oioScan

Welcome to oioScan (“oioScan,” “we,” “us,” or “our”), a service provided by TQC Solution JSC. This Privacy Policy is designed to inform you about how we handle your information in connection with your use of the oioScan mobile application (the “Service”). It explains what data we collect, why we collect it, how it is used and protected, and the rights and choices you have regarding your information.

oioScan is designed with privacy at its core. Its primary function—scanning documents and creating Portable Document Format (PDF) files is performed entirely on your device. This fundamental architectural choice means that we do not upload, view, or access the content of your scans or the files you create. Your documents remain your own, stored locally on your device under your exclusive control. This policy will detail the limited operational data we collect to provide and improve our service and will explain your rights and our responsibilities regarding that data.

By using our Service, you agree to the collection and use of information in accordance with this policy. We are committed to protecting your privacy and ensuring that your personal data is handled in a safe and responsible manner.

This section details the specific categories of data we collect. We believe in data minimization, meaning we only collect data that is essential for the operation and improvement of the Service. The structure of our data collection is designed to clearly distinguish between operational data and your personal content, which we do not access.

The use of oioScan's core features does not require you to create an account or provide personal information such as your name or email address. You can scan, create, and save documents without any direct registration with us.

The only instance where you might provide us with personal information directly is when you choose to contact our customer support team. If you reach out for assistance, ask a question, or provide feedback, we will collect the information you volunteer, which typically includes:

• Contact Information: Your name and email address, so we can respond to your inquiry.

• Communication Content: The content of your messages, including any descriptions of issues, attachments, or other information you provide to help us resolve your query.

This information is used solely for the purpose of providing you with effective customer support and addressing your specific needs.

When you use the oioScan application, we automatically collect certain technical and usage information to ensure the app functions correctly, to maintain security, and to analyze performance for future improvements. This data does not include the content of your scans. This category includes:

• Device and Usage Information: We collect technical data about the device you are using and your interaction with our Service. This includes your device's unique identifier (Device ID), IP Address, operating system type and version, device model, the oioScan app version, and language settings. We also gather aggregated usage analytics, such as which features are used most frequently, the duration of user sessions, and general interaction patterns.

• Crash and Performance Data: If the app encounters an error or crashes, we automatically collect diagnostic information. This includes crash reports (stack traces) and performance logs that help our developers identify, understand, and fix bugs and stability issues. This data is crucial for maintaining and improving the reliability of the application.

oioScan requires access to certain features of your device to perform its primary functions. We will never access these features without your explicit, prior permission, which you grant through your device's operating system permission prompts.

• Camera Access: oioScan requires permission to access your device's camera. This permission is used exclusively for the app's core function: to allow you to capture images of documents for scanning. The application only activates the camera when you actively initiate a scan from within the app. We do not access your camera in the background, nor do we capture any images or video without your direct action.

• Storage Access (Read/Write): We require permission to access your device's storage. This is necessary for two key functions: to save the PDF files you create to a location of your choice on your device, and to allow you to open, view, and manage these files from within the app. The app only accesses your storage to save or retrieve files at your direct command. We do not scan your device's storage for other files or access any data beyond what is necessary to perform these user-initiated actions. 

We believe it is essential to be unequivocally clear about the privacy of your documents. The architecture of oioScan is built on the principle of on-device processing, which provides the highest level of privacy for your content.

• No Content Collection: TQC Solution JSC does not collect, receive, scan, analyze, or store any of the documents you scan or the PDF files you create using oioScan.

• Local Processing: All processing, including image capture, document detection, image enhancement, and PDF generation, occurs locally on your device. Your content is never transmitted to our servers or any third-party servers.

• User Control: Your content remains on your device and is subject to your control at all times. You decide where to save it, who to share it with, and when to delete it. We have no technical means to access, recover, or view it.

This separation between the limited operational data we collect and the user-generated content we never touch is the foundation of our commitment to your privacy.

We are committed to ensuring you have control over your personal data. In accordance with applicable data protection laws, you have several rights concerning the information we hold about you. These rights apply to the operational data we collect as detailed in Section I.B.

• Right to Access: You have the right to request a copy of the personal data we hold about you.

• Right to Rectification: You have the right to request that we correct any inaccurate or incomplete personal data we hold about you.

• Right to Erasure (Right to be Forgotten): You have the right to request the deletion of your personal data when it is no longer necessary for the purposes for which it was collected, or if you withdraw your consent (where applicable) and there is no other legal ground for processing.

• Right to Restriction of Processing: You have the right to request that we restrict the processing of your personal data under certain circumstances, for example, if you contest the accuracy of the data.

• Right to Object to Processing: You have the right to object to our processing of your personal data where we are relying on a legitimate interest as our legal basis.

• Right to Data Portability: Where applicable, you have the right to receive the personal data you have provided to us in a structured, commonly used, and machine-readable format and to transmit that data to another controller.

Regarding the content you create (your scanned documents and PDFs), you hold all the rights directly. As this content is stored on your device and not on our servers, you can access, modify, share, and delete it at any time using your device's file management tools or the features within the oioScan application. The rights listed above apply specifically to the limited operational data we collect to run and improve the Service.

To exercise any of these rights, please contact us using the details provided in the "Contact Us" section below. We will respond to your request in accordance with applicable law.

Our data sharing practices are guided by our core commitment to protecting your privacy. This section outlines the limited circumstances under which we may share your information.

First and foremost, we reiterate that TQC Solution JSC does not have access to your scanned documents or PDF files, and therefore we cannot and do not share this content with any third party. The act of sharing a PDF file is an action initiated and controlled entirely by you, using the sharing functionalities of your device's operating system (e.g., sharing via email, messaging apps, or cloud storage).

We only share the limited operational data described in Section I.B with the following categories of recipients for specific, necessary purposes:

• Service Providers: We may share operational data with trusted third-party vendors who perform services on our behalf. These services include hosting, data analysis, crash reporting, and customer support. For example, we may use an analytics provider like Google Firebase to help us understand app usage and identify bugs. These providers are contractually bound by strict confidentiality and data protection obligations and are only permitted to use the data for the specific purposes we have authorized.

• Legal and Law Enforcement: We may disclose your information if we are required to do so by law or in the good faith belief that such action is necessary to comply with a legal obligation, such as in response to a subpoena, court order, or other valid legal request from a governmental authority. We will only disclose the information that is legally required.

• Business Transfers: In the event that TQC Solution JSC is involved in a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, your operational data may be transferred as part of that transaction. We will notify you via an in-app notice or other prominent method of any such change in ownership or control of your personal information.

We do not sell your personal data to third parties for advertising or marketing purposes.

TQC Solution JSC operates globally, which means that the operational data we collect may be transferred to, and processed in, countries other than the country in which you reside. These countries may have data protection laws that are different from the laws of your country.

However, we take steps to ensure that your personal data receives an adequate level of protection wherever it is processed. We do this by implementing appropriate safeguards for cross-border transfers, as required by applicable law. For transfers of personal data from the European Economic Area (EEA), the UK, and Switzerland to other countries, we rely on mechanisms such as the European Commission's Standard Contractual Clauses (SCCs) to ensure that the data is protected to the same standard as it would be within Europe. 

We take the security of your data very seriously and have implemented robust measures to protect it. Our security approach recognizes the shared responsibility inherent in our on-device processing model.

• Our Responsibility: We implement stringent technical and organizational security measures to protect the limited operational data we collect from unauthorized access, disclosure, alteration, loss, or misuse. These measures include data encryption both in transit and at rest, strict access controls for our internal systems, regular security audits of our infrastructure, and employee training on data protection best practices.

• Your Responsibility: The security of your scanned documents and PDF files is directly tied to the security of your device itself. Because your content is stored locally, you are the primary guardian of its security. We strongly encourage you to take the following steps to protect your locally stored content: use a strong passcode, PIN, pattern, or biometric authentication (e.g., fingerprint or face ID) on your device; keep your device's operating system and the oioScan app updated to the latest versions; and be cautious about the apps you install and the permissions you grant them.

By working together, we can ensure a secure environment for both the operational data we manage and the personal content you control.

Our data retention policies are designed to ensure that we do not keep your data for longer than is necessary for the purposes for which it was collected. We distinguish clearly between user-generated content and operational data.

• User-Generated Content: Your scanned documents and PDFs are stored on your device for as long as you choose to keep them. Their retention is entirely under your control. You can delete them at any time through your device's file system or within the oioScan app. We do not have a copy of this data, and therefore we do not have a retention policy for it.

• Operational Data: We retain the operational data we collect for the specific periods outlined in the table in Section II of this policy. For example, aggregated and anonymized analytics data is retained for up to 24 months to allow for long-term trend analysis and service improvement, after which it is permanently deleted. Crash logs and security data are retained for shorter periods (e.g., up to 12 months) as necessary to ensure the stability and security of our service. Data related to customer support inquiries is retained for 6 months after the resolution of the issue to handle any follow-up questions. 

If you have any questions, comments, or concerns about this Privacy Policy, our data practices, or your rights, please do not hesitate to contact us.

The data controller responsible for your information is TQC Solution JSC.

Please contact directly at: developer@tqcsolution.com

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make changes, we will update the "Last Updated" date at the top of this policy.

If we make a material change to the policy one that significantly alters how we handle your personal data we will provide you with prominent notice in advance of the change taking effect. This may include an in-app notification or other appropriate means of communication. We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of the Service after the effective date of the revised policy will constitute your acceptance of the changes.