Privacy Policy
1. Introduction
ISONQ LLC ("ISONQ," "we," "our," or "us") provides enterprise search software designed for organizations that require strict data privacy controls. This Privacy Policy describes our data handling practices and your rights regarding information processed through our software.
By using ISONQ, you acknowledge and agree to the practices described in this policy.
2. Zero-Knowledge Architecture
ISONQ employs a Zero-Knowledge Architecture, which represents a fundamental departure from conventional software design. Under this model, your data is processed and stored exclusively on your local device. ISONQ does not operate centralized servers that store, process, or have access to your content.
This architecture differs from "Zero Trust" security models, which verify identity before granting access to centrally-held data. Zero-Knowledge eliminates the central repository entirely—we cannot access your data because no copy exists outside your control.
3. Local Data Processing
The following categories of information are processed and stored solely on your device:
| Data Category | Processing Location | ISONQ Server Access |
|---|---|---|
| Local files and documents | Your device | None |
| Microsoft 365 emails | Your device | None |
| Microsoft Teams messages | Your device | None |
| Search queries and results | Your device | None |
| Encrypted search index | Your device | None |
4. Information We Collect
ISONQ collects limited information necessary for license validation and service improvement:
- License key: Used to validate subscription status
- Hardware identifier: Used to enforce license terms and prevent unauthorized distribution
- Application version: Used to deliver updates and provide technical support
- Anonymized usage statistics: Optional telemetry to improve product functionality (can be disabled in Settings)
Information We Do Not Collect
ISONQ does not collect, transmit, or have access to:
- File contents, names, or metadata
- Email or message contents
- Search queries or search results
- Microsoft 365 credentials or authentication tokens
- Personally identifiable information contained in your documents
5. Microsoft 365 Integration
ISONQ integrates with Microsoft 365 using OAuth 2.0 with delegated permissions. This authentication model ensures that:
- Your Microsoft credentials are transmitted directly to Microsoft, not to ISONQ
- Authentication tokens are generated and stored locally on your device
- Data flows directly from Microsoft servers to your device without ISONQ intermediation
You may revoke Microsoft 365 access at any time through ISONQ Settings or your Microsoft account at myaccount.microsoft.com/permissions.
6. AI-Assisted Features
ISONQ offers optional integration with AI services including Anthropic Claude for enhanced search capabilities. When enabled:
- ISONQ applies automated sanitization to remove protected health information (PHI), personally identifiable information (PII), and other sensitive data before transmission
- Only the minimum context necessary for query processing is transmitted to AI providers
- AI provider interactions are governed by their respective privacy policies
AI-assisted features are optional and can be disabled entirely in Settings.
7. Security Measures
ISONQ implements the following security controls:
- Encryption at rest: AES-256 encryption for all indexed data stored on your device
- Encryption in transit: TLS 1.3 for all network communications
- Credential protection: Microsoft 365 tokens stored in encrypted local storage
- No cloud storage: Your index and content are never uploaded to external servers
8. HIPAA Compliance
ISONQ is engineered to support HIPAA-compliant workflows for covered entities and business associates handling Protected Health Information.
- PHI remains on your device and is never transmitted to ISONQ infrastructure
- Automated PHI detection and redaction for AI-assisted features
- Local audit logging for compliance reporting
- AES-256 encryption for data at rest
Business Associate Agreements are available for qualifying customers. Contact compliance@isonq.com for information.
9. Your Rights
ISONQ's Zero-Knowledge Architecture ensures you maintain complete control over your data:
- Access: All data resides on your device under your direct control
- Deletion: Clear your search index at any time via Settings
- Disconnection: Revoke third-party integrations through Settings or provider accounts
- Opt-out: Disable anonymized telemetry in Settings
- Portability: Your data remains in standard formats on your device
10. Policy Updates
We may revise this Privacy Policy to reflect changes in our practices or applicable regulations. Material changes will be communicated via email and in-application notification at least thirty (30) days before taking effect.
Continued use of ISONQ following policy updates constitutes acceptance of the revised terms.
11. Contact Information
For questions regarding this Privacy Policy or our data practices:
Email: privacy@isonq.com
ISONQ LLC
Lakewood, Colorado, United States