Privacy Policy

How we collect, use, and protect your information

1. Introduction

IOI ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and services.

Please read this policy carefully. By using IOI, you consent to the practices described herein.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Email address, username (optional)
  • API Credentials: Binance API keys (encrypted locally on your device)
  • Communication: Messages you send to our support team

2.2 Information Collected Automatically

  • Device Information: Device type, operating system, unique device identifiers
  • Usage Data: App features used, bot configurations, trading statistics
  • Performance Data: App crashes, errors, and diagnostic information

2.3 Information We Do NOT Collect

  • Your unencrypted Binance API keys (zero-knowledge architecture)
  • Your Binance account password
  • Direct access to your funds or ability to withdraw
  • Personal financial information beyond trading activity

3. How We Use Your Information

We use the collected information to:

  • Provide and maintain our trading services
  • Execute trades on your behalf via Binance API
  • Monitor and improve app performance
  • Send important service notifications
  • Provide customer support
  • Detect and prevent fraud or abuse
  • Comply with legal obligations
  • Analyze usage patterns to improve our services

4. Zero-Knowledge Architecture

IOI employs a zero-knowledge security model for your sensitive data:

  • Your Binance API credentials are encrypted on your device using your PIN
  • Encryption keys are derived from your PIN and never leave your device
  • Our servers only receive encrypted credential packages during active trading sessions
  • We cannot decrypt or access your API keys without your PIN
  • If you forget your PIN, credentials must be re-entered (we cannot recover them)

5. Data Storage and Security

We implement industry-standard security measures:

  • All data transmitted between app and servers uses TLS 1.3 encryption
  • Sensitive data is encrypted at rest using AES-256
  • Servers are hosted in secure data centers with 24/7 monitoring
  • Regular security audits and testing
  • Access to user data is strictly limited and logged

Data Retention

  • Trading history: Retained for the duration of your account plus 7 years for tax/legal purposes
  • Account data: Retained until account deletion
  • Support communications: Retained for 3 years
  • Analytics data: Aggregated and anonymized after 90 days

6. Information Sharing

We do not sell your personal information. We may share information with:

6.1 Service Providers

  • Cloud hosting providers (for app infrastructure)
  • Analytics services (anonymized usage data only)
  • Customer support tools

6.2 Legal Requirements

We may disclose information if required by law, court order, or government request, or to protect our rights, property, or safety.

6.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the transaction.

7. Your Rights

Depending on your location, you may have the following rights:

  • Access: Request a copy of your personal data
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your data (subject to legal retention requirements)
  • Portability: Request your data in a portable format
  • Objection: Object to certain processing activities
  • Withdrawal: Withdraw consent at any time

To exercise these rights, contact us at privacy@getioi.app

8. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place, including:

  • Standard contractual clauses approved by relevant authorities
  • Data processing agreements with all service providers
  • Compliance with applicable data transfer regulations

9. Children's Privacy

IOI is not intended for users under 18 years of age. We do not knowingly collect personal information from children. If we discover that a child has provided us with personal information, we will delete it immediately.

10. Third-Party Links

Our app may contain links to third-party websites or services (such as Binance). We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies.

11. Cookies and Tracking

Our website uses cookies for:

  • Essential functionality (session management, preferences)
  • Analytics (anonymized usage statistics)
  • Performance optimization

You can control cookie preferences through your browser settings.

12. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes via the app or email. The "Last Updated" date at the bottom indicates when the policy was last revised.

13. Contact Us

For privacy-related questions or concerns:

Email: privacy@getioi.app

For data protection inquiries in the EU, you may also contact your local data protection authority.

Last updated: March 3, 2026