[mattspitz]

Good points all around.

PhoneHome home doesn't send any data that your application couldn't otherwise expose. It just provides an easier way to do it for the developer.

Regarding sensitive data, Facebook has had issues leaking user tokens in logs, and I imagine they're not alone. The typical way to handle this is to put all the sensitive information (if you have to log it at all) at a certain level and then use ProGuard to strip the calls out of the bytecode when making a production build, but between Android and remote libraries, I found that this involves a lot of whack-a-mole to get a config file that works.

But, if you've got everything through a layer of indirection (using PhoneHome), it's easy enough just to switch on the BuildConfig.DEBUG to decide whether to print to the system log.