Privacy Policy

Effective Date: January 10, 2025

Welcome to Study Hack ("the App"), operated by Arabai ("we," "us," "our"). We are committed to protecting your privacy and handling your personal data responsibly. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the Study Hack App.

By installing or using the App, you agree to the collection and use of your personal data in accordance with this Privacy Policy. If you do not agree, please do not install or use the App.

1. Information We Collect

1.1 Personal Information

  • Email Address and User ID: Collected when you create an account via Sign in with Apple or similar authentication methods.
  • Authentication Tokens: Stored securely using KeychainSwift to facilitate automatic logins and maintain session security.
  • Subscription Status: Managed by RevenueCat to determine access to app features.

1.2 Usage Data

  • Lesson Creation Activity: Number of lessons created, usage counts for image processing, monthly quota tracking, etc.
  • Device Information: May include device model, operating system version, unique device identifiers, and app version.

1.3 Uploaded Content

  • Documents and Images: When you upload documents (PDF, text, images, etc.) for AI processing, files are processed in-memory without permanent server storage. We do not retain original documents after processing.
  • Generated Study Materials: Summaries, flashcards, and quizzes are stored locally on your device via CoreData.

1.4 Log and Analytical Data (Limited)

We do not collect in-depth analytics or personal browsing data; however, certain basic usage metrics (e.g., daily active users, subscription metrics) may be collected to improve performance and user experience.

2. How We Use Your Information

2.1 Provide and Maintain Our Services

  • To create and manage your user account.
  • To generate summaries, flashcards, and quizzes based on your uploaded content.
  • To handle subscription status and tier-based feature access.

2.2 Improve User Experience

  • To understand usage patterns and improve app functionalities (e.g., performance, AI processing speed).
  • To enhance security measures and prevent fraudulent usage.

2.3 Customer Support

  • To respond to your inquiries, troubleshoot issues, and provide customer service.
  • To send important notices such as subscription updates, policy changes, or security alerts.

2.4 Legal Compliance

  • To comply with applicable laws, regulations, or legal processes.
  • To cooperate with law enforcement or other government agencies as required by law.

3. Data Processing and Storage

3.1 Local Storage (CoreData)

All generated study materials (summaries, flashcards, quizzes) are stored locally on your device. You have full control over this data (e.g., delete, export).

3.2 In-Memory Document Processing

When you upload documents or images for AI processing, files are processed in-memory by our backend (AWS Lambda + Google Gemini AI). We do not retain these files on any server once processing is complete.

3.3 KeychainSwift and Secure Storage

Your email, User ID, and authentication tokens are securely stored on your device using KeychainSwift to ensure safe login sessions.

3.4 Usage Tracking Database (DynamoDB / RevenueCat)

Basic usage metrics (e.g., monthly lesson count, image processing count, subscription status) are stored in our database to enforce usage limits and manage subscriptions.

3.5 Data Retention

  • We retain personal information (e.g., email, user ID) as long as your account is active or as needed to provide our services.
  • If you request account deletion or unsubscribe, we will remove or anonymize your data within a reasonable timeframe, unless required otherwise by law.

4. Third-Party Services

4.1 RevenueCat

  • Handles subscription billing and maintains subscription status.
  • Information shared: minimal necessary data for managing subscriptions (e.g., user ID, transaction info).
  • Your payment information is processed by the Apple App Store; we do not store your financial data.

4.2 Supabase

  • May be used for user authentication.
  • Information shared: credentials and session tokens needed to verify your account.

4.3 AWS Lambda

  • Our backend code runs on AWS Lambda for document/image processing requests.
  • Files are processed in-memory and not stored permanently.

4.4 Google Gemini AI

  • Performs AI-driven text/image analysis to generate study materials.
  • Files are transmitted securely, processed in memory, and not retained thereafter by Google Gemini AI.

We do not sell or rent your personal data to third parties. We only share data with these service providers in order to operate our services.

5. Security Measures

5.1 Encryption in Transit

All data transfers, including uploaded documents and user credentials, occur over secure TLS/HTTPS connections to prevent interception.

5.2 Secure Storage

Personal information (email, user IDs, tokens) is encrypted and stored using KeychainSwift on your device, and in secure databases on our backend services.

5.3 Access Controls

Only authorized personnel with a legitimate business need can access backend systems containing personal data.

5.4 User Responsibilities

  • You are responsible for maintaining the security of your login credentials.
  • Do not share your account details with anyone, and notify us immediately of any unauthorized access.

6. Your Rights

6.1 Access and Control

  • You can view and update your account information in the App.
  • You can delete lesson data or generated content at any time.
  • You may request account deletion by contacting us using the details in Section 9.

6.2 Opt-Out

  • You may uninstall the App at any time to stop all data collection.
  • You may cancel your subscription via your Apple ID settings.

6.3 Legal Rights

Depending on your jurisdiction, you may have the right to request information about how we process your personal data and request corrections or deletions of that data.

7. Data Transfers

Since our servers and third-party services may be located in various regions, your personal data could be transferred and processed across international borders. We take reasonable measures to ensure your data is protected, including security protocols and contractual safeguards. By using Study Hack, you acknowledge and consent to this transfer, processing, and storage of your information.

8. Children's Privacy

Study Hack is not directed at children under the age of majority in their respective jurisdictions. If you become aware that a child has provided us with personal data without parental consent, please contact us immediately, and we will take steps to remove such information and terminate the account if necessary.

9. Contact Us

If you have any questions or concerns regarding this Privacy Policy or our data practices, please contact us:

Email: support@arabai.com

Address: Arabai, P.O. Box 1234, Riyadh, Kingdom of Saudi Arabia

10. Changes to This Policy

We may update this Privacy Policy from time to time. If we make significant changes, we will notify you within the App or via your registered email (if applicable) and update the "Effective Date" at the top. Your continued use of the App following any such update constitutes your acceptance of the revised Privacy Policy.

By using the Study Hack App, you acknowledge that you have read and understood this Privacy Policy and agree to the data practices described.