ScanPages
Get the beta
LEGAL

Privacy policy

Last updated: May 5, 2026 · Effective from beta launch

The short version: ScanPages processes your documents on your phone. We don't see them, and neither does anyone else. This page explains the details — written in plain English first, with the legalese kept to the minimum we actually need.

Beta draft — this policy applies to the beta program. We'll publish a final version before 1.0 ships. You'll be notified by email if anything material changes.

Section 01

The short version

ScanPages processes your documents on your phone. Scanning, edge detection, OCR, and signatures all happen locally — no upload, no cloud relay.

We don't see your scans. The only thing leaving your device is what you explicitly share or export.

Section 02

What we don't collect

The list of things we do not collect is long on purpose:

  • The contents of your scans — text, images, or extracted OCR data
  • Filenames or folder structure inside the app
  • Your contacts, calendar, microphone audio, or location

Section 03

What we do collect (and why)

We keep this minimal. Aggregate, anonymous usage counters (e.g. how many users opened the app this week) help us understand whether the product is working. Crash reports help us fix bugs.

Crash reports are scrubbed of personal data before they reach us. They never contain document content.

Section 04

On-device processing

Camera capture, page detection, OCR, and signature application all run on your device. The app works in airplane mode — try it.

We use Apple's Vision framework on iOS and Google's ML Kit on Android. Neither sends document content off-device for these tasks.

Section 05

Optional sync (planned for v1.1)

Multi-device sync is not available in the current beta — your documents live only on the device you scanned them on.

Sync is planned for v1.1 and will be opt-in, end-to-end encrypted. When you turn it on:

  • Files are encrypted on your device with a key derived from your passphrase
  • Only encrypted ciphertext leaves your phone
  • We literally cannot decrypt your documents — we don't have the key
  • If you lose your passphrase, we cannot recover your files

Section 06

Third parties

We use a small number of third-party services. Each is listed below with the purpose and the data shared. Document contents are never sent to any third party.

  • Firebase Authentication (Google) — sign-in, account creation, password reset; we share your email and provider (Google or email)
  • Firebase Realtime Database (Google) — stores a minimal user record (email, display name, sign-up date, sign-in provider); never your scans or document contents
  • Firebase Analytics (Google) — anonymous app usage events (screen views, feature taps) to understand how the app is used and catch regressions
  • RevenueCat — subscription state and purchase history when you subscribe to premium features
  • Apple App Store / Google Play — purchase processing and receipts
  • Plausible Analytics — privacy-respecting page views on this website only (no cookies, not used inside the app)

Section 07

Your rights

Because we don't store your documents, most data-subject requests don't apply. If you have an account for sync (v1.1+), you can delete it at any time from inside the app, which permanently removes the encrypted blob from our servers.

Questions? Email privacy@scanpages.app and we'll respond within 30 days.

Section 08

Children

ScanPages is not directed at children under 13. We do not knowingly collect data from children. If you believe a child has provided us information, contact us and we'll delete it.

Section 09

Changes to this policy

We'll notify users by email of any material change before it takes effect. Minor wording changes are noted in the changelog at the bottom of this page.

Section 10

Contact

Questions about privacy? privacy@scanpages.app

Everything else: hello@scanpages.app