InkCop Privacy Policy

Last updated: April 8, 2026

This Privacy Policy explains how InkCop (“we”, “us”) processes personal data when you use our website, desktop application, and related services. We align this policy with GDPR principles and respect your control over personal data.

1. Data Controller

• Data Controller: InkCop Development Team
• Contact email: support@inkcop.com
• Website: https://inkcop.com

If you are located in the EU/EEA and have questions about our data processing, please contact us via the address above.

2. Categories of Personal Data

We may process the following categories of data:

• Account and transaction data: registration details, subscription status, order records (payment details are handled by payment processors).
• Technical and log data: device information, app version, crash logs, diagnostic telemetry, access logs.
• Communication data: feedback, support tickets, emails, and related correspondence.
• AI interaction data: prompts, selected attachments, and tool-call context submitted by you.
• Local content data: documents, knowledge-base data, indexes, vectors, and related files stored locally by default.

3. Purposes and Legal Bases (GDPR Art. 6)

We process data based on:

1. Contract performance (Art. 6(1)(b)): account operation, subscriptions, feature delivery, support.
2. Legal obligation (Art. 6(1)(c)): tax/accounting compliance and lawful regulatory requests.
3. Legitimate interests (Art. 6(1)(f)): security, abuse prevention, troubleshooting, service improvement.
4. Consent (Art. 6(1)(a)): optional features or communications where consent is required. Consent can be withdrawn at any time.

4. Data Sources

We collect data from:

• You directly (registration, configuration, uploads, support communication).
• Automatic generation (service logs, crash/error reports, performance signals).
• Third parties (payment status, provider response metadata, anti-fraud signals).

5. Data Sharing and Processors

We share data only when necessary and require processors to act under contracts and applicable data-protection law. Typical categories include:

• Payment processors (billing, refunds).
• Cloud AI model providers (only when you choose to use those features).
• Cloud document-processing providers (e.g., PDF recognition, when enabled by you).
• Infrastructure and security providers (hosting, logging, security controls).

6. International Transfers

Where data is transferred outside your jurisdiction, we rely on GDPR-recognized safeguards (such as Standard Contractual Clauses) or other lawful transfer mechanisms.

7. Data Retention

We follow data-minimization and purpose-limitation principles:

• Account/transaction data: retained as needed for contract and legal obligations.
• Log/diagnostic data: retained for security and operations, then deleted, aggregated, or anonymized.
• Support records: retained for continuity and quality improvement, then reduced or removed.
• Local content data: primarily controlled by you on your own device.

8. Your GDPR Rights

Subject to applicable law, you may exercise:

• Right to information and access (Art. 13/14/15)
• Right to rectification (Art. 16)
• Right to erasure (Art. 17)
• Right to restriction (Art. 18)
• Right to data portability (Art. 20)
• Right to object (Art. 21)
• Right to withdraw consent
• Right to lodge a complaint with a supervisory authority (Art. 77)

To exercise rights, contact jerr@foxmail.com. We may request reasonable identity verification.

9. Automated Decision-Making

We do not make decisions with significant legal effects based solely on automated processing. If this changes, we will provide legally required notice and safeguards.

10. Security Measures

We implement reasonable technical and organizational safeguards, including encryption in transit, access controls, least-privilege principles, logging, and monitoring.

Please note that no system can guarantee absolute security. You are also responsible for protecting your devices and credentials.

11. Children’s Privacy

Our services are intended for users with legal capacity. If we become aware of unauthorized processing of children’s personal data, we will delete or anonymize that data as required.

12. Cookies and Similar Technologies (Website)

Our website may use essential cookies for core functionality and, where legally permitted, analytics technologies for service improvement. You can manage cookie preferences in your browser settings.

13. Policy Updates

We may update this policy due to legal, technical, or business changes. Material updates will be announced on the website or in-app where appropriate. Continued use after updates indicates acknowledgment of the revised policy.

14. Contact

For privacy questions or rights requests, contact:

• jerr@foxmail.com