AppOwl Privacy Policy
Last updated: 20 May 2026
Applies to: AppOwl for Android (package uk.lunairelabs.appowlapp)
Publisher: Lunaire Labs Limited
Google User Data Disclosure
This section summarises AppOwl’s handling of Google user data using the categories required by the Google API Services User Data Policy. Detailed sections (1–10) below provide further context.
Data Accessed
AppOwl accesses the following Google user data, only with the user’s explicit OAuth consent:
- Basic Google account profile (email address and account identifier) — used solely to identify which Google account is signed in on the device.
- Read-only access to the user’s auto-generated Google Cloud Storage reports bucket (
pubsite_prod_<developer-id>), via thehttps://www.googleapis.com/auth/devstorage.read_onlyscope. This is the bucket Google Play Console automatically populates with the developer’s own daily sales reports, install metrics, ratings, and store-performance CSVs. AppOwl cannot access any other GCS bucket, cannot write to this bucket, and cannot reach any other data in the user’s Google account.
Data Usage
AppOwl uses the accessed data exclusively to compute and display a cross-app dashboard of the user’s own Google Play developer activity, entirely on the user’s own Android device:
- Aggregated install counts and active-device totals across the user’s app portfolio.
- Per-app and total net revenue, computed locally on-device using sales counts from the reports bucket and prices the user has entered manually in AppOwl’s pricing settings.
- Ratings and store-performance summaries per app.
The data is processed, parsed, and rendered locally on the user’s device. AppOwl does not use the data for any other purpose: not for advertising, not for analytics, not for machine learning training, not for personalisation, not for any aggregated cross-user computation.
Data Sharing
AppOwl does not share, sell, rent, transfer, or otherwise disclose Google user data to any third party. There are no third-party recipients of Google user data accessed via AppOwl, because the data flows directly from Google’s servers (over HTTPS/TLS) to the user’s device, with no Lunaire Labs Limited server, third-party analytics provider, advertising network, crash-reporter, or measurement SDK in the data path. AppOwl ships with zero third-party SDKs that handle Google user data.
Data Storage & Protection
- The OAuth access token is stored exclusively in AppOwl’s private application storage on the user’s device. Android automatically scopes this storage to AppOwl alone; no other app installed on the device can read it.
- Downloaded sales-report data and locally-computed metrics are stored in a SQLite database located in AppOwl’s private application directory, again scoped by Android to AppOwl alone.
- All network requests to Google’s servers occur over HTTPS/TLS.
- No copies of the Google user data exist on any Lunaire Labs Limited-controlled infrastructure, because no such infrastructure participates in the data flow.
- Lunaire Labs Limited operates no servers, databases, or backups that store Google user data.
Data Retention & Deletion
- Retention by Lunaire Labs Limited: none. No Google user data is transmitted to Lunaire Labs Limited at any point, so we hold no copies to retain.
- On-device retention: all cached data lives only on the user’s device and persists until the user signs out, clears the app’s data via Android Settings, or uninstalls AppOwl. Uninstalling removes all locally stored data immediately and completely.
- Revoking AppOwl’s access: users can revoke AppOwl’s OAuth grant at any time by visiting https://myaccount.google.com/permissions and removing AppOwl. Revocation invalidates the OAuth token immediately.
- Deletion requests: to request deletion of any Google user data the user believes Lunaire Labs Limited may hold (none expected, given the architecture above), email support@lunairelabs.uk. We will action verified requests within 30 days.
1. What AppOwl stores on your device
The following is stored locally on your device (in a private SQLite database and Android’s SharedPreferences) and is never transmitted to us:
- The Google OAuth token granted to AppOwl, used to fetch your sales bucket. The token is held only in app-private storage and is revoked when you sign out or uninstall.
- The Play Console sales reports AppOwl has downloaded on your behalf — daily sales, refunds, country breakdown, app identifiers.
- The retail prices you’ve told AppOwl your apps charge in each country (so real revenue can be calculated locally).
- Your preferences (reporting currency, theme, sort order, premium entitlement flag).
2. What AppOwl does NOT do
- No Lunaire-Labs servers. AppOwl does not have a backend. Your sales data is fetched by your phone directly from Google and stored on your phone. We never receive it, store it, or proxy it.
- No account on our side. Google sign-in identifies you to Google; we do not create or hold any AppOwl-side account, email capture, or user identifier.
- No analytics. No telemetry SDK. No measurement of how you use the app.
- No advertising. No ad SDKs, no tracking pixels.
- No third-party trackers. AppOwl makes no outbound network requests except to Google’s authentication, Google Cloud Storage (for the sales bucket), and Google Play Developer API endpoints — all on your behalf, all to fetch your own data.
3. Google sign-in & OAuth scopes explained
When you sign in, Google asks you to grant AppOwl two scopes:
- Basic profile — used only so Google knows which account to authenticate. AppOwl reads your Google account email locally to label the active session in the UI. It is not transmitted off the device.
- Read access to your Google Cloud Storage sales bucket — the bucket Google Play automatically populates with your sales reports each day. AppOwl uses this scope to download the reports for the apps you publish. AppOwl never writes to the bucket and cannot access any other GCS bucket.
You can revoke AppOwl’s access at any time from your Google account’s third-party app permissions page.
4. Permissions explained
INTERNET
Required to reach Google’s servers (sign-in, Cloud Storage sales bucket, Play Developer API). No connections are made to any non-Google endpoint as part of the app’s core function.
Storage (scoped, no permission required on Android 11+)
AppOwl writes its local database to its own private app folder, which is automatically removed when you uninstall the app.
5. In-app purchases
If you purchase the AppOwl one-off unlock, the transaction is handled entirely by Google Play Billing. Lunaire Labs Limited receives only an anonymous entitlement flag from Google. We do not receive your payment details, name, address, or any other personal information.
6. Data retention
Because AppOwl does not collect or transmit your sales data to us, there is nothing for us to retain. Your OAuth token, downloaded sales reports, and preferences stay on your device until you sign out or uninstall the app. Revoking AppOwl’s access from your Google account permissions page additionally invalidates the token immediately.
7. Your rights
Because we do not hold any of your personal data, there is nothing for you to request, correct, or delete on our servers. To remove all AppOwl data from your device, uninstall the app. To remove AppOwl’s access to your Google account, revoke it from your Google account’s third-party app permissions page.
8. Children
AppOwl is intended for adult professional developers managing their own Google Play Console accounts. It is not directed at children and does not knowingly collect any data from users of any age.
9. Changes to this policy
If we ever change how AppOwl handles data, we will update this policy and note the date at the top.
10. Contact
Questions? Email us at support@lunairelabs.uk.
For the privacy policy covering the other Lunaire apps (health trackers, accessibility tools, FuelHound, Jackdaw) and visits to lunairelabs.uk, see lunairelabs.uk/privacy.