AegisDial Privacy Policy
Last updated: April 19, 2026
The one-line summary: your call audio never leaves your phone, your transcripts are encrypted at rest and auto-deleted after 30 days, you can export or delete everything any time from Settings, and we never sell anything about you.
Who we are
AegisDial is operated by the AegisDial team, contactable at
privacy@aegisdial.com.
What we collect, and why
- Account — your email or Apple ID, a display name you provide. Used to sign you in and let family-plan invites reach you.
- Phone numbers you look up — stored so we can improve our verdict engine and show you your lookup history.
- Numbers you report as scams — stored to protect other AegisDial users.
- Family contacts — names and phone numbers you save for deepfake defense. Safe words and challenge answers are stored as one-way bcrypt hashes — we cannot read them, only verify a guess.
- Monitored identifiers — email addresses and phone numbers you ask us to watch for breaches. Stored so the weekly re-scan knows what to check.
- Push tokens — the APNs device token that lets iOS deliver our alerts.
- Analytics — anonymized usage events (e.g., "user opened the shield") sent to PostHog. We do NOT send scam-call content, transcripts, or personal identifiers.
- Crash reports — if the app crashes, the stack trace and a device identifier go to Sentry.
- Subscription status — whether you have an active Pro plan.
What we DON'T collect
- Call audio. Live Shield uses Apple's on-device speech recognizer with
requiresOnDeviceRecognition = true. Audio is processed in-process on your phone and is never transmitted, stored, or recorded to disk.
- SMS content you haven't flagged. The SMS filter extension works inside iOS's sandboxed message filter API. We only see messages from senders not in your Contacts, and only for the classification decision — nothing is stored in plaintext.
- Your contact list. AegisDial only knows about contacts you manually add to Family Contacts.
- Your location.
- Your browsing history.
Live call transcription
When you tap "Shield this call," we ask your permission to use the microphone and Apple's on-device speech recognizer. Short text snippets from that recognizer are sent to our servers to check against known scam phrases. The audio itself never leaves your phone.
Transcripts are stored encrypted at rest (AES-256-GCM) on our servers so we can show you your shield history and so staff can investigate a disputed scam match if you ask us to. They are automatically deleted after 30 days, and you can export or delete them any time from Settings → Privacy in the app. We never send your transcript to any third party.
Who we share data with
We share the minimum needed with our vendors:
- Neon — managed Postgres (where account and app data lives).
- Upstash — managed Redis (verdict cache, session data).
- Fly.io — hosting.
- Sentry — crash and error tracking.
- PostHog — product analytics.
- Resend — transactional email.
- Enzoic — dark-web breach monitoring. We hash your email or phone with SHA-256 before sending it to Enzoic.
- Google Safe Browsing — URL reputation for SMS filtering. URLs are sent as-is per Google's API.
- Apple — Sign in with Apple, APNs push, StoreKit subscriptions.
We do not sell your data. Ever.
Your rights
You can at any time:
- See everything we have on you — email privacy@aegisdial.com.
- Delete your account and all its data — Settings → Account → Delete Account (or email us).
- Export your data as JSON — email us.
- Opt out of analytics — Settings → Privacy → Analytics.
Children
AegisDial is not directed to children under 13 and we do not knowingly collect data from them.
Security
All data is encrypted in transit (TLS 1.2+). Passwords and safe words are stored as bcrypt hashes — we cannot read them. We operate under a least-privilege model internally.
Changes
If we materially change this policy we'll notify you in the app and by email at least 30 days before the change takes effect.
Contact
Questions: privacy@aegisdial.com