Privacy Policy

Last updated: March 25, 2026

At the Floosko development team, we believe that privacy is a fundamental right of every user. Floosko is designed to be your Default SMS/MMS Handler, with a focus on protecting your data and processing it locally on your device.

This Privacy Policy explains how we handle data and the permissions required for the app to function efficiently, in full compliance with Google Play Developer Policies.

1. Core Permissions and How We Use Them (Core Functionality)

For Floosko to function as a default messaging app, it requests the following permissions to provide Core Functionality only:

SMS Permissions (READ_SMS, SEND_SMS, RECEIVE_SMS, RECEIVE_MMS)

Why do we request them? We need these permissions exclusively to enable you to send, receive, read, and manage your SMS and MMS messages, and to provide features such as spam filtering and inbox organization.

How do we process them? All your messages are processed locally on your phone. We do not upload, copy, or store the content of your messages on any external servers.

Contacts Permission (READ_CONTACTS)

Why do we request it? To match phone numbers in incoming messages with names saved in your phonebook, so we can display the sender's name instead of their number, and to allow you to select contacts when composing a new message.

How do we process it? Your contact list is never exported or uploaded to any party. All matching is performed entirely within your mobile device.

2. Data Collection and Use

Floosko is built on a Privacy-First architecture:

  • Personal Data and Content: We do not collect, read, or transmit the content of your messages or your contacts to our servers.
  • Device Identifiers and Security: To maintain app security and prevent abuse (Anti-Spam/Abuse), we may collect encrypted non-personal identifiers (such as a SHA-256 hashed device fingerprint and FCM push notification token) for basic authentication and to protect the app environment from automated or malicious access. These identifiers are never linked to the content of your messages.
Optional Account Registration

Users may choose to create an account (using an Egyptian phone number verified via WhatsApp) to access the optional message parsing feature. This account stores on our servers only basic registration data (first name, last name, phone number, email if provided, and a hashed device fingerprint). Raw SMS content and parsed data are never uploaded to the server. All parsed summaries remain locally on your device only.

Optional SMS Parsing (Local Feature)

As an add-on to the core messaging experience, users may opt-in to a smart parsing dashboard to organize transactional messages from Egyptian e-wallets. All parsing and categorization algorithms run 100% locally on your device. No SMS content or financial transaction data is transmitted to external servers.

Optional Encrypted Sync

Users may choose to sync parsed summaries with an authorized paired device via end-to-end encryption (E2E). This feature is disabled by default and requires explicit user activation with a PIN code. No one — including the Floosko team — can access the synced data content, as decryption keys are held only by the user.

3. Data Sharing with Third Parties

We are firmly committed to the following:

  • We do not sell or rent your data, message content, or contacts to any third party (whether advertisers, marketing companies, or otherwise).
  • We do not share any personal data unless required by law or in response to an official legal request from competent authorities.

4. Data Protection and Encryption

The app uses advanced technologies to protect the message database on your phone. We rely on industry-standard encryption (AES-256-GCM) and the Android KeyStore to ensure that your local data remains protected within your device environment and cannot be accessed by unauthorized applications.

When using the optional encrypted sync feature, data is protected using a hybrid encryption scheme (RSA-2048 + AES-256-GCM), and the server does not hold decryption keys.

5. Data Retention and Deletion

Since all your messages and contacts are stored locally on your device:

  • You have complete control over your data. You can delete your messages at any time from within the app, and they will be removed directly from the system database.
  • When you uninstall the app, all app-specific settings and local databases will be erased, while your messages remain safe in the new default messaging app you choose.

Optional Account Deletion: If you created an account to use the message parsing feature, you can request its complete deletion — including all registration data stored on our servers — through the "Delete Account" button in the app settings or by visiting: floosko.com/delete-account-request

6. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to improve our services or to meet new regulatory requirements. We will notify you of any material changes by updating the "Last updated" date at the top of this page.

7. Contact Us

If you have any questions, inquiries, or concerns about this Privacy Policy or how we handle your data, please contact us via email:

[email protected]