This Privacy Policy describes how One Crest IT Private Limited ("we," "us," or "our") collects, uses, and shares information in connection with your use of the JeePro mobile application (the "Service"). Your privacy is of the utmost importance to us.
1. Developer Information
Developer: One Crest IT Private Limited
Privacy-Related Inquiries: srinath@onecrest.io
2. Data We Collect and Why
To provide and improve our Service, we collect the following types of data:
A. Personal and Sensitive Information
- Account Information: When you register using Google Sign-In, we collect your Full Name and Email Address. During onboarding, we also collect your Phone Number and Age. This information is used for account creation, authentication, communication, and to ensure you meet the minimum age requirement of 18 years.
- Payment Information: For subscription services, we use Razorpay. While we do not collect or store your financial details like credit card numbers, we receive transaction confirmation data from Razorpay. Your phone number may be pre-filled in the Razorpay checkout form.
B. App Configuration and Usage Data
- Google Gemini API Key: You must provide your own API key to use the AI features. We store this key on our servers using strong encryption at rest. It is fetched by your app upon login and is used for on-device API calls.
- User Preferences: We collect your chosen Target Exam Stream (e.g., JEE, NEET) and Preferred Language to personalize the AI responses and app content.
- Device and App Identifiers: We collect a Firebase Cloud Messaging (FCM) Token to send you push notifications, should you opt-in.
C. User Content
- AI Prompts: This includes the text queries, topics, and images you upload for AI Doubt Solving, Flashcard Generation, and Mock Tests. This data is processed on your device and sent directly to the Google Gemini API.
D. Locally Stored Data
- History Data: Your chat conversations, flashcard sets, and mock test results are stored locally on your device using the Hive database for your convenience. This data is under your control and is not uploaded to our servers.
3. Data Sharing and Third Parties
We do not sell your personal data. We only share data with trusted third parties essential for the app's functionality:
- Google (Gemini API): Your AI prompts (text/images) and your Gemini API Key are sent **directly from your device** to Google's servers to get AI-generated responses. We recommend you review the Google Privacy Policy.
- Google (Firebase & AdMob): We use Firebase for services like authentication and push notifications. For non-Pro users, we display ads via Google AdMob, which may collect data to serve personalized ads.
- Razorpay (Payment Gateway): For subscription purchases, we share necessary order details to facilitate payment processing.
Crucial Privacy Note: All interactions with the Google Gemini API happen **directly from your device to Google's servers**. We do not proxy these requests, and your API key is **never** sent to our servers during these interactions. Furthermore, we do not have the technical ability to view, log, or store the content of your private conversations with the AI.
4. Data Security
We are committed to protecting your data. Our security measures include:
- Encryption in Transit: All communication between your device and our servers is encrypted using modern cryptography (TLS/SSL).
- Encryption at Rest: Sensitive data stored on our servers, such as your Gemini API Key, is protected with strong encryption.
- On-Device Security: Your session token is stored in your device's secure keychain via Flutter Secure Storage.
5. Data Retention and Deletion
We retain your personal account data for as long as your account remains active. Locally stored history data (chats, flashcards, tests) remains on your device until you clear it within the app or uninstall the app.
6. Your Rights and Account Deletion
You have the right to access and update your profile information at any time within the app. You also have the right to permanently delete your account and its associated data.
To request account deletion, you must send an email to srinath@onecrest.io with the subject line "Account Deletion Request".
For verification and security purposes, this email must be sent from the same email address that you used to sign up for your JeePro account.
Upon verifying your request, we will permanently delete all personal data associated with your account from our servers within a reasonable timeframe. Please note that account deletion is irreversible.
7. Children's Privacy
The Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If we become aware that we have collected such information, we will take steps to delete it immediately.
8. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy at https://jeepro.com/privacy.html and updating the "Effective Date" at the top. We encourage you to review this policy periodically.
9. Contact Us
If you have any questions or concerns about this Privacy Policy, please contact us at srinath@onecrest.io.