Privacy Policy
Arum Communications Corp. ("we", "us", "our") built the Mainline Updater app ("the Service") as a free, ad-supported application with an optional paid subscription. This page informs you of our policies regarding the collection, use, and disclosure of personal information when you use the Service, and the choices you have associated with that information.
By using the Service, you agree to the collection and use of information in accordance with this policy. We will not use or share your information with anyone except as described in this Privacy Policy.
1. Information We Process
1.1 Information processed only on your device
The Service helps you update Android core OS components (Mainline modules) and check for operating system updates. To do this, the app reads basic, non-personal device information already available on your device:
- Device manufacturer and brand (for example,
Build.MANUFACTURER) - Android version / API level (for example,
Build.VERSION.SDK_INT) - The list of installed Mainline modules and their versions, for display in the in-app module viewer
This information is used locally to determine whether your device is supported and to launch the correct system update screen for your device's manufacturer. The Service does not read, scan, upload, or modify your personal files, photos, contacts, or messages, and it does not access device storage for the purpose of collecting your content. The Service does not itself install OS updates; it simply directs you to the appropriate built-in system update screen provided by your device or by Google.
1.2 Permissions used
| Permission | Purpose |
|---|---|
INTERNET |
Required to load advertising, analytics, crash reporting, push notifications, and subscription validation. |
ACCESS_NETWORK_STATE |
Used to detect network availability before making network requests. |
POST_NOTIFICATIONS (Android 13+) |
Used to display update reminders and notifications you have opted in to receive. |
1.3 Information collected by third-party services
The app uses third-party services that may collect information used to identify you or your device. These services may collect data such as device identifiers (Android Advertising ID), IP address, device model, operating system version, app version, language, country, crash logs, and aggregated usage events. Please review each provider's privacy policy linked in Section 4 below.
1.4 Push notifications
The Service uses Firebase Cloud Messaging to deliver update reminders and related notifications. To do this, Firebase generates a device registration token and may subscribe your device to notification topics. You can disable notifications at any time from your device settings.
1.5 Subscription and purchase information
If you purchase a premium subscription, the transaction is processed by Google Play Billing and managed through RevenueCat. We do not receive or store your full payment instrument (e.g., credit card number). We receive an anonymous subscriber ID, purchase tokens, entitlement status, and purchase metadata such as country and product ID, in order to grant and validate your premium entitlement.
2. How We Use Information
- To provide the core OS update and Mainline module functionality (locally on your device).
- To deliver advertising, including non-personalized ads where required by law or by your consent choice.
- To send update reminders and notifications you have opted in to receive.
- To measure app performance, diagnose crashes, and improve stability.
- To validate and manage premium subscriptions.
- To comply with legal obligations.
3. Legal Basis (EEA/UK Users)
Where the GDPR or UK GDPR applies, we rely on (a) your consent for advertising, analytics, and crash reporting that involve personal data, collected through Google's Consent Management Platform (CMP) shown on first launch; (b) the performance of a contract for subscription processing; and (c) our legitimate interests in operating and securing the Service. You can change your consent at any time from the in-app privacy settings.
4. Third-Party Service Providers and Their Privacy Policies
We use the following third-party services. Each link below leads to that provider's privacy policy and, where applicable, its description of the data it collects and how it is used.
- Google Play Services — Google Privacy Policy
- Google AdMob (advertising) — How AdMob uses information, How Google uses data from partner apps
- Google User Messaging Platform (UMP / CMP) (GDPR consent) — About the Google UMP SDK
- Google Analytics for Firebase — Firebase Analytics privacy and security, Data deletion
- Firebase Crashlytics (crash reporting) — Firebase Privacy and Security
- Firebase Cloud Messaging (push notifications) — Firebase Privacy and Security
- Google Play Billing (in-app purchase processing) — Google Privacy Policy
- RevenueCat (subscription management) — RevenueCat Privacy Policy, Data Processing Addendum
5. Advertising and Your Choices
Ads are served by Google AdMob and may use the Android Advertising ID to deliver, measure, and limit the frequency of ads. You can opt out of personalized advertising at any time:
- On Android: open Settings → Google → Ads and toggle "Delete advertising ID" or "Opt out of Ads Personalization".
- For EEA, UK, or Swiss users, you may withdraw or change your advertising consent through the in-app privacy options, which re-displays the Google CMP consent form.
- Learn more: Advertising ID, Google Ad Settings.
6. Log Data
When the app crashes or encounters an error, third-party tools (Firebase Crashlytics) may collect diagnostic data including device IP, device model, operating system version, app configuration at the time of the error, and the time and date of the event. This information is used solely to diagnose and resolve issues.
7. Cookies
The Service does not itself use cookies. However, third-party SDKs embedded in the app may use cookie-equivalent identifiers (such as advertising IDs) to provide their services.
8. Data Retention
- Device information used to determine update support is read only at runtime and is not stored by us.
- Subscription records are retained by RevenueCat and Google Play Billing for as long as required to maintain your entitlement and for legal/accounting purposes.
- Crash and analytics data are retained according to each provider's standard retention periods.
9. Your Rights
Depending on your jurisdiction (EEA, UK, California, etc.), you may have rights to access, correct, delete, restrict, or port your personal data, and to object to certain processing. To exercise these rights, contact us at the email below. You also have the right to lodge a complaint with your local data protection authority.
10. Security
We take reasonable steps to protect the limited information processed through the Service. However, no method of transmission over the Internet or method of electronic storage is 100% secure, and we cannot guarantee its absolute security.
11. Links to Other Sites
The Service may contain links to other sites. If you click on a third-party link, you will be directed to that site. These external sites are not operated by us. We strongly advise you to review the privacy policy of any site you visit. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.
12. Children's Privacy
The Service is not directed to children under the age of 13, and we do not knowingly collect personally identifiable information from children under 13. If we become aware that a child under 13 has provided us with personal information, we will delete it from our records. If you are a parent or guardian and you believe your child has provided us with personal information, please contact us so that we can take the necessary action.
13. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Effective date" at the top.
14. Contact Us
If you have any questions or suggestions about this Privacy Policy, please contact us at developer@arumarum.com.
