Privacy Policy

IonSignal, Inc. (“IonSignal,” “we,” “us,” or “our”), a Delaware corporation headquartered in San Francisco, California, operates the Qiln orchestration engine and related websites located at qiln.ionsignal.com, qiln.com, qiln.ai (collectively, the “Services”). This Privacy Policy explains how we collect, use, disclose, and safeguard information about you when you access our Services, join our waitlist, or otherwise interact with us.

By accessing or using the Services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with our practices, do not use the Services.


1. Scope

This Privacy Policy applies to information processed by IonSignal in connection with:

This Policy does not apply to:


2. Information We Collect

2.1 Information You Provide

2.2 Information Collected Automatically

2.3 Information We Do Not Knowingly Collect


3. How We Use Information

We use the categories of information described above for the following purposes:

We do not use your personal information to train generative AI models.


For users located in the European Economic Area, United Kingdom, or Switzerland, we rely on the following legal bases under Articles 6 and 9 of the GDPR:


5. How We Share Information

We do not sell your personal information, and we do not share personal information for cross-context behavioral advertising as those terms are defined under the California Consumer Privacy Act (“CCPA”) as amended by the California Privacy Rights Act (“CPRA”).

We disclose information only to the following categories of recipients:

5.1 Service Providers (Processors)

All service providers are contractually bound to process personal information solely for the purposes for which we engage them, in compliance with the CCPA/CPRA, GDPR, and applicable Standard Contractual Clauses.

We may disclose information to comply with subpoenas, court orders, or other legal process; to enforce our Terms of Service; to protect the safety, rights, or property of IonSignal, our users, or the public; or in connection with investigations of suspected illegal or abusive activity.

5.3 Business Transfers

If IonSignal undergoes a merger, acquisition, financing, reorganization, or sale of assets, your information may be transferred as part of that transaction, subject to confidentiality protections.


6. International Data Transfers

IonSignal is headquartered in the United States, and our primary processing infrastructure operates within the U.S. If you access the Services from outside the U.S., your information will be transferred to, stored in, and processed in the United States or other jurisdictions where we or our service providers operate.

For transfers from the EEA, UK, or Switzerland, we rely on:


7. Data Retention

We retain personal information only as long as necessary for the purposes described in this Policy:


8. Your Privacy Rights

8.1 California Residents (CCPA / CPRA)

If you are a California resident, you have the right to:

To exercise these rights, email legal@ionsignal.com with the subject line “California Privacy Request.” We will verify your identity using information already in our possession before acting on the request. You may also designate an authorized agent in writing.

8.2 Global Privacy Control (GPC) & Do-Not-Track

IonSignal honors the Global Privacy Control (GPC) browser signal as a valid opt-out preference signal under the CPRA. When we detect a GPC signal, we treat it as an opt-out of any “sale” or “sharing” of personal information for that browser. Because no industry consensus exists on Do-Not-Track signals, we do not separately respond to DNT headers but treat GPC as our governing signal.

8.3 EEA, UK & Swiss Residents (GDPR)

You have the right to:

8.4 How to Submit a Request

Email legal@ionsignal.com. We will respond within 45 days (CCPA) or one month (GDPR), with extensions where permitted by law.


9. Cookies & Tracking Technologies

We use the following categories of cookies:

You may control cookies through your browser settings or via our cookie banner where applicable.


10. Security

We implement industry-standard administrative, technical, and physical safeguards designed to protect personal information, including:

However, the Qiln Services are in Early Alpha. No security measure is impenetrable, and you acknowledge that data loss, breach, or unauthorized access may occur. Do not transmit highly sensitive data (e.g., PHI, payment card data, classified information) through the Services during the Alpha phase.


11. Children’s Privacy

The Services are not directed to children under 16, and we do not knowingly collect personal information from minors. If we learn that we have collected information from a child under 16, we will delete it promptly. Parents or guardians may contact us at legal@ionsignal.com.


The Services may link to third-party websites, repositories (e.g., GitHub), or open-source dependencies. This Privacy Policy does not cover the practices of those third parties. Review their privacy policies before providing personal information.


13. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated by posting the updated Policy with a revised “Last Updated” date and, where required, by direct notice to registered users. Continued use of the Services after the effective date constitutes acceptance of the revised Policy.


14. Contact Us

IonSignal, Inc. Attn: Privacy San Francisco, California, USA Email: legal@ionsignal.com

EEA/UK users without other recourse may contact us at the same address; we will appoint an Article 27 representative if and when required.