Privacy Policy

We only collect what NORO needs to write your readings. We don't sell, rent, or trade your data. We don't track you across other apps or websites. You can delete everything from inside the app.

Who we are

NORO is operated by Periger LLC (we, us). Reach us at yk@periger.com for any privacy question.

How this policy is organised

Apple shows you a summary of our data practices in the App Store under App Privacy. This page mirrors that summary line for line, then explains each item in plain language. The two should never contradict each other — if they do, email us.

Data linked to your identity

The categories below are tied to your NORO account so we can write personalised readings, keep your history, and let you sign in across devices.

Identifiers

• User ID — an internal account ID generated when you sign up. We use it to remember your readings, preferences, and subscription status across sessions and devices.
  App functionalityPersonalization
• Device ID — your device model, operating system version, and a non-resettable internal identifier. Used to keep sessions consistent and to debug device-specific problems.
  App functionality

Contact info

• Name — the first name you optionally enter so NORO can address you in readings (e.g. "Yasin, the card calling to you is the Emperor"). You can change or remove it anytime in Settings.
  Personalization

User content

• Photos or videos — the selfie you upload for an Aura reading. The image is sent to our AI provider, processed transiently, and dropped from cache within 14 days. We do not retain the raw photo on our servers beyond that window.
  Personalization
• Customer support — messages, emails and screenshots you send us when you ask for help. Stored only as long as needed to resolve your request.
  App functionality
• Other user content — birth date, birth time, birth city, optional partner names for Compatibility readings, optional Duet recipient names, and the text of questions you ask the cards in chat. Used to compose readings that are about you rather than a generic template.
  Personalization

Usage data

• Product interaction — which features you open, which cards you draw, how long sessions last, whether you complete a reading. Used to spot bugs and to remember your in-app state (current step, last-read reading, daily-card history).
  App functionalityPersonalization
• Other usage data — your preferences (selected language, notification toggles), and free-tier quota timestamps (e.g. how many Ask messages you've sent today). Used so the app remembers what you chose and so we can enforce free-tier limits fairly.
  App functionalityPersonalization

Data not linked to your identity

The categories below are collected but never stored alongside your NORO account. We can't look at this data and tell who it belongs to.

Contact info

• Phone number — used to send the SMS verification code that signs you in. The number is held only as needed for delivery and abuse prevention; it is not linked back to the in-app profile beyond the verification step. We never use it for marketing.
  Other purposes

Diagnostics

• Crash data — anonymised crash reports (stack trace, OS version, app version). No personally identifying info.
  App functionality
• Performance data — anonymised metrics like app launch time, network error rate, slow-screen counts. Used to find and fix bottlenecks.
  App functionality

Search history

• Search history — the text of questions you ask the cards in chat, stored anonymised so we can review reading quality and improve prompts without tying queries back to any specific user.
  App functionality

Data we do NOT collect

• Location (precise or coarse)
• Contacts
• Browsing history outside NORO
• Health and fitness data
• Financial info (Apple/Google handle payment, we never see your card)
• Sensitive info (race, religion, sexual orientation, political views)
• Advertising data, advertising identifiers, third-party trackers

Tracking

NORO does not track you. We do not use third-party advertising SDKs, no Facebook Pixel, no Google Analytics, no AppsFlyer, no Adjust. We do not share data with data brokers. We do not show ads inside NORO. App Tracking Transparency is not required because we do not engage in any tracking as Apple defines it.

Who processes data on our behalf

A small number of trusted service providers help us operate NORO. Each one receives only the data it needs.

• Anthropic (Claude) — receives your selfie and reading prompts to generate readings. Per Anthropic's API policy, your inputs are not used to train models. See Anthropic privacy policy.
• Twilio — sends the SMS verification code. Receives your phone number.
• RevenueCat — manages subscription state. Receives only your anonymised user ID and subscription events, never your readings.
• Apple and Google — process the payment. We never see card details.
• Periger LLC servers (Plesk, EU region) — store your account profile and reading history.

How long we keep data

• Active accounts: as long as you keep using NORO.
• Selfies / Aura images: dropped from cache within 14 days.
• Deleted accounts: wiped within 30 days of your request.
• SMS verification codes: expire after first use or 10 minutes, whichever comes first.
• Anonymised diagnostics / search history: 12 months maximum.

Your rights

You can at any time:

• Access your data — email us, we'll send a portable copy.
• Correct it — edit your name and birth details in Settings.
• Delete everything — Settings, Account, Delete Account. Wiped within 30 days.
• Withdraw consent for push notifications — Settings, Daily Whisper toggle.
• Complain to a regulator — your local data protection authority (the ICO in the UK, your national DPA in the EU, the KVKK in Turkey).

Children

NORO is not intended for users under 13 (or 16 where local law requires). We do not knowingly collect data from children. If you believe a child has signed up, email us and we will delete the account.

Security

All traffic between the app and our servers is encrypted in transit (HTTPS/TLS). We do not store passwords — sign-in uses one-time SMS codes. Backups are encrypted at rest. We are a small team and we take security seriously, but no service is 100% breach-proof. If something happens we will let affected users know.

Subscriptions

NORO+ is an auto-renewable subscription billed by Apple or Google. They hold your payment details, not us. Subscription status syncs to our server via RevenueCat so the app knows what to unlock. Cancel from your device's subscription settings: App Store, Profile, Subscriptions (iOS) or Play Store, Payments, Subscriptions (Android).

International transfers

Our servers are hosted in the European Union. Our AI provider (Anthropic) processes data primarily in the United States. By using NORO you consent to this cross-border processing, which we protect with standard contractual clauses where required.

Changes

If we materially change how we handle data we will update this page and bump the "Last updated" date. For changes that affect existing accounts we will notify you in-app.

Contact

Anything privacy-related: yk@periger.com. We respond within a few business days.