Effective Date: October 26, 2025
This Privacy Policy describes how WeDevelopInPK (โwe,โ โour,โ or โusโ) handles information within our Android apps: PixCrypt, Medical DICOM Viewer, and DataVault: Photo & Video Vault. We value your trust and are committed to transparency, user control, and security.
PixCrypt is a file encryption tool that uses steganography to conceal encrypted files within common "carrier" files (like photos or PDFs). It is designed for maximum privacy and operates strictly locally.
๐ซ Strict Local-Only Operation: PixCrypt does not connect to any external server, cloud storage (Google Drive, Dropbox, etc.), or analytical services. **Your files never leave your device.**
โ No Advertisements (Paid App): As a premium paid application, PixCrypt does **not** contain any advertising libraries (such as Google AdMob). Therefore, no data is collected by third parties for advertising or tracking purposes via the app itself.
๐ Encryption Details:
- **Cryptography:** We use industry-standard, robust cryptography libraries (Google Tink and AES-GCM).
- **File Routing:** Small files (under 5MB) use AES-256 GCM encryption. Large files (e.g., videos) use Google Tink Streaming AEAD (AES256-GCM-HKDF-4KB) for stream performance.
- **Keys:** Encryption keys are derived from your password using PBKDF2 with HMACSHA256 (65,536 iterations).
๐ Password Security: Your master password is used solely on your device to derive the encryption key. We never store, transmit, or have access to your password, making password recovery impossible.
๐ File Access: The app requests storage permission to read the user-selected carrier file and the files to be encrypted (payload), and to write the final PixCrypt file back to a user-specified location.
The Medical DICOM Viewer is designed to help users view and manage DICOM images efficiently while ensuring privacy and security.
๐ซ No Personal Data Collection: The app does not collect, store, or transmit personal or medical data to our servers. DICOM files remain entirely local to your device unless you manually upload them using integrated cloud services.
๐ Local File Access: The app requests storage permission only to open DICOM images or ZIP archives you select. These files are processed locally, never transmitted externally, and deleted automatically from cache when closed.
โ๏ธ Google Drive Integration:
- Authentication: Securely handled via Google Sign-In (OAuth 2.0). Only limited basic info (like your email) is shown in-app and not stored.
- Permissions: The app requests DriveScopes.DRIVE_READONLY โ meaning it can view and download, but never modify or delete your files.
- Temporary Files: Any downloaded files are cached in a secure private folder and auto-deleted after use.
๐ณ Google Play Billing: Used for one-time Pro upgrades. Payments are processed entirely by Google Play; we never see or store your payment details.
๐ Ads and Data Sharing: This app displays ads using Google AdMob. AdMob may collect approximate location, device or other IDs, and app interaction data for ad personalization, analytics, and fraud prevention. For more details, review Googleโs Privacy Policy.
๐ Security: All data and communications are encrypted in transit using HTTPS/TLS. The app does not store sensitive credentials on any server.
DataVault provides a secure space to protect your private photos, videos, and files. It operates fully offline unless you choose to use optional encrypted cloud backup features.
๐ก๏ธ No Personal Tracking: DataVault does not collect analytics or personally identifying data. However, the free version displays ads via Google AdMob, which may collect non-personal identifiers for ad delivery and performance monitoring.
๐ Local Storage & Encryption: Files remain encrypted locally with AES-256 or Google Tink Streaming AEAD (AES256-GCM-HKDF-4KB). Files smaller than 5MB (such as photos) use direct AES-256-GCM encryption; larger files (videos or archives) use streaming encryption for performance. Encryption and decryption occur entirely on your device.
โ๏ธ Optional Cloud Backup:
DataVault supports Google Drive, Dropbox, and WebDAV as optional encrypted backup destinations.
- All uploads are encrypted before leaving your device.
- Your credentials are handled securely through each providerโs OAuth 2.0 or native API login flow.
- We never store or access your login information or files.
- Files uploaded to the cloud remain unreadable to us and to the cloud providers because only you possess the decryption key.
๐ Password & Biometric Security: Your master password is used to derive encryption keys with PBKDF2 (65,536 iterations). We never store or transmit it. Biometric unlock (fingerprint/face) is managed by Androidโs secure Keystore system.
๐ด Offline First: DataVault works offline by default. No background upload, telemetry, or tracking occurs without user action.
๐งพ Ads and Data Sharing: Like Medical DICOM Viewer, DataVault uses Google AdMob to display ads. AdMob may access approximate location, device identifiers, and app activity for personalized or non-personalized ad delivery. Users can opt out of ad personalization via their deviceโs Google Account settings.
๐๏ธ Data Deletion: You can delete all app data locally by clearing the appโs storage or uninstalling it. To request deletion of analytics or ad-related data associated with your use, contact us via email at wedevelopinpk@gmail.com.
๐ซ No Password Recovery: For security reasons, lost passwords cannot be recovered. Keep your password safe โ we cannot restore your vault.
๐ Security Commitment: We use industry-standard encryption and secure connections to protect your data. However, users are responsible for managing their own passwords and backups.
Our apps are not directed to children under 13 years of age. We do not knowingly collect personal information from minors.
This policy may change as our apps evolve or as regulations require. We will always post the latest version on this page with an updated effective date.
If you wish to request deletion of your data (for example, support emails or feedback records), please visit our dedicated Data Deletion Request page: /data-deletion.html .
As our apps do not maintain their own servers or user databases, most user data remains only on your device or in third-party services such as Google Drive, Dropbox, or WebDAV. You may delete such data directly from those services or contact us at wedevelopinpk@gmail.com for further assistance.
If you have questions, concerns, or deletion requests, contact us at:
Email: wedevelopinpk@gmail.com
Google Privacy Policy: https://policies.google.com/privacy
Dropbox Privacy Policy: https://www.dropbox.com/privacy
WebDAV providers follow their own respective privacy terms.