Welcome to Flash AI (the "App"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application. Flash AI is an AI-powered jewelry photoshoot and e-commerce website launcher designed for jewelry businesses.
Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the application.
1. Information We Collect
1.1 Account and Authentication Information
We collect personal information when you create an account or authenticate using:
- Google Sign-In: Email address, name, profile picture, and Google user ID
- Phone Authentication: Phone number (with +91 country code) and verification codes via Firebase Authentication
- User Profile Data: Shop name, shop address, Instagram ID, phone number, and shop logo
1.2 Business and Shop Information
When you set up your jewelry business on our platform, we collect:
- Shop name and address
- Contact phone number
- Instagram handle
- Shop logo (processed with AI for white background)
- Custom shop domain/subdomain for your e-commerce website
- Business categories and collections
- Product catalog information (jewelry items, descriptions, prices)
1.3 Images and Media Files
Our app's core functionality involves processing jewelry images:
- Uploaded Images: Jewelry photos from your device gallery
- Camera Photos: Photos captured using your device camera
- AI-Processed Images: Enhanced jewelry photoshoot images generated by our AI
- Product Images: Images added to your product catalog
- Collection Banners: Banner images for your collections
- Category Images: Images representing product categories
All images are stored securely in Firebase Storage and Supabase Storage, associated with your user account.
1.4 E-commerce and Transaction Data
When you use our e-commerce features, we collect:
- Product listings and catalog information
- Customer inquiries and reviews
- Shopping cart data
- Payment transaction information (processed through Razorpay)
- Purchase history and order details
- Coin balance and coin transaction history (in-app currency)
1.5 Website and Analytics Data
We collect data about your website and app usage:
- Website visitor tracking and analytics
- Page views and user interactions
- Custom domain configurations
- Website template preferences and customizations
- Footer content, privacy policy, and terms of service pages
1.6 Automatically Collected Information
When you use our app, we automatically collect:
- Device information (model, operating system version, unique device identifiers)
- App usage data and performance metrics
- Crash reports and error logs
- Network connectivity information
- IP address and location data (for analytics)
2. How We Use Your Information
We use the collected information for the following purposes:
- Service Delivery: To provide AI-powered jewelry photoshoot generation, image enhancement, and e-commerce platform services
- Authentication: To create and manage your account using Firebase Authentication, Google Sign-In, and phone verification
- Image Processing: To process your jewelry images using our AI technology and generate professional photoshoots
- E-commerce Platform: To host your online jewelry store, manage products, process orders, and handle customer interactions
- Storage: To store your images, product catalogs, and business data in Firebase Storage, Firestore, and Supabase
- Payment Processing: To process payments through Razorpay for coin purchases and subscriptions
- Website Hosting: To generate and host your custom e-commerce website with your chosen subdomain
- Communication: To send you technical notices, updates, support messages, and promotional communications
- Analytics: To understand how users interact with our app, track website visitors, and improve user experience
- Security: To protect against unauthorized access, fraud, and maintain data security
- Customer Support: To respond to your inquiries and provide technical assistance
3. Data Storage and Security
We implement appropriate technical and organizational security measures to protect your information:
Our Security Infrastructure:
- Firebase Services (Google): Secure authentication, cloud storage (Firebase Storage), and real-time database (Firestore)
- Supabase: PostgreSQL database with Row Level Security (RLS) policies, secure storage, and encrypted data transmission
- Encryption: All data transmission is encrypted using SSL/TLS protocols
- Access Control: Strict access controls and authentication requirements limit who can access your data
- Secure APIs: Backend services with authentication tokens and secure endpoints
However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security.
4. Third-Party Services
Our app integrates with the following third-party services, each with their own privacy policies:
Google Play Services may collect device and diagnostic information in accordance with Google's Privacy Policy.
We encourage you to review the privacy policies of these third-party services to understand how they handle your data.
5. App Permissions
Our app requires the following permissions to function properly:
- Camera (android.permission.CAMERA): To capture jewelry photos for AI processing and product listings
- Storage Access:
- WRITE_EXTERNAL_STORAGE (Android 12L and lower): To save AI-generated images to your device gallery
- READ_MEDIA_IMAGES (Android 13+): To access images from your device gallery
- Internet (android.permission.INTERNET): To communicate with our servers, process images, and sync data
- Network State: To check connectivity status and provide offline functionality
You can manage these permissions in your device settings at any time. Denying certain permissions may limit app functionality.
6. Data Sharing and Disclosure
We do not sell your personal information to third parties. We may share your information in the following circumstances:
- Service Providers: With third-party service providers (Firebase, Supabase, Razorpay) who assist in operating our app
- Public Website: Information you choose to display on your public e-commerce website (shop name, products, contact info) is publicly accessible
- Legal Requirements: When required by law, court order, or government regulations
- Business Transfers: In connection with a merger, acquisition, or sale of assets
- With Your Consent: When you explicitly consent to sharing your information
7. Data Retention
We retain your personal information and images for as long as:
- Your account is active and you continue to use our services
- Needed to provide you with services
- Required to comply with legal obligations
- Necessary to resolve disputes and enforce our agreements
You may request deletion of your data at any time by contacting us. Upon account deletion, we will remove your personal data within 30 days, except where retention is required by law.
8. Your Rights and Choices
You have the following rights regarding your personal data:
- Access: Request access to your personal data and download a copy
- Correction: Request correction of inaccurate or incomplete data
- Deletion: Request deletion of your personal data and account
- Data Portability: Request a copy of your data in a portable format
- Withdraw Consent: Withdraw consent for data processing at any time
- Opt-Out: Opt-out of promotional communications (you'll still receive essential service notifications)
- Manage Permissions: Control app permissions through your device settings
To exercise these rights, please contact us using the information provided below.
9. Account Deletion
You can request account deletion at any time. When you delete your account:
- All your personal information will be permanently deleted
- Your shop website will be taken offline
- All uploaded images and product catalogs will be removed
- Your coin balance and purchase history will be deleted
- This action is irreversible
To delete your account, contact us at support@flashai.co.in with your account details.
10. Children's Privacy
Our app is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately, and we will take steps to remove such information.
11. International Data Transfers
Your information may be transferred to and maintained on servers located outside of your state, province, country, or other governmental jurisdiction where data protection laws may differ from those in your jurisdiction.
By using our app, you consent to the transfer of your information to India and other countries where our service providers operate, and the processing of your data in accordance with this Privacy Policy.
12. Cookies and Tracking Technologies
We use local storage, caching, and similar technologies to:
- Remember your preferences and settings
- Cache data for offline functionality
- Track website visitor analytics
- Improve app performance
- Provide personalized user experience
13. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by:
- Posting the new Privacy Policy on this page
- Updating the "Last Updated" date
- Sending you a notification through the app or email (for significant changes)
You are advised to review this Privacy Policy periodically for any changes. Your continued use of the app after changes are posted constitutes your acceptance of the updated Privacy Policy.
14. Compliance with Laws
We comply with applicable data protection laws and regulations, including but not limited to:
- Information Technology Act, 2000 (India)
- Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011
- General Data Protection Regulation (GDPR) for EU users