EyeDSafe Privacy Policy

Applies to: the EyeDSafe consumer mobile app on Android (Google Play, Huawei AppGallery) and iOS.
Effective date: 1 June 2026.
Last updated: 1 June 2026.

The short version

• EyeDSafe stores your documents on your device only. They are encrypted with a key tied to your device biometric. We can't read them and we don't have a copy.
• There is no account. You don't sign up. You don't sign in.
• We do not run ads, trackers, third-party analytics, or telemetry inside the app.
• If you uninstall the app, your data is gone — from your device and from us, because we never had it.

1. Who this policy is from

This policy is from Red Mutex, the operator of the EyeDSafe consumer mobile app. The app is published on Google Play and Huawei AppGallery under publisher "Red Mutex".

This policy covers the consumer mobile app at redmutex.com/eyedsafe. The Red Mutex group also offers a separate EyeDSafe identity-verification product for businesses; that product has its own data handling and is covered under the general Red Mutex privacy policy.

2. What data the app stores, and where

The consumer app is local-first by design. Everything you put into it stays on your device.

• Document images and document fields (passport number, full name, expiry dates, etc.) are encrypted on your device with AES-GCM using a per-document key. The keys are wrapped to a biometric-gated key held in the device's secure hardware (Secure Enclave on iOS, StrongBox / Keystore on Android).
• Files are stored in the app's private storage: NSFileProtectionComplete on iOS and allowBackup=false internal storage on Android. They are not included in iCloud or Google Drive backups.
• Low-risk metadata used to schedule expiry reminders (document type and expiry date) is stored inside the same encrypted database as the rest of your data.

If you delete a document inside the app, the encrypted blob and the wrapped key for it are both wiped. If you uninstall the app, the operating system wipes the app's private storage in full.

3. What data the app sends to us or to anyone else

Nothing about your documents.

• The app does not send your document images, document numbers, names, dates, or any extracted fields to Red Mutex or to any third party.
• We do not embed advertising SDKs, third-party analytics (Firebase Analytics, Amplitude, Segment, Mixpanel, PostHog, etc.), crash reporting tied to user identity, or marketing pixels.
• Renewal links inside the app open the relevant government or issuer website in your browser. When you tap one, you leave the app and the destination site's own privacy policy applies. We do not see what you do on that site.

4. Permissions the app requests, and why

• Notifications (POST_NOTIFICATIONS on Android, equivalent prompt on iOS): used only to show local expiry reminders for documents you've added. Optional — you can deny it and still use the app; you just won't get push reminders.
• Exact alarms (USE_EXACT_ALARM on Android): used to schedule the local reminder alarms at the correct time. No network involvement.
• Internet: used only to open renewal/help links in your browser and to download the public, signed runtime config that maps your country and document type to the right renewal URL. The runtime config is fetched without any identifier that would let us recognise you or your documents.

The app does not request location data, contacts, microphone, calendar, SMS, or your address book.

If a future version of the app adds optional document scanning, it will request camera permission at the point you tap "scan", and the captured image will stay on-device under the same encryption described in section 2. This page will be updated before any such feature ships.

5. Children

EyeDSafe is intended for adults managing their own and their family's documents. We do not knowingly collect data from anyone — including children — because the app does not send personal data off the device. If a child uses the app, the same local-only handling applies.

6. Your rights, and how to exercise them

• Access: all of your data is already inside the app on your device. Open it to see it.
• Deletion: delete an individual document inside the app, or uninstall the app to remove everything. There is no server copy to ask us to delete.
• Export / portability: currently not exposed in-app. If portability is important to you, email us and we'll explain the on-device file layout.
• Complaint: you can complain to your local data-protection authority. Because the app does not transmit personal data, most complaint regimes will not apply in practice — but the right to lodge a complaint is yours regardless.

Red Mutex's general rights and remedies, including legal-basis statements where applicable, are described on the group privacy policy.

7. Security

The encryption design (per-document AES-GCM keys wrapped to a biometric-gated device key, two-layer encryption inside a SQLCipher database, no plaintext at rest) is described in our internal threat model. If you have a security concern or want to report a vulnerability, email security@redmutex.com.

8. Changes to this policy

If we change how the app handles data, we will update this page and bump the "Last updated" date at the top. Material changes (for example, if a future feature uploads data to a server) will be described in plain English here before the feature is enabled.

9. Contact

Privacy questions: privacy@redmutex.com.
Security disclosures: security@redmutex.com.
General contact: redmutex.com/contact.

Back to EyeDSafe consumer page · See also: Red Mutex group privacy policy · Terms of Service.