Privacy

ScamNet is committed to your privacy. Read our Privacy Policy for a clear explanation of how we collect, use, disclose, transfer, and store your information.

Introduction

This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our products, services, and website. Unlike others that you may have seen, we’ve categorised all our features and services into three distinct processing types, so you know exactly how your information is treated in each case.

Do we know you?

Probably not—and that’s by design.

At ScamNet, we design our systems around the principle of minimum identity. Privacy isn’t just about protecting what we collect—it’s about not collecting in the first place as much as possible.

1. No Login Required
You don’t need to sign up, create an account, or login to use ScamNet. You can use it anonymously, right out of the box.

2. Anonymous Unique ID
To access certain features securely and to prevent abuse of ScamNet's platform, a temporary anonymous unique identifier (UID) is created. This UID is periodically refreshed.

3. Device ID
Strictly used for the sole pourpose to identify and filter which of your devices sent the alert in insights.

4. Enterprise
For ScamNet+ Enterprise users, login is required—but only to validate licenses. Depending on your organisation’s policy, your admin may choose to attach your email address to alerts for auditing or security purposes.

5. Nothing is Stored Without Consent
We do not store any user data unless you give us explicit consent—for example, when you report a scam or inaccuracy. Even then, we aim to minimise what we retain. Why? Because storing data doesn’t just introduce privacy and trust risks—it also adds operational cost and complexity that we want to avoid.

On-Device Processing

Your data never leaves your device.

Everything under this model is handled locally, without any communication with ScamNet servers or third parties. We don’t see, collect, or store any of your personal data under this model. This not only ensures privacy, it also increases the performance and efficiency of ScamNet.

Cloud Processing

Some ScamNet features require processing that exceeds what your device can do locally. In these cases, your data is transmitted securely to ScamNet Cloud Platform / trusted external partners for processing.

As a start, only the required data to facilitate the request is sent. Even data that are not needed but included by default such as User-Agent in requests are replaced with generic values.

Data is only processed in runtime and thus, we do not store your data. All transmissions and sensitive data are encrypted using industry-standard protocols an methods.

Hybrid Processing

Hybrid Processing starts locally and only falls back on the cloud when needed. This model provides the flexibility of cloud-based intelligence with the strong benefits of local processing.

Legal Basis for Processing

Depending on where you live (such as in the EU or UK), we may rely on the following legal bases to process your data:
• Consent – When you choose to share data (e.g. report scams)
• Legitimate Interest – To operate & secure ScamNet
• Contractual Obligation – For enterprise users under a paid license

Children

ScamNet is suitable for users aged 4 and above. We do not knowingly collect personal data from children unless strictly necessary and permitted by a guardian (e.g. enterprise school deployments). We avoid storing any data unless explicit consent is given, and we design our system to work anonymously by default.

Your Rights

Where applicable, you may have the right to:
• Access any data you’ve chosen to share
• Request deletion of stored data
• Withdraw consent at any time

To exercise any of these, you can find them in the "More" page in the app.

Policy Changes

We may update this Privacy Policy from time to time. Any significant changes will be clearly communicated via our website or app before taking effect.