Privacy Policy

INTRODUCTION

At IrisGo ('the company', 'we', or 'us'), we respect your privacy and are committed to protecting it as described in this privacy policy ('Policy' or the 'Privacy Policy'). This policy describes the types of information we may collect from you or that you may provide when you use our product, IrisGo ('the product', 'the service', 'the website', 'the app', or 'product'), and our practices for collecting, using, maintaining, protecting, and disclosing that information. Your use of the Product and Services and any information you provide on the services are subject to the terms of this Privacy Policy, which is incorporated into and subject to our Terms of Service.

Your privacy is our priority. IrisGo operates on a strict opt-in basis for usage access. Context, activity, and personal data is primarily stored and processed locally on your device however, for certain processing requests data may be processed off device by a service provider. We do not share, sell, or disclose your data to any external entities outside of service providers that help us deliver the services.

By enabling features that require additional access, you consent only to the specific functionality requested. You can revoke access at any time via the app settings.

Data Collection

We collect certain types of information to provide, maintain, and improve IrisGo's services. Protecting your privacy is one of our core principles.

Personal Information:

To manage your account, we may collect your email address, phone number, or authentication credentials. This allows you to save chat history, personalize your experience, and receive customer support.

Screen & Audio Data:

• IrisGo does not continuously record your screen or any video content. Only screenshots are captured.
• By default, screen and audio data remain local to your device unless you explicitly submit them to an AI model.
• Raw audio is never stored. Transcription occurs locally, and transcripts are encrypted and stored on your device.
• If you enable cloud sync and transcription, transcripts are securely processed in the cloud and the original audio is discarded.
• If you opt into automatic task detection, IrisGo may periodically analyze your screen contents and transcripts to detect relevant tasks.

Usage Data:

• We do not use the content of your conversations except to make it accessible to you.
• We collect limited usage data such as feature interactions and crash logs to improve performance. This excludes sensitive content.

Technical Data:

We may collect basic technical data such as operating system version and hardware details to ensure compatibility and offer better support.

We may collect additional types of data in the future to enhance your experience, with appropriate updates to this policy. If the types of data or purposes for processing your data change we will contact you to collect your consent before processing.

How we use your personal information

IrisGo is a digital butler for instant answers, smart plans, and hands-free automation. The product functions by analyzing information you select from your device to include as context to the requests, questions, and prompts you make to the app.

We limit the collection of data to what is needed to support the features and functionality of the product and fulfill product requirements. Additionally, we limit the use of personal information to the purposes for which it was collected. This may include:

• Delivering our services to you (such as provide, operate, and improve the service)
• Internal research for product improvement
• Send communications and help you use the service better
• Compliance with applicable laws
• Security and safety

We do not collect or process personal information for the purpose of tracking for personalized advertising or advertising profiling.

We maintain a formal Data Retention Policy to establish clear guidelines on the lifecycle management of our data, ensure compliance with legal and regulatory requirements, bolster data security, and demonstrate a commitment to responsible and transparent data management practices within our organization. Personal Data that we collect will be deleted when it is no longer necessary to provide you with our services. We delete Personal Data upon account cancellation or termination.

In some cases, we may retain Personal Data beyond the length of time that you have an account with us in order to resolve disputes, comply with legal and compliance obligations, or otherwise. Anonymized data, which is no longer attached to you personally, may be retained for longer periods of time.

How we share your personal information

As part of providing our services, we may share data with third party vendors who process information to help us provide our services. The categories of information shared with third parties include usage data. We only share user personal information with third parties for the purposes of delivering and improving app functionality. We do not share, sell, or disclose your data to any external entities outside of service providers that help us deliver the services. Additionally, we establish contractual limitations with our third-party service providers such that they can only use your personal information for the limited purpose of helping us operate and improve our services.

You can view the vendors we use to process data and the purposes for which they are used to provide our product below:

• OpenAI (https://openai.com/policies/row-privacy-policy/): User queries processed by OpenAI's cloud-based LLM/AI models

For the avoidance of doubt, we never sell personal data from our service and we do not share data with third parties for their own marketing, advertising purposes, or creating advertising profiles.

We will not sell or transfer your personal information to a third party in the event of a merger, acquisition, or bankruptcy.

Your Choices

Users can control the use of their information through privacy settings.

Our service is free from any advertising including any contextual or personalized advertising of third party products.

We may contact users and customers directly to market and promote our services when they choose to sign up for communications from IrisGo. You can stop receiving promotional communications from us by clicking "unsubscribe" in such communications or contacting us directly.

Other sites and services

The Service may contain links to websites, mobile applications, and other online services operated by third parties. These links are not an endorsement of, or representation that we are affiliated with, any third party. In addition, our content may be included on web pages or in mobile applications or other online services that are not associated with us. We do not control websites, mobile applications or online services operated by third parties, and we are not responsible for their actions.

Third-party login is supported for authentication into our Product or Services. When you choose to log in to our services using third-party authentication, such as through social media accounts or other external identity providers, we collect certain information from your chosen third-party platform. This may include basic profile details, such as your name, email address, and profile picture. By opting for third-party login, you grant us permission to access and use this information for the purpose of creating and managing your account, as well as enhancing your overall experience with our services. We may also request additional permissions during the authentication process, depending on the requirements of the third-party provider.

Cookies

Our Product may use cookies to help you personalize your online experience. A cookie is a text file that is placed on your hard disk by a web page server. Cookies cannot be used to run programs or deliver viruses to your computer. Cookies are uniquely assigned to you, and can only be read by a web server in the domain that issued the cookie to you.

One of the primary purposes of cookies is to provide a convenience feature to save you time. The purpose of a cookie is to tell the Web server that you have returned to a specific page. For example, if you personalize our Product, or register with our Product or Services, a cookie helps our Product to recall your specific information on subsequent visits. This simplifies the process of recording your personal information, such as billing addresses, shipping addresses, and so on. When you return to the Product, the information you previously provided can be retrieved, so you can easily use the features that you customized.

Necessary cookies: Enable the core operation of our Products and Services and cannot be switched off in our systems. They include cookies that we use to help control secure areas of our site and to make sure it is accessible to you. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as a result.

Analytics cookies: These cookies allow us to collect information about patterns of behavior among people using the site. Analytics cookies allow us to count site visits and understand traffic sources so we can measure and improve the performance of our site. We never collect any information from analytics cookies that could be used to personally identify you.

Security

We are dedicated to safeguarding the security of your information. When we collect information from you, we implement reasonable and appropriate administrative, technical, and physical safeguards to help protect it from unauthorized access, use, or disclosure. For example, employee and physical access to user information is limited and all data is encrypted in transit and at rest. We also offer users multi-factor authentication to protect their accounts and information.

We strive to protect your information, but no security system is perfect. In the event of a data breach, we will notify affected users as required by law.

We also maintain a formal Data Retention Policy to establish clear guidelines on the lifecycle management of our data, ensure compliance with legal and regulatory requirements, bolster data security, and demonstrate a commitment to responsible and transparent data management practices within our organization. Personal Data that we collect will be deleted when it is no longer necessary to provide you with our services and we will delete Personal Data upon account cancellation or termination.

GDPR

For users in the EEA and UK, we are headquartered in the United States and may use service providers that operate in other countries. Your personal information may be transferred to the United States or other locations where privacy laws may not be as protective as those in your state, province, or country.

Where applicable, we rely on the following legal bases to process and personal information:

• Consent: IrisGo processes your data based on your explicit and freely given consent. Your consent is collected to enable Irisgo to provide its services and functionalities to you.

European data protection laws give individuals in Europe the following rights regarding their personal information:

Right of access: You can ask us to provide you with information about our processing of your Personal Information and give you access to your personal information.

Right to rectification: If the personal information we hold about you is inaccurate or incomplete, you are entitled to request to have it rectified.

Right to erasure: You can ask us to delete or remove your personal information where there is no lawful reason for us continuing to store or process it, where you have successfully exercised your right to object to processing (see below), where we may have processed your information unlawfully or where we are required to erase your personal information to comply with local law.

Right to restrict processing: You can ask us to suspend the processing of your personal information:

• if you want us to establish the information's accuracy;
• where our use of the information proves to be unlawful, but you do not want us to erase it;
• where you need us to hold the information even if we no longer require it as you need it to establish, exercise or defend legal claims; or
• if you have objected to our use of your information but we need to verify whether we have overriding legitimate grounds to use it.

Right to object: You can object to our processing of your personal information where we are relying on a legitimate interest (or those of a third party) to do so and you believe it impacts your fundamental rights and freedoms. You also have the right to object where we are processing your Personal Information for direct marketing purposes.

Right to data portability: You have the right, in certain circumstances, to ask us to provide to you, or a third party you have chosen, your Personal Information in a structured, commonly used, machine-readable format.

Right to withdraw consent at any time: Where we are relying on consent to process your Personal Information you have the right to withdraw your consent at any time. However, this will not affect the lawfulness of any processing carried out before you withdraw your consent.

Exercising those rights: Please note that some of these rights may be limited where we have an overriding interest or legal obligation to continue to process the personal information or where certain exemptions apply. If we decline your request, we will tell you why, subject to legal restrictions.

To exercise any of these rights, please contact us at help@irisgo.ai. We may request specific information from you to help us confirm your identity and process your request. You can also change your privacy settings.

If you are not satisfied with our response to a request you make, or how we process your personal information, you can make a complaint to the data protection regulator in your habitual place of residence.

For users in the EEA: The contact information for the data protection regulator in your place of residence can be found here: https://edpb.europa.eu/about-edpb/board/members_en

US Privacy Rights

Except as otherwise provided, this section applies to residents of states where they have privacy laws applicable to us that grant their residents the rights described below.

For purposes of this section, "personal information" has the meaning given to "personal data", "personal information" or similar terms under the applicable privacy laws of the state in which you reside. Please note that not all rights listed below may be afforded to all users and that if you are not a resident of the relevant states, you may not be able to exercise these rights. In addition, we may not be able to process your request if you do not provide us with sufficient detail to allow us to confirm your identity or understand and respond to it.

In some cases, we may provide a different privacy notice to certain categories of residents of these states, such as job applicants, in which case that notice will apply with respect to the activities it describes instead of this section.

Verification: Upon receipt of your request, we will initiate the identity verification process to confirm that you are the individual for whom we hold information in our system. This verification procedure necessitates your cooperation in supplying relevant information, allowing us to compare it with the details you previously furnished. Depending on the nature of your request, we may request specific information to align with our existing records, or we may reach out to you using a previously provided communication method (such as phone or email). In certain situations, alternative verification methods may be employed based on the circumstances.

Any personal information disclosed in your request will solely be utilized for the purpose of confirming your identity or validating your authority to make the request. We will make every effort to minimize the need for additional information for verification purposes. However, should it be impossible to verify your identity with the existing information in our records, we may request additional details to ensure security and prevent fraud. Any supplementary information you provide for verification will be promptly deleted upon the completion of the verification process.

Authorized Agents: Your authorized agent may be able to make a request on your behalf. However, we may need to verify your authorized agent's identity and authority to act on your behalf. We may require a copy of a valid power of attorney given to your authorized agent pursuant to applicable law. If you have not provided your agent with such a power of attorney, we may ask you to take additional steps permitted by law to verify that your request is authorized, such as by providing your agent with written and signed permission to exercise your rights on your behalf, the information we request to verify your identity, and confirmation that you have given the authorized agent permission to submit the request.

Deletion: You can request that we delete your personal information. Once we process a deletion request, we may be unable to provide access or support to any past products or services.

If you would like to delete your data from our services please contact us at help@irisgo.ai.

Please note that once we process a deletion request, we may be unable to provide access or support to any past products or services.

Children's Privacy

Our service is not designed for children under 13 or teens. If we are notified that we have collected personal data from a child without the required parental or guardian consent, we will take all reasonable measures to promptly and securely delete that information in accordance with applicable laws.

Changes To This Privacy Policy

In addition to modifying this Privacy Policy and updating the effective date, we will contact you (either through the product or otherwise) to gain your consent if we change or modify the practices in which data is collected.

HOW TO CONTACT US

If you have questions on concerns regarding this Privacy Policy, please contact us using the means described below.

Email: help@irisgo.ai