Privacy Policy

Privacy Policy

Last updated: 2026-06-05

This Privacy Policy describes how Phoenix Service Tool ("we", "us", "our") collects, uses, and protects information when you use our services. By using the Service you consent to the practices described here.

1. Information We Collect

1.1 Information you provide

  • Account details: email address, password (stored hashed), display name.
  • Payment information: Credits are purchased by contacting our admin team or an authorized Reseller — we do not process credit-card or crypto payments directly through the website. The admin or Reseller you transact with may collect their own information; that is governed by their own practices.
  • Support communications: the contents of any messages you send us via ticket, email, or Telegram.

1.2 Information collected automatically

  • Device & connection data: IP address, country (derived from IP), browser type, operating system.
  • Operation logs: for each Service Operation, we record metadata (timestamp, account, command, target device serial, success/failure flag, credit cost) and the operation's diagnostic log content from the desktop tool. This is used for support and refund review.

1.3 What we do NOT collect

  • Card numbers or banking details (we don't process those).
  • Contents of the Devices you service (we receive device serials and codenames — never personal data from the Device's storage).
  • Real-time location data.

2. How We Use Information

We use the information we collect to:

  • Deliver the Service: authenticate you, run Operations on your behalf, debit Credits.
  • Diagnose technical issues (e.g., a failed Operation includes its diagnostic log for refund review).
  • Communicate with you about your account, support tickets, and Service changes.
  • Comply with legal obligations.
  • Improve the Service (aggregated, non-personal statistics).

We do not sell, rent, or trade your personal information to third parties for marketing purposes.

3. Sharing & Disclosure

We may share information only in these specific situations:

  • Service providers: hosting providers and email delivery (transactional only). These parties are bound by confidentiality.
  • Law enforcement: if compelled by valid legal process and we believe in good faith the disclosure is necessary.
  • Business transfers: if Phoenix Service Tool is acquired or merged, your information may be transferred as part of that transaction, subject to the new entity honoring this Privacy Policy.
  • With your consent: any other case where you explicitly authorize the disclosure.

4. Data Retention

  • Account data is retained for the lifetime of your account and for 90 days after deletion (to handle accounting reconciliation), then permanently deleted.
  • Operation logs are retained indefinitely by default for support and audit purposes. You may request deletion of your historical logs by writing to [email protected].
  • Support communications are retained for 2 years after the ticket is closed.

5. Your Rights

Depending on your jurisdiction (GDPR for EU residents, CCPA for California residents, similar laws elsewhere), you may have the right to:

  • Access the personal information we hold about you.
  • Correct inaccurate information.
  • Delete your data (subject to legal retention requirements).
  • Export your data in a machine-readable format.
  • Object to specific uses of your data.
  • Withdraw consent previously given.

To exercise any of these rights, email [email protected] with proof of identity. We will respond within 30 days.

6. Security

We protect your data with industry-standard safeguards:

  • TLS encryption for all web traffic.
  • Hashed passwords (no plaintext storage).
  • Encrypted backups stored in a private bucket with no public access.
  • Server access restricted to authorized personnel with audit logging.

No system is perfectly secure. If we discover a breach affecting your information, we will notify you and the relevant regulators as required by law.

7. International Data Transfers

Our infrastructure is hosted in multiple regions. By using the Service, you understand that your data may be processed in countries other than your own, which may have different data-protection laws.

8. Children's Privacy

The Service is not intended for individuals under 18. We do not knowingly collect information from anyone under 18. If you become aware that a minor has provided us with personal information, contact us and we will delete it.

9. Changes to This Policy

We may update this Privacy Policy from time to time. The "Last updated" date reflects the most recent revision. For material changes we will notify you via email or an in-app prompt before the change takes effect.

10. Contact

For privacy questions or requests: [email protected]