Privacy Policy

Effective Date: February 24, 2026  |  Last Updated: May 23, 2026

IOU, INC ("we," "us," or "our") operates IOUForever (the "Service"). This Privacy Policy explains what information we collect, how we use it, and your choices.

IOUForever is intended only for users located in the United States. We do not offer, market, or direct the Service to individuals outside the United States. Our production storage is hosted in U.S. AWS regions, and our AI processing is configured through Microsoft Azure resources intended for U.S. processing, subject to Microsoft's applicable Azure service terms and deployment configuration. This Privacy Policy is governed by U.S. federal and applicable state privacy laws.

1. Information We Collect

Account information. When you create an account we receive your name and email address from our identity provider (Microsoft Entra External ID). We do not store passwords — authentication is handled entirely by Microsoft.

Content you upload. Photos, documents, recipes, notes, capsules, and other files you choose to store in IOUForever. Files are stored in Amazon Web Services (AWS) S3, encrypted at rest.

Usage data. We log basic request metadata (timestamps, pages visited, error codes) for security monitoring and debugging. We do not use third-party analytics trackers.

TV & streaming devices. If you pair a Roku or other TV device with your IOUForever account, we collect a device identifier and device name. A secure token is generated and stored on the TV device (in the Roku Registry) to authenticate API requests. No passwords, personal data, or media files are stored on the TV device itself — content is streamed directly from our servers using time-limited URLs.

2. How We Use Your Information

  • To provide and maintain the Service
  • To authenticate you and manage your account
  • To send transactional emails (welcome, capsule-sealed confirmations)
  • To power AI features you explicitly invoke (photo descriptions, recipe suggestions, letter enhancement) — content is sent to Microsoft Azure OpenAI; IOUForever does not use your AI inputs or outputs to train models
  • To detect and prevent abuse or security incidents

3. Data Storage & Security

Your primary data is stored in AWS U.S. regions (US-East-1, with disaster-recovery replication to US-West-2) using DynamoDB and S3, both encrypted at rest with AWS KMS customer-managed keys. Server-side sessions are stored in DynamoDB with a 31-day expiry. We enforce HTTPS on all connections and apply security headers (HSTS, X-Frame-Options, X-Content-Type-Options). AI processing is configured through Microsoft Azure resources intended for U.S. processing, subject to Microsoft's applicable Azure service terms and deployment configuration.

4. Third-Party Services

ServicePurposeData Shared
Microsoft Entra External IDAuthenticationEmail, name
Azure OpenAIAI features (opt-in)Content you submit to AI tools
Azure Communication ServicesEmail deliveryYour email address
Amazon Web Services (S3, DynamoDB)File & data storageAll stored content
StripePayment processing for paid subscriptionsEmail and billing details you provide at checkout (we do not store your full card number)
FinnhubMarket quotes for the optional stock tickerOnly the stock symbols you choose to track — no personal information

We do not authorize these providers to use your personal information for their own advertising or model-training purposes. Vendors may evolve; we will update this table when material changes occur.

4a. TV & Streaming Device Data

When you pair a TV device (e.g., Roku) with IOUForever:

  • Pairing code: A temporary 6-digit code is generated and expires after 10 minutes. It is not stored after pairing completes.
  • Device token: A randomly-generated authentication token is created on pairing and stored as a hash in our database. The token is stored locally on the TV device and expires after 30 days.
  • Device info: We store a device identifier, device name, and model information to let you manage linked devices from the web interface.
  • Media access: The TV device accesses your photos and videos via time-limited signed URLs (4-hour expiry). The TV app is not designed to permanently store your media files on the device; transient buffering by the platform's media player may occur during playback.
  • Revocation: You can revoke any linked TV device at any time from the Household page. Revocation immediately invalidates the device token.

5. How AI Features Handle Your Data

IOUForever includes optional AI-powered features. The table below explains exactly what data each feature sends, which AI model processes it, and what is retained afterward.

AI Feature What's Sent to AI AI Model What's Stored
Photo Description Your photo (resized to 512px) GPT-4o-mini (vision) Only the text description — photo not retained by IOUForever
Recipe Scan Photo of ingredients GPT-4o-mini (vision) Only the ingredient list — photo not retained by IOUForever
Recipe Import (PDF) PDF page image (if text unreadable) GPT-4o-mini (vision) Only the extracted recipe text
Letter Enhancement Your letter text + recipient details GPT-4o-mini Only the enhanced letter — you control what's saved
Voice Chat / Dictation Audio recording Whisper (speech-to-text) Only the text transcript — IOUForever does not retain the audio after transcription
Text-to-Speech Text to be spoken GPT-4o-mini TTS Nothing — audio streamed and not stored
AI Chat (all pages) Page context + your question GPT-4o-mini Chat history in your session only (cleared on logout)
Document Review Document text excerpt (max 3000 chars) GPT-4o-mini Chat history in your session only
Biography Generation Interview answers you provided GPT-4o-mini Only the generated biography — you approve before saving
🔒 AI Processing: Optional AI features use Microsoft Azure OpenAI. We send only the content necessary to perform the feature you request. According to Microsoft's Azure OpenAI data commitments, customer prompts and outputs are not available to OpenAI or other model providers and are not used to train foundation models without permission. Azure may process prompts and outputs for service operation, safety filtering, abuse monitoring, and compliance with applicable Microsoft product terms. IOUForever does not use your AI inputs or outputs to train models.
✅ Consent Required: AI features are entirely opt-in. No data is sent to any AI service unless you explicitly grant consent in the app's Settings page. You may revoke consent at any time, which immediately disables all AI features. Revoking consent does not affect any other app functionality.

6. Your Data Rights

You have full control over your data. Here's how you can exercise your rights:

👁

View

You can view all your data through the app. The Trust & Privacy page shows your security settings and the Access Graph shows who can see what.

📦

Export

You can download a complete copy of your data at any time from the Personalize page. Available to all plans.

🗑

Delete

To request full account and data deletion, email privacy@ioutoday.org. See Section 7 for details on what is removed and what may persist for legal or backup reasons.

7. Data Retention & Deletion

We retain your data for as long as your account is active. If you request account deletion, we will delete or de-identify personal information from active systems (DynamoDB and S3) within 30 days, unless we need to retain limited information for legal, security, fraud-prevention, dispute-resolution, or compliance purposes. Backup copies and disaster-recovery replicas may persist for a limited period until overwritten or deleted according to our backup lifecycle. Records subject to legal-retention requirements (including any items copied to our records-retention archive) are governed by their applicable retention schedules. Session records expire automatically after 31 days.

8. Health Information

IOUForever is not a HIPAA-covered entity and is not a healthcare provider, health plan, healthcare clearinghouse, or HIPAA business associate. IOUForever is not intended to be used as a medical record system, patient portal, emergency medical service, clinical decision tool, or HIPAA-regulated repository.

You may choose to store health-related documents on IOUForever for personal organization only. These files are encrypted at rest in AWS S3 and protected by the same security measures as all other content, but you should not use IOUForever for emergency care, clinical decisions, or provider-required HIPAA storage. If a security incident involving identifiable health-related information occurs, we will evaluate and provide notices as required by applicable law, including any applicable breach-notification laws such as the FTC Health Breach Notification Rule.

9. Children's Privacy

IOUForever accounts are intended for adults or users legally permitted to create an account, and the Service is not directed to children under 13. In compliance with the Children's Online Privacy Protection Act (COPPA), we do not knowingly collect personal information directly from children under 13. Parents or guardians may choose to upload family content (photos, documents, capsules, recipes, memories) that includes children — that content is treated as the parent's or guardian's data under their account. If we learn that we have collected personal information directly from a child under 13 without required parental consent, we will delete it.

10. U.S. State Privacy Rights

Depending on where you live and whether a particular privacy law applies to IOUForever, you may have rights to request access to, correction of, deletion of, or a portable copy of your personal information. You may also have the right to opt out of certain processing, such as sale, sharing for cross-context behavioral advertising, targeted advertising, or profiling. IOUForever does not sell personal information and does not use third-party advertising trackers. To exercise any data rights, contact us at privacy@ioutoday.org. If we deny a privacy request and applicable law gives you an appeal right, you may appeal by replying to our decision email or contacting us at the same address.

11. International Users

IOUForever is intended only for users located in the United States. We do not offer, market, or direct the Service to users outside the United States. If you access the Service from outside the United States, your information may be processed in the United States, and we may restrict or terminate access if we determine the Service is being used outside its intended U.S. availability. This policy is written for U.S. users and U.S. privacy requirements.

12. Changes to This Policy

We may update this policy from time to time. We will notify you by posting the updated policy on this page with a revised "Last Updated" date. Material changes will be communicated via email.

13. Contact Us

IOU, INC
Privacy & data rights: privacy@ioutoday.org
Product support: support@ioutoday.org