Data
Transparency.

We collect account information such as your name, email address, authentication identifiers, and basic profile details when you create or use an Intirear account.

We collect the content you provide to the product, including room photos, project files, prompts, design preferences, generation history, and files you choose to export or share.

We collect transaction and billing metadata needed to process purchases, prevent fraud, provide receipts, and support refunds. Payment card details are handled by our payment processors and are not stored directly by Intirear.

We collect device, log, and diagnostic data such as IP address, browser or app version, crash reports, feature usage, and approximate location inferred from network or billing metadata.

We use personal data to operate the service, generate AI-powered design outputs, sync projects across devices, provide support, process transactions, and secure the platform.

We use analytics and operational telemetry to understand product performance, improve reliability, measure feature adoption, and prevent abuse.

We may use contact details to send essential account, security, billing, or product-related communications. Marketing emails are sent only where permitted and can be opted out of.

We share data with service providers only as needed to operate Intirear, including hosting, analytics, authentication, crash reporting, payment processing, customer communication, and AI inference providers.

We do not sell personal information. We do not share room photos, prompts, or account data with advertisers for independent advertising use.

We may disclose information when required by law, to enforce our terms, to investigate fraud or abuse, or to protect users, Intirear, and the public.

We retain account and project data for as long as your account is active or as needed to provide the service, comply with legal obligations, resolve disputes, and enforce agreements.

If you delete your account or request deletion, we will remove or anonymize personal data within a commercially reasonable timeframe, except where retention is required by law or for legitimate security and fraud-prevention purposes.

We use reasonable administrative, technical, and organizational safeguards designed to protect personal data. No system is completely secure, so we cannot guarantee absolute security.

You may request access to, correction of, export of, or deletion of your personal data by contacting privacy@intirear.design — or directly from the app via Settings → Data & Privacy → Export My Data / Delete Account.

Depending on your location, you may also have rights related to objection, restriction, portability, withdrawal of consent, or complaint to a supervisory authority. EU residents can file complaints with the data-protection authority in their member state.

If you are in the European Economic Area, United Kingdom, or Switzerland our legal bases for processing are: Article 6(1)(b) GDPR (contract performance — providing the service you signed up for), Article 6(1)(f) (legitimate interest — security, fraud prevention, product analytics), and Article 6(1)(a) (consent — for optional marketing emails).

California (CCPA / CPRA), Virginia, Colorado, Connecticut, Utah, and Texas residents can submit a verifiable consumer request at /privacy/do-not-sell — we honor opt-outs even though we don't sell personal information.

Your room photos and chat prompts are sent to our AI inference providers — KIE.ai (primary, wrapping Google Imagen 3 and Ideogram v3), with Google Cloud Vertex AI and Amazon Web Services (AWS Bedrock / Nova Canvas) as fallbacks, Google Cloud Vision for content-safety screening, and Google Gemini for photo understanding — only for the specific generation you requested. A full, versioned sub-processor list is at /dpa.

We do NOT use your photos, prompts, or generated outputs to train any AI model. Our contracts with these sub-processors prohibit them from doing so as well. This is enforced contractually and verified at the API level (we do not call any training endpoints).

Generated images are AI outputs and may be inaccurate. Always verify materials, dimensions, and structural elements with a qualified contractor before construction. Per EU AI Act Article 50, we disclose AI involvement in every generation surface.

Source room photos are auto-deleted from our storage after 365 days. AI-generated outputs are kept until you delete them or close your account. You can email any generated design to yourself from the per-result ⋯ menu for permanent off-platform archival.

Source room photos in `uploads/`: 365 days from upload.

Inpainting masks in `masks/`: 7 days from creation.

AI-generated designs and project metadata: retained until account deletion or explicit user-initiated delete.

Crashlytics crash reports: 90 days (Firebase default, not adjustable by us).

Server access logs: 30 days on Vercel.

Funnel and analytics events: retained indefinitely in anonymized form; the linkage to your account is broken at account deletion (user IDs replaced with `anonymized`).

Webhook idempotency markers: 90 days.

Audit logs of moderation actions, opt-outs, and admin events: 7 years (legal-defense retention).

Our complete and current sub-processor list is published at /dpa and updated whenever we add or remove a vendor. The list includes Firebase, Vercel, KIE.ai, Replicate, Adapty, Apple, Google Play, Zoho (ZeptoMail), Stripe, Highlight.io, and Cloud Vision.

We provide at least 30 days' advance notice before adding a new sub-processor, by updating /dpa and (where you have an active account) by an in-app banner.

EU → US transfers are governed by EU Standard Contractual Clauses (SCCs) included in each sub-processor's DPA. We do not transfer personal data to non-adequate jurisdictions. UK transfers rely on the UK International Data Transfer Addendum to the SCCs.

Data residency: primary infrastructure runs in us-central1 (Iowa, USA). Regional storage mirroring to europe-west1 and asia-northeast1 is rolling out as documented in /docs/MULTI_REGION.md.

We use a small number of strictly-necessary first-party cookies on the web — for keeping you signed in, remembering your country for pricing, and preserving your cookie-consent choice. These do not require consent under EU ePrivacy Directive Article 5(3) because they are essential to the service you requested.

We use Firebase Analytics events for product analytics. These are not stored as cookies; they fire as direct HTTPS posts and are tied to your account id. You can opt out of analytics from the cookie banner or by emailing privacy@intirear.design.

We do NOT use third-party advertising cookies, Facebook Pixel, Google Ads conversion pixels, or any cross-context tracking technology.

Detailed list is at /cookies. You can manage your choices any time from the cookie banner footer link.

We do not currently respond to the legacy 'Do Not Track' (DNT) HTTP header — it is not standardised and most browsers no longer send it. This is a required disclosure under California Business and Professions Code § 22575(b)(7) (CalOPPA).

We DO honor the Global Privacy Control (GPC) signal as required by CCPA / CPRA. When we detect a GPC signal in your browser, we treat it as an opt-out of any data sales/sharing (we already don't sell or share data, but the signal is logged for compliance purposes).

On iOS and Android, we collect: account credentials (Firebase Auth), device push token (only after you grant notification permission — see below), crash reports (Crashlytics), and app analytics events (Firebase Analytics).

We do NOT use the iOS Advertising Identifier (IDFA) or the Android Advertising ID (AAID). We do not link to AdSupport.framework. App Tracking Transparency (ATT) is declared in our privacy manifest for transparency but never prompted at runtime because we have nothing to track.

Push permission: we ask for notification permission only AFTER your first successful generation, with context. Declining does not affect the rest of the app.

Camera and Photo Library: requested only when you tap 'Take photo' or 'Choose photo' — never at app launch.

Apple App Privacy Nutrition Label and Google Play Data Safety form: both are published in the respective app stores and accurately reflect what's in this policy.

Per CCPA § 1798.140(ah)(1) we must verify your identity 'to a reasonable degree of certainty' before processing a data-subject request. For routine requests (export, delete) we verify by confirming the request comes from a signed-in account or by sending a confirmation link to the email on file.

For higher-risk requests (e.g. correction of identifying data, account-recovery) we may ask for additional verification — such as a code sent to your registered email, or a copy of government-issued ID (which we securely review and immediately destroy after verification).

We will not request more information than necessary to verify. Verifiable agent requests must include a written authorisation signed by you or a power-of-attorney that complies with California Probate Code § 4000 et seq.

If you are located in India, you are a 'Data Principal' and Intirear is a 'Data Fiduciary' under the Digital Personal Data Protection Act, 2023 (DPDPA) and the DPDP Rules, 2025. We process your digital personal data on the basis of your consent (Section 6), given by clear affirmative action when you sign up and when you accept our AI-data-sharing disclosure.

Your rights as a Data Principal: (a) access — a summary of the personal data we process about you and the recipients we share it with (Section 11); (b) correction, completion, updating, and erasure of your data (Section 12); (c) grievance redressal (Section 13); and (d) nomination — you may nominate another individual to exercise your rights in the event of your death or incapacity (Section 14). Exercise (a)-(c) from the app (Settings → Data & Privacy); to nominate, email the Grievance Officer below with the nominee's name and contact details.

Grievance Officer (India): email privacy@intirear.design with the subject 'DPDP Grievance'. We acknowledge within 72 hours and resolve within the timeline prescribed by the DPDP Rules. Please use this mechanism before approaching the Data Protection Board of India.

Withdrawing consent is as easy as giving it: revoke AI-data consent in Settings → Data & Privacy, or delete your account. Withdrawal does not affect processing already carried out; thereafter we cease further processing and erase your data unless retention is required by law.

Complaints: if unsatisfied with our grievance response, you may complain to the Data Protection Board of India (DPBI), with appeals to the Telecom Disputes Settlement and Appellate Tribunal (TDSAT).

Children: we do not knowingly process the personal data of a person under 18 located in India without verifiable parental consent (Section 9). Registration applies an 18+ requirement for users in India, and we do not perform behavioural tracking or targeted advertising on children (Section 9(2)).

Cross-border transfer: your data may be processed by sub-processors outside India (primarily the United States), as listed at /dpa. We will not transfer your data to any territory restricted by the Central Government under Section 16.