Privacy Policy

Effective date: May 20, 2026

ScriptTap is in active pre-release development. This policy describes the app behavior and service integrations currently built or being prepared for launch.

Developer And Contact

ScriptTap is developed by Roman Rashkovskiy. Privacy questions and deletion requests can be sent to romka3x@gmail.com.

App Purpose And Local-First Behavior

ScriptTap builds and runs user-controlled Android automation scripts. Scripts, local assets, screenshots, crop outputs, image targets, and command data are stored locally by default on the user's device.

Script execution stays local. ScriptTap does not upload screen images, script assets, or command data unless the user later chooses to use a cloud, account, backup, sync, or public sharing feature.

Permissions And Sensitive Access

ScriptTap uses Android Accessibility Service to perform user-created taps, swipes, gestures, navigation, and related automation actions. The user defines the scripts that control those actions.

ScriptTap uses Android screen capture / MediaProjection on demand for image matching, pixel checks, screenshot capture, and user-created automation logic that needs to inspect visible screen content.

Some user-created device commands may request or route the user to Android controls such as Write Settings, Notification Policy Access, Bluetooth-related access, Wi-Fi settings, Bluetooth settings, Airplane Mode settings, other system settings panels, or app-launch selection. These requests are made only when needed for a user-created command or workflow.

ScriptTap does not use these permissions to read private messages, collect personal data unrelated to user scripts, or control the device outside user-created scripts.

Firebase And Google Services

ScriptTap includes Firebase services for app reliability, configuration, accounts, and future cloud features:

Firebase Analytics may collect app usage and diagnostic events for app improvement if active in the submitted build.
Firebase Crashlytics may collect crash logs, diagnostics, device and app state, app version, and similar reliability data.
Firebase Remote Config retrieves app configuration such as feature flags, limits, maintenance settings, and version support values.
Firebase Auth stores email/password account data if the user creates or signs into a ScriptTap account.
Firestore may store user account records, entitlement/trial/device records, and future cloud script, save, backup, or sharing data.

ScriptTap uses an app-scoped random installation ID and local trial state. ScriptTap does not use hardware identifiers such as IMEI or serial number for this purpose.

Trial, Accounts, And Subscriptions

ScriptTap can work without login, but free mode may have limits. A local 7-day premium trial starts on first launch. Premium, subscription, and manual grant status are account/server-backed when available.

Google Play Billing will handle subscription payments when subscriptions are implemented. ScriptTap does not collect payment card details directly.

Cloud Saves And Public Sharing

Cloud saves and public script sharing are not fully implemented yet. When those features are available, user scripts, assets, and related data will be uploaded only when the user chooses to sign in and enable cloud, backup, sync, or public sharing features.

Public scripts will be searchable or visible to other users only when the user explicitly makes them public.

Advertising

An AdMob account exists for ScriptTap, but the AdMob SDK is not integrated in the app yet and ScriptTap does not currently show ads. If ads are enabled in a future build, this policy and the Google Play store listing disclosures will be kept consistent with that behavior.

Data Sharing And Service Providers

ScriptTap may use Google, Firebase, Google Play, website hosting, email, and similar service providers to operate the app, website, accounts, diagnostics, subscriptions, and support. These providers may process data for those service purposes.

ScriptTap does not sell personal data. Data may be disclosed if required for legal compliance, security, fraud prevention, abuse investigation, or to protect users, the app, or the developer.

Security

The ScriptTap website uses HTTPS. App service traffic to Firebase and Google services uses encrypted connections provided by those platforms. Local app data remains on the user's device unless the user chooses a feature that uploads it.

Account and future cloud data should be protected by Firebase security rules so users can access their own user-scoped records and normal app clients cannot write server-managed premium entitlement records.

Retention And Deletion

Local data stays on the device until the user deletes it in the app, clears app data, or uninstalls ScriptTap. Uninstalling or clearing app data may also remove local trial/cache data.

Account, entitlement, cloud, and support data may be retained while the account or cloud features are active, and as needed for legal, security, fraud prevention, subscription, support, or account records.

Users can request account and cloud-data deletion by emailing romka3x@gmail.com. A public account deletion page is available at /account-deletion.html. Local on-device data must be deleted from the device by the user.

Children

ScriptTap is not intended for children under 13. Do not use ScriptTap if you are not old enough to consent to software and privacy terms in your location.

Changes

This policy may be updated as ScriptTap features, service integrations, or legal requirements change. The effective date above shows the latest version.

Contact

Privacy questions can be sent to romka3x@gmail.com.