WifiSnap

Privacy Policy

Effective: April 1, 2026 · WifiSnap (https://wifisnap.app)

1. Overview

The party operating WifiSnap(the “Service”) (the “Operator”) respects your privacy and processes personal information in line with applicable law. This policy applies to the mobile app and this promotional website (together, the “Service Channels”).

2. Information we process

2.1 On your device

  • Camera and photos: Images you capture of Wi‑Fi signage or choose from your library for parsing and QR reading.
  • Network and connectivity: Wi‑Fi SSIDs, connection state, and speed-test results, within what the operating system exposes to the app.
  • History you save: SSIDs and passwords (or related fields) you choose to keep in the app's on-device history (e.g. local database). This stays on your device unless you use device backup or transfer features offered by the OS.
  • Device and app context: OS version, app version, language, and similar technical data the app needs to run and to show system permission prompts.

2.2 Cloud photo analysis (Supabase Edge and Google Gemini)

When you use features that analyze a photo to suggest Wi‑Fi credentials, the app sends the image over HTTPS. Depending on build configuration, that may follow one of these paths:

  • Via Supabase Edge Function: The image is sent to an Edge Function the Operator runs on Supabase. In the current implementation, that function does notstore the image or extracted credentials in the Operator's database or file storage; it forwards the image to Google Gemini for analysis, receives the model output, and returns it to your app. Processing in memory on the Edge worker is transient.
  • Directly to Google Gemini: If configured, the app may call the Gemini API directly from the device instead of using the Edge Function. Google then processes the image under its own terms and policies.

In both cases, Google acts as a processor for that analysis. What Google logs or retains is governed by Google's documentation for the relevant API.

2.3 Optional OCR (Google Cloud Vision)

On some iOS builds, if Google Cloud Vision is configured for text recognition, images may be sent to that Google product instead of or in addition to the flows above. Use is subject to Google Cloud terms and settings.

2.4 Android — Firebase Analytics

The Android app includes Google Firebase Analytics, which can collect usage and device-related events in aggregated form. You may limit related tracking or reset advertising identifiers where your device and OS allow.

2.5 This website

The promotional site does not offer user accounts. We use Vercel Web Analytics on this site to measure page views and related traffic in aggregate. It is designed to avoid third-party advertising cookies; details are described in Vercel's documentation. Access logs (for example IP address, User-Agent, timestamps) may still be created by hosting or CDN providers.

3. Purposes of processing

  • Extracting Wi‑Fi network names and passwords (or keys) from images and QR codes
  • Helping you connect using information the OS provides
  • Speed tests and related quality features
  • Understanding app usage and improving stability (including via Firebase Analytics on Android and Vercel Web Analytics on this website)
  • Security, abuse prevention, and legal compliance

4. Retention and deletion

  • Operator servers (Edge flow): Images sent to the Supabase Edge Function path described above are not written to Operator-controlled databases or object storage in the current implementation; they are processed to obtain a response and are not retained by the Operator as part of that flow. Platform or error logs from Supabase or other infrastructure may still contain limited technical metadata according to those providers' defaults.
  • On-device history: Retained until you delete it in the app, clear app data, or remove the app, subject to OS backup behavior.
  • Google (Gemini, Cloud Vision, Firebase): Retention and deletion follow Google's policies for each product.
  • Website logs and analytics: Retained according to Vercel and other hosting/CDN configuration.

5. Sharing and processors

We do not sell or rent personal information. We use service providers who process data on our behalf, including:

  • Supabase — Edge Functions and related infrastructure for the backend path described above
  • Google — Gemini (and optionally Cloud Vision on iOS), and Firebase Analytics on Android
  • Vercel — hosting, CDN, and Web Analytics for this website
  • Apple App Store and Google Play — for app distribution and their own analytics and policies

We rely on contractual and technical safeguards where available. Subprocessors may change; material changes will be reflected in this policy or in-app notices when appropriate.

6. Your rights

Depending on applicable law, you may request access, correction, deletion, restriction, or other rights. Contact us via the email below (and use device or app controls for on-device data). We will respond within a reasonable scope and timeframe.

7. Children

The Service is not directed at children as a primary audience. We do not knowingly collect personal information from children without appropriate parental consent where required.

8. Security

We use technical and organizational measures—including access control, encryption in transit (e.g. HTTPS), and careful handling of API keys and secrets—to reduce the risk of loss, theft, leakage, or tampering.

9. Contact

For privacy questions or complaints:
Email: hpark2330@gmail.com

10. Changes

We may update this policy when the law or the Service changes. We will post updates with a new effective date on the website or in the app.