Mobile money PINs
Automation always halts at the PIN entry screen. Your PIN is entered manually, directly into the network operator's native USSD dialog. Agently can never read, store, or transmit PINs.
What We Don't Collect
Last updated:
Agently is built around the principle that an MoMo agent productivity tool should access the absolute minimum data required to navigate USSD menus on the user's behalf — and nothing more. This page is a concise summary of what we deliberately do not collect, store, or transmit, so you can verify it against our app's behavior and the permissions it requests.
For the full data picture (what we do collect, why, and how it's stored), see the Privacy Policy.
The List
Phone contacts
Agently does not declare the READ_CONTACTS permission and does not access your address book. Customer phone numbers entered for transactions stay local on your device.
Call logs
Agently does not declare the READ_CALL_LOG permission. We are not registered as the default Phone or Assistant handler and cannot access call history.
SMS messages
Agently does not declare any of the SMS permission group (READ_SMS, SEND_SMS, RECEIVE_SMS, RECEIVE_MMS). We do not read, send, or intercept SMS.
Location
Agently does not declare ACCESS_FINE_LOCATION, ACCESS_COARSE_LOCATION, or ACCESS_BACKGROUND_LOCATION. We never request your location.
Advertising ID
Agently does not declare the AD_ID permission and does not run ads. We do not collect, derive, or transmit your Google Advertising ID, and we do not share any data for advertising or fraud-as-a-service purposes.
Browsing history
Agently has no browser integration. The Accessibility Service is restricted to six dialer/telecom packages and cannot read content from any web browser.
Email content
Agently has no email integration and does not request email account access. Anonymous Firebase accounts mean we do not even ask for your email address to use the app.
Photos & videos from your gallery
Agently does not request access to your media library. The only image we store on cloud is the avatar/icon you optionally upload for your community profile.
Microphone outside voice-note posts
The microphone is requested only when you tap "Record" inside a community voice-note composer. The microphone is never opened automatically or in the background.
Other apps' UI content
The Accessibility Service's android:packageNames is restricted to six dialer/telecom packages. It physically cannot observe any other app's UI — banking apps, social, password managers, settings, etc. are all out of scope.
Customer phone numbers in the cloud
Customer phone numbers you enter for transactions stay on-device. When you report a number as fraud, only a SHA-256 hash and a masked display string (e.g. "024****890") leave your device — never the full number.
How to verify
You can independently verify these statements:
- Open Android Settings → Apps → Agently → Permissions. The list shows exactly what Agently can ask for. There is no
SMS,Call Log,Contacts, orLocationentry — those permissions are not declared. - Our manifest is part of the public Android App Bundle and can be inspected by anyone (Google, security researchers, you) via
aapt dump permissions. - The Accessibility Service Disclosure lists the exact six dialer packages we monitor — those names are also enforced inside the app via
android:packageNamesand cannot be widened without re-uploading the app. - Our Delete Account & Data page provides a one-tap option to wipe all cloud data we hold for your account.
What we do collect (and why)
For full transparency, Agently does collect a small set of necessary data. Here's the at-a-glance summary:
| Data | Collected? | Why |
|---|---|---|
| USSD dialog text | Yes — in memory only | Used live to navigate the menu; never persisted, transmitted, or shared. |
| SIM carrier name & slot | Yes | Routes transactions to the correct network (MTN vs Telecel). |
Stable per-device ID (Settings.Secure.ANDROID_ID) |
Yes | Trial-abuse prevention and referral tracking. Never shared with advertisers. |
| Anonymous Firebase UID, FCM token, Installations ID | Yes | Powers cloud backup, push notifications, and community/marketplace features without requiring you to share an email or password. |
| Anonymous analytics & crash reports | Yes (Firebase) | Improving stability and feature usage understanding. No personally identifiable info. |
| Voice notes you post in Community | Yes (Supabase Storage) | Only when you record and post; deleted with your post or your account. |
| Mobile money PIN | Never | Automation halts at PIN entry; PIN is entered directly into the operator's USSD dialog. |
| Phone contacts | Never | READ_CONTACTS permission not declared. |
| Call logs & SMS | Never | Permissions not declared. Not registered as default Phone/SMS/Assistant handler. |
| Location | Never | Location permissions not declared. |
| Advertising ID | Never | AD_ID permission not declared. No ads in the app. |
Questions?
For privacy-related questions or to request a copy of any data we hold for you, contact us at privacy@agentlygh.com. To delete your account and all associated data, see Delete Account & Data.