EN BS

Privacy Policy

Last updated: May 2026

1. Introduction

SMS38 Gateway ("the App") is an Android application that allows registered users to use their Android device as an SMS gateway — sending SMS messages through their SIM card on behalf of the SMS38 platform. This Privacy Policy explains what data we collect, why we request each permission, and how we protect your data.

By installing and using the App, you agree to this Privacy Policy.

2. Permissions & Data Collected

2.1 SEND_SMS

Purpose: Sending SMS messages through your SIM card as instructed by the SMS38 server.

  • We only send SMS to phone numbers received from the SMS38 server via Firebase Cloud Messaging (FCM).
  • We do not read, store, or forward any personal SMS messages you receive.

2.2 READ_SMS

Purpose: Reading delivery reports from your mobile operator to update message status.

  • We only read operator-generated delivery confirmation messages (e.g. "Message delivered").
  • We do not read personal SMS messages (from contacts, banks, etc.).
  • Delivery status is forwarded to SMS38 servers solely for tracking purposes.

2.3 READ_PHONE_STATE

Purpose: Device identification and availability monitoring.

  • We read: device IMEI/ID, registered phone number, SIM operator, signal strength.
  • This data is used to authenticate the device and monitor gateway availability.
  • We do not read call logs, contacts, or location data.
  • This data is never shared with third parties.

2.4 CALL_PHONE

Purpose: Initiating USSD calls to check the SIM card's prepaid balance.

  • Used exclusively to dial USSD codes (e.g. *123#) to query the remaining balance on the SIM card.
  • This allows the SMS38 dashboard to display current SIM balance for monitoring purposes.
  • We do not make regular phone calls, record calls, or access call logs.

2.5 INTERNET

Purpose: Communication with SMS38 servers and Firebase Cloud Messaging.

  • All communication is encrypted using HTTPS/TLS.
  • The App communicates exclusively with sms38.info and Firebase (Google) servers.

2.6 Other Permissions

  • WAKE_LOCK: Keeps the device awake during SMS sending operations.
  • REQUEST_IGNORE_BATTERY_OPTIMIZATIONS: Prevents the OS from killing the background service.
  • FOREGROUND_SERVICE & FOREGROUND_SERVICE_DATA_SYNC: Runs a persistent foreground service with a visible notification ("SMS38 Gateway is active").
  • POST_NOTIFICATIONS: Displays the foreground service notification required by Android 13+.
  • CAMERA: Used only for scanning QR codes during device registration (optional).

3. Data We Collect

In addition to SMS content (provided by API users), we collect the following metadata:

  • Device ID (IMEI): Unique device identifier for authentication.
  • SIM phone number: To validate the registered gateway number.
  • Mobile operator: Network name (e.g. BH Telecom, Telemach).
  • SMS delivery status: Pending, sent, delivered, or failed.
  • Timestamp: Date and time of each SMS send attempt.

4. Data Sharing

We do not sell, rent, or share your personal data with advertisers or unrelated third parties. We use the following services:

  • Firebase Cloud Messaging (Google): For push notifications to the device.
  • SMS38 Servers: For receiving send instructions and reporting delivery status.

Firebase is governed by Google's Privacy Policy. No other third party has access to your SMS data.

5. Data Retention

  • SMS records: 90 days, then permanently deleted.
  • Device registration data: Retained while the device is registered. Deleted on device removal.
  • Logs: 30 days.
  • Backups: 90 days.

6. Security

  • All communication is HTTPS/TLS encrypted.
  • Authentication via API key + Device ID pair.
  • Server-side firewall, rate limiting, and monitoring.
  • Only authenticated requests are processed.

7. Your Rights (GDPR)

Under GDPR and applicable local laws, you have the right to:

  • Access: Request a copy of your data.
  • Deletion: Request deletion of your account and data.
  • Correction: Request correction of inaccurate data.
  • Restriction: Request restriction of processing.

To submit a request, email: info@sms38.info

8. Children's Privacy

The App is intended for adults (18+) operating SMS gateway devices. We do not knowingly collect data from anyone under 18.

9. Contact

Politika Privatnosti

Zadnja ažurirana: Maj 2026.

1. Uvod

SMS38 Gateway Android aplikacija (dalje: "Aplikacija") omogućava registrovanim korisnicima da koriste Android uređaj kao SMS gateway — šaljeći SMS poruke putem SIM kartice u ime SMS38 platforme. Ova politika objašnjava koje podatke prikupljamo, zašto tražimo svaku permisiju i kako štitimo vaše podatke.

2. Permisije i Prikupljeni Podaci

2.1 Permisija: SEND_SMS

Svrha: Slanje SMS poruka preko Android telefona prema uputstvima SMS38 servera.

  • Primamo upute sa SMS38 serverima (putem FCM — Firebase Cloud Messaging)
  • Šaljemo SMS prema tim uputstvima kroz vašu telefonsku liniju
  • Ne prikupljamo sadržaj SMS poruka nakon slanja

2.2 Permisija: READ_SMS

Svrha: Praćenje stanja dostavljenih SMS poruka.

  • Čitamo SMS prijave o dostavi od operatera (npr. "Vaša SMS je dostavljena")
  • Ne čitamo privatne SMS poruke korisnika
  • Status se prosljeđuje SMS38 serverima isključivo za praćenje

2.3 Permisija: READ_PHONE_STATE

Svrha: Identifikacija uređaja i praćenje dostupnosti gatewaya.

  • Čitamo: IMEI telefona, registrovanu telefonsku liniju, operator, jačinu signala
  • Ovo omogućava provjeru dostupnosti uređaja i kvalitete mreže
  • Ovi podaci se ne dijele sa trećim stranama

2.4 Permisija: CALL_PHONE

Svrha: Pozivanje USSD kodova za provjeru stanja računa na SIM kartici.

  • Koristi se isključivo za biranje USSD kodova (npr. *123#) kako bi se dohvatio podatak o preostalom stanju na SIM kartici
  • Ovo omogućava prikaz stanja SIM kartice u SMS38 dashboardu u svrhu monitoringa
  • Ne upućujemo regularne telefonske pozive, ne snimamo pozive, ne pristupamo zapisima poziva

2.5 Permisija: INTERNET

Svrha: Komunikacija sa SMS38 serverima i Firebase cloud servisima.

  • Svi zahtjevi su enkriptirani (HTTPS/TLS)
  • Komunikacija je samo sa sms38.info i Firebase (Google) serverima

2.6 Ostale Permisije

  • WAKE_LOCK: Sprečavanje gašenja ekrana tokom slanja SMS-a
  • REQUEST_IGNORE_BATTERY_OPTIMIZATIONS: Sprečavanje OS-a da gasi pozadinski servis
  • FOREGROUND_SERVICE & FOREGROUND_SERVICE_DATA_SYNC: Pokretanje servisa sa vidljivom notifikacijom
  • POST_NOTIFICATIONS: Prikaz notifikacije servisa (obavezno Android 13+)
  • CAMERA: QR kod skeniranje za registraciju uređaja (opciono)

3. Prikupljeni Metapodaci

  • Device ID (IMEI): Jedinstveni ID telefona za identifikaciju uređaja
  • Telefonski broj SIM kartice: Za validaciju registrovanog gatewaya
  • Operator: Koja telefonska mreža (BH Telecom, Telemach, itd.)
  • Status dostave: Pending, sent, delivered, failed
  • Timestamp: Vrijeme slanja

4. Dijeljenje Podataka

Ne prodajemo, iznajmljujemo ni dijelimo vaše podatke sa oglašivačima. Koristimo:

  • Firebase Cloud Messaging (Google): Za Push notifikacije
  • SMS38 Serveri: Za primanje uputa i izvještavanje o dostavi

Nijedna treća strana nema pristup vašim SMS podacima.

5. Čuvanje Podataka

  • SMS podaci: 90 dana, zatim trajno brisanje
  • Device ID & registracija: Dok je uređaj registriran
  • Logovi: 30 dana
  • Backup: 90 dana

6. Sigurnost

  • Sva komunikacija je HTTPS/TLS enkriptovana
  • Autentifikacija putem API ključa + Device ID
  • Firewall, rate limiting, monitoring na serverima
  • Samo autentifikovani zahtjevi se procesiraju

7. Vaša Prava (GDPR)

Prema GDPR i lokalnim zakonima, imate pravo da:

  • Pristup: Zatražite kopiju svih vaših podataka
  • Brisanje: Zatražite brisanje vaših podataka
  • Ispravka: Zatražite ispravku netačnih podataka
  • Ograničenje: Zatražite ograničenje obrade

Zahtjev pošaljite na: info@sms38.info

8. Kontakt