AppSwitcher 隱私政策與資料刪除指南
最後更新日期:2026年5月25日
歡迎使用 轉App快(AppSwitcher)(以下簡稱「本應用」)。本應用由Aelius Manufacture
Group(以下簡稱「我們」)開發,提供快速切換應用程式的懸浮視窗功能。我們非常重視您的隱私,並希望透過本文件清楚說明我們如何收集、使用及保護您的資料。
1. 我們收集的資訊
1.1 您主動提供的資訊
- Google 登入資訊:您可以選擇使用 Google 帳號登入本應用,以便同步訂閱狀態。登入時,我們會請求取得您的 Google 帳號 ID
及電子郵件地址。這些資訊會經過 SHA-256 處理生成匿名的混淆
ID(obfuscatedAccountId),並儲存於本機與我們的伺服器,用於關聯您的訂閱記錄。我們不會儲存或分享您的明文密碼或完整電子郵件地址。
- 購買憑證:當您透過 Google Play 訂閱本應用時,我們會處理由 Google Play 提供的購買權杖(purchase token)、訂單編號及商品
ID,以驗證訂閱有效性及到期日。我們不會儲存您的信用卡或付款卡資訊。
- 混淆使用者 ID:為識別您的訂閱狀態,我們會在本機產生一個經 SHA-256 處理的匿名混淆 ID(obfuscatedAccountId),此 ID
與您裝置相關,但無法反向識別您的個人身份。該 ID 會傳送至我們的伺服器,用於關聯訂閱記錄。
1.2 自動收集的資訊
- 應用列表:為讓您選擇要快速切換的應用程式,我們會在您授權後讀取您裝置上已安裝的應用程式清單(包括應用名稱和套件名稱)。此資料僅儲存於本機,不會上傳至伺服器。
- 設備識別碼
(deviceId):為防止同一帳號在多個裝置上同時使用服務(避免衝突),我們會在您的裝置上產生一個唯一的、經過混淆處理的設備識別碼,並上傳至我們的伺服器。該識別碼與您的混淆帳號
ID 關聯,不會逆向解析出您的真實設備資訊,且僅用於檢查設備衝突及確保服務正常運作。
- 崩潰日誌與診斷資訊:當應用程式發生錯誤或崩潰時,我們透過 Firebase Crashlytics
收集裝置型號、作業系統版本、應用版本、錯誤堆疊及崩潰時間。這些資訊用於協助我們修復問題及改善穩定性。
- 自訂錯誤事件:部分關鍵業務錯誤(如訂閱驗證失敗)會透過我們自己的 ErrorReporter
模組上報至我們的伺服器,包含錯誤代碼、訊息及裝置基本資訊(如 Android 版本),以利監控服務健康度。
- 網路狀態:Firebase Crashlytics 可能收集連線類型(Wi-Fi/行動網路)以分析崩潰情境。
1.3 第三方 SDK 收集的資訊
- Google Play Billing Library:用於處理訂閱購買,會收集購買權杖、訂單 ID 及訂閱狀態。詳細資料處理請參閱 Google 隱私權政策。
- Firebase Crashlytics:用於崩潰報告,可能收集裝置標識符(如 Android ID)、崩潰日誌及診斷資訊。詳情請見 Firebase 隱私權政策。
- Google AdMob:用於展示插屏廣告。AdMob 會收集 Android 廣告 ID (AAID)、IP
位址(用於推斷概略位置)及廣告互動資料(如曝光、點擊)。詳情請見 Google 隱私權政策。
- Firebase Cloud Messaging (FCM):用於推送通知。會收集 FCM 註冊令牌,以便向您的裝置發送訂閱到期或帳號相關訊息。
- OkHttp / Retrofit:用於與我們的伺服器通訊,傳輸訂閱驗證、錯誤日誌等資料,所有連線均使用 HTTPS 加密。
1.4 如何取得您的混淆 ID 與購買憑證
您可以在本應用「設定」頁面中查看您的匿名混淆 ID(obfuscatedAccountId)以及與訂閱相關的購買權杖(purchase token)。這些資訊可以協助您向我們提出支援請求時快速定位您的資料。
2. 資訊使用目的
- 提供核心功能:根據您選擇的應用程式清單,在懸浮視窗中快速切換。
- 處理訂閱:驗證購買、管理訂閱狀態(包含 7天免費試用)、防止欺詐。
- 設備衝突檢測:使用 deviceId 避免同一帳號在多台裝置同時使用服務。
- 展示廣告:對於非訂閱用戶,我們會顯示 Google AdMob 插屏廣告,以支持應用持續開發。廣告投放可能使用您的概略位置及廣告 ID。
- 推送通知:使用 FCM 令牌向您發送重要服務通知(如訂閱即將到期、帳號強制登出)。
- 改善應用:分析崩潰與錯誤,優化使用者體驗。
- 客戶支援:如果您透過電子郵件與我們聯絡,我們可能使用您提供的資訊協助解決問題。
3. 資訊共享
我們僅在以下情況與第三方共享您的資訊:
- Google:透過 Google Play 計費服務、AdMob、Firebase Crashlytics 及 Firebase Cloud Messaging 與
Google 共享必要資訊(如購買憑證、廣告 ID、崩潰日誌、FCM 令牌)。
- 自有伺服器:訂閱驗證請求、錯誤日誌及 deviceId 會傳輸至我們自己的伺服器(位於香港),僅用於上述目的。
- 法律要求:如有法律規定或政府機關合法要求,我們可能揭露必要資訊。
我們不會將您的個人資訊出售、出租或交易給任何第三方用於行銷目的。
4. 資料保留
- 本機儲存資料:您選擇的應用程式清單、設定偏好僅儲存在您的裝置上。您可以透過清除應用程式資料或解除安裝來刪除這些資訊。
- 伺服器訂閱記錄:與您的混淆 ID 關聯的訂閱狀態(如購買權杖、到期日、訂閱狀態)會在您持續訂閱期間保留。若您取消訂閱或要求刪除,我們將於 30
天內刪除或匿名化這些記錄,但為符合稅務及反欺詐要求,交易記錄(如訂單編號)可能需保留 5 年,且不再用於任何其他目的。
- 設備識別碼 (deviceId):只要您的帳號未被刪除,deviceId 會與您的混淆 ID 關聯儲存。一旦您透過 App
內「刪除帳號」功能提出請求,我們將立即刪除您帳號下所有關聯的 deviceId 記錄。
- FCM 令牌保留:只要您登入應用程式且未主動刪除帳號,您的 FCM 令牌會保留在我們的伺服器及 Firebase
中。一旦您登出、刪除帳號或解除安裝應用程式,該令牌將被清除或標示為失效。
- 崩潰日誌:透過 Firebase Crashlytics 收集的日誌將於 90 天後自動刪除。我們自有伺服器的錯誤日誌亦保留 90 天後匿名化。
5. 您的權利
- 存取與刪除:您可以隨時在 App
的「設定」頁面點擊「刪除帳號」按鈕,系統會立即向我們的伺服器發起刪除請求,將與您相關的個人資料(如混淆
ID、設備識別碼及訂閱記錄)刪除。請注意,我們可能因法律義務保留特定交易記錄(如訂單編號),但這些記錄將匿名化且不再與您關聯。
- 管理權限:您可以透過裝置的「設定」→「應用程式」→「AppSwitcher」→「權限」來管理懸浮視窗、應用程式列表等權限。
- 停止使用:您可以透過解除安裝應用程式停止所有資料收集。解除安裝後,本機資料將被移除,但伺服器上的資料將依上述保留政策處理,除非您透過 App
內刪除帳號功能主動請求刪除。
- 廣告同意管理:我們使用 Google User Messaging Platform (UMP)
在首次啟動時徵求您的廣告同意。您可隨時在「設定」頁面點擊「隱私選項」按鈕,修改個人化廣告的同意狀態。
- 控制廣告 ID:您可以透過 Android 裝置的「設定」→「Google」→「廣告」來重置您的廣告 ID 或啟用「限制廣告追蹤」。啟用限制後,AdMob
仍可能展示非個人化廣告,但不會使用您的興趣資料。
6. 兒童隱私
本應用不適用於未滿 13 歲之兒童,我們也不會蓄意收集兒童的個人資料。若我們發現誤收集兒童資訊,將立即刪除。
7. 隱私政策更新
我們可能會不時更新本隱私政策。重大變更時,我們會透過應用程式內通知或新版發布時提醒您。建議您定期查閱本頁面以瞭解最新內容。
資料刪除方法(App 內直接刪除)
根據適用法律(如 GDPR、CCPA),您有權要求刪除我們伺服器上儲存的與您相關的個人資料。本應用提供最簡便的刪除方式:
- 開啟 App 後,點擊主畫面的「設定」按鈕(⚙️)。
- 在設定頁面中,找到「刪除帳號」按鈕。
- 點擊後,系統會彈出確認對話框,請再次確認刪除操作。
- 確認後,App 會自動向我們的伺服器發送刪除請求,並清除您在本機的所有資料。刪除後,您將被登出,並需重新登入才能使用服務。
請注意:刪除帳號是不可逆的操作。一旦刪除,您的訂閱記錄、混淆 ID、設備識別碼及相關資料將從我們的伺服器中永久移除(法律要求保留的匿名化交易記錄除外)。
📧 聯絡我們
如果您對本隱私政策或資料處理有任何疑問,歡迎透過以下方式與我們聯繫:
- 電子郵件:project01hk@gmail.com(僅用於一般諮詢,不作為資料刪除途徑)
AppSwitcher Privacy Policy & Data Deletion Guide
Last updated: May 25, 2026
Welcome to AppSwitcher (hereinafter referred to as "the App"). This App is developed by Aelius
Manufacture Group (hereinafter referred to as "we", "us", or "our") to provide a floating window for
quickly switching between applications. We value your privacy and want to clearly explain how we
collect, use, and protect your data.
1. Information We Collect
1.1 Information You Provide Voluntarily
- Google Sign-In Information: You may choose to sign in with your Google account to
sync subscription status. When you sign in, we request your Google account ID and email address.
These are processed with SHA-256 to generate an anonymous obfuscated ID (obfuscatedAccountId) stored
locally and on our server, used to link your subscription records. We do not store or share your
plaintext password or full email address.
- Purchase Credentials: When you subscribe to the App via Google Play, we process the
purchase token, order ID, and product ID provided by Google Play to verify subscription validity and
expiration. We do not store your credit card or payment card information.
- Obfuscated User ID: To identify your subscription status, we generate a locally
stored obfuscated ID (obfuscatedAccountId) using SHA‑256. This ID is associated with your device but
cannot be traced back to your personal identity. It is transmitted to our server to link
subscription records.
1.2 Automatically Collected Information
- Installed App List: After you grant permission, we read the list of installed
applications (including app names and package names) on your device so you can select which apps to
include in the switcher. This data is stored only locally and is never uploaded to our server.
- Device Identifier (deviceId): To prevent the same account from being used
simultaneously on multiple devices (conflict detection), we generate a unique, obfuscated device
identifier on your device and upload it to our server. This identifier is linked to your obfuscated
account ID, cannot be reverse-engineered to reveal your actual device information, and is used
solely for device conflict checking and ensuring proper service operation.
- Crash Logs and Diagnostics: When the app crashes or encounters an error, we collect
device model, OS version, app version, error stack traces, and crash time via Firebase
Crashlytics. This information helps us fix issues and improve stability.
- Custom Error Events: Certain critical business errors (e.g., subscription
verification failures) are reported to our own server through our ErrorReporter
module. This includes error codes, messages, and basic device information (such as Android version)
to monitor service health.
- Network Status: Firebase Crashlytics may collect connection type (Wi‑Fi / mobile
data) to analyze crash contexts.
1.3 Information Collected by Third‑Party SDKs
- Google Play Billing Library: Used to handle subscription purchases. It collects
purchase tokens, order IDs, and subscription status. For details, see Google’s Privacy Policy.
- Firebase Crashlytics: Used for crash reporting. It may collect device identifiers
(e.g., Android ID), crash logs, and diagnostic information. See the Firebase Privacy Policy
for more.
- Google AdMob: Used to display interstitial ads. AdMob collects Android Advertising
ID (AAID), IP address (to infer approximate location), and ad interaction data (impressions,
clicks). See Google’s Privacy
Policy.
- Firebase Cloud Messaging (FCM): Used for push notifications. It collects FCM
registration tokens to send you important service messages (e.g., subscription expiration, account
logout).
- OkHttp / Retrofit: Used to communicate with our server for subscription
verification and error logging. All connections are encrypted via HTTPS.
1.4 How to Obtain Your Obfuscated ID and Purchase Token
You can view your anonymous obfuscated ID (obfuscatedAccountId) and the subscription purchase token in
the app’s “Settings” page. This information can help you quickly identify your data when contacting
support.
2. How We Use Your Information
- Provide core functionality: quickly switch between apps based on your selected list.
- Process subscriptions: verify purchases, manage subscription status (including the 7‑day free
trial), and prevent fraud.
- Device conflict detection: use deviceId to prevent the same account from being used on multiple
devices simultaneously.
- Display ads: for non‑subscribers, we show Google AdMob interstitial ads to support ongoing
development. Ad serving may use your approximate location and advertising ID.
- Push notifications: use FCM tokens to send important service alerts (e.g., subscription expiration,
forced logout).
- Improve the app: analyze crashes and errors to optimize user experience.
- Customer support: if you contact us by email, we may use the information you provide to assist you.
3. Information Sharing
We share your information only in the following circumstances:
- Google: Necessary information (such as purchase tokens, advertising ID, crash logs,
FCM tokens) is shared with Google through Google Play Billing, AdMob, Firebase Crashlytics, and
Firebase Cloud Messaging.
- Our own servers: Subscription verification requests, error logs, and deviceId are
transmitted to our servers (located in Hong Kong) for the purposes stated above.
- Legal requirements: We may disclose information if required by law or in response
to valid requests by public authorities.
We do not sell, rent, or trade your personal information to any third party for marketing purposes.
4. Data Retention
- Locally stored data: Your selected app list and preferences are stored only on your
device. You can delete this information by clearing app data or uninstalling the app.
- Server subscription records: Subscription data associated with your obfuscated ID
(e.g., purchase tokens, expiry dates, subscription status) is retained while your subscription is
active. If you cancel your subscription or request deletion, we will delete or anonymize these
records within 30 days. However, transaction records (e.g., order IDs) may need to be retained for 5
years for tax and anti‑fraud purposes, and will no longer be used for any other purpose.
- Device identifier (deviceId): As long as your account is not deleted, the deviceId
remains associated with your obfuscated account ID. Once you request deletion via the in-app “Delete
Account” function, we will immediately delete all deviceId records associated with your account.
- FCM token retention: As long as you are logged in and have not deleted your
account, your FCM token is retained on our server and in Firebase. When you log out, delete your
account, or uninstall the app, the token will be cleared or marked invalid.
- Crash logs: Logs collected via Firebase Crashlytics are automatically deleted after
90 days. Error logs on our own servers are also anonymized after 90 days.
5. Your Rights
- Access and Deletion: You can delete your personal data at any time by going to the
Settings page in the App and tapping the "Delete Account" button.
This will immediately send a deletion request to our server, removing your obfuscated ID, device
identifier, and linked subscription records. Please note that certain transaction records (e.g.,
order IDs) may be retained in anonymized form for legal compliance.
- Manage Permissions: You can manage floating window permission and app list access
through your device’s Settings → Apps → AppSwitcher → Permissions.
- Stop Using: You can stop all data collection by uninstalling the app. Local data
will be removed, and server data will be handled according to the retention policy above, unless you
actively request deletion via the in-app “Delete Account” feature.
- Ad Consent Management: We use Google User Messaging Platform (UMP) to ask for your
advertising consent on first launch. You can change your personalized ad consent at any time by
tapping the “Privacy Options” button in the Settings page.
- Control Advertising ID: You can reset your advertising ID or enable “Limit Ad
Tracking” via your device’s Settings → Google → Ads. Enabling limits will cause AdMob to show only
non‑personalized ads (no interest‑based data used).
6. Children’s Privacy
This app is not intended for children under the age of 13. We do not knowingly collect personal
information from children under 13. If we become aware that we have inadvertently collected such
information, we will delete it immediately.
7. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. If we make material changes, we will notify you
through an in‑app notice or upon the next release. We encourage you to review this page periodically for
the latest information.
How to Delete Your Data (In-App Method)
Under applicable laws (such as GDPR, CCPA), you have the right to request deletion of your personal data
stored on our servers. The app provides a simple, built‑in way to do this:
- Open the App and tap the Settings button (⚙️) on the main screen.
- In the Settings page, locate the "Delete Account" button.
- Tap it and confirm the deletion in the dialog that appears.
- After confirmation, the App will automatically send a deletion request to our server and clear all
local data. You will be logged out and must sign in again to use the service.
Please note: account deletion is irreversible. Once deleted, your subscription records,
obfuscated ID, device identifier, and associated data will be permanently removed from our servers
(except for anonymized transaction records required by law).
📧 Contact Us
If you have any questions about this Privacy Policy or our data practices, please contact us at:
- Email: project01hk@gmail.com (for general inquiries only, not for data deletion
requests)
© 2026 AppSwitcher. 保留一切權利 / All rights reserved.