Privacy policy.

Plain-English summary, written for humans. Last updated 5 May 2026. This is an interim version while we work on a fuller document.

What we collect

• Your email address — used to identify you and send sign-in links and notifications.
• Your display name — what you set in Settings; shown to your co-parent on every message.
• Messages you send — stored permanently as part of the record and accessed only where needed to operate the service, support you, or meet legal obligations.
• Read receipts — timestamps when your co-parent opens a message.
• Sign-in audit log — date, time, IP address, and browser of each successful sign-in. Visible to you in Settings.
• Billing info — handled by Stripe, never stored on our servers. We see only the subscription status.

What we don't collect

• No passwords (we don't have any to leak).
• No ad networks, ad pixels, or remarketing cookies.
• No analytics tracking on the authenticated app pages — see "Analytics" below.
• No location data beyond IP address at sign-in.

Analytics

We use Google Analytics 4 to understand how people find and use the public marketing pages on this site — the home page, articles and guides, the login page, and the legal pages. On those pages, Google sees standard web-analytics data: which page you visited, roughly where in the world you connected from (country and state level), what kind of device and browser you used, and where you came from (search engine, link, or direct visit). It does not see your email address, your display name, or anything you type.

The pages where you read and write messages are not tracked at all. Once you sign in, no Google Analytics code runs on the conversation, settings, billing, My Brain, attachments, or any other authenticated page. This is deliberate. The record is private. The pages where the record lives stay private.

Google Analytics is a US-based service operated by Google LLC, and the data we send to it leaves Australia. If you would prefer to opt out, you can install Google's official opt-out browser add-on or use your browser's privacy / Do Not Track settings — both prevent any data being sent to Google from your visit.

Where it's stored

On Australian servers (Sydney region) operated by DigitalOcean. Backups are stored in the same region. Email is delivered via SendGrid; Stripe processes payments. Both are reputable providers under their own privacy regimes.

How long we keep it

Messages and read receipts are kept indefinitely because they are the record. Sign-in audit entries are kept for 12 months. If you ask us to close your account, we will handle identifying details in line with the record's integrity and any legal obligations.

Who we share it with

Nobody, except: (a) the co-parent you've connected with — they see what you send them; (b) lawful court orders; (c) the providers above (DigitalOcean, SendGrid, Stripe) only as needed to run the service.

Your rights

Under Australian Privacy Principles, you can: ask what we hold about you, ask us to correct it, and complain to the Office of the Australian Information Commissioner if you're not satisfied. Contact us at ben@benslater.me to start.

Cookies

On the authenticated app pages (the conversation, settings, billing, My Brain), the only cookie we set is a session cookie called iiw_session that keeps you signed in. No tracking cookies, no third-party cookies on app pages.

On the public marketing pages, Google Analytics may set cookies (named _ga and _ga_<id>) to anonymously distinguish visitors for analytics. See "Analytics" above for what is and isn't collected, and how to opt out.

Children

The service is for adults (18+). We don't knowingly collect data from minors.

Changes

If we change this policy materially, we'll let you know by email. Smaller updates will appear here with a new "last updated" date.

Contact

Privacy questions: ben@benslater.me.