Privacy Policy — OpenDroid

Summary: OpenDroid is an open-source, on-device application. We are committed to transparency and privacy. Your data stays on your device — we do not operate servers that collect or store your personal information.

1. Introduction

OpenDroid ("the App," "we," "our," or "us") is an open-source autonomous Android AI agent developed and maintained by the OpenDroid Contributors. This Privacy Policy explains how the App handles information when you install and use it on your Android device.

By downloading, installing, or using OpenDroid, you agree to the practices described in this Privacy Policy. If you do not agree, please do not use the App.

2. Information We Do NOT Collect

OpenDroid does not operate backend servers for data collection. The following data is never transmitted to us:

Your name, email address, phone number, or any personal identifiers
Your contacts, call history, or SMS messages
Your location data or GPS coordinates
Photos, files, or media stored on your device
Your browsing history or app usage patterns
Device identifiers (IMEI, advertising ID, etc.)

3. Information Processed Locally

OpenDroid processes certain data entirely on your device to provide its autonomous agent capabilities:

3.1 Accessibility Service Data

OpenDroid uses Android Accessibility Services to read screen content, perform clicks, scroll actions, and navigate apps on your behalf. This data is processed in real-time and in memory only — it is not stored persistently nor transmitted off your device by the App itself.

3.2 Voice and Audio Data

If you enable the voice interface, OpenDroid accesses your microphone for wake word detection and speech-to-text conversion. Audio is processed locally using Android's built-in speech recognition engine. Audio recordings are not stored or transmitted by OpenDroid.

3.3 Memory System

OpenDroid maintains a multi-tier memory system (working, episodic, semantic, and procedural memory) stored locally on your device using Room Database. This memory includes:

Summaries of past interactions and task outcomes
User preferences and personal facts you share conversationally
Custom macro workflows you create

This data remains on your device and can be viewed and deleted through the App's settings at any time.

4. Third-Party API Services

OpenDroid supports integration with third-party Large Language Model (LLM) providers. When you configure an API key and use a cloud-based LLM provider, your queries and context are sent to that provider's servers. This includes:

Anthropic (Claude)
OpenAI (GPT models)
Google (Gemini)
Groq, Mistral, OpenRouter, Together AI, Cohere, DeepSeek
ElevenLabs (text-to-speech synthesis)

Each provider has its own privacy policy governing how they handle your data. We strongly recommend reviewing the privacy policy of any LLM provider you choose to use. OpenDroid does not control how these third parties process your data.

4.1 API Keys

API keys you enter are stored locally on your device using Android DataStore Preferences. They are never transmitted to OpenDroid servers (we operate none). Keys are sent only to the respective API provider's endpoint when making LLM requests.

4.2 Local / Offline Mode

OpenDroid supports fully offline operation via Ollama. When using a local model server, no data leaves your device or local network.

5. Permissions

OpenDroid requests certain Android permissions to function. All requested permissions are used to execute actions locally on your device at your direction:

Accessibility Service: Required for UI automation, screen reading, and app control. Data is processed in real-time in memory only.
Location (ACCESS_FINE_LOCATION, ACCESS_COARSE_LOCATION, ACCESS_BACKGROUND_LOCATION): Used to fetch local weather updates and execute location-based commands.
Calendar (READ_CALENDAR, WRITE_CALENDAR): Used to view, add, or edit events in your device calendar on your request.
Storage (READ_EXTERNAL_STORAGE, WRITE_EXTERNAL_STORAGE, MANAGE_EXTERNAL_STORAGE): Used to save local database records, save system screenshots for planning, and manage local assets.
Biometrics (USE_BIOMETRIC): Used to authenticate the user prior to performing sensitive or high-risk autonomous actions.
Call Log & SMS (READ_CALL_LOG, READ_SMS, RECEIVE_SMS, SEND_SMS, CALL_PHONE): Used to view call history, read incoming notifications/SMS, and send messages or make calls upon your explicit command.
Contacts (READ_CONTACTS, WRITE_CONTACTS): Used for contact name resolution and matching to execute communication actions.
System Settings (WRITE_SETTINGS, MODIFY_AUDIO_SETTINGS): Required to toggle system settings (brightness, volume, Wi-Fi, Bluetooth).
Bluetooth & Wifi (BLUETOOTH, BLUETOOTH_CONNECT, BLUETOOTH_SCAN, CHANGE_WIFI_STATE, ACCESS_WIFI_STATE): Used to toggle network states and scan/connect to local hardware.
Package Stats & Queries (PACKAGE_USAGE_STATS, QUERY_ALL_PACKAGES): Used to detect installed applications on the device to launch them or perform automated tasks within them.
POST_NOTIFICATIONS: Used for foreground service status, planning, and task execution progress.
Alarms (SET_ALARM, SCHEDULE_EXACT_ALARM, USE_EXACT_ALARM): Used to set timers, alarms, and reminders on your behalf.
Camera (CAMERA): Declared in manifest but not currently active. OpenDroid does not access or store camera feed without explicit intent.

6. Data Retention and Deletion

Since all data is stored locally on your device:

You can clear all memory data through the App's Memory settings screen
You can delete all App data through Android Settings → Apps → OpenDroid → Clear Data
Uninstalling the App removes all locally stored data

7. Children's Privacy

OpenDroid is not directed at children under the age of 13. We do not knowingly collect personal information from children. Since the App does not collect personal data from any user, there is no children's data to manage. However, parental guidance is recommended for minors using AI-powered tools.

8. Security

We take security seriously. Since data is stored locally, its security depends on your device's own security measures (screen lock, encryption, etc.). We recommend:

Keeping your device software up to date
Using a strong screen lock
Being cautious about which LLM API providers you share data with
Reviewing our Security Policy for vulnerability reporting

9. Open Source Transparency

OpenDroid is fully open source under the Apache License 2.0. You can audit the complete source code at any time:

https://github.com/yashab-cyber/opendroid

This means you can verify every claim made in this Privacy Policy by examining the code yourself.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be reflected in the "Last updated" date at the top of this page and committed to the project's GitHub repository. We encourage you to review this policy periodically.

11. Contact Us

If you have questions or concerns about this Privacy Policy, please contact us:

GitHub: Open an issue
Discord: Join our server
Email: yashabalam707@gmail.com (you can also contact us at opendroid.ai@gmail.com)