This Privacy Policy describes Our policies and procedures on the collection, use, and disclosure of Your information when You use the Service and explains Your privacy rights.
Data Controller: IONI (legal name - Springs LLC)
ID: 43018938
Address: 01015, Ukraine, Kyiv, Sim'yi Khohlovyh, 8
Data Protection Manager: Serhii Uspenskyi
Contact email: sergey@ioni.ai
If You are located in the European Economic Area (EEA) or the United Kingdom, we have appointed an EU/UK Representative in accordance with Article 27 GDPR. You can contact them at: Aleksandr Uspenskyi, Carrer Irena Sendler, 10, Esc C, 2-1, 08018, Barcelona, Spain. Contact email: alex@ioni.ai
Interpretation
The words in which the initial letter is capitalized have meanings defined under the following conditions. These definitions shall have the same meaning regardless of whether they appear in singular or plural.
Definitions
• Account: A unique account created for You to access our Service or parts of our Service.
• Company: Refers to ioni.ai ("We", "Us", or "Our" in this Agreement).
• Cookies: Small files placed on Your Device by a website, containing details of Your browsing history and other data.
• Device: Any device capable of accessing the Service, such as a computer, cellphone, or tablet.
• Personal Data: Any information that relates to an identified or identifiable individual.
• Service: Refers to the Website.
• Service Provider: A natural or legal person processing data on behalf of the Company.
• Usage Data: Data collected automatically, either generated by the use of the Service or from the Service infrastructure itself (e.g., the duration of a page visit).
• Website: Refers to ioni.ai, accessible from https://ioni.ai/.
• You: The individual accessing or using the Service, or the legal entity on behalf of which such individual is accessing the Service.
Personal Data
While using Our Service, We may ask You to provide certain personally identifiable information, including but not limited to:
- Email address
- First name and last name
- Usage Data
- Billing details, such as billing address, VAT/tax ID, and payment method information (in case you use a Stripe payment processor).
- Subscription plan details and transaction history (e.g., trial status, start and end dates, renewal, or cancellation).
Usage Data
Usage Data is collected automatically and may include information such as:
- IP address
- Browser type and version
- Pages of our Service visited
- Time and date of visits
- Time spent on pages
- Diagnostic data
When You access the Service through a mobile device, additional information may be collected, including the mobile device type, unique ID, IP address, operating system, and browser type.
We use a cookie consent banner that allows You to accept or reject non-essential cookies before they are set on Your device. Essential cookies are always active as they are necessary for the functioning of the Website.
The technologies We use may include:
• Cookies or Browser Cookies. A cookie is a small file placed on Your Device. You can instruct Your browser to refuse all Cookies or to indicate when a Cookie is being sent. However, if You do not accept Cookies, You may not be able to use some parts of our Service. Unless you have adjusted Your browser setting so that it will refuse Cookies, our Service may use Cookies.
• Flash Cookies. Certain features of our Service may use locally stored objects (or Flash Cookies) to collect and store information about Your preferences or Your activity on our Service. Flash Cookies are not managed by the same browser settings as those used for Browser Cookies.
• Web Beacons. Certain sections of our Service and our emails may contain small electronic files known as web beacons (also referred to as clear gifs, pixel tags, and single-pixel gifs) that permit the Company, for example, to count users who have visited those pages or opened an email and for other related website statistics (for example, recording the popularity of a certain section and verifying system and server integrity).
Cookies can be “Persistent” or “Session” Cookies. Persistent Cookies remain on Your personal computer or mobile device when You go offline, while Session Cookies are deleted as soon as You close Your web browser. We use both Session and Persistent Cookies for the purposes set out below:
• Necessary / Essential Cookies
Type: Session Cookies
Administered by: Us
Purpose: These Cookies are essential to provide You with services available through the Website and to enable You to use some of its features. They help to authenticate users and prevent fraudulent use of user accounts. Without these Cookies, the services that You have asked for cannot be provided, and We only use these Cookies to provide You with those services.
• Cookies Policy / Notice Acceptance Cookies
Type: Persistent Cookies
Administered by: Us
Purpose: These Cookies identify if users have accepted the use of cookies on the Website.• Functionality Cookies
Type: Persistent Cookies
Administered by: Us
Purpose: These Cookies allow us to remember choices You make when You use the Website, such as remembering your login details or language preference. The purpose of these Cookies is to provide You with a more personal experience and to avoid You having to re-enter your preferences every time You use the Website.
We process Your Personal Data on the following grounds:
Account creation & access – We process Your name, email and login details to create and maintain Your account. Legal basis: Performance of a contract.
Payment processing – We process billing and payment information to complete transactions and comply with financial regulations. Legal basis: Performance of a contract and compliance with legal obligations. In case of subscription-based features, payment processing is handled by our payment processor Stripe, Inc. (and its affiliates). We do not store full credit card or banking details on our systems. Stripe processes such data as an independent data controller.
Analytics and performance monitoring – We process IP addresses, device information and usage data to understand how the Service is used and to improve it. Legal basis: Your consent (via cookie banner) or our legitimate interests.
Marketing communications – We process Your email address to send updates and offers, but only if You have opted in. Legal basis: Your consent, which You can withdraw at any time.
Security and fraud prevention – We process IP addresses, logs and related technical data to protect the Service, detect misuse, and comply with applicable laws. Legal basis: Legitimate interests and legal obligations.
We use Your Personal Data for the following purposes:
- To provide and maintain our Service
- To manage Your Account and provide access to the Service
- To perform a contract
- To contact You regarding updates, products, or services
- To manage Your requests and inquiries
- For business transfers, such as mergers or acquisitions
- To improve our Service through analytics and feedback
- To process subscription purchases, manage free trials, and administer billing through our payment provider (Stripe).
- To provide AI-powered features and functionality that You choose to use.
- To administer and communicate regarding free trials, including notifications before trial expiry.
We use Your Personal Data for analytics only on Your consent (via cookie banner) or our legitimate interest.
We use Your Personal Data for marketing only with Your prior consent; You may withdraw at any time.
Our Service uses artificial intelligence (“AI”) technologies to process business data. This processing may include data classification, pattern recognition, and generation of insights to support business users.
When You use our AI features, the content and prompts You provide may be processed by our AI systems and by third-party model providers solely to deliver the requested functionality. We do not use Your inputs or outputs to retrain models unless You have explicitly consented.
We do not use AI to make decisions that produce legal effects or similarly significant effects concerning individuals.
If this changes, we will provide clear notice and ensure appropriate safeguards, including the right to obtain human intervention, express Your point of view, and contest such decisions.
We may share Your Personal Data:
- With Service Providers to assist in delivering the Service
- For business transfers, in the event of mergers or sales
- With affiliates or business partners for operational purposes
- When required by law or to protect legal rights
- With Your consent for specific purposes.
In order to provide our Service, we use trusted third-party service providers (“sub-processors”) who process Personal Data on our behalf. Our current sub-processors include:
- Amazon Web Services (USA) – cloud hosting and data storage.
- MailGun (USA) – email delivery.
– Stripe (USA/EU) – payment processing and billing.
This list may be updated from time to time. We ensure all sub-processors provide adequate safeguards for Personal Data, including Standard Contractual Clauses or participation in the EU–US Data Privacy Framework.
When You upload business data to our Service, You remain the data controller of that information. We process such data solely to provide and improve the Service, in accordance with this Privacy Policy, our Terms and Conditions, and our Data Processing Agreement (DPA).
We do not access or use Customer Business Data for purposes unrelated to the Service, and we do not use it to train or improve our AI models unless You have given explicit consent.
If You are on a free trial, Your uploaded data will be processed in the same way as during a paid subscription. Trial data may be deleted after the trial expires, unless You convert to a paid plan or request earlier deletion.
For business customers located in the EEA, the United Kingdom, or Switzerland, we act as a data processor with respect to Customer Business Data.
We make available a Data Processing Agreement (“DPA”) that incorporates the Standard Contractual Clauses where applicable. Customers may request a signed copy of the DPA by contacting us at sergey@ioni.ai
We will retain Your Personal Data as long as necessary to fulfill the purposes outlined in this Privacy Policy, comply with legal obligations, resolve disputes, and enforce our agreements.
Your information may be transferred to and maintained outside Your jurisdiction. We ensure adequate safeguards are in place for such transfers, including data security measures and compliance with applicable laws.
We retain Personal Data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required by law. In particular:
- Account data is retained while Your account is active and for up to 2 years after closure, unless You request earlier deletion.
– Payment and billing records are retained for as long as required under applicable tax and accounting laws (generally up to 7–10 years).
– Free trial data may be deleted within 30 days after trial expiration if no subscription is purchased.
- Analytics and usage data are retained for a maximum of 26 months, after which they are deleted or anonymized.
Your information may be transferred to and stored outside the European Economic Area (EEA) or the United Kingdom. Where such transfers occur, we ensure appropriate safeguards are in place, including:
- Standard Contractual Clauses (SCCs)
- Participation in the EU–US Data Privacy Framework
These safeguards ensure that Your Personal Data continues to receive a level of protection essentially equivalent to that guaranteed under the GDPR.
Under GDPR, You have the following rights:
• Access: Request a copy of Your Personal Data.
• Correction: Request corrections to incomplete or inaccurate data.
• Erasure: Request deletion of Your Personal Data.
• Restriction: Request restriction of data processing.
• Portability: Receive Your data in a structured, machine-readable format.
• Objection: Object to data processing based on legitimate interests or direct marketing.
You also have the right to lodge a complaint with your local Data Protection Authority if you believe our processing of Your Personal Data infringes applicable law. To exercise Your rights, contact our Data Protection Officer at sergey@ioni.ai.
All clients’ files are securely stored in Amazon S3 storage in the US. The security of Your Personal Data is important to Us, but remember that there are no methods of transmission over the Internet, or methods of electronic storage that are 100% secure. While We strive to use commercially acceptable means to protect Your Personal Data, We cannot guarantee its absolute security.
We apply encryption at rest and in transit, access controls, and regular security reviews to protect Your Personal Data.
For payment processing, we rely on Stripe’s PCI-DSS compliant infrastructure. We never store full credit card numbers or banking details on our servers.
Our Service is not directed to children under the age of 18. We do not knowingly collect Personal Data from children. If You are a parent or guardian and believe Your child has provided Personal Data to us, please contact us. If we become aware that we have collected Personal Data from a child under 18 without verification of parental consent, we will take steps to remove that information.
Our Service may contain links to other websites that are not operated by Us. If You click on a third-party link, You will be directed to that third party’s site. We strongly advise You to review the Privacy Policy of every site You visit. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.
We may update Our Privacy Policy from time to time. We will notify You of any changes by posting the new Privacy Policy on this page. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.
Data Controller: IONI (legal name - Springs LLC)
Address: 01015, Ukraine, Kyiv, Sim'yi Khohlovyh, 8
ID: 43018938
Data Protection Manager: Serhii Uspenskyi
Contact email: sergey@ioni.ai
