• ChameleonNetPulse
  • ImageImage EnhancerMagic EraserBackground Remover
  • About
  • Contact
Copyright 2026 CristaLabs. All rights reserved.
  • About/
  • Contact/
  • Privacy Policy/
  • Terms/
  • Refund Policy
Legal Document · Chameleon App

Privacy Policy

Last updated: June 2026  ·  Applies to the Chameleon Android app by CristaLabs

Table of Contents
  1. Introduction
  2. Accounts & Sign-In
  3. Photos You Upload
  4. Information We Collect
  5. Where Your Data Lives
  6. App Permissions
  7. Children's Privacy
  8. Data Security
  9. Your Rights
  10. Policy Changes
  11. Contact Us
01

Introduction

This Privacy Policy explains how Chameleon, the Android app published by CristaLabs, collects, uses, and protects your information. Chameleon shares its account system and AI processing backend with cristalabs.com, so this policy works alongside, and is consistent with, our main website Privacy Policy.

By installing or using Chameleon, you agree to the practices described here. We never sell, trade, or misuse your personal information.

Privacy is not an afterthought at CristaLabs — it is built into every screen of this app.
02

Accounts & Sign-In

Chameleon offers three ways to sign in:

  • Google Sign-In — we receive your name, email, and profile picture from Google. We never see your Google password.
  • Email & password — new accounts are verified with a 4-digit code emailed to the address you sign up with, so accounts can’t be created using an email you don’t own. Each account is also assigned a unique, editable username.
  • Password reset — handled with a 6-digit code emailed to your account address, valid for 10 minutes and limited to 5 attempts.

We do not collect your phone number, government ID, or any sensitive personal information unless you choose to provide it (for example, in a support message).

03

Photos You Upload

When you use the Image Enhancer, Object Remover, or Background Remover, the photo you select is uploaded securely to our servers for processing and the result is sent back to your device.

Uploaded photos are automatically and permanently deleted from our servers within 24 hours of processing. We do not store, review, or use your photos for any purpose beyond completing the edit you requested.

We never use your photos to train AI models, and we never share them with any third party outside the processing pipeline described below.

04

Information We Collect

Beyond account details and the photo you’re actively editing, Chameleon collects:

  • Credit balance and usage (so the app can show how many free/bought credits you have)
  • Basic device and app diagnostics, used only to keep the app stable
  • Any message you send us through “Report a problem”, along with the email you provide

We do not access your contacts, location, call logs, or any other app on your device.

05

Where Your Data Lives

Chameleon is built on Firebase (Google Cloud) for accounts, credit balances, and temporary photo storage, and uses RunPod for the AI processing itself. Both are reputable infrastructure providers bound by their own security and privacy commitments; we only send them the minimum data needed to do their job.

Enhanced photos you keep in the app’s “Recents” are stored locally on your device only, and automatically expire after 24 hours.

06

App Permissions

Chameleon requests the following Android permissions, and only for the reason stated:

  • Photos / media access — to let you pick an image to edit. We never scan or upload your full photo library — only the image you choose.
  • Internet access — required to upload photos for processing and sign you in.

Chameleon does not request camera, microphone, contacts, or location permissions.

07

Children's Privacy

Chameleon is designed to be safe and accessible for all ages, with no adult, violent, or otherwise inappropriate content. We do not knowingly collect personal information from children beyond what’s required to create an account.

If you believe a child has submitted personal data to us, please contact us and we will promptly delete it.

08

Data Security

All traffic between the app and our servers is encrypted with HTTPS/TLS. Passwords are never stored or transmitted in plain text — they’re hashed by Firebase Authentication, and OTP codes (signup and password reset) are time-limited and attempt-limited to prevent abuse.

No method of transmission over the internet is 100% secure, and we cannot guarantee absolute security — but we design every flow to minimize what could go wrong.

09

Your Rights

You have the right to:

  • Access the data we hold about your account
  • Correct your display name, username, or profile picture at any time in-app
  • Request deletion of your account and associated data
  • Request a copy of your data

To exercise any of these rights, contact us at the email below.

10

Policy Changes

We may update this Privacy Policy as Chameleon evolves. Material changes will be reflected here with an updated date, and significant changes will be announced in-app or on cristalabs.com.

Continued use of Chameleon after changes are posted constitutes acceptance of the updated policy.
11

Contact Us

Questions or requests about this Privacy Policy or your data in Chameleon:

EMAIL ADDRESS

admin@cristalabs.com

You can also reach us from inside the app via “Report a problem”. We aim to respond within 48 hours.

← Back to Chameleon