This Privacy Policy explains how Bloom Innovation LLC ("we", "us", "our") collects, uses, protects, and shares information when you use the Clenzo mobile application (the "App"). By using the App, you agree to the practices described in this Privacy Policy.
Data Controller
Bloom Innovation LLC
Address: Georgia, Tbilisi, Gldani district, Gldani estate, micro/district III, building 80, entrance 1, floor 2, apartment N4
Company ID: 405717648
Email:
Phone: +995 571104653
App Features Overview
Clenzo provides the following features to help you organize and optimize your device:
- Storage Optimization — identify and remove large files, cache, and temporary data
- Photo Cleaning — detect and remove duplicate photos, similar images, screenshots, selfies, live photos, and bursts
- Photo & Video Compression — reduce file sizes while maintaining quality
- Contact Management — merge duplicate contacts, remove empty entries, backup and restore contacts
- Gmail Inbox Cleaning — group emails by sender, review and delete unwanted emails in bulk (optional)
- Private Vault — securely hide private photos, videos, and files
- Widgets — battery and storage status widgets
Information We Collect
We collect information in separate categories depending on which features you use:
1. Device Data (All Users)
When you use the App, we may collect:
- Device information (model, operating system version, language settings)
- App usage data (features used, session duration, screens viewed)
- Advertising identifiers (IDFA where available)
- Approximate location derived from IP address
- Crash diagnostics and performance data
2. Photos and Videos (Photo Cleaning & Compression Features)
If you use photo cleaning or compression features:
- The App accesses your photo library to analyze and identify duplicates, similar photos, screenshots, and other categories
- Photo analysis is performed entirely on your device
- We do not upload, transmit, or store your photos or videos on our servers
- Photos are only deleted or compressed when you explicitly confirm the action
3. Contacts (Contact Management Feature)
If you use contact management features:
- The App accesses your address book to identify duplicate or incomplete contacts
- Contact processing is performed entirely on your device
- We do not upload, transmit, or store your contacts on our servers
- Contacts are only merged or deleted when you explicitly confirm the action
- You can create local backups of contacts within the App
4. Private Vault Data
If you use the Private Vault feature:
- Files you choose to hide are stored locally on your device in an encrypted protected space
- We do not have access to the contents of your Private Vault
- We do not upload or transmit vault contents to any servers
5. Gmail Data (Optional Gmail Cleaning Feature)
Important: Gmail features are entirely optional. You can use all other App features without connecting your Google account.
If you choose to connect your Google account for Gmail cleaning features, we access Gmail data only to provide the functionality you request.
What Gmail data the App may access:
- Message metadata (sender name/address, recipients, date/time, subject, labels, thread identifiers)
- Message content (email body) to display, categorize, and let you decide what to keep or delete
How we use Gmail data:
- List and display messages for your review
- Group messages by sender/category to help you find unwanted emails
- Move user-selected messages to Gmail Trash (we do not permanently delete messages)
- If you enable it, create sender-based filters so future messages from selected senders go to Trash
OAuth Scopes: Depending on features enabled, we may request: gmail.readonly, gmail.modify, gmail.settings.basic. We request only the minimum scopes needed for the features you enable.
Google API Services User Data Policy Compliance
Our use of information received from Google APIs complies with the Google API Services User Data Policy, including the Limited Use requirements:
- We do not sell Gmail data
- We do not use Gmail data for advertising purposes
- We do not transfer Gmail message content to third parties
- We do not use Gmail data for any purpose other than providing the email cleaning features you request
Data Protection Mechanisms
We implement comprehensive technical and organizational measures to protect your data:
Protection for Gmail Data:
- On-Device Processing: Gmail message content is processed entirely in device memory. We do not upload, store, cache, or retain any Gmail message content, headers, subjects, or metadata on our servers.
- Encrypted Communications: All communication with Google APIs occurs exclusively over HTTPS/TLS 1.2+ encrypted connections.
- Secure Token Storage: OAuth access tokens are stored exclusively on your device using iOS Keychain, which provides hardware-backed encryption through Apple's Secure Enclave.
- No Server Storage: Gmail data is fetched during active sessions only and processed on-device. No Gmail content is written to disk, cached locally, or transmitted to our servers.
- No Logging: We do not log email addresses, subjects, message contents, or any other Gmail data.
- Automatic Token Invalidation: OAuth tokens are automatically removed when you log out, delete the App, or revoke access via Google Account settings.
- Minimal Scope Access: We request only the minimum OAuth scopes necessary for the specific features you choose to enable.
- Analytics Isolation: Our analytics SDKs are configured to exclude any Gmail-related data. Crash reports do not contain email content.
Protection for Photos, Contacts, and Vault Data:
- Local-Only Processing: All photo analysis, contact merging, and vault storage operations occur entirely on your device.
- No Cloud Upload: Your photos, videos, contacts, and vault contents are never uploaded to our servers or any third-party servers.
- User-Initiated Actions Only: The App never deletes, modifies, or moves your data without your explicit confirmation.
- Encrypted Vault: Private Vault uses iOS-level encryption to protect hidden files.
- No Remote Access: We have no ability to remotely access, view, or retrieve your personal content.
General Security Measures:
- Data Minimization: We collect only the minimum data necessary for App functionality and analytics.
- Secure Development: We follow secure coding practices and regularly update dependencies.
- Access Controls: Internal access to any collected analytics data is restricted to authorized personnel only.
- Regular Security Reviews: We periodically review our security practices and update them as needed.
Third-Party Services
The App uses third-party services for analytics, attribution, subscription management, and crash reporting. These services may collect device information, app usage events, and advertising identifiers as described in the "Device Data" section above.
Important: These third-party analytics and service providers do not receive any Gmail message content, photo content, contact data, or vault contents from us. For information about how these services handle data, please refer to their respective privacy policies.
If we receive a refund request for an in-app purchase, we may provide Apple with information about the user's in-app purchase activity. This could include details such as time since app installation, total app usage time, an anonymous account identifier, whether the in-app purchase was fully consumed, whether it included a trial period, the total amount spent, and the total amount refunded.
How We Use Information
We use collected information to:
- Provide and operate the App and its features
- Enable device cleaning, photo management, contact organization, and Gmail cleaning features you request
- Measure App performance and improve features
- Diagnose and fix bugs and crashes
- Manage subscriptions and purchases
- Display advertisements in free versions (if applicable)
- Prevent fraud and comply with legal obligations
Sharing of Information
Personal Content (Gmail, Photos, Contacts, Vault): We do not share, sell, or transfer your personal content to any third parties. This data is processed locally on your device and is not stored on our servers.
Analytics and App Data: We may share non-personal app usage data with our analytics and advertising partners as described in the Third-Party Services section.
We may also disclose information if required by law, to protect rights and safety, or in connection with a corporate transaction (such as a merger or acquisition).
Legal Bases (EEA/UK)
Where applicable under GDPR, we process data based on:
- Performance of a contract: To provide the App and features you request
- Consent: For certain advertising and measurement activities where required
- Legitimate interests: To improve the App, prevent fraud, and maintain security
- Legal obligations: Where we must comply with applicable laws
Data Retention
- Gmail message content: Not stored by us; processed on-device per session only.
- Photos, contacts, vault data: Stored locally on your device only; never transmitted to our servers.
- OAuth tokens: Stored in iOS Keychain until you logout, delete the App, or revoke access in your Google Account settings.
- Analytics data: Retained according to our analytics providers' retention policies.
Your Choices & Rights
You can:
- Disconnect Gmail: Log out from Google within the App at any time, which removes OAuth tokens from your device
- Revoke Google Access: Remove the App's access via your Google Account security settings
- Control Photo/Contact Access: Manage App permissions in iOS Settings
- Reset Advertising Identifier: Reset or limit your IDFA in iOS Settings > Privacy > Tracking
- Request Data Access or Deletion: Contact us to request access to or deletion of personal data we may hold
- Uninstall the App: Remove all locally stored data by deleting the App
International Transfers
Our analytics service providers may process data outside your country. Where required, we rely on appropriate safeguards such as Standard Contractual Clauses for international data transfers.
California Privacy Rights
California residents may request information about our disclosure of personal information to third parties for direct marketing purposes. To make such a request, contact us at with the subject line "California Privacy Information Request".
Do Not Track
The App does not currently respond to browser Do Not Track signals. You can control tracking through iOS Settings > Privacy > Tracking.
Children's Privacy
The App is intended for users aged 16 and older. We do not knowingly collect personal data from children under 16. If you believe we have inadvertently collected data from a child, please contact us immediately.
Changes to This Privacy Policy
We may update this Privacy Policy from time to time. If changes are material, we will update the "Last updated" date above and may provide additional notice within the App.
Contact Us
If you have questions about this Privacy Policy, your data, or wish to exercise your privacy rights, contact us at:
Email: