Legal

Privacy Policy

Last updated: 12 May 2026

1. Who we are

HydroIQ, Inc. ("HydroIQ," "we," "us") is a Delaware corporation building precision irrigation and fertigation hardware and the cloud subscription that runs them. Our website is hydroiq.us. You can reach us at hello@hydroiq.us for any privacy question.

2. The short version

  • We collect the minimum we need to run your irrigation system and answer you when you ask us something.
  • Your live camera stream is never recorded. Camera stills used by AI for plant-health analysis are deleted after the analysis call completes.
  • Your garden's GPS coordinates are truncated to ~110 meter resolution before they're stored in our cloud. Exact coordinates live only on your device.
  • You can export everything we have on you, in one click, in standard formats. You can delete everything we have on you, also in one click.
  • We do not sell your data. We do not share your data with advertisers.
  • You decide what (if anything) leaves your garden for anonymized research. The default is "nothing." You change that any time.

3. What we collect

If you've expressed interest in the beta program we collect the email address you typed into the form, plus anything you wrote in the free-form fields. We use it to follow up with you about the beta. Nothing else.

If you own a HydroIQ Controller we collect:

  • Sensor telemetry — soil moisture, electrical conductivity, temperature — produced by your sensors and transmitted by your Controller.
  • Watering and fertigation events — every valve open / close, every fertigation dose, by user or AI or schedule.
  • Account credentials — email, salted and hashed password, account-level settings.
  • Truncated garden location — three decimal places of latitude and longitude (~110 meters).
  • Camera stills — held in memory only during an active AI analysis call. The JSON analysis result is kept; the image bytes are not.
  • Device telemetry — firmware version, connectivity status, error logs. Used for troubleshooting and security updates.

4. What we do NOT collect

  • Video. Our streaming infrastructure has no recording capability built in. Live view is relayed, never persisted.
  • Exact garden coordinates. Latitude/longitude is truncated at the device before transmission.
  • Audio. None of our hardware has a microphone.
  • Browsing history, device fingerprints, advertising identifiers. We do not embed third-party ad trackers on our site or in our app.
  • Camera images, beyond the in-memory window of an active AI call.

5. How long we keep it

Raw sensor telemetry90 days
Hourly averages1 year
Daily averagesIndefinite (owner-deletable)
Watering / fertigation events (audit log)Indefinite, append-only, never modified
AI analysis resultsIndefinite, owner-deletable
Camera live streamNever written to disk
Camera stillsHeld in memory only during analysis call
Account credentialsUntil you delete your account (30-day soft delete, then unrecoverable)

6. Anonymized data tiers

You choose, on a four-tier scale, how much of your telemetry leaves your garden for research and partner use. Level 0 is the default and means "nothing." Level 3 is the most permissive and is gated by an opt-in toggle that you can flip back any time. Every consent change is in your audit log; you can prove who consented to what and when.

7. Your rights

You have the right to (a) know what we have on you, (b) export it in JSON and CSV, (c) correct it if it's wrong, (d) delete it, and (e) restrict how we process it. We honor these rights regardless of where you live. Send any request to hello@hydroiq.us; we will acknowledge within 7 days and complete the action within 30 days.

8. Security

Every connection between your Controller, our cloud, and your app is encrypted end-to-end. Firmware updates are cryptographically signed and verified by the device before installation. Camera live-view sessions require time-bound tokens that expire automatically. We follow a 90-day responsible-disclosure window for any security issue reported to security@hydroiq.us and maintain a public CVE register at /security/.

9. Children

Our products are not directed at children under 13. We do not knowingly collect personal information from children. If you believe a child has registered an account, contact us and we will delete it.

10. International users

HydroIQ is based in the United States. By using our products you consent to processing of your information in the United States. If you are in the European Economic Area or United Kingdom, you have additional rights under GDPR / UK-GDPR; we honor them by default.

11. Changes to this policy

If we update this policy we will change the "Last updated" date at the top of the page and, for material changes, notify account holders by email at least 30 days before the new policy takes effect.

12. Contact

Email hello@hydroiq.us for any question about this policy or your data.

← Back to HydroIQ