Privacy & Security

Last Updated: May 6, 2026

1. Overview

ExamScanify is an AI-powered MDAT exam scanner and scoring application that lets educators generate exams using AI, capture answer sheets using the device camera, and synchronize results across devices. While student data is processed locally, Premium users benefit from secure cloud synchronization to access their records via our Web Console.

2. Data we collect and process

2.1 User account data

ExamScanify uses Google Sign-In for authentication. We receive your basic profile information (name, email, profile photo, UID) from Google via Firebase Authentication.

Security Note: All authentication is handled through Firebase Authentication (by Google), which uses industry-standard encryption and secure tokens. No passwords or sensitive credentials are ever stored on our servers or within the app's local database. This data is used solely to identify you as the owner of your exams and to verify your Premium Pass status.

2.2 Student and exam data

The app allows you to enter student information, create exam definitions, or generate them using our AI MDAT Generator. This data is stored in a local encrypted database. For Premium users, this data is also automatically synchronized to our secure cloud storage to enable access via the Web Console. Note that deleted records are "soft-deleted" locally to maintain compatibility with printed sheets.

2.3 Images and camera data

When you scan an answer sheet, the device camera captures images that are processed by the app to detect shaded answers and compute scores. The image processing happens on-device using OpenCV and related libraries. If you enable photo saving, the resulting cropped image of the answer sheet is stored in the device file system and linked to the corresponding exam result record.

2.4 Usage and ad-tracking data

To support the free-tier service, the app tracks your exam scan usage locally. Free tier users receive free scans daily. Once used, viewing a rewarded advertisement (AdMob) unlocks 15 minutes of unlimited scanning, accompanied by an in-app timer. Core scanning and processing operations function offline.

We also display banner advertisements on various screens and interstitial advertisements immediately following the export of results or answer sheets. To conserve your device battery, the camera will automatically pause and display a banner ad if no activity is detected for 30 seconds. Basic usage data is collected via Google Mobile Ads (AdMob) to deliver these ads and monitor performance.

2.5 Feedback and Support Data

When you use the "Feedback & Suggestions" feature, we collect the text of your message and your email address to help us address your concerns. If you attach a screenshot, the image is uploaded to a secure media host (Cloudinary) and linked to your report. This data is stored in our secure database (Firebase) and is used solely for troubleshooting, app improvement, and communicating with you about your feedback.

3. How we store and protect your data

All data is stored locally in an encrypted SQLite database. For Premium users, data is also stored in our secure cloud infrastructure (Firebase) using industry-standard encryption. This enables seamless synchronization between your mobile device and the Web Console. You can also export an encrypted .scanify database file for manual offline backup.

We recommend you also secure your device with a PIN, password, or biometric lock to prevent unauthorized physical access. If your device is lost or compromised, data stored locally in ExamScanify may also be exposed.

4. Data transmission and third parties

ExamScanify is designed to work primarily offline. The app does not automatically transmit student or exam data to our servers. Network communication may occur for:

  • Authentication with Google and Firebase Authentication when you log in or out.
  • Communication with Google Play Billing and our secure backend to verify and validate your Premium Pass status.
  • Automatic cloud synchronization of exam and student records for Premium users.
  • Communication with the AdMob network to load ads for free-tier users.

Any third-party services used (such as Google Play Billing, Firebase Authentication, or Google Sign-In) process your data in accordance with their own privacy policies. Our backend performs real-time validation of purchases with the Google Play Developer API to maintain your Premium Pass validity (12 months per purchase).

5. Your responsibilities as an educator

Depending on your jurisdiction, you may be considered a data controller for student information you enter into this app. You are responsible for:

  • Obtaining any necessary consent or providing appropriate notices to students or parents/guardians.
  • Configuring and using the app in a way that complies with your institution's policies and applicable law.
  • Ensuring secure handling of exported data, screenshots, or backups that may contain student information.

6. Data retention and deletion

All stored exams, students, and scan results remain on your device until you delete them from within the app or uninstall the app. Uninstalling ExamScanify removes the local database and stored answer sheet images from the app's storage area.

You can also manage individual exams, students, or results using the in-app management screens. When you choose to delete these records, they are marked as inactive ("soft-deleted") to prevent errors when scanning answer sheets that may still have printed binary data associated with those records. Additionally, the "Cleanup Scanned Photos" feature allows you to mass-delete old answer sheet images to free up space.

6.1 Account Deletion

You have the right to delete your account and all associated data at any time via the "Delete Account" feature in the App. Upon deletion: (a) your user profile is removed; (b) your local database is permanently deleted; (c) for Premium users, all synced records are purged from our cloud storage; and (d) all stored images are removed. This action is irreversible.

7. Security practices

We follow reasonable technical and organizational measures to protect data within the app, including:

  • On-device processing for optical mark recognition and scoring.
  • Encrypted storage of sensitive exam answer keys.
  • Use of platform security features (sandboxed storage, secure APIs) and hardware-backed keystores.

However, no mobile app or storage system can be guaranteed 100% secure. You should avoid storing more personal information than necessary and use secure practices when handling student data.

8. Changes to this notice

We may update this Privacy & Security notice from time to time to reflect technical, legal, or operational changes in the app. We reserve the right to modify this notice at any time without further notice.

9. Contact

If you have questions about how ExamScanify handles data in your environment, please contact the developer via email atdriftvelocity.app@gmail.com or use the "Feedback & Suggestions" feature in the Account tab to report issues or request features directly within the app.

For more information, tutorials, and updates, visit our official website at https://examscanify.netlify.app.