Privacy Policy

Genstellar (“we,” “our,” or “us”) operates CameraLens, an AI-powered camera intelligence application available on the Google Play Store. This Privacy Policy explains what information we collect when you use CameraLens, how we use it, with whom we share it, and what choices you have.

By downloading, installing, or using CameraLens, you acknowledge that you have read and understood this Privacy Policy. If you do not agree, please do not use the App.

CameraLens requires access to your device camera. When you point the camera at something or capture an image:

• On-device processing only (no upload): In AI Kit mode (OCR, Barcode, Document Scanner), all image processing is performed locally using Google ML Kit running entirely on your device. Images are held in RAM during processing and are not transmitted to any server.
• Cloud AI processing (explicit user action only): When you use features that require cloud AI — including Solve, Homework Solver, AI Quiz Generator, Table to Spreadsheet, Question Paper Generator, and PDF AI Analyzer — the captured image or document is transmitted over an encrypted connection to our Firebase Cloud Functions, which forward it to Google Gemini AI for processing. The processed result is returned to your device. We do not store the raw image or document content on our servers after the response is returned.
• Gallery imports: Images you import from your gallery are processed identically to camera captures under the rules above.

Text extracted from images via Optical Character Recognition (OCR):

• Is processed entirely on-device using Google ML Kit for core text detection.
• Is temporarily cached in your device’s local DataStore for session continuity. This cache is local-only.
• Is sent to our Firebase Cloud Functions → Google Gemini API only when you explicitly trigger a cloud AI feature (Summarize, Fix, Rethink, Homework Solver, AI Quiz Generator, Question Paper Generator, Table to Spreadsheet, PDF AI Analyzer).
• Is not retained on our servers after the AI response has been delivered to your device.

Documents created with the Document Scanner feature are:

• Stored locally on your device in the app’s Room database and in internal storage.
• Not uploaded to any server unless you explicitly enable Cloud Backup (see Section 2.10).
• Indexed locally with a full-text search (FTS) index on OCR text. This index never leaves your device.

Upon first launch, CameraLens generates a unique, anonymous User ID for your installation. This User ID:

• Is generated locally on your device using a cryptographically secure random method.
• Is stored in your device’s DataStore and associated with your account record in Firebase Firestore.
• Is used to track your AI credit balance, subscription status, referral rewards, and to enable Collaborative Note Sharing.
• Does not contain your name, email, phone number, or any other directly identifying information unless you voluntarily link it to a Google account.
• Can be deleted upon account deletion (see Section 9).

Signing in with Google is optional. If you choose to sign in, we receive your Google account email address, display name, and profile photo from Google Sign-In. This data is stored in Firebase Authentication and linked to your User ID in Firestore. It is used to enable cross-device sync, cloud backup, and account recovery. You may unlink your Google account from within the App’s settings at any time.

When you use cloud AI features (Solve, Homework Solver, AI Quiz Generator, Question Paper Generator, Table to Spreadsheet, PDF AI Analyzer, and cloud-fallback for Summarize/Fix/Rethink):

• The image and/or extracted text is sent to our Firebase Cloud Functions.
• Our Cloud Functions forward the content to Google’s Gemini API for processing.
• We do not store, log, or review the content of your AI queries on our servers after the response is delivered.
• Google’s Gemini API processes your data subject to Google’s own privacy policies (see Section 5).

• Barcode scan results are temporarily cached in your device’s local DataStore for session history. This data is local-only.
• When a scanned QR code contains a URL, your device makes a direct network request to that URL to fetch Open Graph metadata. This request is made by your device, not through our servers. We do not log or intercept the URLs you scan.
• UPI payment QR codes are handled by launching your installed payment app via an Android intent. We do not access or transmit your payment information.

When you use the Collaborative Note Sharing feature, the shared document content (images, OCR text) is uploaded to Firebase Firestore and/or Firebase Storage. A share link or your User ID is generated to grant access to invited collaborators. Shared documents are stored on our cloud infrastructure and remain accessible to authorised users until you explicitly delete them or revoke access.

If you import an existing PDF from your device, the PDF content is transmitted to our Firebase Cloud Functions and then to Google Gemini AI for analysis. The PDF content is not stored on our servers after the response is returned. Metadata about the analysis may be stored temporarily in your device’s local cache.

If you enable Cloud Backup, your scanned documents (page images and extracted text) are uploaded to Firebase Storage under your account. Backup is triggered by our WorkManager BackupWorker. Cloud-stored documents are encrypted at rest by Firebase. You may delete your cloud backup at any time from within the App or by contacting us.

We use Firebase Crashlytics to collect crash reports when the App unexpectedly terminates. Crash reports contain: device model, manufacturer, OS version, and app version; stack traces, error logs, and thread states at the time of the crash; and a Crashlytics installation UUID to deduplicate crashes. No camera images, document content, or personally identifiable information is included in crash reports.

We may collect aggregated, anonymized usage data (e.g., which features are used most frequently, average session duration). This data does not identify individual users and is used solely to improve the App. You may opt out of analytics in the App’s Settings.

In-app purchases and subscriptions are processed entirely by Google Play Billing. We receive transaction receipts confirming purchase or subscription status and renewal/cancellation events from Google Play. We do not receive your credit card number or full payment details. Purchase status is associated with your User ID in Firestore.

For security and integrity verification, we collect device attestation tokens via the Google Play Integrity API and Firebase App Check tokens. These tokens are used solely for security purposes and are not stored after validation.

The App may send local push notifications for feature discovery campaigns, backup completion, and download progress. Notification delivery is handled locally via WorkManager and the Android Notification system. We do not track whether individual notifications are opened.

• Sell your personal information to any third party.
• Build advertising profiles or share your data with ad networks.
• Continuously upload camera footage to our servers.
• Record audio.
• Access your contacts, call logs, or SMS.
• Track your location (location permission is requested only for Wi-Fi QR scanning as required by Android OS, and is not used or stored for any other purpose).

The following third-party services are integrated into CameraLens. Each has its own privacy policy and data practices.

Camera images processed by on-device ML (OCR, barcode, labels) are held in RAM and discarded after processing. Scan documents and DataStore preferences are stored in your device’s internal storage, protected by Android’s application sandbox. Only CameraLens can access this data.

Data stored in Firebase (Firestore and Storage) is encrypted in transit using TLS 1.2 or higher, encrypted at rest by Firebase’s default encryption, and access-controlled by Firebase Security Rules that restrict data access to authorised users only.

• Firebase App Check to prevent unauthorized API access.
• Play Integrity API verification to detect modified or unofficial builds.
• Principle of least privilege for Firebase Security Rules.
• Regular review of access controls.

Despite these measures, no security system is impenetrable. We cannot guarantee absolute security of data transmitted over the internet or stored electronically. In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify affected users and relevant authorities as required by applicable law.

We do not sell your personal information. We share information only in these circumstances:

1. Service Providers: With third-party services listed in Section 5, solely to operate and improve the App.
2. Legal Compliance: When required by applicable law, regulation, court order, or governmental authority, or to protect the rights, property, or safety of our users, the public, or Genstellar.
3. Business Transfer: In connection with a merger, acquisition, or sale of all or a portion of our assets. We will notify you before your personal data becomes subject to a different privacy policy.
4. With Your Consent: In any other circumstance with your explicit consent.

CameraLens includes educational features (Homework Solver, AI Quiz Generator, Question Paper Generator) that may appeal to younger users. We take children’s privacy seriously.

• We do not knowingly collect personal information from children under 13 years of age (or the minimum digital age of consent in your country, whichever is higher).
• If you are a parent or guardian and believe your child under 13 has created an account or provided personal information through CameraLens, please contact us immediately at privacy@genstellar.in. We will promptly investigate and, if confirmed, delete the child’s data and associated account.

Depending on your jurisdiction, you may have the following rights regarding your personal data:

To exercise any of these rights, contact us at privacy@genstellar.in. We will respond within 30 days and may require you to verify your identity before processing your request.

We comply with the Information Technology Act, 2000, the Information Technology (Amendment) Act, 2008, and the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 (SPDI Rules). We implement reasonable security practices to protect sensitive personal data or information as defined under the SPDI Rules.

If you are in the EEA:

• Legal bases for processing: Contract performance, legitimate interests (security, crash diagnostics), and consent (analytics, notifications).
• Data transfers: Data transferred outside the EEA is protected by Google’s Standard Contractual Clauses.
• Right to lodge a complaint: You may lodge a complaint with your national data protection supervisory authority.
• Data Protection Officer: We do not have a designated DPO at this time. Direct all GDPR inquiries to privacy@genstellar.in.

California residents have the right to know what personal information we collect, use, and disclose; request deletion of their personal information; and opt out of the “sale” of personal information.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make material changes:

• We will update the Last Updated date at the top of this document.
• We will display an in-app notice informing you of the change.
• For significant changes affecting your rights, we may request your renewed acknowledgement.

Your continued use of the App after the effective date of a revised policy constitutes your acceptance of the changes. We encourage you to review this policy periodically.

For questions, concerns, or requests related to this Privacy Policy or your personal data, contact us using the details below. We aim to respond to all privacy inquiries within 30 calendar days.

This Privacy Policy was prepared for CameraLens v1.x and covers features available at the Effective Date listed above as well as forthcoming features (Homework Solver, AI Quiz Generator, Table to Spreadsheet, Question Paper Generator, Collaborative Note Sharing, PDF AI Analyzer, and the User ID system).