1. Introduction

This Privacy Policy applies to the MojiPop mobile application (the "Application") developed by Ikram Husain (the "Service Provider") as a free service. MojiPop is an offline-first, secure emoji messaging utility.

By using MojiPop, you agree to the terms described in this Privacy Policy.

2. Information We Collect

MojiPop is designed to collect as little information as possible. The Application operates entirely on your device and does not transmit any personal data to external servers.

The only data stored is kept locally on your device:

• Message History: Encrypted messages you choose to save, stored only on your device using secure local storage
• App Preferences: Your settings such as theme selection, language preference, and active emoji pack
• Audit Logs: Local-only activity logs (encrypt, decrypt, share actions) stored on your device for your reference only

We do NOT collect:

• Your name, email address, or any account information
• IP address or location data
• Device identifiers or advertising IDs
• Usage analytics or crash reports sent to external servers
• Any message content — your messages never leave your device

3. Permissions We Request

MojiPop requests the following device permissions, used solely for the features described:

• CAMERA: Used for the Steganography feature to capture photos for hiding secret messages. Only activated when you use this feature
• READ / WRITE STORAGE: Used to save and load steganography images to your device gallery
• USE_BIOMETRIC / USE_FINGERPRINT: Used for the optional biometric app lock feature. Biometric data is never stored by MojiPop — authentication is handled entirely by your device's secure hardware
• RECORD_AUDIO: Used for the voice-to-emoji input feature, only when you tap the microphone button. No audio is recorded, stored, or transmitted
• INTERNET: Used only to launch third-party sharing apps (WhatsApp, Telegram, Signal, etc.). MojiPop itself makes no network requests whatsoever
• READ_CLIPBOARD: Used to detect and paste content from your clipboard when you explicitly request it. MojiPop does not monitor clipboard content in the background

4. How We Use Your Information

Information processed by MojiPop is used solely to provide the app's features:

• Encrypt and decrypt messages using AES-256 encryption on your device
• Convert text to emoji sequences and decode emoji back to text
• Save your message history locally for your convenience
• Authenticate you using your device's biometric system (if enabled)
• Provide steganography features to hide messages in images

5. Data Security

MojiPop implements industry-standard security measures:

• AES-256 Encryption: All messages are encrypted using AES-256 with PBKDF2 key derivation — the same standard used by banks and governments
• Local-Only Storage: All data remains on your device and is never uploaded or transmitted
• Biometric Authentication: Optional fingerprint/face lock to prevent unauthorized access to the app
• No Account Required: No usernames, passwords, or personal profiles — zero attack surface
• Steganography: LSB pixel manipulation is performed locally; images are not uploaded to any server

6. Third-Party Data Sharing

When you choose to share content via WhatsApp, Telegram, Signal, Instagram, or other platforms, you are subject to those platforms' own privacy policies. MojiPop has no control over how third-party apps handle data you share through them.

7. Children's Privacy

MojiPop does not knowingly collect any personal information from children under the age of 13. Since the Application requires no account creation and collects no personal data, it is safe for use by all ages.

If you are a parent or guardian and believe your child has provided personal information through the Application, please contact us at admin.mojipop@gmail.com and we will take appropriate action.

Users must be at least 16 years of age to consent to data processing in countries where this requirement applies.

8. Your Rights & Data Control

Since all data is stored locally on your device, you have complete control:

• Delete All Data: Uninstalling MojiPop permanently removes all locally stored data
• Clear Message History: Use Settings → Data Management to clear history at any time
• Clear Audit Logs: Use Settings → Data Management to delete local activity logs
• Disable Biometrics: Toggle off biometric authentication in Settings at any time
• Opt Out: Simply uninstall the app to stop all local data storage immediately

9. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the effective date at the top of this page. We encourage you to review this policy periodically. Continued use of MojiPop after changes constitutes acceptance of the updated policy.

Significant changes will be communicated through an app update notice on the Google Play Store.

10. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or your data, please contact: