Learn how we collect, use, and protect data across Instica products.
IN PLAIN ENGLISH
Optional website analytics stay off unless you allow them, and Instica honors Global Privacy Control. Instica does not sell personal information or share it for cross-context behavioral advertising. Your inventory data remains yours and can be exported.
California notice at collection
Effective July 9, 2026
Marketing website: California Notice at Collection
This notice describes information collected on Instica’s marketing and documentation websites. It applies at or before collection and supplements the complete product privacy policy.
Information we collect
California category
Examples and purpose
Retention
Sold or shared
Identifiers
IP address, name, email address, privacy and language preferences, and—after analytics permission—an Instica attribution ID and Google Analytics client ID. We use these to protect the site, remember choices, answer requests, measure permitted visits, and connect a permitted visit to signup.
Privacy preferences and attribution identifiers expire after no more than 12 months. Contact identifiers are kept through request resolution and then only for documented recordkeeping, legal, fraud-prevention, and security obligations. Security records are kept until the related delivery or abuse issue and applicable obligations are resolved.
No.
Commercial information
The contact lane, features, plans, or services you ask about or consider, plus permitted interactions with related pages and calls to action. We use this to route and answer inquiries and to understand permitted interest in Instica services.
Inquiry records are kept through resolution and then only for documented recordkeeping, legal, fraud-prevention, and security obligations. Permitted analytics are deleted or de-identified when they are no longer needed to compare site performance.
No.
Internet or other electronic network activity information
Pages viewed, referral information, calls to action, browser and device details, and request logs. Essential logs support delivery and security; optional usage analytics begin only after permission.
Essential logs are kept until the related delivery or abuse issue and applicable obligations are resolved. Permitted analytics are deleted or de-identified when they are no longer needed to compare site performance.
No.
Geolocation data
Approximate city, region, or country derived from an IP address by site-delivery, security, or—after permission—analytics vendors. We use it to protect the site and understand permitted use by general region; we do not request precise location.
Security-derived location follows the related security record. Permitted analytics location is deleted or de-identified when it is no longer needed to compare site performance by general region.
No.
Audio, electronic, visual, thermal, olfactory, or similar information
The message you submit and optional screenshots, documents, images, and text files attached to a support request. We use them only to understand, route, and resolve that request.
Based on the time needed to resolve the request and meet documented recordkeeping, legal, fraud-prevention, and security obligations.
No.
Professional or employment-related information
Company, team size, organization, topic, store or workspace, and deadline that you choose to submit through the contact form. We use this information to route and answer the request.
Based on the time needed to resolve the request and meet documented recordkeeping, legal, fraud-prevention, and security obligations.
No.
Please do not send sensitive information
The marketing site does not ask for passwords, payment-card numbers, government identifiers, health information, or other sensitive personal information. Do not include them in contact messages or attachments.
Sources
We collect this information directly from you, your browser or device, and vendors that help Instica deliver, secure, or measure the site.
Vendors and other recipients
If you allow analytics, the site loads the Umami instance at analytics.instica.com and Google Analytics. Google advertising storage, advertising user data, personalization, Google Signals, and advertising-personalization features remain disabled. The contact page uses Cloudflare Turnstile for bot and abuse prevention whether or not optional analytics are allowed. Hosting, storage, security, and support infrastructure also process the limited information needed to provide those services.
Disclosures in the preceding 12 months
Instica has not sold personal information or shared it for cross-context behavioral advertising. The categories above may be disclosed to hosting, storage, security, support, and analytics vendors for the purposes described above.
Your California choices
Allow or decline analytics: use the first-visit notice or in the footer. Changing your choice is as easy as making it.
Global Privacy Control: when this browser sends GPC, Instica applies it to this browser or device, records the opt-out preference, and keeps optional marketing analytics off. Instica does not sell or share information online or offline.
Do Not Track: older DNT signals are not standardized. Instica recognizes GPC as described above.
Authorized agents: an authorized agent may make a California request for you. We may request proof of authorization and may verify your identity directly.
Non-discrimination: declining optional analytics does not change the website, product, price, or service available to you.
Instica does not sell personal information or share it for cross-context behavioral advertising, including information belonging to people under 16. If these practices change, we will update this notice before the new collection or use begins and provide every required control.
Complete product policy
Last updated Nov 14, 2025
Instica Privacy Policy
Pinestraw Enterprises LLC Last updated: November 14, 2025
This Privacy Policy describes how Pinestraw Enterprises LLC (“Pinestraw”, “we”, “us”, or “our”) collects, uses, and shares information when you use the Instica mobile application (the “App”) and related services (collectively, the “Service”).
By using Instica, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree, please do not use the Service.
1. Information We Collect
We collect information in the following categories:
1.1 Information You Provide
Account and profile information
Phone number used to create and log into your account
Display name or business name (if you choose to provide one)
Email address or other contact details you optionally provide for support or billing
Country or region, where inferred from your device or app settings
Inventory and content you add
Items you store in Instica (e.g., titles, descriptions, categories, purchase price, listing price, quantity, condition, notes, tags)
Photos you attach to items (e.g., pictures of inventory, covers, labels, barcodes)
Custom lists, collections, or other organization data you create
Communications
Messages you send to our support team (via in‑app support, email, or other channels)
Feedback, bug reports, or survey responses
1.2 Information Collected Automatically
When you use the App, we automatically collect:
Device information: device model, operating system version, app version, language, time zone
Log data: IP address, timestamps, screens viewed, buttons tapped, and other in‑app actions
Crash and performance data: through services like Firebase Crashlytics, to diagnose stability issues
Analytics data: through services such as Firebase Analytics, to understand feature usage and improve the Service
This information is generally collected in a de‑identified or pseudonymous form and is not used to personally identify you.
1.3 Information from Third Parties
Apple
When you make an in‑app purchase (e.g., an Instica subscription) through Apple’s App Store, Apple acts as the merchant of record. We receive limited information from Apple necessary to manage your purchase and subscription status (for example, subscription identifiers, transaction receipts, and renewal status). We do not receive your full payment details such as your credit card number.
Third‑party marketplaces and integrations (if enabled)
If you connect Instica to third‑party services (such as marketplaces, catalog providers, or other integrations that we support), we may receive inventory, listing, or pricing data from those services as authorized by you.
Data obtained from third‑party integrations is processed in accordance with this Privacy Policy and any additional terms presented to you when you enable those integrations.
2. How We Use Your Information
We use the information we collect for the following purposes:
Provide and maintain the Service
Create and manage your Instica account
Sync and store your inventory data
Process subscriptions and in‑app purchases
Provide customer support and respond to your requests
Improve, personalize, and develop the Service
Analyze usage patterns to understand which features are used and how
Diagnose and fix bugs, crashes, and performance issues
Develop new features and enhancements
Security and fraud prevention
Protect accounts and data from unauthorized access
Monitor for suspicious or abusive activity
Enforce our Terms of Service
Communications
Send transactional messages related to your account (e.g., purchase confirmations, important service announcements)
Send optional product updates, tips, or promotional communications (where permitted by law and your preferences). You can opt out of promotional messages at any time.
We process your information on the basis of your consent, to perform our contract with you, to comply with legal obligations, and for our legitimate interests in operating, improving, and securing the Service.
3. How We Share Your Information
We do not sell your personal information.
We may share information in the following limited circumstances:
3.1 Service Providers
We use trusted third‑party service providers to help us operate and improve Instica, for example:
Cloud hosting and storage
Analytics (e.g., Firebase Analytics)
Crash reporting and diagnostics (e.g., Firebase Crashlytics)
Logging, monitoring, and security tools
Customer support tools
These providers may process limited personal data on our behalf and only under contracts that require them to safeguard your information and use it solely for the services they provide to us.
3.2 Payment and Platform Providers
Apple (App Store / StoreKit): Handles the processing of in‑app purchases and subscriptions. We share necessary transaction information with Apple and receive information needed to validate and manage your subscription.
3.3 Third‑Party Integrations You Enable
If you choose to connect Instica to a third‑party service, we may share the data necessary to provide that integration (for example, selected inventory details to sync listings). You can disconnect integrations at any time via the App or the third‑party service.
3.4 Legal and Safety
We may disclose information if we believe in good faith that it is reasonably necessary to:
Comply with any applicable law, regulation, legal process, or governmental request
Protect the rights, property, or safety of Pinestraw, our users, or the public
Enforce our terms, policies, or agreements
Detect, prevent, or address fraud, security, or technical issues
3.5 Business Transfers
If we are involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of all or part of our business, your information may be transferred as part of that transaction, subject to standard confidentiality protections.
4. Data Retention
We retain your information for as long as:
Your account is active, or
It is needed to provide the Service and fulfill the purposes described in this Policy, or
We are legally required to retain it (for example, for tax, accounting, or other regulatory reasons).
You may request deletion of your account and associated data (see Your Rights and Choices below). When we delete data, we will do so using commercially reasonable methods. Some information may remain in backups or logs for a limited period, or may be retained in de‑identified form.
5. Your Rights and Choices
Depending on your location and applicable law, you may have the following rights:
Access: Request a copy of the personal data we hold about you
Correction: Request that we correct inaccurate or incomplete data
Deletion: Request that we delete your personal data, subject to certain exceptions
Restriction / Objection: Request that we restrict or stop certain processing
Portability: Request a copy of your data in a machine‑readable format
Withdraw consent: Where we rely on consent, you may withdraw it at any time
You can exercise many of these rights directly in the App (for example, by updating your profile or deleting content). For other requests, contact us using the details in Contact Us below. We may need to verify your identity before fulfilling your request.
You may opt out of non‑essential email communications by using the unsubscribe link in our emails or by contacting us. You cannot opt out of important transactional or service‑related communications.
6. Children’s Privacy
Instica is not directed to children under the age of 13 (or the minimum age in your jurisdiction), and we do not knowingly collect personal information from children. If we learn that we have collected personal information from a child without appropriate consent, we will take steps to delete it. If you believe a child has provided us with personal information, please contact us.
7. International Transfers
Pinestraw Enterprises LLC is based in the United States, and we (and our service providers) may process your information in the United States and other countries that may not provide the same level of data protection as your home jurisdiction.
Where required by law, we use appropriate safeguards (such as contractual data protection clauses) to protect personal data transferred across borders.
8. Security
We use appropriate technical and organizational measures to protect your information, including encryption in transit, access controls, and regular security updates. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.
You are responsible for maintaining the security of your device and any authentication methods (such as one‑time codes sent to your phone).
9. Third‑Party Services and Links
The Service may contain links to third‑party websites, apps, or services that are not owned or controlled by Pinestraw. This Privacy Policy does not apply to those third parties. We encourage you to review the privacy policies of any third‑party services you use.
10. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. When we do, we will revise the “Last updated” date at the top and, where appropriate, provide additional notice (for example, in‑app messaging or email).
Your continued use of Instica after any changes to this Policy constitutes your acceptance of the updated Policy.
11. Contact Us
If you have any questions about this Privacy Policy or our data practices, or if you wish to exercise your privacy rights, please contact us: