Privacy Policy for IDKAVACH Android App

Last Updated: May 20, 2026

Welcome to IDKAVACH. Your privacy and security are extremely important to us. This Privacy Policy explains how IDKAVACH collects, uses, stores, and protects your information when you use the IDKAVACH website, mobile application, and related services.

IDKAVACH mobile application is designed so your passwords, secure notes, and vault data remain on your device and are not collected by us.

IDKAVACH does not require account registration to use core password manager functionality.

By using IDKAVACH, you agree to the practices described in this Privacy Policy.

1. About IDKAVACH

IDKAVACH is a password manager and secure information storage application designed to help users securely store passwords, notes, URLs, and other sensitive information on their own devices.

IDKAVACH is designed to operate primarily as a local-first password manager. Your vault data remains on your device unless you explicitly export, back up, or synchronize it using external services.

IDKAVACH is designed with a strong privacy-first approach.

2. Permissions Used by IDKAVACH

Internet (`android.permission.INTERNET`)

Used to:

- Verify app licensing through Google Play.

- IDKAVACH is designed to operate primarily offline. Limited internet access may be used for Google Play license verification and other optional services explicitly initiated by the user.

- IDKAVACH is designed so that your vault contents are not transmitted to IDKAVACH servers.

Network State (`android.permission.ACCESS_NETWORK_STATE`)

Used to:

- Detect whether an internet connection is available before performing license verification or other network-related operations.

Google Play License Check (`com.android.vending.CHECK_LICENSE`)

Used to:

- Verify that the app was legitimately installed from Google Play.

- Helps prevent unauthorized or tampered copies of the app.

Microphone (`android.permission.RECORD_AUDIO`)

Used only for:

- Voice input features, if the user chooses to use voice typing/search.

- IDKAVACH does not intentionally record, store, or transmit audio data.

Biometric Authentication (`android.permission.USE_BIOMETRIC`)

Used to:

- Allow fingerprint or biometric authentication for secure access to the vault.

Autofill Service (`android.permission.BIND_AUTOFILL_SERVICE`)

Used to:

- Provide Android Autofill functionality so usernames and passwords can be securely filled into apps and websites.

- This permission is required for the app’s autofill service to function.

3. Information We Collect

Information you store in IDKAVACH is primarily stored locally on your device and is not transmitted to IDKAVACH servers.

Information You Provide

Users may create and store the following information locally within their encrypted vault:

- Usernames

- Passwords

- Website URLs

- Secure notes

- Other information intentionally saved by the user

Information Automatically Collected

The IDKAVACH website may automatically collect limited technical information such as:

- Website usage analytics

- IP address (website only)

This information is used only to improve reliability, performance, and security.

Information You Voluntarily Provide

IDKAVACH does not automatically collect personal information, analytics data, usage statistics, or vault contents.

If you voluntarily contact us or provide feedback, reviews, bug reports, or suggestions, you may choose to include information such as:

- Your email address

- Device information

- Screenshots

- Diagnostic details

- Other information you choose to share

This information is used only to respond to your communication or improve IDKAVACH.

4. Secure Credential Sharing

When users share any credentials using IDKAVACH:

- The credential is encrypted locally on the device using AES-GCM encryption

- The encrypted payload may additionally include integrity and authenticity protection mechanisms.

- IDKAVACH then hands the encrypted payload to the Android system share chooser

- The selected third-party app receives only the encrypted payload

IDKAVACH does not transmit or store shared credentials on its own servers.

5. Passwords and Sensitive Data

IDKAVACH is designed so that your sensitive vault data remains under your control.

Local Encryption

Passwords, secure notes, and other vault data are encrypted locally on your device before storage.

IDKAVACH does not intentionally collect or store your master password.

6. Clipboard Handling

When you copy usernames, passwords, or URLs from IDKAVACH:

- Android may display privacy notifications such as:
“IDKAVACH pasted from your clipboard”

Why does this message appear?

Modern Android versions (Android 13 and above) automatically display an alert whenever an app accesses data stored in the clipboard. This security feature helps users know when copied information is being used.

When IDKAVACH copies or pastes information using the clipboard, such as when using Copy Username or Copy Password, Android displays this notification and shows the app name (“IDKAVACH”) before the message text.

This behaviour is normal and is part of Android’s built-in privacy protection system.”

If you find this pop-up annoying and want to disable it on your Android device and turn this notification Off:
1. Open the Settings app inside your Android device.
2. Navigate to Security & Privacy.
3. Select Privacy Controls or Additional Privacy Controls or Controls and alerts (text varies on devices).
4. Look for “Show clipboard access” or “Alert when clipboard accessed” and toggle it Off.

- Clipboard content may temporarily remain available to the operating system or other apps until cleared by Android.

- IDKAVACH may attempt to automatically clear copied sensitive data from the clipboard after a short period for additional security.

However, clipboard behavior ultimately depends on your device manufacturer, Android version, and operating system restrictions.

7. Autofill Service

If you enable the Android Autofill Service:

- IDKAVACH may access website domains or application package names in order to provide autofill suggestions.

- This information is processed locally on your device whenever possible.

- Autofill matching behavior may depend on Android version, browser compatibility, and how websites or applications are opened. For improved autofill matching, users may open websites directly using the "Open URL" feature within IDKAVACH.

- IDKAVACH does not intentionally transmit your stored passwords to external servers for autofill functionality.

8. How We Use Information

We may use collected information to:

- Provide core password manager functionality

- Improve application performance and reliability

- Detect crashes and security issues

- Respond to support requests

- Improve website experience

- Maintain security and prevent abuse

- We do not sell personal information.

9. Third-Party Services

The IDKAVACH website may use limited third-party services for:

- Analytics

- Crash reporting

- App distribution

- Website hosting

These third parties may collect information according to their own privacy policies.

Third-party services used by IDKAVACH may include:

Google Play Services

10. Data Security

We implement reasonable technical and organizational measures to protect your information, including:

- Encryption

- Secure authentication

- Biometric protection

- Session management

- Automatic logout features

However, no system can guarantee absolute security.

You are responsible for maintaining the confidentiality of your master password and securing your device.

11. Data Retention

Your vault data generally remains stored locally on your device unless you explicitly back it up, export it, or synchronize it using external services.

Diagnostic logs submitted by you, if any, or support communications may be retained for a limited period for troubleshooting and security purposes.

If users export, back up, synchronize, or share data using third-party services or applications, the handling of that data is governed by the privacy policies of those third parties.

12. Children's Privacy

IDKAVACH is not directed toward children under the age of 13.

We do not knowingly collect personal information from children.

13. Your Rights

Your vault data is primarily stored locally on your device rather than on IDKAVACH servers.

You may delete your vault data or uninstall the application at any time.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time.

Updated versions will be posted on the IDKAVACH website with a revised “Last Updated” date.

15. Contact Us

If you have questions about this Privacy Policy or IDKAVACH privacy practices, please contact:

- Website: IDKAVACH Official Website: https://www.azcrypt.com/idkavach/

- Email: support@idkavach.com

Privacy Policy for IDKAVACH Android App

Last Updated: May 20, 2026

1. About IDKAVACH

2. Permissions Used by IDKAVACH

Internet (android.permission.INTERNET)

Network State (android.permission.ACCESS_NETWORK_STATE)

Google Play License Check (com.android.vending.CHECK_LICENSE)

Microphone (android.permission.RECORD_AUDIO)

Biometric Authentication (android.permission.USE_BIOMETRIC)

Autofill Service (android.permission.BIND_AUTOFILL_SERVICE)

3. Information We Collect

4. Secure Credential Sharing

5. Passwords and Sensitive Data

Local Encryption

6. Clipboard Handling

7. Autofill Service

8. How We Use Information

9. Third-Party Services

10. Data Security

11. Data Retention

12. Children's Privacy

13. Your Rights

14. Changes to This Privacy Policy

15. Contact Us

Internet (`android.permission.INTERNET`)

Network State (`android.permission.ACCESS_NETWORK_STATE`)

Google Play License Check (`com.android.vending.CHECK_LICENSE`)

Microphone (`android.permission.RECORD_AUDIO`)

Biometric Authentication (`android.permission.USE_BIOMETRIC`)

Autofill Service (`android.permission.BIND_AUTOFILL_SERVICE`)