Everything Privacy Policy

1. Data Stored On The Device

Everything may store the following data locally on the user's device:

• Master PIN credential: Everything stores a salted password hash for verifying the master PIN. The original PIN is not stored.
• Key Store: saved key names, labels, and values are stored in the encrypted local database.
• Secure Notes: note titles, content, labels, and timestamps are stored in the encrypted local database.
• Expenses and Habits: tracker entries, bills, habit definitions, progress logs, and related timestamps are stored locally.
• App Lock: selected locked package names and app labels are stored locally so App Lock can continue working after app restart or device reboot.
• Settings: tool-lock preferences, backup preferences, selected Google account email for Drive backup, theme preferences, widget preferences, and local app configuration may be stored on the device.
• File Vault: selected media files are copied to a local Documents/EverythingFileLocker folder. File Vault media is not encrypted by Everything and is not stored in the app database.

2. Backup And Google Drive

Backups are encrypted on the device before they are saved or uploaded. The backup password is used to derive the backup encryption key, and backup content is encrypted before it leaves the device.

Key Store and Secure Notes are always included in encrypted backup files. Expenses and Habits are optional and can be enabled or disabled in Backup & Restore settings.

App Lock package selections, theme preferences, widget settings, DNS choices, reminder schedules, editor cache, and File Vault media are not included in app backup files.

When Google Drive backup is enabled, Everything requests access to create and manage its own backup files in the user's Google Drive. Everything uploads encrypted backup files; it does not upload plain Key Store values, notes, expenses, or habits.

Google account authorization is used only for backup and restore actions chosen by the user or for automatic backup when the user enables it.

3. Accessibility Permission

Accessibility access is optional. Everything can function without it, but App Lock detection may be less reliable.

If the user enables Accessibility for Everything, the app uses Accessibility window events to detect when the user opens an app selected for locking, then shows the Everything lock screen.

Everything does not use Accessibility to read screen text, collect passwords, collect typed content, make purchases, send messages, perform clicks on behalf of the user, or transmit screen content.

Accessibility data is used only on the device for App Lock behavior and is not included in cloud backup.

4. Usage Access, Overlay, Notifications, And Device Admin

Usage Access may be used to identify the foreground app for App Lock behavior when Accessibility is not enabled.

Overlay permission may be used to display a lock challenge over selected locked apps in the fallback App Lock flow.

Notification permission is used for reminders, habits, and app alerts when the user enables those features.

Device Admin is optional and is used only for uninstall protection. It does not give Everything access to personal files or messages.

5. Network And Third Parties

Everything uses internet access for Google Drive backup and restore when the user connects a Google account.

The app uses Google sign-in/authorization components and Google Drive APIs for Drive backup operations.

Everything does not sell user data. Everything does not use advertising identifiers for ad targeting. Everything does not intentionally share user-created vault data with third parties except when the user stores an encrypted backup in Google Drive.

6. Security Measures

The local database is encrypted with SQLCipher. The database passphrase is randomly generated and protected using Android Keystore.

Sensitive Key Store and Secure Notes fields are encrypted before storage.

Backup files are encrypted with a password chosen by the user. If the backup password is forgotten, the backup cannot be restored.

The app sets secure window flags on the main activity to reduce screenshots of sensitive screens where supported by Android.

7. Retention And Deletion

Data remains on the device until the user deletes it inside the app, clears app data, or uninstalls the app.

Encrypted Google Drive backup files remain in the user's Google Drive until deleted by the user or by backup retention behavior. Everything keeps only recent backup files when it creates new Drive backups.

Uninstalling Everything or clearing app data removes local app data from the device. It does not automatically delete backup files already stored in Google Drive.

8. User Choices

• Users can choose whether to enable Accessibility, Usage Access, Overlay permission, notifications, Device Admin, Google Drive backup, automatic backup, and optional backup of Expenses and Habits.
• Users can use local encrypted backup without Google Drive by creating a local backup file.
• Users can stop future Drive backups by turning automatic backup off or removing the backup password.

9. Children

Everything is a general utility app and is not directed to children. The app does not knowingly collect children's personal information.

10. Changes And Contact

This Privacy Policy may be updated as the app changes. The current policy should be available inside the app and through the Google Play listing.

For privacy questions, use the developer contact information provided on the Google Play Store listing for Everything.