Privacy & Security

Last Updated: February 6, 2026

1. Overview

ExamScanify is an MDAT exam scanner and scoring application that lets educators capture answer sheets using the device camera, process them locally, and store scores and related data on the device. We designed the app so that student data is processed and stored primarily on your device, minimizing external data transfers.

2. Data we collect and process

2.1 User account data

ExamScanify offers two methods of authentication:

  • Google Sign-In: We receive your basic profile information (name, email, profile photo, UID) from Google via Firebase Authentication.
  • Email/Password: When you register, log in, or request a password reset, your email and password are used to manage your account.

Security Note: Your password is never stored on our local servers or within the app's local database. All credential management is handled through Firebase Authentication (by Google), which uses industry-standard encryption and secure tokens. This data is used solely to identify you as the owner of your exams and to verify your premium subscription status.

2.2 Student and exam data

The app allows you to enter and store student information (such as name, student code, and class), exam definitions (such as exam name, subject, and answer keys), and scan results. This data is stored locally in an encrypted SQLite database on your device. Note that to ensure compatibility with printed answer sheets containing binary data (Assessment IDs and Roll Numbers), deleted records are "soft-deleted" or marked as inactive rather than being completely removed from the database.

2.3 Images and camera data

When you scan an answer sheet, the device camera captures images that are processed by the app to detect shaded answers and compute scores. The image processing happens on-device using OpenCV and related libraries. If you enable photo saving, the resulting cropped image of the answer sheet is stored in the device file system and linked to the corresponding exam result record.

2.4 Usage and ad-tracking data

To support the free-tier service, the app tracks your exam scan usage locally. Free tier users receive free scans daily. Once used, viewing a rewarded advertisement (AdMob) unlocks 15 minutes of unlimited scanning, accompanied by an in-app timer. Core scanning and processing operations function offline.

We also display banner advertisements on various screens and interstitial advertisements immediately following the export of results or answer sheets. To conserve your device battery, the camera will automatically pause and display a banner ad if no activity is detected for 30 seconds. Basic usage data is collected via Google Mobile Ads (AdMob) to deliver these ads and monitor performance.

2.5 Feedback and Support Data

When you use the "Feedback & Suggestions" feature, we collect the text of your message and your email address to help us address your concerns. If you attach a screenshot, the image is uploaded to a secure media host (Cloudinary) and linked to your report. This data is stored in our secure database (Firebase) and is used solely for troubleshooting, app improvement, and communicating with you about your feedback.

3. How we store and protect your data

All exam, student, and result data is stored locally in a SQLite database bundled with the app. Access to this data is restricted to the app's process. Where possible, we use platform storage APIs that are sandboxed per application. Answer keys are encrypted before being stored to add an extra layer of security and integrity.

We recommend you also secure your device with a PIN, password, or biometric lock to prevent unauthorized physical access. If your device is lost or compromised, data stored locally in ExamScanify may also be exposed.

4. Data transmission and third parties

ExamScanify is designed to work primarily offline. The app does not automatically transmit student or exam data to our servers. Network communication may occur for:

  • Authentication with Google and Firebase Authentication when you log in or out.
  • Communication with the AdMob network to load and display advertisements for free-tier users (requires internet).

We do not sell or rent your data. Any third-party services used (such as Firebase Authentication or Google Sign-In) process your data in accordance with their own privacy policies and applicable data protection laws.

5. Your responsibilities as an educator

Depending on your jurisdiction, you may be considered a data controller for student information you enter into this app. You are responsible for:

  • Obtaining any necessary consent or providing appropriate notices to students or parents/guardians.
  • Configuring and using the app in a way that complies with your institution's policies and applicable law.
  • Ensuring secure handling of exported data, screenshots, or backups that may contain student information.

6. Data retention and deletion

All stored exams, students, and scan results remain on your device until you delete them from within the app or uninstall the app. Uninstalling ExamScanify removes the local database and stored answer sheet images from the app's storage area.

You can also manage individual exams, students, or results using the in-app management screens. When you choose to delete these records, they are marked as inactive ("soft-deleted") to prevent errors when scanning answer sheets that may still have printed binary data associated with those records. Additionally, the "Cleanup Scanned Photos" feature allows you to mass-delete old answer sheet images to free up space.

6.1 Account Deletion

You have the right to delete your account and all associated data at any time. This can be done directly within the App via the "Delete Account" feature in your Account settings. When you initiate an account deletion: (a) your user profile will be removed from our authentication system; (b) your local SQLite database containing all exams, classes, and student data will be permanently deleted; (c) all stored answer sheet images will be purged from the device. This action is irreversible, and we recommend you export any important results before proceeding.

7. Security practices

We follow reasonable technical and organizational measures to protect data within the app, including:

  • On-device processing for optical mark recognition and scoring.
  • Encrypted storage of sensitive exam answer keys.
  • Use of platform security features (sandboxed storage, secure APIs) and hardware-backed keystores.

However, no mobile app or storage system can be guaranteed 100% secure. You should avoid storing more personal information than necessary and use secure practices when handling student data.

8. Changes to this notice

We may update this Privacy & Security notice from time to time to reflect technical, legal, or operational changes in the app. When we do, we will update the in-app version and may highlight significant changes in a release note or banner.

9. Contact

If you have questions about how ExamScanify handles data in your environment, please contact the developer via email atdriftvelocity.app@gmail.com or use the "Feedback & Suggestions" feature in the Account tab to report issues or request features directly within the app.

For more information, tutorials, and updates, visit our official website at https://examscanify.netlify.app.