Privacy Policy

While the BusymateHelper VPN tunnel is active, the app records:

• Request URLs, HTTP method, status code, request and response headers, and timing for every connection your device makes through the tunnel.
• Response bodies, but only for the HTTPS domains you explicitly add to the SSL-proxy list inside the app. Domains not on that list are observed only at the TLS-handshake level (host name + timing); their contents are never decrypted.
• Connection metadata: the device's public IP address (used only to display its country flag in your dashboard), iOS version, app version, and a per-device UUID generated locally at first launch.

We do not record microphone, camera, location, photos, contacts, health, or any system data outside the network tunnel. The app contains no advertising SDKs and no third-party analytics SDKs.

Captured traffic is uploaded over TLS to the Busymate dashboard, which runs on Supabase Cloud (PostgreSQL + Realtime). The dashboard is private to your account — only authenticated users on your team can view it. No third party (other than the managed-database provider acting as a processor on our behalf) receives this data.

The dashboard's default retention is 30 days. Workspaces can override this to a shorter window. Entries older than the retention window are deleted automatically. You can clear the full history of any device at any time from the dashboard's “Clear feed” control.

To remove captured data:

• Use the Clear feedbutton in the dashboard to wipe the active workspace's entries.
• Use the dashboard's device Unpair action to revoke the device's authentication token and stop further uploads.
• To delete your account entirely, email support@busymate.net. We will purge all entries, device records, and account data within 30 days.

Network traffic frequently contains sensitive content: passwords, OAuth tokens, session cookies, personal messages, and other private data. Only enable SSL inspection for apps you own or have explicit authorization to inspect. You are responsible for ensuring you have the right to monitor traffic on the devices you connect.

BusymateHelper is a developer tool intended for software engineers. It is not directed at children under 13, and we do not knowingly collect data from children.

The device's authentication token is held in the iOS Keychain (ThisDeviceOnly) and the App Group container with backup exclusion, so it does not migrate via iCloud Backup to other devices. All uploads use TLS. Captured data at rest in the Supabase database is encrypted by the provider.

If you are in the EU/UK, you have the right under GDPR (or equivalent national law) to access, correct, export, or delete your data, and to lodge a complaint with your national data protection authority. To exercise any of these rights, email support@busymate.net.

If we materially change what data the app collects or how it flows, we'll update this page, raise the consent-prompt version inside the app, and ask you to re-accept the disclosure on the next launch.

Questions, deletion requests, or anything else: support@busymate.net.