InOrbit

Privacy Policy

Last updated: 2 June 2026

This Privacy Policy explains how InOrbit handles your information — we are the provider of the app, identified at the end of this policy. The short version: InOrbit is built to keep your relationship data on your device. Your contacts, notes, plans, and other content are stored locally on your iPhone and are not uploaded to our servers.

1. Information we handle

• Sign in with Apple. When you sign in, Apple gives us a unique identifier for you (and, if you choose to share them, your name and an email address, which may be Apple's private relay address). We use this only to authenticate you and to apply usage limits.
• Content you send to AI features. When you use an AI feature, the text you provide (and any contact details you choose to include in that request) is sent to our backend and on to our AI providers to generate a response. Our backend relays this content and does not store it — we keep no copy of your prompts or the AI's responses. Our AI providers process it only to generate your response and, under their API terms, do not use it to train their models. We never use it for advertising, and we don't sell it.
• Place searches. When the app suggests real venues, your search text (and, if enabled, your approximate location) is sent to Google Places via our backend.
• Voice input. If you dictate notes, audio is processed by Apple's Speech services to convert it to text. This is handled by Apple, not by us.
• Photos and contacts you import. If you grant access, photos or contacts you choose to import are stored locally in the app. We do not upload your photo library or address book to our servers.
• Subscription status. Purchases are handled by Apple. The app tells our backend only your plan level (free / plus / pro) so the right usage limit applies. We never receive your payment details.
• Operational logs. Our backend logs each request with a one-way hashed (anonymized) user identifier, the endpoint used, status, and timing — to run the service, prevent abuse, and debug. These logs do not contain your message content.

2. How your information is used

• To authenticate you and keep your session secure.
• To provide AI suggestions, drafting help, and venue lookups you request.
• To enforce fair-use limits and detect abuse.
• To operate, maintain, and improve the service.

3. Where your data lives

Most of your data — contacts, notes, plans, interactions, photos — stays on your device (and, if you enable it, in your own iCloud via Apple). Our backend, hosted on Cloudflare, acts as a secure relay for AI and place lookups and stores only short-lived counters and a hashed identifier for rate limiting; it does not store your CRM content or your message history.

4. Third-party processors

To provide certain features, limited data is shared with:

• Apple — Sign in with Apple, subscriptions, and dictation (apple.com/legal/privacy).
• Anthropic — powers Claude-based AI features (anthropic.com/legal/privacy).
• Google — powers Gemini AI and Places lookups (policies.google.com/privacy).
• Cloudflare — hosts our backend (cloudflare.com/privacypolicy).

These providers process the data we send solely to deliver the requested feature, subject to their own terms. Some are located outside your country (e.g. the United States), so your data may be processed internationally.

5. Data retention

On-device data remains until you delete it or remove the app. Backend rate-limit counters expire automatically (within ~1 day) and logs are retained only as long as needed to operate and secure the service. We keep no copy of your AI prompts or responses — that content is relayed, not stored, and is processed transiently by the AI providers only as described in their policies.

6. Your rights

Depending on where you live (including under the EU/EEA GDPR), you may have the right to access, correct, export, or delete your personal data, and to object to or restrict certain processing. You can:

• Delete most data directly in the app, or remove all local data by deleting the app.
• Sign out to invalidate your session.
• Contact us (see the end of this policy) to exercise any of these rights.

7. Children

InOrbit is not directed to children under 13 (or the minimum age in your country), and we do not knowingly collect their personal data.

8. Security

API keys are held server-side and never shipped in the app. Sessions use signed tokens, traffic is encrypted in transit (HTTPS), and user identifiers are hashed in our logs. No system is perfectly secure, but we take reasonable measures to protect your information.

9. Changes

We may update this policy from time to time. We'll revise the "Last updated" date above and, for material changes, provide notice in the app where appropriate.