Querent, operated by Introgy LLC
Effective date: May 1, 2026 Last updated: May 1, 2026
1. Who We Are
This Privacy Policy explains how Introgy LLC ("Introgy", "we", "us", "our") collects, uses, shares, and protects personal information in connection with the Querent mobile application and any related services (collectively, the "Service").
Introgy LLC 16192 Coastal Highway Lewes, Delaware 19958, USA Contact: support@introgy.ai
By using the Service, you agree to the collection and use of information as described in this Policy. If you do not agree, do not use the Service.
This Policy is incorporated into our Terms of Use.
2. Scope
This Policy applies to information we process when you:
- Download, install, or use the Querent iOS app;
- Create or sign in to an account;
- Generate readings, request narrations, or save journal entries;
- Purchase credits or subscriptions;
- Contact us; or
- Visit any Introgy website that links to this Policy.
It does not apply to third-party services that are not under our control, even if they are linked from or integrated with the Service. Read those parties' policies separately.
3. Information We Collect
3.1 Information you give us
- Account information. If you create an account or sign in with Sign in with Apple, we receive a stable user identifier and the email you choose to share (which may be a private relay address). You may provide a display name.
- Profile and preferences. Birthdate (optional, used for age gating and feature personalization), focus areas, deck preference, language.
- User-generated content. Focus questions or "querent" prompts you submit, journal entries, saved readings, and any feedback you send us.
- Support communications. When you email us, we keep the message and any attachments.
3.2 Information generated by your use of the Service
- Reading history. The cards drawn (with positions and orientations), pattern and dignity analysis, the narrated text returned to you, and timestamps. This is stored in our database so you can review past readings.
- Reading context and personalization (subscribers). If you subscribe, we also retain the context you provide during a reading — your focus, the situation you describe, and the people or relationships you mention — and a derived summary of your recurring cards and themes. We use this to personalize your readings and the emails we send you, so the experience reflects your history rather than starting from scratch each time. You can clear all of it at any time using Forget my history (see Section 10.1).
- Usage and diagnostic data. App opens, screens viewed, features used, errors and crash reports, performance metrics, and device characteristics necessary to operate and debug the Service.
- Purchase records. A record that you made a purchase, the product purchased, transaction identifiers, subscription status, and renewal/cancellation events. We do not receive your payment card information; Apple processes payments and shares only purchase metadata with us via RevenueCat.
3.3 Information from your device (technical data)
- Device model, OS version, language, time zone, and a privacy-preserving installation identifier;
- IP address (used at the network edge by Cloudflare for security and to map general region);
- Crash logs and performance traces.
We do not use Apple's IDFA for advertising and do not display the App Tracking Transparency prompt unless this changes; if it changes, we will update this Policy and request your permission before tracking you across other companies' apps and websites.
3.4 Information from third parties
- Apple — purchase receipts, subscription state, and (if you use Sign in with Apple) your Apple-issued user ID and a relay or chosen email.
- RevenueCat — subscription entitlement status linked to a pseudonymous app user ID.
- We do not buy personal information from data brokers.
3.5 Sensitive information
We do not ask for and do not want to receive: government IDs, payment card numbers, biometric data, genetic data, precise geolocation, or protected health information. Please do not put any of those into your prompts or journal entries. Anything you put into a prompt or journal entry is processed as User Content under our Terms.
4. How We Use Information
We use information to:
- Provide the Service — authenticate you, generate readings, narrate them via our language-model provider, save your history, and let you review and continue past readings;
- Process purchases — verify entitlements with Apple/RevenueCat and grant credits or subscription access;
- Communicate with you — respond to support requests, send service messages (such as receipts, security alerts, and changes to legal documents), and, with your consent where required, send product updates;
- Operate, secure, and improve the Service — debug, monitor, prevent abuse, prevent fraud, and analyze aggregate usage to improve features;
- Personalize content — tailor decks, language, and difficulty to your preferences;
- Comply with law — meet our legal, tax, and regulatory obligations and respond to lawful requests; and
- Enforce our Terms — protect our rights and the rights of other users.
We do not:
- Sell your personal information for money;
- Share it for cross-context behavioral advertising; or
- Use your prompts, journal entries, or readings to train generative AI models. (See Section 6 for how the LLM provider handles inputs.)
5. Legal Bases (EEA, UK, and similar jurisdictions)
Where the GDPR or UK GDPR applies, we rely on these legal bases:
- Performance of a contract — to provide the Service you asked for;
- Legitimate interests — to secure, debug, and improve the Service, and to prevent abuse, balanced against your rights;
- Consent — for optional features that require it (e.g., push notifications, optional analytics, marketing emails). You can withdraw consent at any time;
- Legal obligation — to comply with law.
6. Third Parties We Share Information With
We share information only as needed to operate the Service or as required by law. Our current processors and partners include:
| Partner | Purpose | Data shared |
|---|---|---|
| Apple Inc. | App distribution, Sign in with Apple, payment processing, push notifications | Account identifiers, purchase events, device tokens |
| RevenueCat, Inc. | Subscription management and entitlement state | Pseudonymous app user ID, purchase events |
| Anthropic, PBC | Generates narrations from card draws using the Claude API | Reading context (cards, positions, focus question, language). Per Anthropic's API terms, customer inputs and outputs are not used to train Anthropic's models. |
| Cloudflare, Inc. | Edge hosting of our Worker API, security, DDoS protection | IP address, request metadata, request and response payloads in transit |
| Railway / our Postgres host | Database hosting for accounts, readings, narrations | Account, reading, and narration records |
| Functional Software, Inc. d/b/a Sentry | Crash reporting, error monitoring, and performance diagnostics | Crash stack traces, error messages, breadcrumbs (recent app events leading to a crash), device model, OS version, app version, a privacy-preserving install identifier, and — when you are signed in — a pseudonymous user ID so we can correlate a crash report with a specific account for support. Sentry is configured to scrub IP addresses and known PII patterns from event payloads where feasible. |
| Apple Analytics (App Store Connect) | Aggregate, anonymized app performance and engagement metrics | Aggregate, non-identifying metrics provided by Apple |
| Email and customer-support tools | Respond to your messages | Email content and contact information |
We may also disclose information:
- Legal requirements. To comply with law, valid legal process, or lawful requests by public authorities, including for national security or law enforcement;
- Protection. To enforce our Terms; to protect our rights, property, or safety, or those of users or others; or to detect and prevent fraud, security, or technical issues;
- Business transfers. In connection with a merger, acquisition, financing, reorganization, bankruptcy, or sale of assets, with appropriate confidentiality protections.
We do not "sell" personal information for monetary consideration and do not "share" personal information for cross-context behavioral advertising as those terms are defined under U.S. state privacy laws.
7. International Data Transfers
We are based in the United States and our processors operate globally. If you access the Service from outside the U.S., your information may be transferred to and processed in the U.S. and other countries that may have different data-protection laws than your home country. Where required, we rely on appropriate safeguards (such as the EU Standard Contractual Clauses) for international transfers.
8. Data Retention
We keep personal information only as long as necessary for the purposes described in this Policy:
- Account data — for as long as your account is active;
- Readings and narrations — until you delete them or close your account;
- Purchase records — for as long as required for tax, accounting, and audit obligations (typically up to 7 years);
- Diagnostic logs (including Sentry events) — typically 30 to 90 days;
- Support communications — for as long as needed to provide support and resolve disputes.
When information is no longer needed, we delete or anonymize it. Backups are purged on a rolling schedule.
9. Security
We use technical and organizational measures designed to protect your information, including encryption in transit (TLS), access controls, secret management, principle-of-least-privilege for staff access, and audit logging on production systems. No system is perfectly secure. If you have reason to believe your account is no longer secure, contact us at support@introgy.ai immediately.
10. Your Choices and Rights
10.1 In-App controls
- View, edit, or delete saved readings;
- Forget my history — clear the reading context and personalization summary we retain (this leaves your account and billing intact);
- Manage notification preferences;
- Change language and deck preferences;
- Sign out;
- Manage subscriptions in Settings > [Apple ID] > Subscriptions on your device.
10.2 Account deletion
You can delete your account and associated personal data from within the App, or by emailing support@introgy.ai with the subject "Delete my account" from the email associated with your account. We will delete your account and associated personal data within 30 days, except where retention is required by law (e.g., transaction records).
10.3 Privacy rights — California (CCPA/CPRA)
If you are a California resident, you have the right to:
- Know what personal information we collect, use, and disclose;
- Access a copy of your personal information;
- Delete your personal information, subject to limited exceptions;
- Correct inaccurate personal information;
- Limit the use and disclosure of any sensitive personal information (we do not use sensitive personal information for purposes that would trigger this right);
- Opt out of "sale" or "sharing" — we do not sell or share personal information as defined under California law; and
- Non-discrimination — we will not discriminate against you for exercising your rights.
To exercise these rights, email support@introgy.ai. We will verify your request through your account email; we may request additional information to verify your identity for sensitive requests. You may also designate an authorized agent to act on your behalf.
Categories collected and purposes are described in Sections 3, 4, and 6. We have not "sold" or "shared" personal information in the preceding 12 months.
10.4 Privacy rights — EEA, UK, Switzerland (GDPR/UK GDPR)
If you are in the EEA, UK, or Switzerland, you have the right to: access, rectification, erasure ("right to be forgotten"), restriction, portability, and to object to processing based on legitimate interests. Where processing is based on consent, you may withdraw consent at any time.
To exercise these rights, email support@introgy.ai. You also have the right to lodge a complaint with your local supervisory authority.
10.5 Privacy rights — other U.S. states
Residents of states with comprehensive privacy laws (including, where applicable, Virginia, Colorado, Connecticut, Utah, Texas, Oregon, Montana, Iowa, Tennessee, Indiana, Delaware, New Jersey, New Hampshire, Kentucky, Minnesota, Maryland, Rhode Island) have similar rights to access, delete, correct, and opt out of certain processing. Contact us as above.
10.6 Apple privacy controls
You can manage permissions for the App (such as notifications and Sign in with Apple email sharing) in Settings > Privacy and Settings > Apple ID > Sign-In & Security on your device.
11. Children's Privacy
The Service is rated 17+ and is not directed to children under 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and you believe your child has provided us with personal information, please contact support@introgy.ai and we will delete it. We do not target the Service to teens between 13 and 17 and recommend that anyone under 17 not use the Service.
12. Tracking Technologies and Analytics
We use a small number of first-party identifiers and SDKs solely to operate the Service (authentication tokens, Sentry crash reports, subscription state via RevenueCat, and basic in-app analytics). We do not display advertising in the App, do not use the Service to track you across other companies' apps and websites, and do not use Apple's IDFA. If we ever introduce tracking that requires Apple's App Tracking Transparency prompt, we will update this Policy and ask for your permission first.
Sentry crash reporting. Sentry is enabled by default to help us find and fix crashes and errors. Crash payloads are processed in the United States by Sentry on our behalf as a service provider; events are retained by Sentry for a limited period (typically up to 90 days) and are accessed only by authorized Introgy personnel. You can disable Sentry crash reporting in Settings > Privacy within the App. Disabling crash reporting may slow our ability to fix bugs that affect you.
13. AI Processing of Your Inputs
When you generate a narration, we send the underlying card draw and your focus question to Anthropic (the provider of the Claude language model) so that Anthropic can return narrative text to you. Per Anthropic's API terms, customer inputs and outputs are not used to train Anthropic's models. Anthropic processes inputs as our service provider.
Do not submit personal information about other people, sensitive information, or anything you would not want logged into our database as part of a focus question or journal entry.
14. Push Notifications and Email
If you opt in to push notifications, we may send transactional and feature messages (e.g., your free Monday read is available). You can disable notifications at any time in iOS settings. Service messages (receipts, security alerts, legal updates) are not opt-out; if you do not want these, do not maintain an account.
15. Do Not Track
Some browsers send "Do Not Track" signals. Because there is no industry-accepted standard, we do not currently respond to them. We do honor Global Privacy Control signals to the extent required by law for our website.
16. Changes to This Policy
We may update this Privacy Policy from time to time. The updated Policy will be posted in the App and on this page with a revised "Last updated" date. Material changes will be communicated through the App or by email before they take effect. Your continued use after the effective date of the updated Policy constitutes acceptance.
17. Contact Us
Questions about this Policy or your personal information:
Introgy LLC Attn: Privacy 16192 Coastal Highway Lewes, Delaware 19958, USA support@introgy.ai