INOU

Privacy Policy

Effective date: July 15, 2026 · Last updated: July 15, 2026

This Privacy Policy explains how Kang Fahrdienst (Jugmeet Singh Kang) ("INOU", "we", "us", "our") collects, uses, and protects your personal data when you use the INOU mobile application (the "App") and this website. We built INOU around real-world, in-person connection, and we've tried to keep the data we collect as limited as the app's actual features require. This policy is written to comply with the EU General Data Protection Regulation (GDPR) and applicable German data protection law (BDSG).

Contents

  1. Who We Are
  2. What Data We Collect
  3. Location Data & Shake-to-Connect
  4. How We Use Your Data
  5. Who We Share Data With
  6. International Data Transfers
  7. Data Retention
  8. Account & Data Deletion
  9. Your Rights Under GDPR
  10. Data Security
  11. Children's Privacy
  12. Automated Decision-Making
  13. Changes to This Policy
  14. Contact Us

1. Who We Are

The data controller responsible for your personal data is:

Kang Fahrdienst (Jugmeet Singh Kang)

Westendorf 6, 38315 Schladen-Werla, Germany

Email: info@inouapp.com

We have not appointed a formal Data Protection Officer, as one is not required for a business of this size and processing scope under GDPR Art. 37. All privacy inquiries can be sent to the email address above and will be handled personally by the controller.

2. What Data We Collect

2.1 Account Data

To create and operate an INOU account, we collect, via Firebase Authentication:

2.2 Content You Share

INOU's core function is letting you share photos, videos, and short text notes with people you choose — a private "bubble," an event, a circle, or a public page. When you post, we store:

This content is stored in Cloud Firestore (structured data) and Firebase Cloud Storage (photos/videos), both Google services. See Section 5 for how sharing/visibility works.

2.3 Connection & Relationship Data

To power friend connections, bubbles, circles, and events, we store who you're connected to (your friends list), which bubbles/circles/events you've created or joined, and the membership of those spaces.

2.4 Technical & Diagnostic Data

Like virtually all cloud-connected apps, the underlying infrastructure (Firebase/Google Cloud) automatically logs limited technical data as part of operating and securing the service — such as IP address, approximate connection region, device/OS type, and app version, at the point of each request. We do not use this for advertising, and we do not operate any separate analytics, advertising, or tracking SDKs in the App.

3. Location Data & Shake-to-Connect

INOU's "Shake-to-Connect" feature lets you find and connect with people physically near you, either by holding a button or by shaking your phone. This is the only feature in the App that uses your device's location, and it only accesses location when you actively start a search — INOU does not track your location in the background or at any other time.

The legal basis for this processing is your explicit consent (GDPR Art. 6(1)(a)), given via your device's location permission prompt.

4. How We Use Your Data

PurposeData UsedLegal Basis (GDPR Art. 6)
Creating and securing your accountEmail, password (hashed), device/session data6(1)(b) — necessary to perform our contract with you
Operating core app features (bubbles, circles, events, pages, chat)Content you post, connections, memberships6(1)(b) — necessary to perform our contract with you
Shake-to-Connect proximity matchingLive GPS location6(1)(a) — your consent
Displaying your profile to other users per the app's sharing modelName, profile photo, status6(1)(b) — necessary to perform our contract with you
Responding to support requestsEmail and message content you send us6(1)(f) — our legitimate interest in supporting our users
Securing the service against abuseTechnical/diagnostic data, account activity6(1)(f) — our legitimate interest in keeping the service safe and functional
Complying with legal obligationsAs required by applicable law6(1)(c) — legal obligation

We do not use your data for advertising, we do not sell or rent your personal data to third parties, and we do not use third-party advertising or tracking SDKs.

5. Who We Share Data With

Other users, per your own choices. INOU is a social app — content you post is visible to whoever you chose as the audience (a specific bubble's members, everyone in your friends list, a circle's or event's members, or the public, for a public page). Your name and profile photo are visible to people you're connected with, consistent with the App's normal social functionality.

Our infrastructure provider. We use Firebase, a platform operated by Google (Google Ireland Limited and/or Google LLC), to host our backend: Firebase Authentication (accounts), Cloud Firestore (structured data), and Cloud Storage (photos/videos). Google processes this data on our behalf, under Google's Data Processing Addendum for Google Cloud/Firebase, and does not use it for its own purposes such as advertising.

Nobody else. We do not share your personal data with advertisers, data brokers, or any other third party, and we do not sell your data. We will only disclose data beyond the above if required by law (e.g. a valid legal request from German or EU authorities) or to protect the rights, safety, or property of INOU, our users, or the public.

6. International Data Transfers

Firebase/Google Cloud may process and store data on servers located outside the European Economic Area (EEA), including in the United States. Where this happens, the transfer is safeguarded by the European Commission's Standard Contractual Clauses (SCCs), which Google incorporates into its Cloud Data Processing Addendum, as a legally recognized mechanism for transferring personal data outside the EEA under GDPR Chapter V.

7. Data Retention

We retain your account and content data for as long as your account remains active. If you delete a specific piece of content (a photo, note, or message), it is removed from our active systems, subject to a short operational delay for cache/backup propagation. If you delete your account, see Section 8. We may retain minimal data longer where required to comply with a legal obligation, resolve disputes, or enforce our agreements.

8. Account & Data Deletion

You can delete your INOU account at any time from within the App (Profile → Settings → Delete Account), or by emailing info@inouapp.com from your registered email address. When you delete your account:

We aim to complete account deletion requests within 30 days, and any residual copies in backups are purged on our routine backup rotation schedule thereafter.

9. Your Rights Under GDPR

If you are located in the EEA, UK, or Switzerland, you have the following rights regarding your personal data, which you can exercise by contacting us at info@inouapp.com:

Die Landesbeauftragte für den Datenschutz Niedersachsen

Prinzenstraße 5, 30159 Hannover, Germany

Website: lfd.niedersachsen.de

You may also lodge a complaint with the supervisory authority in your own EU member state of residence.

We will respond to verified requests within one month, as required by GDPR Art. 12(3).

10. Data Security

We rely on Firebase's security infrastructure, including encryption of data in transit (TLS) and at rest, and Firestore/Storage security rules that restrict read and write access to data based on your identity and the app's sharing model — for example, only members of a bubble can read what's shared to it, and only you can edit your own profile. Authentication credentials are managed entirely by Firebase Authentication using industry-standard hashing; we never store your password ourselves. No system is 100% secure, and we cannot guarantee absolute security, but we take reasonable, industry-standard measures to protect your data.

11. Children's Privacy

INOU is not directed at, and may not be used by, children under 16 years old. Consistent with GDPR Art. 8 as implemented in Germany, we require users to be at least 16 to create an account. If we become aware that we have collected personal data from a child under 16 without appropriate consent, we will delete it promptly. If you believe a child under 16 is using INOU, please contact us at info@inouapp.com.

12. Automated Decision-Making

We do not use your personal data for automated decision-making or profiling that produces legal effects concerning you or similarly significantly affects you, within the meaning of GDPR Art. 22.

13. Changes to This Policy

We may update this Privacy Policy from time to time, for example as the App's features change. If we make material changes, we will update the "Last updated" date above and, where appropriate, notify you in the App. Continued use of INOU after a change takes effect constitutes acceptance of the updated policy.

14. Contact Us

For any question about this Privacy Policy or how we handle your data:

Kang Fahrdienst (Jugmeet Singh Kang)

Westendorf 6, 38315 Schladen-Werla, Germany

Email: info@inouapp.com