At Kauntech, owned and operated by Kauntech Technologies Pvt. Ltd. ("we", "us", or "our"), your privacy is our core philosophy. We design our offline-first business card scanning ecosystem to guarantee that your contacts remain secure and entirely under your own control.
This Privacy Policy explains how we collect, process, disclose, and secure your personal information, specifically in accordance with the Digital Personal Data Protection (DPDP) Act 2023 of India, and details how our App handles data associated with Google OAuth integrations.
Our On-Device-First Principle
Kauntech is built on-device-first: your camera images are read and parsed locally on your phone using on-device OCR, and your contacts are kept in an encrypted database on your device. Cloud backup is optional — on free plans everything stays on your device, and on paid plans you can switch on cloud backup to sync across devices. You choose exactly which categories of data (contacts, notes and tags, AI intelligence, images, and so on) are backed up to your Kauntech account on our secure cloud servers, and anything you don't select never leaves your device. You can turn cloud backup off, wipe your cloud data, or delete your account at any time. We never sell your data and never use it for advertising.
1. Information We Process & Record
Because Kauntech operates primarily offline, our processing of data is strictly limited. We only process information required to manage subscription tiers, maintain legitimate operational consent, and enable synchronization triggers:
A. Account & Operational Metadata
Authentication details: Name, professional email address, and encrypted passwords or magic-link identifiers.
SaaS subscription metadata: Active subscription tier, total monthly scans logged, and your K-Tokens balance.
Device security logs: Device specifications and authorization markers. Under our secure architecture, we log minimal device telemetry strictly to prevent tampering, quota hacks, or credential theft. This includes a one-way hashed, per-install device identifier (a random value generated on first launch — not your hardware ID, advertising ID, or any cross-app fingerprint) and a hashed IP address, used solely to enforce one-free-trial-per-install and to detect fraud. We do not use this data to track you across other apps or for advertising.
Referral program data: If you join via or share an invite, we store your referral code, the link between a referrer and the friends they invite, and anonymous invite-link click logs (platform, user-agent, and a hashed IP address). We use this only to operate the rewards program and to prevent referral abuse. To save you typing, the sign-up screen may read your clipboard once to auto-fill a referral code you copied from an invite link — iOS shows its standard paste notification, the contents are used solely to detect that code, and nothing is read or stored if no valid code is present. The program is optional and can be ignored at sign-up.
B. Leads & OCR Contact Details (Captured On-Device, Synced to Your Account)
Business Card Scans: Images captured by your camera are read and parsed locally on your device using an on-device OCR engine. If you enable cloud backup, the card image is also stored in your Kauntech account so you can access it across devices; otherwise it stays on your device. You can delete it or wipe your cloud data at any time.
Parsed Contacts: Extracted fields (Name, Phone number, Email ID, Company, Role, and physical addresses) are kept on your device. If you enable cloud backup, the categories you choose (contact details, notes and tags, AI intelligence, and so on) are synced to your Kauntech account on our servers; categories you turn off are never uploaded.
Audio Notes: Voice memos recorded right after pitching a prospect are saved locally on the device as audio clips.
C. AI Enrichment, Integrations & Sub-Processors
AI processing: When you request AI features (OCR clean-up, company intelligence, icebreakers, lead scoring or strategy), the relevant card text and contact fields are sent to Google's Gemini API (the Generative Language API), accessed with our own API key, to generate the result, which is then saved against the contact in your account. Under Google's API terms this data is used only to produce your result and is not used to train Google's general models. Data obtained through Google integrations (such as Google Sheets or Gmail) is never sent to any AI service.
Integrations you enable: when you connect Google Sheets, Gmail, Telegram or a webhook, the contact fields you choose are sent to that destination to perform the sync or message you requested. For Telegram, the bot token you provide is stored on our servers so we can deliver your leads to your own chat.
Other processors: subscription and purchase events are handled by a third-party payments processor; crash and error diagnostics (with personal fields scrubbed) by a third-party diagnostics provider. Some of this processing may occur on servers located outside India.
2. Legitimate Purposes & DPDP Notice
Under the DPDP Act 2023, data processing must strictly serve specified, lawful, and necessary purposes. Kauntech processes your account data solely for the following legitimate purposes:
Providing secure user authentication, password resets, and session recovery.
Enabling B2B contact extraction, smart AI enrichment (icebreakers, company details), and on-device formatting fixes.
Accurately tracking scans quotas, billing transactions, and K-Token expenditures.
Processing direct client requests for customer support or system assistance.
3. Google OAuth & API User Data Disclosures
The Kauntech App provides voluntary integrations with Google APIs (Google Sheets and Gmail) to automate follow-up workflows. Connecting these integrations triggers the Google OAuth protocol. The App requests only two API scopes — a file-scoped Google Drive scope (which powers the Google Sheets sync) and a Gmail send scope — plus the basic email and profile scopes used to identify your account at sign-in. Below is the precise disclosure of each scope, its specific purpose, and our strict Limited Use policies:
Scope Name
API Identifier
Exact Purpose within Kauntech
Processing & Retention
Google Sheets sync (Drive, File-Scoped)
.../auth/drive.file
Powers the Google Sheets sync. Lets the App create a spreadsheet and write, append, and organize parsed contacts and leads into that sheet — limited to files the App itself created or that you explicitly opened with it.
Constrained, On-Device Direct Transfer: Access is restricted strictly to files created by the Kauntech App — it cannot view or access any other files in your Google Drive. Data is pushed directly from the App to the Google API; no Sheet data passes through or is saved on Kauntech servers.
Gmail Send
.../auth/gmail.send
Lets you send follow-up emails and outreach templates to leads you scanned, from your own Gmail account. This is a send-only permission: the App cannot read, search, or open your inbox or any existing email. Where a draft is AI-assisted, that text is generated from the business card you scanned, never from any content in your Gmail.
Direct Dispatch: Drafts are created and sent directly via Google Gmail API. No email body, email metadata, or Google login token is sent to or stored on Kauntech servers.
Google Limited Use Compliance
Kauntech's use and transfer of information received from Google APIs to any other app will strictly adhere to the Google API Services User Data Policy, including the Limited Use requirements.
Specifically:
We do NOT sell, trade, rent, or transfer Google OAuth user data to third parties, advertising networks, or data brokers.
We do NOT use Google OAuth user data to display, target, or serve advertisements.
We do NOT use Google OAuth user data to train, enrich, or build generalized artificial intelligence (AI) or large language models (LLMs), and we never transmit it to any third-party AI provider. Data obtained through Google integrations is used only to perform the sync or send action you request.
Google API tokens (Access and Refresh) are stored 100% locally and securely in your device's native secure keychain and are fully cleared upon log-out.
4. Data Security & AES-256 Encryption
We implement top-tier technical and organizational security measures to shield your data from accidental loss, leakage, or unauthorized access:
Encrypted Device Databases: All local database entries, parsed cards, and connected OAuth credentials are secured using AES-256 local keychain encryption.
Transport Layer Security: All communications between the App, Site, and our cloud backend are encrypted in transit using industry-standard TLS protocols.
Isolation Protocols: Third-party API keys and tokens are securely isolated in native keychain storage and cannot be read by other installed applications.
5. Your DPDP Act Rights (Consent, Access & Deletion)
Under the DPDP Act 2023, Indian citizens have robust statutory rights regarding their digital personal data. We fully support these rights globally:
Right to Withdraw Consent: You can disconnect your Google Sheets or Gmail integrations at any time from the App's "Settings" panel, instantly revoking all OAuth permissions.
Right to Access & Correction: You have the right to view all account metadata and correct any inaccuracies inside the App profile.
Right to Erasure (Deletion): You can permanently delete your Kauntech account directly inside the App at any time: Configs → App settings → Account → Delete Account. Your account enters a 30-day grace period (during which you can sign back in and tap Cancel deletion); after the grace window all profile data, scanned cards, contacts, products, templates, integration tokens, voice memos and uploaded images associated with your account are permanently purged from our database by an automated nightly job. You may also clear local-only data by clearing App storage, or submit a deletion request through our Data Deletion Request Portal if you no longer have access to the App.
6. Changes to This Privacy Policy
We may update our Privacy Policy from time to time to accommodate changes in Google Developer Policies, DPDP Act rules, or our offline application workflow. Any updates will be published on this page, and we will update the "Last Updated" timestamp. We recommend checking this page periodically to remain informed about how we safeguard your B2B contacts.
7. Contact our Privacy Officer
If you have any questions, compliance queries, or complaints regarding our data handling practices or Google OAuth integrations, please contact our designated Grievance & Privacy Officer:
Kauntech Technologies Pvt. Ltd. Attn: Data Protection Officer / Grievance Redressal Email: business@voltairtech.com Address: Mumbai, Maharashtra, India