Privacy Policy

1. Information We Collect

Account and Profile

Name, username, email or phone number, password (hashed), avatar, role, and optional blood group for emergency SOS features.

Authentication Data

Secure tokens stored locally on your device using AES-256-GCM encrypted SharedPreferences.

Location

Precise and approximate location are collected only when you explicitly trigger an SOS alert. Core chat and calling features work entirely without location permission.

Media and Audio

Photos, videos, and voice recordings when you choose to upload or send them. Camera and microphone are accessed only during your explicit actions. We do not access your gallery or camera in the background.

Phone and Telecom

READ_PHONE_STATE is used solely to detect active cellular calls and pause App audio. We do not read your contacts or call history.

Device Information

Device model, OS version, IP address, and Firebase Cloud Messaging token for push notifications.

In-App Content

Messages, posts, comments, reactions, call metadata, SOS alerts, and payment records you create within the App.

2. How We Use Your Information

• Provide core services: chat, voice/video calling, feeds, SOS
• Deliver push notifications via Firebase Cloud Messaging
• Manage VoIP calls through the Android Telecom framework
• Maintain secure sessions using encrypted local storage
• Respond to emergencies when you trigger SOS
• We do not sell your data or use it for advertising

3. Third-Party Services

We share data only with service providers strictly necessary to operate the App:

• PocketBase (db.cdoapp.online) — Primary backend for accounts, messages, posts, and file storage. HTTPS encrypted.
• Stream.io — Real-time chat and social feeds. Shared: user profile, messages, posts, FCM token for push.
• Google Firebase Cloud Messaging — Push notification delivery.
• LiveKit — Real-time voice/video calling with WebRTC DTLS-SRTP encryption. We do not record calls.
• Google Play Services — Location services (only when permission granted).

4. Data Encryption and Security

• In transit: All APIs use HTTPS with TLS 1.2+. Stream Chat, LiveKit, and media streams are encrypted.
• At rest (device): Authentication tokens stored in EncryptedSharedPreferences using AES-256-GCM via AndroidX Security Crypto.
• At rest (server): Passwords are hashed with industry-standard algorithms. File uploads protected by access control.

5. Data Retention and Deletion

Account data is retained while your account is active. You can request deletion via the App or by contacting your administrator. Upon deletion, data is removed from active servers within 48 hours. Backups may retain data for up to 30 days for disaster recovery.

6. Your Rights

• View and edit your profile within the App
• Change your password in Settings
• Control notification preferences
• Revoke any Android permission via device Settings
• Request full data export or account deletion

7. Children's Privacy & Policy (CSAE)

Child Safety and Explicit Content Policy Protective Islami Life Insurance Ltd. and the CDO App strictly prohibit the upload, sharing, or distribution of any content that depicts, encourages, or promotes Child Sexual Abuse and Exploitation (CSAE). We have a zero-tolerance policy for such materials. Any user found violating this policy will face immediate account termination, and the content will be reported to the relevant law enforcement authorities and organizations such as the National Center for Missing & Exploited Children (NCMEC). Users can report any concerning content directly through the in-app reporting mechanism or by contacting our dedicated Child Safety Point of Contact at admin@cdoapp.online.

8. Changes

We may update this policy from time to time. Updates will be posted in-app and at this URL. Continued use after changes means acceptance of the revised policy.

9. Contact

If you have questions about this Privacy Policy, please contact your organization administrator or email privacy@cdoapp.online.