Marno privacy policy.

Who we are

Marno is operated by Core Shift Studios, a bespoke software studio based in Belfast, Northern Ireland. For the purposes of UK GDPR and the Data Protection Act 2018 we are the data controller for any personal information processed through the Marno app. You can reach us at hello@coreshiftstudios.co.uk.

What information we collect

Marno is designed to collect as little personal information as possible. The app does not require an account and we do not link the data we process to your identity. What we do handle:

• Translation and discovery requests. The text you submit to the translator, discover, food, and journal AI features is sent through our backend so the language model can respond. It is not stored against your identity.
• Voice input. If you tap the microphone to speak, your device transcribes speech to text locally where supported (iOS and modern Android). The resulting text is treated the same as typed input.
• Journal entries and photos. Entries and photos you save in the journal are stored locally on your device. They are not uploaded to our servers.
• Subscription state. When you purchase a subscription or boost pack, Apple or Google records the transaction and shares a pseudonymous identifier with our subscription provider (RevenueCat) so we can verify your entitlement.
• Anonymous usage counter. Our backend keeps a daily count of AI requests per anonymous device ID so it can enforce fair-use limits. The counter resets every 24 hours.
• Active region. Your chosen region (for example, Tuscany or Westeros) is stored locally so the app can adapt its content. It is not linked to your identity.

What we do not collect

We do not run advertising or third-party tracking SDKs. We do not collect device location, contacts, or photos outside of the journal feature. We do not require an account or email address to use Marno. We do not collect payment card data — Apple and Google handle payments directly and we never see card details.

Permissions we request

Marno asks for a small number of device permissions so that specific features can work. Each is explained at the point of use.

• Camera. To let you attach photos to journal entries. Photos stay on your device.
• Microphone. To let you dictate translation queries by voice. Audio is transcribed locally where supported.
• Photo library. To let you pick existing photos for journal entries.
• Network. To connect to our backend so the AI features can return responses.

How we use information

We use the information described above to generate translations, recommendations, lore, journal prompts, and other AI features you request; to verify subscription entitlements and unlock paid features; to enforce daily fair-use caps on AI generation so the service remains affordable; and to diagnose crashes and improve reliability through anonymous logs.

Service providers we share data with

We use a small number of service providers to operate Marno. Each only receives the minimum data needed to do its job, and none of them receive your identity from us. Each provider's own privacy policy applies to their handling of the data they receive — links are provided below.

• Anthropic (Claude API). Generates AI responses for the translation, discovery, food, and journal features. Receives the text of your request and the active region context. No identifiers. Anthropic's privacy policy: anthropic.com/legal/privacy.
• Cloudflare (Workers and KV). Hosts the backend that proxies AI requests and stores the anonymous daily counter. Receives an anonymous device ID and request count. Cloudflare's privacy policy: cloudflare.com/privacypolicy.
• RevenueCat. Manages subscription state and verifies entitlements across devices. Receives an anonymous user ID, a subscription receipt from Apple or Google, your device platform, app version, and country. No name, email address, or card details. RevenueCat's privacy policy: revenuecat.com/privacy.
• Apple App Store. Processes subscription and one-time purchases on iOS, and delivers the app. Apple receives your payment details directly; we never see card data. Apple's privacy policy: apple.com/legal/privacy.
• Google Play. Processes subscription and one-time purchases on Android, and delivers the app. Google receives your payment details directly; we never see card data. Google's privacy policy: policies.google.com/privacy.
• Wikipedia REST API. Public read-only lookups for place photos. Receives the name of the place being looked up. No identifiers. Wikimedia Foundation's privacy policy: foundation.wikimedia.org/wiki/Policy:Privacy_policy.

Subscription disclosures

If you purchase a Marno Pro or Marno Pro Max subscription: payment is charged to your Apple ID or Google Play account at confirmation of purchase; subscriptions auto-renew unless turned off at least 24 hours before the end of the current period; your account is charged for renewal within 24 hours prior to the end of the current period; subscriptions can be managed and auto-renewal turned off in your Account Settings on the App Store (iOS) or Subscriptions in Google Play (Android). If Marno Pro Max is purchased during a free trial, any unused portion of the trial is forfeited at purchase. Full details are set out in our Marno terms of use.

We do not sell your data

We do not sell, rent, or share your personal data with advertisers, data brokers, or any third party not listed above.

International transfers

Our service providers operate globally. By using Marno you acknowledge that your requests may be processed in the United States, the European Union, or other regions where these providers operate. Where personal data is transferred outside the UK or EEA, our providers rely on standard contractual clauses or equivalent safeguards.

How long we keep it

Anonymous daily counters reset every 24 hours. Subscription records are retained for as long as required by accounting and tax law (typically seven years). Journal entries and cached content live only on your device — uninstalling the app removes them.

Children

Marno is not directed at children under 13 (or under 16 in the European Economic Area). We do not knowingly collect data from children. If you believe a child has used Marno, contact us at hello@coreshiftstudios.co.uk and we will assist.

Your rights

Under UK GDPR you have the right to access, correct, erase, restrict, port, or object to the processing of your personal data. Because Marno does not require an account, most data deletion is achieved simply by uninstalling the app. For subscription records held by RevenueCat or Apple/Google, write to hello@coreshiftstudios.co.uk and we will assist. You also have the right to complain to the Information Commissioner's Office at ico.org.uk.

Security

Requests between the app and our backend use HTTPS. Subscription verification uses signed receipts from Apple and Google. We do not store payment card data at any point.

Changes to this policy

We will update this page when our practices change. The effective date below tells you when this version was published. Material changes will be highlighted in the app where appropriate.

Contact

For privacy-related questions, write to hello@coreshiftstudios.co.uk.