Last updated: February 2026
We do NOT collect, transmit, or store any information about which apps or websites you choose to block. All blocking data stays on your device, protected by Apple's Screen Time framework. We only collect what is strictly necessary to verify your NFC device and provide the Service.
Apps For Development is an unregistered business entity operating the Tyme Boxed brand, based in Kukatpally, Hyderabad, Telangana, India. We develop and sell the Tyme Boxed NFC device and accompanying iOS application ("App") to help users manage their smartphone usage through physical NFC-based app blocking.
This Privacy Policy describes how we collect, use, store, share, and protect the personal data we receive when you purchase a Tyme Boxed device, use our App, or interact with us. It also sets out your rights as a Data Principal under the Digital Personal Data Protection Act, 2023 (DPDPA) and DPDP Rules, 2025.
The App is built upon the open-source Foqos application (MIT License, github.com/awaseem/foqos). Our primary modifications are the NFC device serial number verification system. The original Foqos application is privacy-first and stores all user data on-device; our modifications maintain this approach.
This Policy applies to:
This Policy does not apply to third-party websites, applications, or services that may be linked from our platforms. We encourage you to review the privacy policies of any third parties before sharing your data with them.
Purchase Information: When you buy a Tyme Boxed device, our payment partner collects your name, delivery address, email address, phone number, and payment details. We receive order confirmation details (order number, product purchased, amount paid) but do not directly receive or store full payment card data — that is handled by our PCI-compliant payment processor.
Support Communications: When you contact us at apps.for.development@gmail.com, we collect the content of your message and any information you provide (such as your order number, device type, and iOS version) to resolve your query.
Account Registration (if applicable): If we introduce account registration in the future, we will collect your name and email address. Currently, no account registration is required to use the App.
NFC Device Serial Number: When you first tap your Tyme Boxed NFC device against your iPhone, the App reads the device's unique NFC serial number (UID) and transmits it to our backend server via an encrypted HTTPS request. Our server verifies that the serial number corresponds to an authentic Tyme Boxed device and returns a verification token. The verification result is then stored in the App's local cache so that subsequent uses do not require a server call.
Technical / Diagnostic Data (minimal): Our servers may automatically log basic technical data associated with verification requests, including the request timestamp, iOS version, App version, and anonymised IP address. This data is used solely to diagnose errors and protect against fraudulent verification requests.
We explicitly do NOT collect any of the following:
All App-blocking activity is processed exclusively on-device by Apple's Screen Time API and is never accessible to Apps For Development.
We process your data only for the following purposes, and only to the extent necessary for each:
We do not sell, rent, or otherwise disclose your personal data to third parties for their own marketing or advertising purposes.
We may share your personal data with the following categories of recipients:
5.1 Payment Processors. We share your name, contact, and order details with our payment gateway providers to process your purchase. These providers operate under their own privacy policies and are PCI-DSS compliant.
5.2 Logistics / Shipping Partners. We share your delivery name and address with courier or logistics services solely for the purpose of delivering your order.
5.3 Cloud Hosting / Backend Providers. Our NFC verification backend is hosted on cloud infrastructure (e.g., AWS, Google Cloud, or similar). We select providers with appropriate data protection standards and contractual obligations.
5.4 Legal Obligations. We may disclose your data when required to do so by applicable law, court order, or lawful request from a government authority. Where permitted by law, we will notify you before making such disclosure.
5.5 Business Transfers. In the event of a merger, acquisition, or sale of all or substantially all of our assets, your data may be transferred to the acquiring entity. We will provide notice of such transfer and inform you of any material changes to how your data will be processed.
Apps For Development is based in India. Our cloud backend servers may be located outside of India. Any transfer of personal data outside India will be conducted in accordance with Section 16 of the DPDPA and applicable DPDP Rules. Where personal data is transferred to countries that do not provide an equivalent level of data protection, we implement appropriate contractual safeguards.
We retain your personal data only for as long as necessary to fulfil the purposes described in this Policy, or as required by applicable law:
After the applicable retention period, we will securely delete or anonymise your personal data.
The App is not directed at children under the age of 13. We do not knowingly collect personal data from children under 13 without verifiable parental consent. The App uses Apple's Family Controls framework, which may be configured to be used for a child's device under parental supervision. In such cases, the parent or guardian who purchases the device and authorises the App is the Data Principal in relation to any personal data processed.
As required by the DPDPA, if we become aware that we have inadvertently collected personal data of a child under 18 without verifiable parental/guardian consent, we will promptly delete such data. Parents or guardians may contact us at apps.for.development@gmail.com to request deletion of their child's data.
We implement appropriate technical and organisational security measures to protect your personal data against unauthorised access, loss, alteration, or disclosure, including:
No security system is completely impenetrable. In the event of a personal data breach, we will notify affected Data Principals and the Data Protection Board of India as required under the DPDPA and DPDP Rules.
As a Data Principal under the Digital Personal Data Protection Act, 2023, you have the following rights with respect to your personal data:
10.1 Right to Access. You may request a summary of the personal data we hold about you and how we process it.
10.2 Right to Correction. You may request correction of any inaccurate or outdated personal data we hold.
10.3 Right to Erasure. You may request deletion of your personal data. We will comply unless retention is required by law (e.g., financial records retention obligations). Note: deletion of your NFC serial number from our database will deactivate your device's ability to verify and use the App.
10.4 Right to Withdraw Consent. Where we process your data based on consent, you may withdraw that consent at any time without affecting the lawfulness of processing prior to withdrawal.
10.5 Right to Grievance Redressal. You have the right to have your privacy grievances addressed by our Grievance Officer (see Section 12). If your grievance is not resolved satisfactorily, you may lodge a complaint with the Data Protection Board of India.
10.6 Right to Nominate. You have the right to nominate an individual to exercise your rights in the event of your death or incapacity.
To exercise any of these rights, please submit a written request to apps.for.development@gmail.com. We will verify your identity and respond within 30 days of receiving a valid request.
The Tyme Boxed iOS application does not use cookies. If we operate a website or e-commerce store, that platform may use cookies for functionality and analytics purposes. Any such use will be disclosed in a separate cookie notice on that website.
The App does not include third-party advertising SDKs, tracking frameworks (e.g., Facebook SDK, Google Firebase Analytics), or behavioural analytics tools.
In accordance with the Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Rules, 2021, and pending DPDP Rules obligations, we have designated the following Grievance Officer for privacy-related complaints:
Grievance Officer: Owner, Apps For Development
Email: apps.for.development@gmail.com
Address: Kukatpally, Hyderabad, Telangana, India
Response Time: We will acknowledge all grievances within 48 hours and aim to resolve them within 30 days.
We may update this Privacy Policy from time to time. When we make material changes, we will (a) post the updated Policy with a new effective date, and (b) notify you via email (if we hold your email address) or via an in-app notification at least 30 days before the changes take effect. Continued use of the Service after the effective date of any update constitutes your acceptance of the revised Policy.
If you have any questions about this Privacy Policy or our data practices, please contact:
Business Name: Apps For Development (Tyme Boxed)
Email: apps.for.development@gmail.com
Location: Kukatpally, Hyderabad, Telangana, India
Data Protection Board of India: If you are not satisfied with our response to your privacy complaint, you may contact the Data Protection Board of India at dpb.gov.in once it is operational.