Privacy Policy for GestureFlux

Effective Date: September 11, 2025

Last Updated: September 11, 2025

1. Information We Collect

Device Information:

  • Device Code: A randomly generated 4-digit code for device identification during transfers
  • Device Name: Your device's WiFi Direct name for connection purposes
  • Transfer History: Local record of files sent/received (file names, sizes, timestamps)

Camera Data:

  • Gesture Recognition: Camera feed processed locally for hand gesture detection
  • No Storage: Camera data is processed in real-time and never stored or transmitted

File Access:

  • Selected Files: Only files you explicitly select for transfer
  • File Metadata: File names, sizes, and types for transfer purposes
  • No Content Access: We never read, store, or transmit file contents to our servers

2. How We Use Information

Core Functionality:

  • Device Identification: Device codes enable peer-to-peer connections
  • Transfer Management: Track transfer progress and history locally
  • Gesture Controls: Process camera input for gesture recognition
  • Vault Security: Store encrypted gesture sequences and PINs locally

Data Processing:

  • All processing happens locally on user's device
  • No data is sent to external servers
  • No cloud storage or backup of user's files

3. Data Storage & Security

Local Storage Only:

  • Device Storage: All data stored locally on user's device
  • Encryption: Vault data protected with SHA-256 encryption
  • No Cloud Sync: No data transmitted to external servers

Security Measures:

  • Encrypted Vault: Gesture sequences and PINs are hashed and encrypted
  • Secure Transfer: Direct device-to-device transfer via WiFi Direct
  • No Third-Party Access: No external services access your files

4. Third-Party Services

Google MediaPipe:

  • Purpose: Hand gesture recognition processing
  • Data: Camera feed processed locally, not transmitted
  • Privacy: Subject to Google's MediaPipe privacy terms

Google Play Services:

  • Purpose: In-app purchases and billing (Premium features)
  • Data: Purchase information handled by Google Play
  • Privacy: Subject to Google Play's privacy policy

5. Permissions Explained

Camera Permission:

  • Purpose: Hand gesture recognition for file transfer controls
  • Usage: Real-time processing only, no recording or storage

Storage Permission:

  • Purpose: Access files users select for transfer
  • Usage: Read-only access to selected files, no automatic scanning

WiFi Permission:

  • Purpose: Enable WiFi Direct connections between devices
  • Usage: Local network communication only

Location Permission (Android 13+):

  • Purpose: Required by Android for WiFi Direct functionality
  • Usage: Not used for location tracking, only WiFi Direct compliance

6. Data Sharing

No Data Sharing:

  • We do not sell, rent, or share user's personal information
  • No analytics or tracking services
  • No advertising networks
  • Files transferred directly between your devices only

7. Children's Privacy

GestureFlux does not knowingly collect personal information from children under 13. The app is designed as a utility tool suitable for all ages.

8. Your Rights

Data Control:

  • Delete Data: Uninstall the app to remove all local data
  • Clear History: Use in-app settings to clear cache history
  • Vault Access: Only user can control vault access via gestures/PIN

9. Changes to Privacy Policy

We may update this privacy policy occasionally. Changes will be posted in the app and on our website with an updated "Last Updated" date.

10. Contact Information

Questions about this privacy policy?