SatvikScan ("we", "us", "our") is a food-scanning application available on Android, iOS, and web. The application is operated as an independent project based in Sydney, Australia.
For the purposes of applicable data protection law, SatvikScan is the data controller of personal information processed through the app and this website.
Contact: support@satvikscan.app
This Privacy Policy applies to:
It does not apply to third-party services you may access through the app (such as Google's sign-in page), which are governed by their own privacy policies.
| Data | When collected | Stored where |
|---|---|---|
| Display name | When you set or change your name in Profile | Supabase cloud database |
| Product submissions — barcode, product name, brand, ingredients text | When you add a product to the community database | Supabase cloud database |
| Product reports — reason text you write | When you flag a scan result as incorrect | Supabase cloud database |
| Support messages — name, email, message text | When you contact us via the support form | Delivered to our email inbox only; not stored in a database |
| Data | When collected | Stored where |
|---|---|---|
| Usage Analytics — pages visited, interaction events, device type, approximate location | When you browse the website or use the app | Google Analytics 4 servers (aggregated and anonymised) |
| Scan history — product barcode and timestamp of each scan | Each time you scan a product barcode | Supabase cloud database |
| Points and rank — cumulative point total | When you earn points (scanning, submitting products) | Supabase cloud database; cached locally |
| User ID — a randomly generated UUID | On first use (anonymous) or on Google sign-in | Supabase Authentication; cached locally |
| Security audit log — timestamps of sensitive actions | Automatically on certain moderation actions | Supabase cloud database; visible to moderators only |
If you choose to sign in with Google, we receive your email address, profile name, and profile picture URL (the picture is not stored). We do not receive your password or any other data.
If you choose "Try as Guest", Supabase creates an anonymous authentication session. No email address, name, or external account is linked. Scan history is associated with this anonymous ID and may be lost if the app is uninstalled.
Photos are processed entirely on-device using Google ML Kit or Tesseract.js. The raw photo is never uploaded to our servers.
We use your data strictly to provide the core service, maintain your account, publish verified product submissions, and respond to support enquiries.
For users in the EEA, UK, and Australia, we process data based on contract performance, legitimate interests, and consent where required.
All cloud data is stored with Supabase (USA). Our database enforces strict Row-Level Security policies. All data is encrypted in transit and at rest.
We use Supabase, Google Sign-In, Google ML Kit, Tesseract.js, Open Food Facts, and Vercel. We also use Google Analytics 4 (GA4) to monitor broad usage and improve our services, but without tracking specific identifying personal details outside what is described above.
We request Camera and Photo Library permissions solely for barcode scanning and on-device ingredient text extraction. You can revoke these at any time.
Your scan history and profile are retained until you delete your account. Product submissions remain in the community database but are anonymised after account deletion.
Delete your account anytime from Profile → Delete Account.
Change your display name directly in the app.
SatvikScan is not directed at children under 13. We do not knowingly collect personal information from children.
Your data is stored on Supabase infrastructure in the United States. Standard Contractual Clauses (SCCs) are used for legal international transfer compliance.
We may update this policy. Your continued use after the effective date constitutes acceptance.
Email: support@satvikscan.app