GhostMap Privacy Policy

1. Developer Information

This Privacy Policy applies to GhostMap published by BEAT.

2. Summary

GhostMap is designed to process most data locally on the user’s device.

• GhostMap does not create user accounts.
• GhostMap does not sell user data.
• GhostMap does not use advertising SDKs.
• GhostMap does not transmit raw input events or the user’s app list to developer-operated services.
• Some verification checks may transmit limited verification data to Google Play and related verification endpoints.

GhostMap does access certain device and app data locally in order to provide overlay, key mapping, profile management, virtual mouse, and input-related features.

3. Data the App Accesses and Uses

3.1 Installed apps information

GhostMap reads the list of launchable apps installed on the device so the user can view apps, assign profiles to selected apps, and launch selected targets from within GhostMap.

This may include app package names, app labels, and launcher icons.

3.2 Input-related data

When the user enables relevant features, GhostMap may access low-level keyboard, mouse, or controller input data on the device in order to:

• trigger user-configured mappings
• provide virtual mouse behavior
• provide key mapping behavior
• support overlay runtime features
• inject local touch/input events through Shizuku-enabled system APIs

This processing is performed locally on the device while the relevant features are active. GhostMap does not transmit raw input events to external services.

3.3 Overlay and runtime state

GhostMap uses overlay windows and runtime state to display floating controls, editor windows, runtime controls, profile UI, and related mapping interfaces.

3.4 License, integrity, and anti-abuse verification data

GhostMap may perform limited verification checks with Google Play and related verification endpoints to confirm purchase entitlement and app integrity status.

This verification data may include an installation identifier, app package name, app version, signer digests, device key public key material, device attestation data when available, a Google Play integrity token, and a hashed account hint when a related feature uses one.

On some devices, Google Play Protect verification may be unavailable.

3.5 User-created configuration data

GhostMap stores user-created and user-selected app data locally, including for example:

• mapping profiles
• profile names
• selected target package names
• button bindings
• layout positions
• editor settings
• theme and language preferences
• active profile selections

3.6 Import and export files chosen by the user

If the user imports or exports profiles, GhostMap accesses only files explicitly chosen by the user for import, or files created by GhostMap for export at the user’s request.

4. How the Data Is Used

GhostMap uses accessed data only to provide app features requested by the user, including:

• listing installed apps so profiles can be linked to selected apps
• storing and loading profile and mapping configurations
• reading local input events to execute configured mappings
• injecting local input or touch events when enabled by the user
• rendering overlays, runtime controls, and editor interfaces
• importing and exporting profile files
• remembering app UI preferences such as theme and language
• contacting Google Play and related verification endpoints for purchase entitlement and app integrity checks

5. Data Sharing

GhostMap does not sell or rent personal data.

GhostMap does not share personal data with third parties for advertising or marketing.

GhostMap does not transmit your raw input events or your list of launchable apps to developer-operated services.

GhostMap may transmit limited verification data to Google Play and related verification endpoints. This data may include an installation identifier, app package name, app version, signer digests, device key public key material, device attestation data when available, a Google Play integrity token, and a hashed account hint when a related feature uses one. This data is used only for purchase entitlement, app integrity, security, and related verification checks.

GhostMap also interacts locally with Android system services and the Shizuku service on the user’s device. These interactions are required for the app to function as intended.

6. Payments and Billing

GhostMap is a paid app distributed through Google Play.

Any app purchase, payment processing, billing, refund handling, or transaction processing is handled by Google Play, not directly by GhostMap.

GhostMap does not collect, store, or process:

• payment card numbers
• bank account details
• full payment credentials

GhostMap may also periodically contact Google Play and related verification endpoints to confirm purchase entitlement and app integrity status. These checks are used only for licensing, security, and fraud prevention.

Google may process transaction-related data according to Google’s own policies and terms. Users should review Google Play’s and Google’s privacy terms for payment-related processing.

7. Data Storage, Retention, and Deletion

7.1 Local storage

GhostMap stores its app data locally on the user’s device.

7.2 Retention

Data is retained:

• until the user deletes profiles or settings inside the app
• until the user clears app data
• until the user uninstalls the app

Exported profile files may remain in the export location until the user deletes them manually.

7.3 Deletion

Users can delete data by:

• deleting profiles or settings in the app
• clearing app data through Android settings
• uninstalling the app
• deleting exported files manually from device storage

8. Security

GhostMap is designed to minimize unnecessary data transfer by processing data locally where possible.

Because GhostMap includes overlay and input-related functionality, users should only grant permissions they understand and intend to use, including Shizuku-related access and overlay-related access.

No system can be guaranteed to be absolutely secure, but GhostMap is designed to limit data exposure by avoiding unnecessary remote transmission in the current version.

GhostMap may embed build watermarking, signer validation, integrity checks, and anti-tamper markers to help detect unauthorized modification, redistribution, or abuse of the app.

9. Children

GhostMap is not directed to children.

10. User Choices

Users may choose whether to:

• install or purchase the app through Google Play
• grant overlay-related permissions
• grant Shizuku-related access
• enable or disable app features that rely on low-level input handling
• import or export profile files
• delete local profiles and settings

11. Changes to This Privacy Policy

This Privacy Policy may be updated from time to time. If the policy changes, the latest version will be made available through the public Privacy Policy URL associated with the app listing or otherwise made available to users.

12. Contact

If you have questions about this Privacy Policy, contact:

BEAT
kieukute2k4@gmail.com