Last updated: June 28, 2026

 This Privacy Policy explains how Fiendishly, LLC ("we," "us," or "our"),   the developer of the Capture mobile application (the "App"), handles information when you use the App.   Capture is a productivity and automation tool that helps attorneys and other professionals automatically capture   billable call time and prepare time reports. We designed Capture to be privacy-first in order to help   protect confidential client information and the attorney–client privilege. 

The short version: Your call records, contacts, subjects, and location tags are stored   only on your device, in an encrypted database. We do not upload your call data,   client information, contacts, or report contents to our servers. We do not sell your data, and we do not read your   email. The only information that leaves your device is (1) the report email you choose to send, sent through   your own email account, and (2) a device push token used to wake the App so it can prepare your report.  

 To do its job, Capture processes the following information. Except where expressly noted below, this information is   stored locally on your device in an encrypted database and is not transmitted to us: 

• Account details you enter — your name, email address, job title, company/firm name, and firm address.
• Contacts — names and phone numbers from your device address book that you choose to monitor, used to identify who a call is with.
• Call information — the time, duration, direction  (incoming/outgoing), and phone number of calls, used to create billing  time entries. On Android this is read from the device call log; on iOS  it is derived from calls you place through the App.
• Subjects and notes — the call subjects and notes you enter or that you set as a contact default.
• Location (optional) — if you grant location  access, the App tags a call with a general "place" label (for example,  "At Work" or "Out of Office") based on the saved places you define. The  App records the place label; it is designed not to display an exact street address in your logs. Location is only used while the App is in use.
• Email authorization — when you connect a Gmail or  Microsoft/Exchange (Office 365) account, the App stores the resulting  OAuth access/refresh tokens securely on your device (in the iOS Keychain  or Android encrypted storage) so it can send reports on your behalf. We  never receive your email password.
• Device push token — a token issued by Apple Push  Notification service (APNs) or Firebase Cloud Messaging (FCM) so that a  contentless "wake" signal can be delivered to your device (see Section  5).
• Diagnostics — if the App crashes, your device  platform may share crash and performance diagnostics with us through  Apple or Google (see Section 6). These reports do not contain your call  or client data.

• To automatically detect and log billable call time for the contacts you choose to monitor.
• To label each entry with a subject and, optionally, a general location.
• To generate time/billing reports and email them to you on the schedule you set.
• To deliver a contentless push that wakes the App so it can prepare and send a scheduled report locally.
• To diagnose crashes and improve the App's reliability.

• We do not upload your contacts, call records, subjects, notes, or report contents to our servers.
• We do not read, collect, or store the contents of your email mailbox. Email access is used solely to send your reports.
• We do not sell, rent, or share your personal information with third parties for advertising or marketing.
• We do not use third-party advertising or cross-app tracking.

 Reports are sent from your own connected email account to your own email address. Because the message   is sent through your chosen provider (Google or Microsoft), that provider transmits and stores the email under its own   terms, just as it would for any email you send. We do not receive a copy of your reports. 

 To deliver reports reliably even when the App is in the background, we operate a push service that sends a   contentless "wake" notification to your device. To do this, your device registers a push token   (from APNs or FCM) with our service. This service receives only the device push token and basic   routing information needed to deliver the wake signal. It does not receive your calls, contacts,   subjects, location, or report contents — those are prepared and sent entirely on your device. 

The App relies on the following third parties, each governed by its own privacy policy:

• Google — Gmail OAuth and the Gmail API (to send  reports if you connect Gmail), and Firebase Cloud Messaging (push  delivery on Android). Google Privacy Policy.
• Microsoft — OAuth and the Microsoft Graph API (to send reports if you connect an Exchange/Office 365 account). Microsoft Privacy Statement.
• Apple — Apple Push Notification service (push  delivery on iOS) and, during testing/distribution, TestFlight and App  Store crash/diagnostic reporting. Apple Privacy Policy.

 Capture's use of information received from Google APIs adheres to the   Google API Services User Data Policy,   including the Limited Use requirements. 

The App requests only the permissions needed for its features. You  can change or revoke these at any time in your device settings.

• Contacts — to identify which client a call is with.
• Phone / Call state and (Android) Call Log — to detect call start/end and read call duration and number for billing entries. Call log data stays on your device.
• Location (while in use) — optional, to tag calls with your saved places.
• Notifications — to show capture status and post-call prompts.
• Display over other apps (Android) — to show the post-call subject prompt.

 Your data is stored on your device in an encrypted (SQLCipher) database, and email authorization   tokens are held in the platform's secure store (iOS Keychain / Android encrypted storage). No security measure is   perfect, but because your sensitive data is not transmitted to or stored on our servers, it remains under your control   on your device. 

 Your data is retained on your device until you delete it. You can delete individual entries within the App, disconnect   a linked email account at any time, or remove all App data by uninstalling the App. To stop push-wake   notifications, disable scheduled reports in the App or uninstall it; the associated push token then becomes inactive.   Deleting a contact from your phone's address book does not automatically delete previously captured billing history   from the App. 

 Capture is a professional tool intended for adults and is not directed to children under 13 (or the equivalent minimum   age in your jurisdiction). We do not knowingly collect personal information from children. 

 Depending on where you live (for example, under the GDPR or CCPA), you may have rights to access, correct, or delete   your personal information. Because your information is stored on your device and not on our servers, you can exercise   these rights directly by viewing, editing, or deleting your data within the App, or by uninstalling it. If you have   questions or need assistance, contact us using the details below. 

 We may update this Privacy Policy from time to time. When we do, we will revise the "Last updated" date above and post   the new version at this URL. Your continued use of the App after changes take effect constitutes acceptance of the   updated policy. 

 If you have any questions about this Privacy Policy or your data, contact us at:   
Fiendishly, LLC
 Email: a@fiendishly.com 

 © 2026 Fiendishly, LLC. Capture. All rights reserved.