IGNIFY

Privacy Policy

Effective: May 19, 2026 — Version 1.1.0

This Privacy Policy describes how Ignify, Inc. ("Ignify", "we", "us", or "our") collects, uses, and shares information about you when you use the Ignify mobile applications and websites (collectively, the "Platform").

1. Information We Collect

Information you provide directly: - Account registration details: name, email address, phone number, date of birth. - Profile information: avatar image, preferences, time zone, how you found us. - Address: studio address (for owners) and billing address (for families that enable invoicing). We do not collect device GPS location. - Family member details you add to your account, including minor children (see Section 6, Children's Privacy). - Booking, scheduling, attendance, and invoice/payment records. - Communications: chat messages, attachments (images, audio, video, PDFs) exchanged with studios, teachers, family members, and other users you've paired with. - Audio recordings of lessons (when a teacher initiates recording and consent has been captured — see Section 5). - User-generated content posted to studio community feeds. - Bug reports and customer-support messages.

Information collected automatically: - Device identifiers, app build number, OS version. - Push-notification tokens (Firebase Cloud Messaging for Android, Apple Push Notification service for iOS). - Diagnostic and crash data via Firebase Crashlytics + Firebase Performance. - Product-usage events via Firebase Analytics (in-app funnel measurement only, not cross-app tracking — see Section 9, Tracking). - Log data: IP address, user agent, request paths, response timing.

Information from third parties: - If you sign in with Google or Apple, we receive your name, email address, and (for Apple) your Apple user identifier from them in accordance with their privacy policies. - If you connect Google Calendar (teachers) or QuickBooks Online / Wave / Square POS (studio owners), we receive the access tokens and the calendar / invoice / payment data the respective integration requires.

2. How We Use Your Information

We use your information to: - Create and manage your account, family profile, and studio memberships. - Process bookings and payments (via Square — see Section 3). - Send booking confirmations, reminders, schedule changes, and service updates. - Generate completed-lesson reports from teacher-recorded audio (see Section 4, AI and Lesson Reports). - Enable chat between studios, teachers, and the families they serve. - Surface relevant studios on the Explore screen (we do not use device GPS — proximity is based on the studio addresses you provide). - Improve and personalise the Platform experience. - Detect and prevent fraud, abuse, and security incidents. - Comply with legal obligations and respond to lawful requests.

We do not sell your personal data to third parties. We do not use your data to train external foundation models (see Section 4).

3. Information Sharing

We share your information only with the categories of recipients listed below, each for the specific purpose noted:

| Recipient | Category | What is shared | Purpose | |---|---|---|---| | Studios you book with or are a member of | Service provider | Name, email, phone, bookings, attendance, reports | Fulfil the booking, deliver lessons, manage attendance | | Teachers within those studios | Service provider | Name, lesson reports, contact info | Deliver lessons, send reports, respond to questions | | Other family members you've added | User you authorised | Profile, schedule, reports for the linked minor or partner | Coordinate scheduling and reporting within the family | | Square, Inc. | Payment processor | Card data (handled directly by Square's PCI-DSS-compliant flow — Ignify does not see card numbers), booking amounts | Process payments for studios that use Square | | QuickBooks Online / Wave | Bookkeeping (studio-controlled) | Studio's invoices, payments, customer records | Studio bookkeeping when the studio has connected the integration | | Anthropic, PBC (Claude API) | AI processor | Lesson audio transcripts (when recording is enabled and consent captured) — see Section 4 | Generate completed-lesson report drafts. Anthropic processes this content under their Commercial Terms which prohibit using it to train their models. | | Amazon Web Services (AWS) | Cloud infrastructure | All data (encrypted at rest and in transit) | Operate the Platform — DynamoDB, S3, Lambda, Cognito, SES, SNS, API Gateway, CloudFront, Chime SDK for in-app calls. AWS is a data sub-processor only. | | Google LLC | Identity + service provider | Account profile (Sign in with Google), Calendar data (when connected), Place lookups (studio address autocomplete) | Sign-in, calendar sync, studio onboarding | | Apple Inc. | Identity provider | Account profile (Sign in with Apple), push notifications (APNs) | Sign-in, push delivery to iOS devices | | Firebase (Google) | Mobile services | Push tokens (FCM), analytics events, crash diagnostics, performance traces, internal beta-distribution | Notifications, analytics, crash reporting | | Legal authorities | Legal | What is required by valid legal process | Comply with subpoenas, court orders, lawful requests |

We do not share your personal data with advertisers or data brokers.

Google user data — Limited Use

When you connect Google Calendar, Ignify requests read-only access to your calendars (the calendar.readonly scope) for the sole purpose of importing your existing class schedule during studio setup. Ignify's use and transfer of information received from Google APIs to any other app will adhere to the Google API Services User Data Policy, including the Limited Use requirements. We do not use Google user data for advertising, do not sell it, and do not transfer it to others except as needed to provide or improve the feature you requested, to comply with applicable law, or as part of a merger or acquisition.

4. AI and Lesson Reports

The defining feature of Ignify is AI-assisted completed-lesson reports. You should understand exactly how that works:

What gets recorded. When a teacher starts recording a lesson, the audio is captured on the device, encrypted in transit, and uploaded to Ignify's infrastructure. Recording is teacher-initiated, not always-on. The app displays a visible indicator while recording.

Where the audio goes. The audio is transcribed by an internal pipeline and the transcript text — not the audio itself — is sent to Anthropic's Claude API to generate a draft report (a structured summary of what happened, what to practise next, etc.). The raw audio is retained for at most 7 days and then automatically deleted.

No external model training. Anthropic operates the Claude API under their Commercial Terms which prohibit using API content to train their foundation models. Your lesson transcripts are not used to train Claude or any other external AI model.

Teacher approval is required. Drafts are never delivered to families automatically. A teacher (or studio owner / admin) must review, edit, and explicitly publish each report. The Platform enforces this gate server-side.

Speaker labels are heuristic, not biometric. When the report references "the teacher said" or "the student said", those labels are derived from talk-time heuristics, not from a biometric voiceprint. We do not create or store biometric identifiers, and the pipeline does not constitute biometric information under the Illinois Biometric Information Privacy Act (BIPA).

5. Recording and Consent

Per-studio consent. When a guardian enrols a minor (or an adult enrols themselves) into a studio that uses recording-enabled lesson reports, the app captures explicit consent to recording at enrollment. That consent is recorded server-side and reviewed before each recording is processed.

State-specific consent. Some U.S. states require all parties to consent to the recording of a private conversation, including California, Florida, Illinois, Maryland, Massachusetts, Montana, Nevada, New Hampshire, Pennsylvania, and Washington. The app shows a visible recording indicator during sessions, and the per-session consent flow asks the participants (or guardians) to acknowledge that the session will be recorded before the recorder starts.

Revoking consent. You can revoke recording consent at any time from the app's Settings → Consents. Revocation applies to future recordings; reports already published are not retroactively unpublished.

Recording is optional. If a studio prefers manual notes, teachers can write reports by hand and the audio pipeline is not engaged.

6. Children's Privacy (COPPA)

Ignify is designed for families, including children under 13. We comply with the U.S. Children's Online Privacy Protection Act ("COPPA"):

Minor accounts are adult-managed. A child under 13 cannot create their own account. A verified parent or guardian adds the child to their family account from inside the app.

What we collect for a minor child: - First name - Date of birth - The minor's relationship to the guardian (e.g., "child", "ward") - A bundled avatar preset (a stock illustration; no uploaded photo) - Lesson attendance, reports, and (when recording is enabled and the guardian has consented) lesson audio related to the minor's enrolled classes

What we do not collect for a minor child: last name, photographs uploaded from the device, location data, payment information, contact information separate from the guardian's account, or browsing/usage profiles that identify the child individually beyond their participation in the studio.

Parent rights. As the guardian of a minor on the Platform you can, at any time, from inside the app or by emailing privacy@ignify.us: - Review what we have collected about your child - Correct or delete any specific item - Delete the entire child profile - Revoke consent for lesson audio recording - Receive a portable export of your child's data

We do not condition a child's participation in activities on the collection of more personal information than is reasonably necessary for the service.

7. Data Security

We implement encryption in transit (TLS 1.2+), encryption at rest (AWS- managed encryption for DynamoDB and S3), least-privilege access controls, multi-factor authentication for administrative access, and regular security reviews. Lesson audio buckets are private with no public read access. Bug-report payloads are scrubbed for credentials, identifiers, and PII before they reach our admin viewer.

No method of transmission or storage is 100% secure; if you suspect a breach, please contact us at privacy@ignify.us.

8. Data Retention

We retain your account data for as long as your account is active, with these specific buckets:

- Lesson audio (raw): retained for at most 7 days, then automatically deleted. - Lesson audio (normalised pre-transcription): retained for at most 7 days, then automatically deleted. - Lesson transcripts and AI report drafts: retained for at most 14 days, then automatically deleted (the final approved report stays in your account history). - Approved lesson reports: retained for the life of your account, plus the studio's required record-keeping window. - Chat messages and attachments: retained for the life of your account or until you delete them. - Bookings, invoices, and payment records: retained as long as required for tax and accounting purposes (typically 7 years under U.S. tax law), even after you delete your account. These records identify you only to the extent required to make them legally complete. - Analytics and diagnostic data: retained in anonymised form for up to 2 years.

When you delete your account (see Section 9), we delete or anonymise data within 30 days, except for the legally-required-retention categories above.

9. Account Deletion

You can delete your account at any time from inside the app:

Open the IGNIFY app → Profile → Account → Delete my account → type DELETE to confirm.

If you can't access the app (lost device, account locked), you can request deletion from the web at:

https://app.ignify.us/auth/delete-account

The web page also explains the email-based path (privacy@ignify.us) for users without app access.

What gets deleted within 30 days: your profile (name, email, phone, address, DOB, avatar), your messages and any media you uploaded, your bookings and attendance records identifiable to you, your lesson reports, your push tokens and device identifiers, your connected third-party integration tokens (Google Calendar, QuickBooks, Wave, Square), and your analytics identifier.

What may be retained: signed invoices and payment records that studios are legally required to keep for tax/accounting (typically 7 years under U.S. tax law); anonymised aggregate analytics with no identifiers linking back to you; and a record of your deletion request itself.

You can cancel a pending deletion by signing back into the app within 30 days of the request.

10. Your California Privacy Rights (CCPA / CPRA)

If you are a California resident, you have the right to:

- Know what categories of personal information we have collected, the sources, the purposes, and the categories of third parties with whom we share it (see Sections 1 and 3 above). - Access the specific pieces of personal information we have collected. - Delete your personal information (subject to legally-required retention — see Section 8). - Correct inaccurate personal information. - Opt out of "sale" or "sharing" of personal information — we do not sell or share your personal information for cross-context behavioural advertising, so there is nothing to opt out of, but this right exists by default. - Limit use of sensitive personal information — Ignify does not use sensitive personal information beyond what is necessary to provide the service. - Non-discrimination — we will not retaliate against you for exercising any of these rights.

To exercise any of these rights, contact privacy@ignify.us or use the account-deletion path in Section 9. We will respond within 45 days.

11. Your European Privacy Rights (GDPR / UK GDPR)

If you are located in the European Economic Area, the United Kingdom, or Switzerland, you have the right to:

The legal bases on which we process your data include: contractual necessity (delivering the service you signed up for), legitimate interests (operating, securing, and improving the Platform), legal obligation (retention required by tax law), and consent (recording features, analytics where consent is required by local law).

Submit requests to privacy@ignify.us. We respond within 30 days.

12. Cookies and Tracking

The Platform uses essential cookies for authentication and session management on our web surfaces. We do not use third-party advertising cookies. Our mobile apps do not participate in cross-app tracking and do not access the Apple Identifier for Advertisers (IDFA); our iOS Privacy Manifest declares this stance.

You can control cookie preferences in your browser settings, but disabling essential cookies may prevent the Platform from functioning correctly.

13. International Transfers

Our infrastructure is hosted on AWS in the United States. If you access the Platform from outside the U.S., your information will be transferred to, stored, and processed in the U.S. We rely on standard contractual clauses and AWS's own GDPR-aligned data-processing terms where required for transfers from the EEA, UK, or Switzerland.

14. Changes to This Policy

We will notify you of material changes via email or in-app notice at least 14 days before they take effect, and will prompt you to re-accept the policy in the app on next launch. The "Effective" date at the top of this page shows when the current version took effect.

15. Contact

Ignify, Inc. — Privacy Team

Email: privacy@ignify.us

For legal process: legal@ignify.us