Privacy Policy for Iking Lens
Effective date: June 30, 2026
This Privacy Policy applies to the Iking Lens app for mobile devices, together with any related services operated by Iking Studio LLC, a limited liability company based in California, United States (collectively, the “Application”). Iking Studio LLC is referred to as the “Service Provider,” and can be contacted at [email protected].
Iking Lens is a local-first application. Your photos and the content you add — such as descriptions, tags, and audio notes — are stored on your device and are never uploaded to the Service Provider’s servers. The Application does not require an account. The only information that leaves your device is anonymous diagnostic data, which is off by default and collected only with your consent (see “No Account; Anonymous Diagnostics” below). You can opt out at any time in Settings → Diagnostics.
1. What Stays on Your Device
Your photos and the content you add (such as collections, tags, descriptions, and audio notes), along with the app’s search indexes, are stored in the Application’s local database on your device. The Service Provider never uploads, stores, or transmits this content to its servers.
If you turn on your device’s own cloud backup (for example, Apple iCloud), your device’s operating system may include the Application’s on-device data in that backup. This is controlled by your device settings and your operating-system provider, not by the Service Provider.
2. On-Device Processing (AI / Machine Learning)
The Application uses artificial-intelligence / machine-learning features — image embeddings and text-based photo search — that run entirely on your device using models bundled with the app. The contents of your photos are never uploaded to the Service Provider or any third party for analysis, and the Application does not use your content to build cloud profiles or deliver server-side personalized content.
3. No Account; Anonymous Diagnostics
The Application does not require an account and does not ask you to provide personally identifiable information. Diagnostic collection is off by default and begins only if you opt in — at first launch or in Settings → Diagnostics — and you can turn it off again at any time.
When enabled, the Application uses Google Firebase (Google Analytics for Firebase, Firebase Crashlytics, and Firebase Performance Monitoring) to collect anonymous diagnostic data. On Android, these Firebase products additionally rely on Google Play Services; on iOS they do not. The diagnostic data may include:
- App crash reports and diagnostic logs
- Performance metrics (such as startup time and responsiveness)
- Feature-usage counts and the screens you visit, with timestamps
- A random per-install identifier that contains no personal information and is reset if you reinstall the app
- Standard technical details such as your device model, operating system and version, app version, and language
- Your device’s Internet Protocol (IP) address, used only to infer an approximate location (such as country and region). We do not use your IP address to identify you; Google discards it after deriving coarse location for analytics, and where any IP-associated data is retained (for example, for performance monitoring) Google deletes it on a short schedule, currently up to 30 days
Your photos and the content you add are never included in diagnostic data. The Application does not collect advertising identifiers and does not use your data for advertising. Diagnostic data is processed by Google in the United States.
4. Device-to-Device Transfer
When you share a snapshot or move your library to another device over Wi-Fi (Settings → Backup & Restore), the transfer happens directly between devices on your local network over an encrypted channel. The data never leaves your local network and never touches the Service Provider’s servers.
5. Cookies and Tracking Technologies
The Application does not use cookies. Its third-party SDKs (Firebase) use mobile identifiers and similar technologies to support analytics and crash reporting, as described above. Where required by applicable law, the Service Provider obtains your consent before any non-essential collection — which is why diagnostics remain off until you opt in.
6. Third-Party Services
The Application uses third-party services that have their own privacy policies governing how they handle data:
- Google Analytics for Firebase
- Firebase Crashlytics
- Firebase Performance Monitoring
- Google Play Services (Android only)
See also Google’s Privacy Policy: https://policies.google.com/privacy.
7. Third-Party Access and Disclosure
Only anonymous diagnostic data (crash reports, performance metrics, and feature-usage counts) is transmitted to the third-party services listed above to help the Service Provider improve the Application. The Service Provider does not sell your personal information. The Service Provider may disclose information:
- as required by law, such as to comply with a subpoena or similar legal process;
- when it believes in good faith that disclosure is necessary to protect its rights, protect your safety or the safety of others, investigate fraud, or respond to a government request;
- to trusted service providers (such as Google/Firebase) who process data on the Service Provider’s behalf under a data processing agreement that restricts their use of the data to providing the service to us.
8. International Data Transfers
The third-party services may process data in countries outside your country of residence, including the United States. Google is certified under the EU-U.S. Data Privacy Framework (and its UK and Swiss extensions), which the European Commission recognizes as providing an adequate level of protection for such transfers. Transfers are additionally governed by Google’s data processing terms, which incorporate the European Commission’s Standard Contractual Clauses as a fallback safeguard. Where required and legally permitted, the Service Provider also relies on your consent.
9. Your Rights
Because the Application requires no account and stores your content only on your device, the Service Provider does not hold a personal profile that identifies you. You exercise your rights directly, without needing to contact us:
- Access & portability: your content lives on your device — you can view and edit it at any time, and move a copy to another device using the built-in wireless transfer (Settings → Backup & Restore).
- Correction & deletion: edit or delete individual items, or erase everything via Settings → Delete All App Data (or by uninstalling the app).
- Withdraw consent: turn diagnostics off at any time in Settings → Diagnostics.
- Complain to a regulator: if you are in the EU/EEA or UK, you have the right to lodge a complaint with your local data protection authority.
The anonymous diagnostic data collected through Firebase is not linked to your identity, so the Service Provider cannot single out or retrieve the records belonging to a specific person — an individual access or deletion request for that data cannot be actioned. Instead, your controls are to leave diagnostics off (the default), turn them off, or reinstall the app (which resets the anonymous identifier); this data is also deleted automatically under the retention periods in Section 12. If you have questions about your privacy or these rights, contact [email protected].
10. Your California Privacy Rights (CCPA / CPRA)
If you are a California resident, you have the right to know what personal information is collected, to delete personal information, to opt out of the sale or sharing of personal information, and to non-discrimination for exercising these rights. The Service Provider does not sell or share your personal information — including no disclosure for cross-context behavioral advertising (what the CPRA calls “sharing”) — does not collect sensitive personal information, and does not collect personal information tied to your identity. As explained in Section 9, you exercise these rights directly on your device, and anonymous diagnostic data cannot be linked to an individual for retrieval or deletion. For privacy questions, contact [email protected].
11. Opt-Out Rights
Diagnostics are off by default. You can turn diagnostic collection on or off at any time in Settings → Diagnostics. You can also stop all collection by uninstalling the Application. Uninstalling stops further collection but does not automatically delete anonymous diagnostic data already transmitted to Google; that data is deleted automatically according to the retention periods below.
12. Data Retention
- Your library content — your photos and the content you add — stays on your device until you delete it. You can delete individual items or wipe everything via Settings → Delete All App Data, or by uninstalling the app.
- Anonymous diagnostic data is retained by Firebase according to each product’s policy: crash reports (Crashlytics) for up to 90 days; analytics data for approximately 2 months; and performance data (Performance Monitoring) for up to 60 days, with IP-associated events retained no more than 30 days — after which it is deleted automatically.
- The Service Provider does not retain server-side copies of your content or personal profiles, because none are collected.
13. Security
The Service Provider takes the confidentiality of your information seriously. Because your content stays on your device, the primary protection is the security of your own device — we recommend enabling the Application’s optional Face ID / biometric lock. Diagnostic data in transit is protected by the third-party services’ security measures, and device-to-device transfers use an encrypted channel.
14. Data Breach Notification
If a data breach affecting personal data occurs, the Service Provider will notify affected users and any relevant authorities as required by applicable law, including, where required, the nature of the breach and the steps being taken to address it. Because the Application collects no contact details, any notice to users would be given through the app or this website.
15. Children’s Privacy
The Application is not intended for children under 13 (or such higher age as required by applicable law). The Service Provider does not knowingly collect personal information from children. If you believe a child has provided personal information, contact [email protected] and the Service Provider will take appropriate action.
16. Changes to This Policy
The Service Provider may update this Privacy Policy from time to time and will post the updated policy with a new effective date. Any change that affects what data leaves your device will be reflected in an updated policy before that feature ships. Where required by law, the Service Provider will seek your consent to material changes.
17. Your Consent
Where processing is based on consent, you provide it by affirmatively opting in to the relevant feature (for example, enabling diagnostics). For users in the EU/EEA and UK, the legal basis for this diagnostic processing is your consent (Article 6(1)(a) GDPR). You may withdraw consent at any time without affecting processing carried out before withdrawal.
18. Governing Law
This Privacy Policy is governed by the laws of the State of California, United States, without regard to its conflict-of-laws rules. Nothing in this section deprives you of the protections of the mandatory consumer-protection or data-protection laws of your country or state of residence.
19. Contact Us
If you have any questions about this Privacy Policy or the Service Provider’s privacy practices, contact [email protected].