Privacy Policy

Welcome to Ino (referred to herein as "Ino," "we," "our," or "us"). Ino is an iOS application designed to help students track assignments, monitor grades, manage focus sessions, and access AI-powered academic assistance. This Privacy Policy governs the collection, use, storage, and disclosure of information obtained through your use of the Ino mobile application and this associated website (inoapp.com). This policy applies to all users of Ino regardless of geographic location, and is intended to provide you with a clear, honest, and comprehensive understanding of our data practices.

We believe deeply in the right to privacy, particularly for students. Our founding principle is that a study tool should work for you, not harvest your data for commercial gain. We have designed Ino from the ground up to minimise data collection, store your personal academic content exclusively on your device, and be transparent about every instance where any data does leave your device. We do not sell your data, we do not build advertising profiles, and we do not monetise your information in any form.

This policy was written to be read by real people, not just lawyers. We have tried to use plain English throughout while still meeting the requirements of applicable privacy legislation, including the EU General Data Protection Regulation (GDPR), the UK GDPR, the California Consumer Privacy Act (CCPA), the Children's Online Privacy Protection Act (COPPA), and the Australian Privacy Act 1988. If you are a student, parent, teacher, or someone who cares about digital privacy, this document is written for you.

By downloading, installing, or using the Ino application, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with any part of this policy, please discontinue use of the application and contact us at support@inoapp.com with any concerns. This policy is effective as of April 3, 2026. All previous versions are superseded by this document.

Information You Provide Directly

During the Ino onboarding process, you may enter a first name or preferred name for personalisation purposes. This name is stored exclusively in local device storage (iOS UserDefaults) and is never transmitted to our servers, associated with an account, or used to identify you externally. You are not required to enter your real name — you may use any name or alias you prefer. Similarly, all academic content you create within Ino — including assignment titles, due dates, grade entries, subject names, focus session records, and any notes — is stored entirely on your device using Apple's on-device storage framework. This data is yours, lives on your device, and never leaves it under normal app operation.

When you use AI-powered features within Ino (such as AI Grading or AI Overview), you may submit written content — such as an essay, a piece of coursework, or a set of notes — for processing. This content is transmitted securely to our AI processing infrastructure solely for the purpose of generating your personalised feedback. The content is processed in real time and is not stored, logged, or retained by us after the response is delivered to your device. Submitted content is not used to train AI models, build profiles, or for any purpose other than generating the specific response you requested.

Automatically Collected Information

We collect a limited set of technical metadata to ensure the app functions correctly, diagnose bugs, and understand how features are being used at an aggregate level. This includes: your device type and model (e.g., iPhone 15), your iOS operating system version, the version of Ino you are running, your general geographic region at the country level (not your precise GPS location, which is never accessed), and anonymised, aggregated feature usage events (e.g., "focus timer started," "AI Grading feature opened"). This data is collected in an anonymised form that cannot be used to identify you as an individual. It does not include your name, your academic content, or any personally identifying information.

Analytics via Microsoft Clarity

We use Microsoft Clarity on this website (inoapp.com) to understand how visitors navigate and interact with our pages. Clarity captures anonymised session data including scroll depth, tap and click interactions, heatmaps, and user flow patterns. This data is used solely to improve the website's design and usability. Clarity does not capture any personally identifiable information from website visitors. Full details of Clarity's data practices are covered in Section 3 of this policy. The Clarity analytics tool operates on the website only — it is not embedded within the Ino iOS application itself.

What We Do NOT Collect

To be unambiguous: we do not collect your email address (unless you contact us voluntarily), your precise GPS location, data from your contacts or address book, access to your camera or microphone beyond what you explicitly grant, data from any other apps on your device, or financial payment information of any kind. We do not operate user accounts, which means there is no central database associating your identity with your usage. We do not collect social network identifiers, advertising identifiers (IDFA) unless you explicitly consent during onboarding, or any health and fitness data. The absence of an account system is a deliberate privacy choice — it means we structurally cannot hold a dossier on you.

We use Microsoft Clarity, a behavioural analytics service provided by Microsoft Corporation, on our website at inoapp.com. Clarity is a widely used product analytics tool that helps website operators understand how visitors interact with their pages. It works by recording anonymised sessions — capturing information such as where users scroll, which elements they click or tap, where they pause, and how they navigate between pages. This data is presented to us in the form of session replays, heatmaps, and aggregated user flow reports.

Specifically, Microsoft Clarity may collect and process the following categories of data when you visit inoapp.com: anonymised and masked recordings of your browsing session on our website; aggregated heatmap data showing which areas of our pages receive the most interaction; behavioural signals such as rage clicks (repeated rapid clicks indicating frustration), dead clicks (clicks on non-interactive elements), and scroll depth metrics; technical metadata including browser type, screen resolution, viewport dimensions, referring URL, and country-level geographic region. Clarity does not collect your name, email address, phone number, payment information, or any content you have entered into forms. All session recordings are automatically masked by Clarity to redact any text input fields, protecting any information you might type on our website.

Microsoft Clarity is used exclusively on our marketing website and is not present within the Ino iOS application. The data captured by Clarity is governed by Microsoft's Privacy Policy, which can be read in full at privacy.microsoft.com. Microsoft acts as a data processor on our behalf for the purposes of Clarity analytics, and processes data in accordance with applicable data protection law. You can read more about how Clarity handles data at Microsoft's Clarity Privacy Disclosure.

You have the right to opt out of Microsoft Clarity data collection. You may do so by using a browser with enhanced tracking protection enabled (such as Firefox with Strict mode, or Safari with Prevent Cross-Site Tracking), by installing a browser extension that blocks analytics scripts (such as uBlock Origin), or by contacting us at support@inoapp.com and we will provide instructions for opting out. Additionally, within the Ino iOS app during the onboarding flow, you are presented with a clear opt-in/opt-out choice for any analytics data collection. Selecting "No thanks" ensures no analytics data of any kind is gathered from your app sessions.

The information we collect is used for a narrow set of legitimate purposes, each of which is directly related to providing and improving the Ino application and website. We do not use your information for advertising, profiling, or any commercial purpose beyond operating Ino. The legal bases under which we process data — relevant for GDPR purposes — include: legitimate interests (for anonymised analytics used to improve the app), performance of a contract (to deliver the AI features you explicitly request), and legal obligation (to comply with applicable laws and respond to lawful requests from authorities).

We use the information we collect for the following specific purposes: to operate and deliver the Ino app experience — your locally stored data (assignments, grades, subjects, focus records) is used solely to display information back to you on your own device; to process AI feature requests — content you submit for AI Grading or AI Overview is processed in real time to generate personalised feedback, then discarded; to identify and fix software bugs — anonymised crash reports and technical device information help us diagnose issues and release updates; to improve product features — aggregated, anonymised usage signals (e.g., which screens are most visited) help us make informed decisions about which features to build or improve; to respond to support communications — if you email us, we use your contact information solely to reply to your enquiry and resolve your issue; and to comply with legal obligations — we may need to process or disclose certain information to comply with applicable law, regulation, or a valid legal request from a competent authority.

We will never use your information for the following purposes: selling or licensing your personal data to any third party; creating or contributing to advertising profiles; building risk or creditworthiness assessments; profiling you for the purposes of targeted marketing; sharing your data with data brokers or aggregators; or using your AI-submitted academic content to train machine learning models. These prohibitions are absolute and form part of our core commitment to user privacy. If our business model or data practices ever change in a material way, we will provide prominent, clear notice and obtain fresh consent where required by law.

Our AI processing partners (used solely to fulfil AI Grading and AI Overview requests) are contractually prohibited from retaining, logging, or using your submitted content for any purpose other than generating the requested response. We have reviewed their data processing agreements and are satisfied that they meet the standards required under applicable data protection law, including GDPR Article 28 requirements for processors.

Ino offers an optional one-time in-app purchase called Ino Plus, priced at $11.99 USD. This is a permanent, lifetime upgrade that unlocks premium features including unlimited AI Grading, AI Overview, the What-If Grade Calculator, and unlimited subjects and assignments. There are no subscriptions, auto-renewals, or recurring charges associated with Ino Plus or any other Ino purchase. You pay once and the upgrade is yours permanently.

All payments for Ino Plus are processed exclusively by Apple Inc. through the App Store's StoreKit framework. This means that when you tap "Purchase," you are transacting directly with Apple — not with us. We do not receive, process, store, or have access to any payment information whatsoever. This includes your credit card number, debit card details, Apple ID credentials, billing name, billing address, or any other financial information. Apple handles all aspects of payment collection, fraud detection, and receipt generation, and your payment data is subject to Apple's Privacy Policy and the App Store terms.

What Ino does store locally on your device, following a successful purchase, is a simple boolean flag indicating that Ino Plus has been unlocked. This flag is stored in iOS UserDefaults on your device. It is not tied to a user account, not transmitted to our servers, and not associated with any personal identifier. If you delete and reinstall the app, Apple's StoreKit "Restore Purchases" functionality allows you to re-validate your purchase without paying again — this is handled entirely by Apple's infrastructure.

For refund requests, payment disputes, or questions about your App Store purchase, please contact Apple Support directly at support.apple.com. We do not have the ability to issue refunds or access your purchase records, as these are managed entirely by Apple. We are happy to assist with any questions about what Ino Plus includes or how to access your features — please email support@inoapp.com for feature-related support.

The vast majority of data you create within Ino — including all assignments, grades, subjects, focus session records, timer history, and personal settings — is stored exclusively on your device using iOS on-device storage mechanisms (iOS UserDefaults and related frameworks). This data never leaves your device under normal app operation. We do not operate a backend database, cloud storage system, or server infrastructure that holds your personal academic content. There is no "sync" feature, no cloud backup managed by Ino, and no remote server that stores your study data. If you have enabled iCloud backups on your device through iOS settings, your Ino data may be included in those backups — this is governed by Apple's iCloud terms and privacy policy, not ours.

The only data that leaves your device is: (a) content you explicitly submit for AI features, which is transmitted over an encrypted HTTPS connection and discarded after the response is generated; and (b) anonymised, aggregated technical data used for app improvement, which contains no personally identifiable information. All network communication from Ino uses TLS 1.2 or higher encryption. We do not log the content of AI feature submissions on our servers, and our AI processing partner is contractually prohibited from retaining such content.

We implement the following security practices to protect any data we do handle: all network communication uses industry-standard TLS/HTTPS encryption; we do not operate databases containing personal student information; any operational systems we use are access-controlled, with access logs maintained and reviewed; we perform regular reviews of our third-party service providers to ensure they maintain appropriate security standards; and we apply the principle of data minimisation, collecting only what is strictly necessary for each function. Our team receives training on data protection responsibilities and the requirements of applicable privacy law.

When you delete the Ino app from your device, all locally stored data — your assignments, grades, subjects, focus records, settings, and the Ino Plus status flag — is permanently deleted from your device. This deletion is irreversible. We do not maintain any backup of your local data and cannot restore it after deletion. If you wish to preserve your study data before deleting the app, we recommend taking screenshots or manually noting important information. For any data that we may hold as part of support communications (i.e., emails you have sent us), you may request deletion by emailing support@inoapp.com and we will action your request within 30 days.

We engage a small number of third-party services to operate Ino effectively. The table below summarises each third-party relationship, the purpose, and the data involved. We have reviewed each provider's data processing practices and, where required by law, have executed Data Processing Agreements (DPAs) to ensure your information is handled in accordance with applicable privacy legislation.

We do not share your data with advertising networks, social media platforms, data brokers, analytics providers beyond those listed above, or any other third party not described in this section. We will update this section promptly if we introduce any new third-party service that involves the processing of user data. If you have questions about any of the services listed above, please contact us at support@inoapp.com.

In the event that Ino or its assets are acquired by, merged with, or transferred to another company, user data would be transferred as part of that transaction. In such an event, we will notify you via a prominent notice in the app and provide you with the opportunity to request deletion of any data we hold about you before the transfer takes effect. Any acquiring entity would be required to honour the commitments made in this Privacy Policy or provide you with a new policy and the opportunity to opt out.

Ino is designed around a principle of minimal data retention. Because your personal academic data is stored locally on your device, you are in full control of how long it is retained. Your data persists on your device for as long as the Ino app is installed. When you delete the app, all locally stored data is immediately and permanently deleted. We have no ability to access, retrieve, or recover this data after deletion, as it was never transmitted to or held by us.

With respect to data submitted for AI feature processing: this content is transmitted to our AI processing infrastructure, a response is generated, and the submitted content is discarded. We do not maintain logs of the content you have submitted for AI processing. Response times are typically a matter of seconds, after which the content has no further existence on any server we or our partners operate.

With respect to anonymised analytics data collected for app improvement purposes: this is retained in aggregated, non-identifiable form for up to 24 months, after which it is deleted. The retention period allows us to identify long-term usage trends and measure the impact of product improvements over time. Because this data is anonymised and aggregated, it cannot be used to identify or contact you, and deletion of your app does not require us to delete this aggregate data (as it is not linked to you personally).

With respect to support communications: if you contact us by email, we retain your email address and the content of your messages for a period of two years from the date of last communication, or until you request deletion — whichever comes first. This retention period enables us to provide continuity of support if issues recur. Microsoft Clarity analytics data collected via our website is subject to Microsoft's data retention policies; please refer to Microsoft's Privacy Statement for current retention periods. We encourage you to periodically review your data and contact us if you wish to exercise any data rights described in Section 10 of this policy.

Ino is designed for students aged 13 and older. We comply with the Children's Online Privacy Protection Act (COPPA) in the United States, the UK Children's Code (the Age Appropriate Design Code), and comparable children's privacy regulations in other jurisdictions. The App Store listing for Ino includes an appropriate age rating reflecting this policy. We do not knowingly solicit, collect, or process personal information from children under the age of 13 (or the equivalent minimum age in your jurisdiction).

Ino's design inherently minimises the collection of personal information from all users, including younger students. Because Ino does not require account registration, does not collect email addresses, and stores all academic content locally on the device, the app presents a lower privacy risk than many alternatives. Nonetheless, we recognise that students under 13 may encounter or attempt to use the app, and we take our obligations under children's privacy law seriously.

If you are a parent or legal guardian and believe that your child under 13 has provided personal information to us through the Ino app or through this website (for example, by contacting us via email), please contact us immediately at support@inoapp.com. We will take prompt steps to investigate and, where we confirm that personal information from a child under 13 has been collected, we will delete such information from our records without delay. Where applicable law requires parental consent for processing of a child's data, we will seek to obtain such consent before any further processing occurs.

For students between 13 and 17 years of age: we encourage parental involvement and awareness of your child's app usage. The privacy-by-design approach of Ino — with data stored locally on device and no account system — means that parents and guardians who have access to their child's device have full visibility and control over the data stored by Ino. Deleting the app from the device permanently removes all associated data. If you have concerns about your teenager's use of Ino or the data it holds, please do not hesitate to reach out to us.

Right to Opt Out of Analytics

During Ino's onboarding flow, you are presented with a clear, prominent choice regarding analytics data collection. You may select "No thanks" to ensure that no usage analytics data is collected from your app sessions. You may also change your analytics preferences at any time by contacting us at support@inoapp.com. For website analytics (Microsoft Clarity), you may opt out using browser privacy tools or by contacting us directly.

Right to Delete Your Data

Because your academic content is stored locally on your device, you can delete it at any time simply by deleting the Ino app. This permanently and immediately removes all locally stored assignments, grades, subjects, and session records. For any data held by us (such as support email correspondence), you may request deletion by emailing support@inoapp.com and we will respond within 30 days.

GDPR Rights for EU and UK Users

If you are located in the European Union or the United Kingdom, you have the following rights under the General Data Protection Regulation (GDPR) and the UK GDPR: the right of access (to request a copy of any personal data we hold about you); the right to rectification (to request correction of inaccurate data); the right to erasure (to request deletion of your personal data, sometimes called the "right to be forgotten"); the right to restriction of processing (to request that we limit how we use your data); the right to data portability (to receive your data in a machine-readable format); and the right to object to processing based on our legitimate interests. To exercise any of these rights, please contact us at support@inoapp.com with a description of your request. We will verify your identity and respond within one calendar month, as required by law.

CCPA Rights for California Users

If you are a California resident, the California Consumer Privacy Act (CCPA) grants you additional rights: the right to know what personal information we collect, use, disclose, and sell; the right to delete personal information we have collected from you; the right to opt out of the sale of your personal information (note: we do not sell personal information); and the right to non-discrimination — we will not discriminate against you for exercising any of these rights. To exercise your California rights, please contact us at support@inoapp.com with the subject line "CCPA Request." We will respond within 45 days, with an extension of an additional 45 days where reasonably necessary.

How to Exercise Your Rights

To exercise any of the rights described above, please email support@inoapp.com with a clear description of your request. We may need to verify your identity before processing your request to prevent unauthorised access to data. We will acknowledge your request within 5 business days and complete your request within the timeframes required by applicable law. There is no charge for making a rights request. If you believe your rights have not been properly respected, you have the right to lodge a complaint with the relevant supervisory authority — see Section 15 for details.

Ino is available globally, and some of the third-party services we use (including Microsoft Clarity and our AI processing infrastructure) may process data in countries outside of your home country, including in the United States. When personal data is transferred from the European Economic Area (EEA), the United Kingdom, or other jurisdictions with data transfer restrictions to countries that do not have an equivalent level of data protection, we ensure that appropriate safeguards are in place to protect your data.

For transfers of personal data from the EEA and UK to the United States, we rely on the following mechanisms as appropriate: Standard Contractual Clauses (SCCs) approved by the European Commission and the UK Information Commissioner's Office (ICO), which impose contractual data protection obligations on the receiving party; and, where applicable, adequacy decisions recognising certain third countries as providing an adequate level of data protection. Microsoft, as a major technology company, maintains Standard Contractual Clauses for its services including Clarity — details are available in Microsoft's Data Protection Addendum.

Because the vast majority of your personal data (your academic content, settings, and study records) is stored locally on your device and never transmitted to any server, international data transfer risks are inherently minimised for Ino users. The data that does leave your device — AI feature content (briefly, for processing only) and anonymised analytics signals — is subject to the transfer mechanisms described above. If you have questions about our international data transfer practices or wish to obtain a copy of the relevant safeguards, please contact us at support@inoapp.com.

Ino may request permission to send you push notifications on your device. These notifications are used to remind you of upcoming assignment deadlines, prompt you to start a focus session, or share other study-related reminders that you configure within the app. Notifications are scheduled and generated entirely on your device using iOS's local notification system — they are not sent from a remote server, and no notification content is transmitted to our infrastructure or to Apple's servers (beyond the minimum technical requirements of the notification delivery system).

Ino does not use remote push notifications — all notifications are "local" notifications, meaning they are created and scheduled by the app running on your device. This means that even if you are offline, your notifications will still fire as scheduled. It also means we have no visibility into which notifications you have received, opened, or dismissed. Your notification interactions are entirely private to your device.

You can disable Ino notifications at any time through your iPhone's Settings app under Notifications > Ino. Disabling notifications will not affect any other functionality of the app. You can re-enable notifications at any time through the same settings path. If you wish to clear all scheduled notifications for Ino, you can do so by deleting the app. We never use notification permissions for any purpose other than delivering the study reminders you have set up — we do not send marketing notifications, promotional messages, or any communication unrelated to your study schedule.

The Ino iOS application does not use cookies. Cookies are a web browser technology and are not applicable to native iOS applications. The app does use on-device storage mechanisms (iOS UserDefaults) to remember your preferences and settings — but these are local to your device, are not shared with us or any third party, and are not used for cross-app or cross-device tracking.

This website (inoapp.com) may use limited tracking technologies, primarily through Microsoft Clarity as described in Section 3. Clarity uses anonymised session identifiers to piece together a single browsing session for analytics purposes — these are not persistent advertising cookies and are not used to track you across websites. If Clarity uses any form of local storage or cookies in your browser, it does so in accordance with Microsoft's own privacy and cookie policies. You can manage cookies through your browser settings and opt out of Clarity as described in Section 3.

We do not use advertising cookies, third-party marketing pixels, social media tracking scripts, or any tracking technology designed to build advertising profiles or follow you around the internet. Our website does not include Facebook Pixel, Google Analytics advertising features, or any comparable advertising measurement tool. If we introduce any new tracking technology to the website in the future, we will update this policy and — where required by law — seek your consent before doing so.

For iOS app users in the European Union and other regions with applicable law: any use of device identifiers for analytics purposes is subject to your explicit consent, which is sought during the onboarding flow. Apple's App Tracking Transparency (ATT) framework governs how apps may use the IDFA (Identifier for Advertisers) — Ino does not access the IDFA and does not track users across apps and websites for advertising purposes, consistent with Apple's policy requirements.

We may update this Privacy Policy from time to time to reflect changes in our data practices, changes in the features we offer, updates to applicable law, or other operational or legal reasons. When we make changes, we will update the "Last updated" date displayed at the top of this page. We encourage you to review this policy periodically to stay informed about how we are protecting your information. The most current version of this policy will always be available at inoapp.com/privacy.html.

For changes that are material — meaning changes that significantly affect your rights or how your data is handled — we will provide more prominent notice. This may include a notification displayed within the Ino app the next time you open it after a material policy change, or an email notification if you have previously contacted us and we hold your email address. Material changes will not take effect retroactively; they will apply from the date on which you are notified or the date specified in the notice, whichever is later.

Continued use of the Ino application or this website after any changes to this Privacy Policy constitutes your acceptance of the updated policy. If you do not agree with the changes, you should stop using Ino and may request deletion of any data we hold about you as described in Section 10. We will never make changes to this policy that reduce your privacy rights without clearly notifying you and, where required by law, obtaining your consent.

We are committed to resolving privacy concerns promptly, transparently, and fairly. If you have any questions about this Privacy Policy, wish to exercise any of your data rights, have concerns about how your information has been handled, or simply want to understand more about our data practices, please do not hesitate to get in touch. We aim to respond to all privacy-related enquiries within 48 hours on business days, and to fully resolve requests within the timeframes required by applicable law.

Right to Lodge a Complaint

If you are not satisfied with our response to a privacy concern, or if you believe we have failed to comply with applicable data protection law, you have the right to lodge a complaint with the relevant data protection supervisory authority in your jurisdiction. You do not need to contact us first before making a complaint, although we encourage you to do so as we are genuinely committed to resolving issues directly. Details of key supervisory authorities are listed below.

• United Kingdom: The Information Commissioner's Office (ICO) — ico.org.uk — Tel: 0303 123 1113
• Ireland (EU lead authority for many tech companies): Data Protection Commission — dataprotection.ie
• Germany: Your relevant Landesbeauftragte für Datenschutz (state-level DPA)
• France: Commission Nationale de l'Informatique et des Libertés (CNIL) — cnil.fr
• Australia: Office of the Australian Information Commissioner (OAIC) — oaic.gov.au
• United States (California): California Privacy Protection Agency (CPPA) — cppa.ca.gov

We take all privacy complaints seriously and will cooperate fully with supervisory authority investigations. Our goal is always to resolve concerns directly and amicably before escalation becomes necessary. We thank you for taking the time to read this Privacy Policy and for trusting Ino with your study journey.