Application privacy-policy

This page is dedicated to the Fedilab privacy-policy

Stored data

Only basic information from connected accounts are stored locally on the device. These data remain strictly confidential and are only usable by the application. Removing the application leads to the deletion of these data.

No logins and passwords are stored locally. They are only used to get the access token. This token can be revoked at any time with Mastodon.

All connections are proceed through SSL encryptions to an instance. The application will not connect to an instance that presents a non valid certificate.

Required Android Permission

        Used to know if the device is connected to the WIFI.

        Used to communicate with the API.

        Used to store media and to move the application on the SD card

        Used to pick up media for uploading them.

        Used to start the notification service when the device starts

        Used by the notification service


Authorization with the API

  • Read : Read data from the account
  • Write : Write messages
  • Follow : Follow, unfollow, block mute accounts

These actions are performed only by the user.

Tracking and Advertisements

The application does not use any tracking tools and does not run advertising.

Crash reports

The application uses Acra for crash reporting. This is disabled by default. When enabled from settings, after a crash, user will be asked to send an email with crash logs to the developer

Toot translations

The application allows to use third party translation services. Yandex is used by default. The application also supports DeepL and Systran.

Their privacy policies: