Privacy Policy

This Privacy Policy describes how AuraAI ("we", "our", or "us") collects, uses, and protects your information when you use our mobile application. By using AuraAI, you agree to the practices described in this policy. If you do not agree, please discontinue use of the app.

1. Information We Collect

1.1 Information You Provide

AI Prompts — Text prompts you enter to generate images. These are transmitted to third-party AI providers solely to process your request and are not stored on our servers.
Photos & Videos — Media you select for encryption or video compression is processed entirely on-device. We never upload your original media files to any server.
Support Communications — If you contact us by email, we retain your message and email address to respond to your inquiry.

1.2 Automatically Collected Data

Usage Analytics — Aggregated, anonymized events (e.g., features used, session duration) collected via Firebase Analytics to help us understand how the app is used and improve it.
Crash Reports — Diagnostic data generated when the app crashes, including device model, OS version, and stack traces. No personal data or media is included.
Device Identifiers — Non-personal identifiers (e.g., device type, locale, app version) used for analytics and remote configuration.

    We do not collect: your name, email address, phone number, location, or any biometric data. AuraAI does not require account registration.
  

2. How We Use Your Information

Purpose	Data Used
Generate AI images from your prompt	Text prompt (sent to AI provider, not stored by us)
Encrypt & store images securely on-device	Selected photos (processed locally only)
Compress videos on-device	Selected videos (processed locally only)
Improve app quality & fix bugs	Anonymized analytics & crash reports
Deliver remote configuration updates	Device identifiers (via Firebase Remote Config)
Respond to support requests	Email address & message content

3. Image Safe — Encrypted Local Storage

Images you encrypt through the Image Safe feature are secured with AES-256-GCM encryption and stored exclusively on your device. Your encryption password is never transmitted to us or any third party. We have zero access to your encrypted images at any time. Deleting the app permanently removes all encrypted data.

4. AI-Generated Content

AuraAI does not use images or prompts you submit to train machine learning models. Your prompts are forwarded to third-party AI providers (see Section 5) only to generate the image you requested.

AI-generated images may contain unexpected or inaccurate results. You are solely responsible for how you use or share AI-generated content.

5. Third-Party Services

AuraAI integrates the following services. Each has its own privacy policy and data practices:

Service	Purpose	Privacy Policy
Pollinations AI	AI image generation	View
HuggingFace	AI model inference	View
CivitAI	Community AI image browsing	View
Firebase Analytics (Google)	Anonymized usage analytics	View
Firebase Remote Config (Google)	App configuration updates	View

6. Permissions We Request

Permission	Why We Need It
Photo Library (Read)	To let you select images to encrypt or add to Galaxy Album
Photo Library (Write)	To save AI-generated images or compressed videos to your camera roll
Photo Library (Delete)	Optional — only requested if you choose to remove the original after encrypting it

Permissions are requested only when you use the relevant feature and can be revoked at any time in your device Settings.

7. Data Sharing & Sale

We do not sell, rent, or trade your personal information to any third party for marketing purposes. We may share data only in the following limited circumstances:

Service providers — AI providers listed in Section 5, solely to fulfill your requests.
Legal compliance — If required by applicable law, court order, or governmental authority.
Business transfer — In the event of a merger or acquisition, your data may be transferred as part of that transaction.

8. Data Retention

On-device data (encrypted images, AI history) is retained until you delete it or uninstall the app.
Analytics data is retained by Firebase/Google per their standard retention period (up to 14 months).
Support emails are retained for up to 2 years to resolve follow-up issues.

9. Your Privacy Rights

California Residents (CCPA / CPRA)

You have the right to know what personal information we collect, request deletion of your data, and opt out of any sale of personal information (we do not sell personal information). To exercise these rights, contact us at the email below.

European / UK Residents (GDPR / UK GDPR)

You have the right to access, correct, delete, or restrict processing of your personal data, and to data portability. Our legal basis for processing analytics data is our legitimate interest in improving the app. To submit a data request, contact us at the email below. You also have the right to lodge a complaint with your local supervisory authority.

10. Children's Privacy

We do not knowingly collect personal information from minors. If you believe a minor has provided personal data through the app, please contact us immediately and we will delete it promptly.

11. Data Security

We implement appropriate technical measures to protect data. On-device encrypted images use AES-256-GCM, which is a military-grade encryption standard. However, no method of electronic transmission or storage is 100% secure, and we cannot guarantee absolute security.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by updating the "Last updated" date at the top of this page. Your continued use of AuraAI after changes are posted constitutes your acceptance of the revised policy.

13. Contact Us

If you have any questions, requests, or concerns about this Privacy Policy, please contact us:

Email: gzkhhy@gmail.com

We aim to respond to all privacy-related inquiries within 30 days.