Privacy Policy

1. Introduction

Welcome to ScanLens ("we," "our," or "us"). This Privacy Policy explains how BITFORGE PTE. LTD. collects, uses, discloses, and safeguards your information when you use our ScanLens mobile application (the "App").

By using ScanLens, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use the App.

2. Information We Collect

2.1 Information You Provide

• Account Information: Email address and password when you create an account
• User Content: Documents, images, and files you scan or upload through the App
• Signatures: Digital signatures you create within the App
• Payment Information: Billing details for premium subscriptions (processed securely through Apple App Store)

2.2 Information Collected Automatically

• Device Information: Device type, operating system version, unique device identifiers
• Usage Data: Features used, scan frequency, app interactions
• Log Data: Access times, error logs, and diagnostic information

2.3 Tracking and Advertising

We do not track you across apps or websites owned by other companies for advertising purposes. ScanLens does not:

• Use the Apple Identifier for Advertisers (IDFA) for tracking
• Share your data with advertising networks
• Build advertising profiles based on your activity
• Sell your personal information to third parties

We may collect anonymized, aggregated analytics data to improve the App's functionality. This data cannot be used to identify you personally.

2.4 Camera and Photo Library Access

ScanLens requires access to your device's camera and photo library to scan documents. We only access these features when you actively use the scanning functionality. Images are processed locally on your device unless you choose to use cloud features.

3. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve the App's functionality
• Process and complete document scans and OCR text recognition
• Sync your documents across devices (if you enable cloud sync)
• Process subscription payments and manage your account
• Send important updates about the App and your account
• Analyze usage patterns to improve user experience
• Detect and prevent fraud, abuse, or security issues
• Comply with legal obligations

4. Data Storage and Security

We implement industry-standard security measures to protect your data:

• Local Processing: Document scanning and OCR processing occur primarily on your device
• Encryption: All data transmitted to our servers is encrypted using TLS 1.3
• Secure Storage: Cloud-stored documents are encrypted at rest using AES-256 encryption
• Access Controls: Strict access controls limit who can access user data

5. Data Sharing and Disclosure

We do not sell your personal information. We may share your information only in the following circumstances:

• Service Providers: With trusted third parties who assist in operating our App (cloud hosting, analytics)
• Legal Requirements: When required by law, court order, or government request
• Business Transfers: In connection with a merger, acquisition, or sale of assets
• With Your Consent: When you explicitly authorize sharing

6. Your Rights and Choices

You have the following rights regarding your data:

• Access: Request a copy of your personal data
• Correction: Update or correct inaccurate information
• Deletion: Request deletion of your data and account
• Export: Download your documents in standard formats
• Opt-out: Disable analytics and optional data collection in App settings

To exercise these rights, contact us at [email protected]. We will respond to your request within 30 days.

7. California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

7.1 Your California Rights

• Right to Know: You can request information about what personal data we collect, use, disclose, and sell
• Right to Delete: You can request deletion of your personal data, subject to certain exceptions
• Right to Correct: You can request correction of inaccurate personal data
• Right to Opt-Out of Sale/Sharing: You can opt out of the sale or sharing of your personal data for cross-context behavioral advertising
• Right to Limit Use of Sensitive Personal Information: You can limit the use and disclosure of sensitive personal information
• Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights

7.2 Notice at Collection

We collect the categories of personal information described in Section 2 of this Privacy Policy for the purposes described in Section 3.

7.3 No Sale of Personal Information

We do not sell your personal information. We do not share your personal information for cross-context behavioral advertising purposes.

7.4 How to Exercise Your Rights

To exercise your California privacy rights, you may:

• Email us at [email protected]
• Use the in-app privacy settings

We will verify your identity before processing your request. You may designate an authorized agent to make a request on your behalf.

8. European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have rights under the General Data Protection Regulation (GDPR):

8.1 Legal Basis for Processing

We process your personal data based on the following legal grounds:

• Contract Performance: Processing necessary to provide the App and its features
• Legitimate Interests: Processing for analytics, security, and service improvement
• Consent: Processing based on your explicit consent (e.g., marketing communications)
• Legal Obligation: Processing required by applicable law

8.2 Your GDPR Rights

• Right of Access: Obtain confirmation of whether we process your data and access to it
• Right to Rectification: Correct inaccurate or incomplete data
• Right to Erasure: Request deletion of your data ("right to be forgotten")
• Right to Restrict Processing: Limit how we use your data
• Right to Data Portability: Receive your data in a structured, machine-readable format
• Right to Object: Object to processing based on legitimate interests
• Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent

8.3 Data Transfers

When we transfer personal data outside the EEA, we use appropriate safeguards such as Standard Contractual Clauses approved by the European Commission.

8.4 Supervisory Authority

You have the right to lodge a complaint with a supervisory authority in the EU member state of your habitual residence or place of work.

9. Data Retention

We retain your data for as long as your account is active or as needed to provide services. After account deletion:

• Personal data is deleted within 30 days
• Backup copies are purged within 90 days
• Some anonymized analytics data may be retained for service improvement

10. Children's Privacy

ScanLens is not intended for children under 13 years of age (or 16 in some jurisdictions). We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately at [email protected], and we will take steps to delete such information promptly.

If you are a parent or guardian and become aware that your child has provided us with personal information, please contact us so we can take appropriate action.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence, including Singapore and other countries where our service providers operate. We ensure appropriate safeguards are in place for international transfers in compliance with applicable data protection laws, including:

• Standard Contractual Clauses (for EU/EEA transfers)
• Data processing agreements with service providers
• Compliance with applicable privacy shield frameworks

12. Third-Party Services

The App may integrate with third-party services:

• Cloud Storage: iCloud, Google Drive, Dropbox (governed by their respective privacy policies)
• Payment Processing: Apple App Store (governed by Apple's policies)
• Analytics: We use privacy-focused analytics to improve the App

We are not responsible for the privacy practices of third-party services. We encourage you to review their privacy policies before using them.

13. Data Security Incidents

In the event of a data security incident that affects your personal information, we will:

• Notify affected users as required by applicable law
• Notify relevant supervisory authorities where required
• Take immediate steps to contain and remediate the incident
• Conduct a thorough investigation and implement measures to prevent recurrence

14. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

• Posting the new policy in the App
• Updating the "Last Updated" date
• Sending an email notification for significant changes

Your continued use of the App after changes become effective constitutes acceptance of the revised Privacy Policy.

15. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us: