iScanner Privacy Policy

Last updated: March 2026

I. INTRODUCTION

This iScanner Privacy Policy (“Privacy Policy”) is provided by BP Mobile LLC (“we”, “us” or “our”) to ensure transparency regarding the processing of your personal data. It specifies how we collect, process, and use your data when you interact with our iScanner App operating within the ChatGPT environment (the “App”, “our App”).

The purpose of this Privacy Policy is to provide you with clear information on:

• Data Collection and Processing Practices: the specific types of data we handle during your interactions with our App, and the standards governing how long this data is processed and stored;
• Purposes and Legal Bases for Processing: the specific objectives for which we process your data when you interact with the App, together with the legal grounds on which we rely to ensure that such processing is lawful and properly justified;
• Data Retention and Security Practices: how long we retain your data and how we safeguard it;
• Your Rights and Privacy Choices: the rights, choices and controls available to you regarding the management of your data.

Note that this Privacy Policy applies solely to data processed by us in connection with the App’s operation and functionality. It does not govern data processing carried out independently by OpenAI within ChatGPT, which is subject to OpenAI’s own privacy policy and terms.

We encourage you to read this Privacy Policy carefully before using the App. By accessing or interacting with our App, you acknowledge that you have read this Privacy Policy and accept the data processing practices specified herein.

II. CATEGORIES OF DATA PROCESSED

1. Functional Information.

When you interact with the App, we process specific types of information that are strictly necessary to operate the App and deliver its core features (“Functional Information”). We adhere to data minimization principles, limiting the processing duration and scope of this Functional Information solely to what is required to complete the actions you request when interacting with the App. Consequently, all Functional Information is processed on a short-term basis. It is retained on our systems only temporarily, limited to the duration of the specific document or file processing session initiated by you within the App.

The specific types of Functional Information we may process are the following:

a) User Content, which refers to information, files, and materials that:

• you explicitly submit to the App (“Input”);
• you create, modify, or transform using the App’s functionality, or receive as an output in response to your requests initiated within the App (“Output”);
• the names of files and documents processed via the App.

The Scope of User Content Processing. Please note that the App processes and enhances only the specific images, files, or documents that you directly upload through it to fulfill a processing request.

b) App-Specific Commands and Instructions. Given that our App operates within the ChatGPT environment, we process only the specific instructions, commands, prompts, and task-specific parameters you submit directly to the App in order to successfully fulfill your specific commands.

Strict Scope Limitation. We do not request, access, receive, or process your raw chat transcripts, full ChatGPT conversation history or Memories. Our processing is strictly limited to the content and commands that you directly provide in the course of your specific interaction with the App.

c) Operational and Technical Data. To ensure the accurate execution of your commands and to maintain the secure, stable operation of the App, we handle limited technical data associated with your file(s) processing session. This Operational and Technical Data includes:

• Processing Identifiers: system-generated technical indicators such as fileIDs/documentIDs, pageIDs, jobIDs (processing task identifiers), exportIDs (export task identifiers), and temporary pre-signed URLs (generated when upload, preview, or download commands are utilized). These Processing Identifiers are generated and processed on a short-term basis strictly to ensure the proper performance of the App’s core functionalities (document processing, enhancement, export, preview, and download, where applicable). Please note that Processing Identifiers represent purely technical data which does not, on its own, permit direct association with any specific individual.
• Security and Stability Logs: limited technical details necessary to maintain App security and stability, i.e. server-side operational logs (e.g. request/operation timestamps), security-related logs, and error logs.

2. Support Inquiry Information.
Information you may provide via our support channel. If you choose to contact us for assistance via our support email [email protected], you may voluntarily provide the following categories of data: name, email address, the content of your message, and any files you decide to attach to your request. We process this information solely to review and address your inquiry, and to provide technical support or other requested assistance.

III. THE PURPOSES OF PROCESSING YOUR DATA

We process the Functional Information and Support Inquiry Information described in Section II solely for the purposes outlined below. We do not process your data for any purposes incompatible with those described herein.

Accordingly, the purposes of data processing related to the use of the App are the following:

1. To Operate the App and Provide its Functionality. We process the Functional Information as necessary to deliver the App’s functionality, including: (i) Accepting and interpreting your instructions and commands; (ii) Enhancing, transforming, or generating User Content; (iii) Enabling enhanced files downloads; (iv) Ensuring that the App functions correctly.
2. To Maintain, Secure, and Improve the App. We may process certain types of Functional Information (such as Operational and Technical Data) in order to: (i) Monitor the App performance and ensure its stability; (ii) Prevent fraud, abuse, and security incidents; (iii) Diagnose and resolve technical issues; (iv) Improve the reliability and user experience of the App.
3. To Communicate With You and Provide Support. When you choose to contact us via our support email, we process your Support Inquiry Information to enable us to: (i) Receive, review, and respond to your questions or requests; (ii) Provide technical assistance; (iii) Resolve issues affecting your use of the App.

IV. LEGAL BASES FOR DATA PROCESSING

We rely on the following legal bases to process personal information related to your use of the App:

1. Performance of the Contract or Provision of the App Services. Data processing is necessary to deliver the App functionalities, such as file enhancement, generating Outputs, enabling document editing, and ensuring that the App operates reliably.
2. Legitimate Interests. We also may process your data as necessary to pursue our legitimate interests in maintaining the security of our App, ensuring service integrity and preventing misuse, improving the performance and quality of the App, handling user communications and support inquiries.
3. Compliance with Legal Obligations. We rely on the Legal Obligations basis solely in exceptional instances where we must process or disclose certain limited information to the extent strictly required to comply with applicable laws and lawful requests (for example, to meet security, fraud-prevention, or statutory reporting obligations). Such processing is exceptional, applies only to minimal data already generated in connection with your use of the App, and does not involve creating or retaining additional data beyond what is necessary for these legal purposes.

V. DATA PROCESSING SCOPES: GENERAL CHATGPT USE VS. APP OPERATIONS

Our App functions within the ChatGPT environment provided by OpenAI. Consequently, when you use the App, certain data flows necessarily occur within OpenAI's infrastructure to enable the App's functionality. It is important to understand that OpenAI independently processes data related to your use of their platform. These activities are distinct from the processing performed by us as the App developer and are governed by OpenAI’s separate terms and privacy policy.

When you use the App, OpenAI's infrastructure facilitates the transmission of:

• Your Inputs submitted within ChatGPT while interacting with the App (including prompts, files, instructions, commands, and any other content you enter);
• The Outputs produced by the App and delivered back to you within ChatGPT.

OpenAI may store, retain, and otherwise process this information within its own infrastructure in accordance with its own privacy policy, data practices, and technical requirements.

Please note that depending on your ChatGPT personal privacy settings, OpenAI may use data related to your general ChatGPT usage and platform activity to train and improve its AI models. This processing happens exclusively on OpenAI's systems, and we do not control, direct, or participate in it. By adjusting your ChatGPT privacy settings, such as enabling the “Temporary Chat” option and/or utilizing the Data Control Settings, you can effectively manage the use of your data for OpenAI's model training and regulate your chat data retention periods. To help you manage these privacy preferences effectively, we strongly recommend reviewing the following official OpenAI resources:

• OpenAI Privacy Policy;
• OpenAI Data Controls FAQ;
• OpenAI Data Usage for Consumer Services FAQ;
• Temporary Chat FAQ.

Separation of Data Processing Responsibilities. To avoid confusion regarding distinct roles in data processing:

• OpenAI’s Role: OpenAI is independently responsible for all data processing associated with your broader use of the ChatGPT platform, including overall data retention, system logging, safety-related monitoring, and model training (where applicable);
• Our Role: As the App developer, we restrict our processing to Functional Information (needed to operate the App and provide its functionality) and Support Inquiry Information (needed to address specific user support requests). We process this data only on a transient basis and do not retain it beyond what is strictly necessary to provide real-time App functionality or user support.

VI. OUR DATA RETENTION PRACTICES

This Section describes only the data retention periods applied by us as the App developer. Given that the App operates within the ChatGPT environment, OpenAI independently retains data associated with your general ChatGPT platform usage (such as your broader chat history) in accordance with its own policies. To understand OpenAI’s distinct retention periods, please refer to OpenAI’s Privacy Policy and ChatGPT Data Control Settings.

Functional Information. We process Functional Information strictly for the minimum period necessary to operate the App and fulfill your requested features. To ensure strict data minimization, we apply the following retention limitations based on each type of data:

• User Content, App-Specific Commands and Instructions: these types of data are processed on a strictly temporary basis. They are retained only for the minimum duration of your active processing session necessary to successfully execute your commands within the App, perform the requested document enhancements, and return the Output to you. Once the session concludes, this data is queued for deletion.
• Processing Identifiers: these technical indicators are processed temporarily and exist only for the lifespan of the active App processing session to facilitate file handling, previews, and exports;
• Security and Stability Logs: this limited technical data is retained on a short-term basis solely for the time necessary to maintain App security, ensure proper functioning, and perform debugging.

Maximum Retention Cap: as a strict rule, none of the Functional Information described above is retained on our systems for more than 24 hours, unless a longer period is strictly necessary to complete an ongoing technical operation, resolve an active error, or ensure immediate service integrity.

Support Inquiry Information. If you contact us via our support email, we retain the information you choose to provide (e.g., name, email, message text, attachments) only for as long as necessary to: a) resolve your inquiry (provide the technical or functional support requested), b) maintain records (retain a minimal record of the communication for as long as required to ensure service quality and continuity), and c) ensure legal compliance (meet applicable legal obligations, fulfill regulatory requirements, facilitate the resolution of potential disputes or the defense of legal claims).

VII. INTERNATIONAL DATA TRANSFERS

The App is operated by a developer incorporated in the United States and is accessible in multiple jurisdictions. Consequently, information processed in connection with your use of the App may be transferred to, stored, or processed in the United States and other jurisdictions where data protection laws may differ from those in your country of residence.

In addition, as the App operates within the ChatGPT environment, certain Functional Information related to your use of the App is processed by OpenAI in accordance with its own Privacy Policy. OpenAI processes personal data on servers located in multiple jurisdictions, including the United States, and applies safeguards to personal data regardless of where it is processed.

By using the App, you acknowledge that international data transfers outlined in this Section may occur as part of the App’s operation.

VIII. USER PRIVACY RIGHTS

Applicable data protection laws grant you certain rights with respect to your personal information. Subject to the nature, scope, and duration of the processing performed by us, these rights may include:

• The Right to Know and the Right of Access – the right to obtain confirmation as to whether we process personal information relating to you and, where applicable, to request access to such information and general details about how it is processed;
• The Right to Data Portability – the right to request a copy of your personal information in a structured, commonly used, and machine-readable format, where technically feasible and where such information is retained by us;
• The Right to Rectification – the right to request correction of inaccurate or incomplete personal information that we actively process or retain;
• The Right to Data Deletion – the right to request deletion of personal information that we process, subject to applicable legal exceptions. Please note that, given the App’s design, most Functional Information (including User Content) is processed temporarily and is automatically deleted within a short period, meaning that deletion requests may often be satisfied by default operation of the App. Data processed by OpenAI in connection with your use of ChatGPT platform and its deletion are governed separately by OpenAI’s policies;
• The Right to Restriction of Processing – the right, in certain circumstances, to request that we limit the processing of your personal information (for example, while a request regarding accuracy is being reviewed), where such processing is ongoing;
• The Right to Object to Processing of Personal Data – the right to object to certain types of processing where applicable. As the App does not process personal information for direct marketing, advertising, or profiling purposes, this right may have limited applicability in practice;
• Right to Lodge a Complaint With Your Local Data Protection Authority – the right to lodge a complaint with a competent data protection or supervisory authority if you believe that our processing of your personal information infringes applicable data protection laws.

Important Clarifications:

• We can exercise these rights only with respect to personal information that we process and control directly;
• Information processed by OpenAI as part of your use of ChatGPT (including prompts, files, and chat history) is subject to OpenAI’s Privacy Policy and ChatGPT Data Control Settings;
• To protect your information, we may need to verify your identity before responding to a request.

To exercise any of the rights described above, you can contact us at [email protected].

If you are located in the European Union, you may address our representative when you have questions on privacy issues:

Konrad Gutowski, [email protected].

IX. SECURITY

We apply appropriate technical, administrative, and organizational measures to protect information processed in connection with your use of the App against accidental or unlawful loss, misuse, unauthorized access, disclosure, alteration, or destruction.
Our safeguards are designed taking into account:

• the nature of the information processed, and
• the risks associated with the relevant processing activities.

We follow data minimization principles, ensuring that only the minimum amount of information necessary to operate the App is processed and that protective measures are integrated into our processing practices.
Unfortunately, no method of transmission over the Internet, or method of electronic storage, is 100% secure. We do our best to protect your personal data, nevertheless, we cannot guarantee its absolute security. Therefore, you should take special care in deciding what information you provide to the App. In the event that your personal information is compromised as a breach of security, we will promptly notify you in compliance with applicable laws.

X. CHILDREN’S PRIVACY

The App is intended for general audiences, including users aged 13 and above, in accordance with OpenAI’s platform requirements. The App does not target children under the age of 13 and is not designed for use by them.

We do not knowingly collect, solicit, or process personal information from children. For the purposes of this Privacy Policy, the term “child” is interpreted in accordance with applicable data protection laws. As a general rule, we treat individuals under the age of 13 as children, unless applicable law provides otherwise.

No person who is considered a child under applicable data protection laws is permitted to provide personal information through the App without verifiable parental or guardian consent. Responsibility for preventing children from submitting personal information via the App without such consent rests with holders of parental responsibility.

If we become aware that personal information has been provided through the App by a child without appropriate authorization, we will take reasonable steps to promptly delete such information from our systems.

Given that the App operates within ChatGPT, OpenAI’s own age-related requirements and controls also apply. Users under 18 must have permission from a parent or guardian to use ChatGPT, as described in OpenAI’s Privacy Policy.

If you believe that a child may have provided personal information through the App without proper authorization, please contact us at [email protected], and we will review and address the matter promptly.

XI. CHANGES TO THE PRIVACY POLICY

We reserve the right to update the Privacy Policy on this page. You are expected to review this Privacy Policy periodically. Your continued use of the App constitutes acceptance of the then-current Privacy Policy version, regardless of whether you have reviewed the updates.

XII. HOW TO CONTACT US

If you have any questions about this Privacy Policy, please feel free to contact us at [email protected].

Copyright © 2025-2026 BP Mobile LLC