Privacy Policy
Effective date: June 2, 2026 · Last updated: June 2, 2026
This Privacy Policy explains how Nanu Connect LLC, doing business as Huint Labs ("Huinter.iO," "Huinter," "we," "us," or "our") collects, uses, shares, and protects information in connection with the Huinter.iO mobile application, websites, operator portal, API, MCP server, and related services (collectively, the "Service").
Huinter.iO operates a two-sided marketplace:
- Taskers are individuals who use the Huinter.iO mobile app to claim location-based photo or observation tasks, capture live real-world Submissions, and receive rewards for verified completion.
- Operators are businesses, developers, or agent workflow operators, including AI-agent companies, that post Tasks and access Submissions through the operator portal, API, or MCP server.
This Policy applies to both Taskers and Operators, with role-specific differences noted throughout. By using the Service, you agree to this Policy. If you do not agree, do not use the Service.
Huinter.iO is currently intended for users in the United States only.
1. Information We Collect
1.1 Information You Provide
Taskers may provide:
- Account information, such as name, email address, username, authentication credentials, and profile details.
- Payout information processed by Stripe, including identity verification details, payout account information, tax information, and other information required for Stripe Connect onboarding. We do not store full bank-account or card numbers on our systems.
- Communications you send us, including support requests, dispute messages, safety reports, and feedback.
Operators may provide:
- Account and company information, such as company name, contact name, email address, billing contact, and authentication credentials.
- API keys, MCP credentials, webhook configuration, integration settings, and developer configuration.
- Task information, including Task title, description, instructions, location, reward amount, verification level, expiration or review settings, and other Task requirements.
- Billing and funding information processed by Stripe. We do not store full card or bank-account numbers on our systems.
- Communications you send us, including support requests, safety reports, and feedback.
1.2 Information Collected Automatically
When you use the Service, we may collect:
- Precise geolocation. When Taskers claim, perform, or submit Tasks, the app collects precise GPS location, latitude/longitude, location-fix timestamp, location accuracy, and related location-source signals provided by the operating system. Precise location is central to the Service and is used to show nearby Tasks, confirm Task proximity, verify Submissions, prevent fraud, and support safety and audit functions.
- Photos, media, and Submission content. We collect photos, media, and observations submitted to complete Tasks, along with related metadata such as capture timestamp, file metadata, EXIF metadata where available, upload metadata, and cryptographic hashes used for integrity verification.
- Device and integrity information. We may collect device model, operating-system version, app version, device identifiers, app instance identifiers, device-integrity or attestation signals, jailbreak/tamper heuristics, and related security information used to confirm that requests come from a genuine app instance and to prevent fraud.
- Network information. We may collect IP address and related network metadata. We may use IP address for coarse location checks, abuse prevention, diagnostics, security, and fraud detection.
- Usage and diagnostic data. We may collect app activity, task interactions, claim/submission events, operator/API events, MCP tool events, webhook delivery events, crash logs, performance data, error logs, and diagnostics.
- Push notification tokens. If you enable notifications, we collect push notification tokens to send Task, account, status, safety, and operational notifications.
- Cookies and similar technologies. Our websites and operator portal may use cookies, local storage, session storage, analytics tools, or similar technologies to operate the Service, keep you signed in, remember preferences, improve performance, and secure accounts.
1.3 Information from Third Parties
We may receive information from third parties, including:
- Stripe, such as customer identifiers, connected-account identifiers, payment status, payout status, balance status, dispute status, tax-form status, and verification status.
- Apple, such as app attestation, push notification, device, and App Store-related signals.
- Mapping and geocoding providers, such as address, coordinate, place, routing, or location-normalization information.
- Cloud, database, storage, authentication, analytics, communication, and security providers used to operate the Service.
- AI or verification providers used to review Submissions or assist with verification.
- Operators or agents, who may provide Task details, requested locations, instructions, and other workflow information.
1.4 Photos May Incidentally Capture Others
Task photos depict real-world places and may incidentally capture people, faces, vehicles, license plates, private property, signs, addresses, or other information relating to third parties.
We process this content to operate the Service, verify Submissions, deliver completed Tasks to Operators, prevent fraud, resolve disputes, and maintain records.
Taskers are responsible for capturing photos lawfully, safely, and respectfully. Operators are responsible for requesting lawful, safe, non-surveillance Tasks. If you believe a photo improperly contains your image or information, contact us at support@huint.io.
2. How We Use Information
We use information to:
- Operate the marketplace.
- Create, display, route, claim, manage, review, and complete Tasks.
- Match Taskers with nearby Tasks.
- Verify that Submissions were captured at the required location and time.
- Deliver completed Submissions and related proof metadata to Operators.
- Process Operator funding, Task rewards, Tasker payouts, fees, refunds, reversals, disputes, and tax records through Stripe.
- Authenticate accounts and secure credentials.
- Operate the API, MCP server, operator portal, app, websites, storage, and backend systems.
- Provide automated and human review of Tasks and Submissions.
- Detect and prevent fraud, spoofing, abuse, unsafe conduct, policy violations, and security incidents.
- Send service communications, notifications, account alerts, security alerts, support messages, and operational updates.
- Provide customer support and resolve disputes.
- Debug, monitor, maintain, and improve the Service.
- Enforce our Terms and other policies.
- Comply with legal, tax, accounting, safety, audit, and regulatory obligations.
Where required by law, our legal bases for processing may include performance of our contract with you, our legitimate interests, your consent, and compliance with legal obligations.
3. Verification, AI Review, and Human Review
Huinter.iO may use automated systems and human review to verify Tasks and Submissions.
Verification may include:
- GPS and location checks.
- Timestamp and freshness checks.
- Device and app integrity checks.
- IP-based coarse location checks.
- Media metadata and image-integrity checks.
- Cryptographic hash checks.
- Automated image review.
- Human review.
- Operator review where applicable.
Some Tasks may use AI vision review. AI vision review may inspect the submitted image to determine whether it appears to satisfy the visual requirement of the Task, such as whether the image appears to show a requested storefront, property exterior, dock door, sign, or other visible target.
AI vision review does not replace all other verification and is not perfect. It may approve, reject, flag, delay, or route a Submission for human review. Human reviewers may review Submissions, AI results, Task instructions, metadata, and related information to resolve unclear, disputed, failed, or escalated Submissions.
Taskers may receive a short task-facing message explaining why a Submission needs retake or review. We do not generally show Taskers raw AI outputs, internal scoring, fraud signals, or security logic.
4. How We Share Information
We are not in the business of selling personal information for money.
We may share information as follows:
4.1 With Operators
When a Tasker completes a Task and the Submission becomes official, we provide the requesting Operator with the submitted photos or observations and related proof metadata, which may include verified location, capture timestamp, review status, and other Task completion information.
Operators may access Submissions through the operator portal, API, MCP server, webhook delivery, or other approved integration methods.
Operators are independently responsible for their own use, storage, protection, and legal handling of Submissions after delivery.
4.2 With Taskers
We may show Taskers Task details needed to complete Tasks, including location, instructions, reward amount, expiration or review status, and tasker-facing review messages.
4.3 With Service Providers
We share information with service providers that help us operate the Service, including providers for:
- Cloud hosting, database, and storage.
- Authentication and account security.
- Stripe payments, payouts, tax, and verification.
- Mapping, geocoding, and location services.
- Push notifications and communications.
- Analytics, diagnostics, monitoring, and crash reporting.
- AI vision review, verification, moderation, and fraud prevention.
- Customer support and administrative tools.
4.4 For Legal, Safety, and Compliance Reasons
We may disclose information if we believe it is reasonably necessary to:
- comply with law, legal process, subpoenas, court orders, or government requests;
- enforce our Terms or other policies;
- detect, prevent, or address fraud, abuse, security incidents, or technical issues;
- protect the rights, property, safety, or security of Huinter.iO, users, Taskers, Operators, third parties, or the public; or
- investigate unlawful, unsafe, abusive, or harmful activity.
4.5 Business Transfers
We may share or transfer information in connection with a merger, acquisition, financing, reorganization, bankruptcy, sale of assets, or similar transaction, subject to this Policy.
4.6 With Your Direction or Consent
We may share information with your direction, authorization, or consent.
4.7 Aggregated or De-Identified Information
We may use and share aggregated, anonymized, or de-identified information that cannot reasonably be used to identify you.
5. Payments
Payments, Operator funding, Task rewards, Tasker payouts, and related payment services are processed by Stripe, including Stripe Connect.
When you add funds, make payments, receive payouts, or set up a payout account, you may provide payment, identity, bank, tax, and verification information directly to Stripe. Stripe handles that information under its own terms and privacy policy.
We receive limited Stripe-related information, such as customer identifiers, connected-account identifiers, transaction status, payout status, refund status, dispute status, tax-form status, and verification status. We do not collect or store full card numbers or full bank-account numbers on our systems.
Taskers are independent contractors and are responsible for their own taxes. We or Stripe may collect tax information, issue tax forms, withhold amounts, or report payments where required by law.
6. Data Retention
We retain information for as long as needed to operate the Service, comply with legal obligations, resolve disputes, prevent fraud, enforce our agreements, maintain records, and protect the Service.
Our current retention practices include:
- Pre-submission capture data: Held temporarily during the capture or submission flow and deleted from local app storage after successful submission, abandonment, or failure cleanup, except where temporary upload, review, fraud, or diagnostic records are needed.
- Submission attempts: Retained as needed for verification, retake flow, human review, fraud prevention, dispute handling, audit, and diagnostics.
- Submitted photos, media, and metadata: Retained to deliver them to Operators and maintain records of completed work, payments, review, verification, disputes, fraud prevention, and audit. Our current standard retention period is 24 months after delivery, unless a longer period is required or permitted by law, dispute, fraud-prevention need, accounting requirement, or audit need.
- Account records: Retained while your account is active and as needed after closure for legal, tax, accounting, security, fraud-prevention, dispute, and audit purposes.
- Payment and ledger records: Retained as required or permitted for financial, tax, accounting, audit, fraud-prevention, and legal purposes.
- API, MCP, webhook, and security logs: Retained as needed for security, debugging, abuse prevention, audit, and operational integrity.
- Support communications: Retained as needed to provide support, resolve disputes, improve service, and maintain records.
Retention periods may change as the Service evolves.
7. Account Deletion
You may request deletion of your account from within the app, through the operator portal, or by contacting support@huint.io.
When you request deletion, your account may be immediately deactivated and scheduled for deletion or anonymization after a 30-day period, during which you may be able to cancel the request and restore your account.
Taskers may not request deletion while a Task claim is active, pending submission, pending review, awaiting payout processing, or involved in a dispute.
Operators may be required to cancel or resolve active Tasks, outstanding review items, credential issues, and balance issues before deletion is completed. Operator deletion revokes API keys, MCP credentials, webhook credentials, and related access credentials.
After the deletion period, we erase or anonymize profile information where required and reasonably possible. However, account deletion does not delete records we are permitted or required to retain, including completed Task records, Submissions, review records, payment and ledger records, fraud-prevention records, security logs, tax records, accounting records, legal records, and audit records.
Submitted photos and media may be retained according to the retention schedule in Section 6.
8. Your Privacy Rights
Depending on where you live, you may have rights to access, correct, delete, or obtain a copy of your personal information; opt out of certain processing; limit certain uses of sensitive personal information; or not be discriminated against for exercising your rights.
To make a privacy request, contact us at support@huint.io. We will verify and respond to your request as required by law.
8.1 U.S. State Privacy Rights, Including California
If you are a California resident, California privacy law may provide rights to know, access, delete, correct, and limit certain uses of sensitive personal information. Precise geolocation is treated as sensitive personal information under California privacy law.
We use precise geolocation, photos, and related verification data for the purposes described in this Policy, including operating the marketplace, verifying Submissions, preventing fraud, securing the Service, and providing the Service.
We do not use precise geolocation to infer unrelated characteristics about you.
We do not sell personal information for money. To the extent any use of analytics, advertising, integrations, or delivery of Submissions could be considered a "sale," "sharing," or targeted advertising under applicable law, you may opt out by contacting support@huint.io.
Residents of other U.S. states with comprehensive privacy laws may have similar rights, which we honor where applicable.
8.2 Users Outside the United States
The Service is intended for users located in the United States and is not offered to, or directed at, individuals in the European Economic Area, United Kingdom, or other regions where we do not offer the Service.
If you are located outside the United States, please do not use the Service unless we have made it available in your region.
8.3 Biometric-Type Information
We do not use facial recognition and do not extract or store facial geometry, faceprints, voiceprints, or other biometric identifiers from Submissions.
Photos may contain faces or other identifying features incidentally, but we process Submissions for Task completion, verification, moderation, safety, fraud prevention, delivery to Operators, and recordkeeping, not to identify individuals through biometric recognition.
9. Your Choices
9.1 Location
Precise location is required for core Tasker features. You can disable location access in your device settings, but you may not be able to view, claim, complete, or verify Tasks without location access.
9.2 Notifications
You can enable or disable push notifications in your device settings. Some Service-related notices may still be sent by email or in-app message.
9.3 Cookies and Similar Technologies
You may control cookies and similar technologies through your browser or device settings. Disabling some cookies may affect operator portal functionality, login sessions, security features, or preferences.
9.4 Account Closure
You may request account deletion as described in Section 7.
10. Security
We use technical and organizational measures designed to protect information, including encryption in transit, private storage with access controls, signed or short-lived upload and access mechanisms where appropriate, least-privilege access controls, app integrity checks, monitoring, logging, and operational security practices.
No method of transmission, processing, or storage is completely secure. We cannot guarantee absolute security.
11. Children's Privacy
The Service is not directed to, and may not be used by, anyone under 18. We do not knowingly collect personal information from anyone under 18.
If we learn that we have collected personal information from a minor, we will take steps to delete it. If you believe a minor has used the Service, contact support@huint.io.
12. International Data Processing
We operate the Service from the United States. If you access the Service from outside the United States, you understand that your information may be processed in the United States and other countries, which may have data-protection laws different from those in your country.
13. Changes to This Policy
We may update this Policy from time to time. We will post the updated version with a new "Last updated" date and, where required, provide additional notice.
Your continued use of the Service after changes take effect constitutes acceptance of the updated Policy.
14. Contact Us
Nanu Connect LLC, doing business as Huint Labs
2277 Union Ave, Unit 404
Memphis, TN 38104
United States
Email: support@huint.io
Home · Docs · Privacy · Terms · Agent Portal