GrokLens — Privacy Policy

Privacy Policy

Effective: May 2, 2026 · Last updated: May 2, 2026

The short version: GrokLens does not collect, sell, or transmit your personal data. Your photos, OCR text, history, and AI provider keys all live on your device. The only outbound network requests we make are cloud AI calls you explicitly trigger using your own API key — and those go directly from your device to the provider you chose.

GrokLens bundles zero analytics, advertising, attribution, or tracking SDKs. We have no servers that hold your data because we have no servers that talk to your device.

1. Who we are

GrokLens is published by RiteUp AI ("GrokLens", "we", "us"). You can reach us at support@riteupai.com.

2. Data we access on your device

To make the app work, GrokLens requests permission to access certain device features. We access them only on your device, only when you use the relevant feature, and we never copy that data off your device or to ourselves.

Permission	Why we ask	Sent off device?
Camera	Live preview, capture for Vision analysis, document scanning, Live Text.	No
Microphone	Voice prompts and follow-up questions you record.	No
Speech recognition	Transcribing your voice prompts using Apple's on-device speech engine where supported.	No
Photo Library	Picking an existing photo to analyze or to "Save to Photos".	No
Image Playground	Optional, on-device generative reimagining via Apple Intelligence.	No (runs on-device)

3. Data stored locally on your device

The following information lives entirely inside the app's sandbox on your iPhone or iPad. We can't read it, and it isn't backed up to any server we operate.

Analysis history — capture image, on-device Vision summary, optional AI response, timestamp.
Custom extraction schemas you create.
App preferences — what features are enabled, which AI provider you've selected.
Daily query usage counter for free-tier limits.
API keys for any third-party AI providers you've configured. These are stored in the iOS Keychain with kSecAttrAccessibleWhenUnlockedThisDeviceOnly.

You can delete all of this at any time from Settings → LangExtract → Clear All History, and you can remove the app to erase everything else.

4. On-device analysis

The Vision pipeline (text recognition, barcode detection, image classification, face detection, language detection, sentiment, named-entity recognition, document scanning, Live Text) runs entirely on your device using Apple's Vision and Natural Language frameworks. None of it requires a network connection, and none of it sends data to GrokLens or any third party.

5. Optional cloud AI providers (you bring your own key)

If you choose to enrich a result with cloud AI, GrokLens will send the request directly from your device to the provider you selected, using the API key you supplied. We do not proxy, log, store, or otherwise see that traffic.

Provider	Endpoint your device contacts	What's sent
xAI (Grok)	`api.x.ai`	Image, prompt, on-device Vision summary.
OpenAI	`api.openai.com`	Image, prompt, on-device Vision summary.
Anthropic (Claude)	`api.anthropic.com`	Image, prompt, on-device Vision summary.
Google (Gemini)	`generativelanguage.googleapis.com`	Image, prompt, on-device Vision summary.
Apple Intelligence	None — runs on-device	Stays on your device.

Each provider has its own privacy policy that governs what happens to your data once it reaches them:

xAI — x.ai/legal/privacy-policy
OpenAI — openai.com/policies/privacy-policy
Anthropic — anthropic.com/legal/privacy
Google — policies.google.com/privacy

You are responsible for understanding how your selected provider treats the data you send it. You can stop using a provider at any time by deleting the API key in Settings → AI Providers.

6. In-app purchases

GrokLens offers an optional one-time "Lifetime" unlock through Apple's StoreKit. The purchase is handled entirely by Apple — Apple receives your payment information and provides us with a verified entitlement only. We never see your payment details. Refunds and subscription management are handled through your Apple ID account at reportaproblem.apple.com.

7. No analytics, no tracking, no ads

We do not use any analytics, attribution, advertising, or crash-reporting SDK. There are no third-party SDKs in the app aside from Apple's own frameworks. The app declares NSPrivacyTracking = false in its PrivacyInfo.xcprivacy manifest, with an empty NSPrivacyTrackingDomains array.

8. Children

GrokLens is not directed to children under 13. We do not knowingly collect personal information from children. If you believe a child has provided us information, please contact us at support@riteupai.com.

9. Your rights

Because all your data is on your device, you can exercise full access, correction, deletion, and portability rights yourself:

Access / export — open any history record and tap Share to export the image and text.
Delete — Settings → LangExtract → Clear All History wipes the history, and removing the app removes everything else.
Withdraw consent for cloud AI — Settings → AI Providers → remove the API key.

Where applicable law (such as the GDPR or CCPA) gives you additional rights against a data controller, those rights are limited here because we never receive your data. If you still wish to exercise such a right, contact us at support@riteupai.com.

10. Security

API keys are stored in the iOS Keychain with the kSecAttrAccessibleWhenUnlockedThisDeviceOnly protection class — they are not synced to iCloud Keychain and never leave the device unlocked. You may optionally require Face ID / Touch ID before keys can be read by enabling biometric protection in Settings → Preferences.

11. Changes to this policy

If we make material changes, we will update the "Last updated" date at the top and surface the change in-app or via a release-note entry. Continued use of GrokLens after the effective date of any change indicates your acceptance of the updated policy.

12. Contact

Questions, deletion requests, or feedback: support@riteupai.com.