Log or Caller ID at any time through Android's System Settings.
    • · Deletion: Being "Privacy by Design", we do not store data on servers; uninstallation removes all local traces.
  7. User Information and Rights (GDPR/CCPA)

    Owner: Littlebeartech. The processing is necessary for the provision of the requested service. EU users have the right of access, deletion and complaint to the Authority.

  8. Subscription Management

    You can manage your subscriptions at any time through the Google Play Store subscription settings.

  9. Security

    We implement industry-standard encryption for the small amount of data stored locally to prevent unauthorized access.

  10. Changes to this Privacy Policy

    This privacy policy may be updated at any time. Changes will be published on our website.

  11. GDPR Compliance (European Users)

    In compliance with the General Data Protection Regulation (GDPR), Littlebeartech provides the following information for users residing in the European Economic Area (EEA):

    • · 1. Legal Basis: We process data (specifically Call Log information) based on Art. 6(1)(b) of the GDPR: processing is necessary for the performance of a contract (providing the requested filtering service by installing the app).
    • · 2. Privacy by Design: All personal data is proc essed locally on your device. No data is transferred to our servers or third parties (except anonymized subscription tokens managed by Google Play).
    • · 3. Data Subject Rights: Users in the EU have the right of access, deletion (via uninstallation or cache clearing) and withdrawal of consent. You also have the right to lodge a complaint with a data protection authority.
    • · 4. Data Controller: Littlebeartech. Note: since we do not collect data on central servers, we do not appoint a Data Protection Officer (DPO).
  12. Contact

    For support or legal questions: support@littlebeartech.eu

Note: This privacy policy is drafted in accordance with the EU General Data Protection Regulation (GDPR) and the CCPA.