ZeroAds Privacy Policy

Last updated: May 22, 2026

Effective date: May 22, 2026

ZeroAds is an Android and iOS application developed and owned by Aifinity Solutions ("Aifinity", "we", "us", "our"), a company based in India. This policy explains what information ZeroAds processes, what it does not collect, and the choices you have. The short version: ZeroAds is designed so that we do not need to know who you are, what you browse, or which domains your device asks about.

If you have questions about this policy, contact us at info@aifinitysolutions.com.

1. Summary

We have built ZeroAds so that the parts of the app that touch network traffic stay on your device. We do not run a remote VPN. We do not have servers that see your DNS queries. We do not have user accounts. We do not collect your name, email, phone number, location, contacts, photos, or browsing history.

The only data that leaves your device is:

1. Anonymous purchase information sent to our payments partner so that your subscription works.
2. Periodic checks to our server to download updated blocklists (this is an anonymous file download, like loading any public webpage).
3. DNS queries that ZeroAds did not block, which are forwarded to a public DNS-over-HTTPS resolver so your apps can reach the internet.

The rest of this policy explains each of those in detail.

2. Who we are

The data controller for ZeroAds is:

Aifinity Solutions
India
Email: info@aifinitysolutions.com

For users in the European Economic Area, the United Kingdom, and Switzerland, you may also contact us at the same email regarding any matter under the GDPR or UK GDPR.

3. How ZeroAds works (and why this matters for privacy)

ZeroAds blocks ads, trackers, malware, and other unwanted domains by filtering DNS requests on your device. To do this on Android, the app requests the system VPN permission. ZeroAds does not tunnel your internet traffic to any remote server. The VPN permission is used only to intercept DNS requests locally on your device.

When an app on your device asks for a domain name:

• If the domain is on the blocklist for your selected mode, ZeroAds returns a "not found" response directly from your device. The request never leaves your phone.
• If the domain is not on the blocklist, ZeroAds forwards the query encrypted over DNS-over-HTTPS (DoH) to a public DNS resolver (Cloudflare, cloudflare-dns.com). We do not see these queries. They go directly from your device to the public resolver.

This is the entire data path. Your web browsing, the contents of your communications, and the data inside your apps never pass through anything we operate.

4. Information stored on your device only

The following information is stored locally on your device using Android DataStore Preferences (or the iOS equivalent) and is never transmitted to us:

• The number of sessions the app has started.
• Total time the protection has been active.
• A count of how many DNS queries were blocked. This is a number only. We do not store which domains were blocked.
• Your selected protection mode (Ads and Trackers, Malware Only, Security, or Family).
• Your appearance preferences (light, dark, system).
• Whether you have completed onboarding.
• Connection events shown in the Activity tab (connect, disconnect, mode change). These are device-local and not synced anywhere.

You can clear all of this data at any time by uninstalling the app or clearing the app's storage from your device settings.

5. Information processed off your device

5.1 Subscription and purchase information

If you purchase ZeroAds Pro, the purchase is processed by Google Play Billing (on Android) or the Apple App Store (on iOS). We do not see, store, or have access to your payment card details. Apple and Google handle the transaction.

To manage your subscription state across reinstalls and devices, we use RevenueCat (RevenueCat, Inc.) as a subscription management service. RevenueCat receives an anonymous device-generated identifier and information about your purchase from Google or Apple, such as the product ID, transaction ID, and entitlement status. RevenueCat does not receive your name, email, or contact information from us.

You can review RevenueCat's privacy practices at https://www.revenuecat.com/privacy.

Google and Apple's privacy practices for their app stores are described in their own policies:

• Google: https://policies.google.com/privacy
• Apple: https://www.apple.com/legal/privacy/

5.2 Blocklist downloads

Every few hours, the app checks our server at zeroads.aifinitysolutions.com for an updated blocklist manifest. If a list has changed, the app downloads the new file. This is a standard HTTPS request, the same as your browser fetching a webpage. Our server logs may temporarily record the IP address making the request, the time of the request, and the file requested, for routine operational and security purposes. These logs are not used to build a profile of you, are not linked to any identifier, and are rotated regularly.

5.3 DNS-over-HTTPS forwarding

DNS queries that are not blocked are forwarded by your device, encrypted, to Cloudflare's public DNS-over-HTTPS resolver. We do not operate this resolver. Cloudflare's privacy commitments for the 1.1.1.1 resolver are described at https://developers.cloudflare.com/1.1.1.1/privacy/public-dns-resolver/.

If you would prefer to use a different DoH resolver, this option is planned for a future release of ZeroAds Pro.

6. Information we do NOT collect

To be explicit, ZeroAds does not collect, store, or transmit:

• Your name, email address, phone number, or any other contact information.
• A list of which domains your device queried.
• A list of which domains were blocked.
• Your browsing history.
• The contents of any app, page, or message on your device.
• Your precise or approximate location.
• Your contacts, photos, files, calendar, or other personal content.
• Your device's advertising ID for advertising purposes.
• Any biometric or health data.

We do not sell or rent any data, because we do not have data to sell. We do not share data with advertisers. We do not use any analytics SDK that profiles users.

7. VPN permission (Android)

Google Play requires that VPN apps disclose their use of the VPN service clearly. ZeroAds uses Android's VpnService permission solely to intercept DNS traffic on your device for the purpose of on-device DNS filtering. The VPN service:

• Does not route any internet traffic other than DNS to any remote server we control.
• Does not collect, log, transmit, or share user traffic, browsing history, or any other user data with us or third parties.
• Does not modify, decrypt, or inspect the contents of network traffic beyond DNS resolution.
• Is active only when you turn protection on, and stops immediately when you turn it off.

You can turn off this permission at any time from your Android device settings.

8. Children's privacy

ZeroAds is not directed at children under the age of 13 (or the equivalent minimum age in your jurisdiction). We do not knowingly collect personal information from children. The Family mode included in ZeroAds is a tool for parents and guardians who wish to add a layer of content blocking on a shared device. It is not a service designed for use by children themselves.

If you believe a child has provided any information to us, please contact us at info@aifinitysolutions.com and we will take appropriate steps.

9. Your rights

Depending on where you live, you have certain rights regarding personal information about you. Because ZeroAds does not collect personal information from you in the ordinary course of use, most of these rights may not apply, but you are welcome to exercise them in connection with any subscription purchase information we hold.

9.1 European Economic Area, United Kingdom, and Switzerland (GDPR / UK GDPR)

You have the right to:

• Request access to information we hold about you.
• Request correction of inaccurate information.
• Request deletion of your information.
• Object to or restrict our processing.
• Data portability.
• Withdraw consent at any time where processing is based on consent.
• Lodge a complaint with your local data protection authority.

The legal bases on which we process the limited information described in this policy are: (a) performance of a contract (your subscription), (b) our legitimate interests in operating and securing the service, and (c) your consent where applicable.

9.2 California (CCPA / CPRA)

If you are a California resident, you have the right to know what personal information we collect, to request deletion, to correct inaccurate information, and to opt out of any sale or sharing of personal information. We do not sell or share personal information.

9.3 India (DPDP Act, 2023)

If you are in India, you have the right to access, correct, complete, update, and erase personal data, the right to nominate, and the right to grievance redressal. To exercise any of these rights, contact our grievance officer at info@aifinitysolutions.com. We will respond within the timelines required by the Digital Personal Data Protection Act, 2023.

9.4 How to exercise your rights

Email info@aifinitysolutions.com with your request. We may ask you for information necessary to verify your identity and the device or subscription to which the request relates. We will respond within the timeframes required by applicable law.

10. International data transfers

Aifinity Solutions is based in India. Our blocklist server is hosted in India. RevenueCat is based in the United States. Cloudflare operates globally. If you use ZeroAds from outside these regions, the limited information described in this policy will be transferred to and processed in those locations. Where required by law, we rely on appropriate safeguards such as standard contractual clauses for these transfers.

11. Data retention

• On-device data is retained on your device until you clear it or uninstall the app.
• Subscription records held by RevenueCat are retained for as long as your subscription is active and for a reasonable period thereafter for tax, accounting, and refund purposes.
• Server logs for blocklist downloads are retained for a short period (typically up to 30 days) and then deleted.

12. Security

We protect the limited data we process through appropriate technical and organizational measures, including HTTPS for all communications with our server, encrypted DNS-over-HTTPS for forwarded queries, and standard server hardening on our infrastructure. No method of transmission or storage is completely secure, but because we deliberately do not collect sensitive information, the risk to you from a security incident affecting our systems is very limited.

13. Changes to this policy

We may update this policy from time to time. When we do, we will update the "Last updated" date at the top of the page. If changes are material, we will provide additional notice within the app or on our website. Your continued use of ZeroAds after a change takes effect means you accept the updated policy.

14. Contact

For any questions, complaints, requests, or to exercise any of your rights under this policy, contact us at:

Aifinity Solutions
Email: info@aifinitysolutions.com
India

For users in India, this email address also serves as the grievance redressal channel under the Digital Personal Data Protection Act, 2023.