Privacy Policy
Effective date: April 1, 2026
SMX3 LLC ("we," "us," or "our") operates the Bruno mobile application and related services (collectively, the "Service"). This Privacy Policy explains what information we collect, how we use it, and your choices regarding your data.
1. Information We Collect
Account information. When you create an account, we collect your phone number (used for authentication via Firebase Authentication) and your first name and pronoun preference (provided during setup).
Contacts. If you choose to sync your contacts, we upload the names and phone numbers from your device's address book to our servers. This allows Bruno to recognize known callers and greet them by name. Contact syncing is optional and can be triggered manually in the app settings.
Call data. When a call is screened through Bruno, we collect:
- The caller's phone number
- The date and time of the call
- A transcript of what the caller said during screening
- An audio recording of the screening portion of the call
- Whether the caller was identified as a known contact
- Whether the caller passed the spam challenge
- The call outcome (answered, declined, missed)
Device information. We collect your Firebase Cloud Messaging (FCM) token to send you push notifications about incoming and screened calls.
Usage data. We collect aggregate statistics such as the number of spam calls blocked and messages taken, stored in your user profile.
2. How We Use Your Information
- To provide the Service: screen calls, deliver notifications, play back recordings, and display call history and transcripts.
- To personalize your experience: greet known callers by name, use your preferred pronoun in greetings, and apply your settings (quick replies, All Unknown mode, etc.).
- To improve the Service: understand usage patterns, diagnose issues, and develop new features.
- To communicate with you: send push notifications about incoming calls and service updates.
3. How We Store and Protect Your Data
Your data is stored using Google Firebase services (Cloud Firestore, Cloud Storage, and Firebase Authentication), hosted in the United States. Data is transmitted over encrypted connections (TLS/SSL). Access to our Firebase project is restricted to authorized personnel.
Call recordings are stored in Cloud Storage with a 30-day lifecycle policy. Recordings are automatically deleted after 30 days.
Authentication is handled by Firebase Authentication using phone number verification. We do not store your password because we use phone-based OTP authentication.
4. Third-Party Services
We use the following third-party services to operate Bruno:
- Google Firebase (Authentication, Cloud Firestore, Cloud Storage, Cloud Functions, Cloud Messaging) — for backend infrastructure, data storage, and push notifications. See Firebase Privacy Information.
- Twilio — for phone call routing, voice interaction, and call recording during screening. See Twilio Privacy Policy.
We do not sell your personal information to third parties. We do not share your data with third parties for their marketing purposes.
5. Data Retention
- Call recordings: automatically deleted after 30 days.
- Call records and transcripts: retained in your account until you delete them or delete your account.
- Contacts: stored until you re-sync or delete your account.
- Account data: retained until you request deletion.
6. Your Rights and Choices
You have the following choices regarding your data:
- Contact syncing: You can choose not to sync contacts. Bruno will still work but will treat all callers as unknown.
- Notifications: You can disable push notifications through your device settings.
- Data deletion: You may request deletion of your account and all associated data by contacting us at the email address below.
- Data export: You may request a copy of your data by contacting us.
7. Children's Privacy
Bruno is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us so we can delete it.
8. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy in the app or on our website with a new effective date. Your continued use of the Service after changes constitutes acceptance of the updated policy.
9. Contact Us
If you have questions about this Privacy Policy or want to exercise your data rights, please contact us at:
Email: privacy@getbruno.app