As of we state the following:
We do not use detailed tracking tools (including super cookies, malware, & Google Analytics).
We have not received any National Security letters.
We have not received any gag orders.
We have not received any warrants from any government organization.
We comply with General Data Protection Regulation (GDPR) (E.U.) & California Consumer Privacy Act (CCPA) (U.S.).
Although we make every effort to protect your privacy, there are some circumstances where it is impossible (this is the nature of the Internet). Therefore, we suggest you change your IP/DNS + User Agent (as well as install cookie blocking tools & tracking script blocking tools) to conceal your identity. You could be concerned about these parties (or a rogue entity) collecting data including IPs/User Agents and trying to intercept/monitor your communications. Please visit the following privacy guide to try and secure your device. There is no guarantee that these tools will work for you (they are not developed by us) so be sure to study how they function and use your best judgment.
We recommend using industry established software to scan and secure your devices, including Malwarebytes and CCleaner. We are developing our own offerings/services to help secure your connection and protect your privacy. Check our websites for any updates.
AIOIS Advertising & Privacy
We do not use targeted advertisements. Advertisements appear throughout the Website, independent of content. All advertisements (that we deploy, not including advertisements introduced by third-party widgets) are (300x250 Image Ad) or (100x100 Thumbnail Image With Text Ad) with a clearly defined sponsor notice. Advertisers do not have access to the web pages you visit, your device details, or your search activity. Only after taping the relevant advertisement can our advertisers deploy any cookies. Cookies are only used (with varying expiration dates) so that we can be compensated for any purchases you make through our participating sponsors. All advertisers are thoroughly vetted for compliance with our strict privacy requirements.
AIOIS TV/Music & Privacy
We use various video apps/sites to serve videos. This could include YouTube, Vimeo, PBS, IHR, and more. These videos are not loaded (with related scripts and possibly cookies) until you tap the relevant station button or direct video link. We use youtube-nocookie for all YouTube videos.
AIOIS Finance & Privacy
We use TradingView and Investing.com widgets. These widgets include Google Analytics code on the URLs you visit. You may block these widgets at any time.
AIOIS Sports & Privacy
Sports scores are displayed on sports URLs in an iframe from the RealGM sports website. You may block this iframe at any time.
AIOIS Entertainment & Privacy
We display YouTube youtube-nocookie videos.
AIOIS Social & Privacy
Your may visit the feature anonymously and are not required to use your real name.
AIOIS Shop & Privacy
We do not use Google Analytics. We process any data you provide (via cookies) in forms you submit to us. You are not required to shop or purchase any items when visiting our site. We earn commissions on product listings that state that they are sponsored. The statements made on AIOIS have not been evaluated by the Food and Drug Administration. Products sold on AIOIS or AIOIS Shop are not intended to diagnose, treat, cure or prevent any disease. If you have any questions or concerns regarding the products sold on AIOIS or AIOIS Shop, contact the product manufacturer. Always read and follow labels, warnings, and directions before using or consuming a product. You or anyone who consumes or uses products on AIOIS or AIOIS Shop, must contact a physician before consuming or using any products on AIOIS or AIOIS Shop. Do not operate any kind of machinery (unless safe to do so) after consuming supplements available on AIOIS or AIOIS Shop.
AIOIS Contact Us/Customer Support & Privacy
You may contact us anonymously. We delete any communication once support has been provided and your support ticket is closed.
AIOIS Paste & Privacy
Your notes are encrypted and deleted on the date you request.
AIOIS Anonymous Proxy & Privacy
Logs are deactivated. If you tap the lock icon (displayed as: ) next to some URLs on AIOIS, AIOIS will attempt to https proxy the URL. There is no guarantee that visiting URLs using this method is completely private, although it will eliminate some tracking scripts, cookies, force https and proxy images - providing you with a more private connection to the URL.
AIOIS What is my IP? & Privacy
Your IP is resolved via third party widget. Link to source within widget.
AIOIS Dashboard & Privacy
Our news widget carousels save (if used) non-PII data (by design) in LocalStorage in your browser cache. This might include the word of the related feed you last accessed or "locked." This can be easily removed by clearing your browser cache.
AIOIS Maps/Local & Privacy
Some URLs, that are denoted by "Maps or Local," have Google Maps integration.
AIOIS News & Privacy
Images from Twitter feeds may not always be proxied.
AIOIS Games & Privacy
Provides direct external links to free online games.
What information do we collect?
Your privacy is important to us. We collect information from you when you register on our site, place an order, subscribe to our newsletter or fill out a form. We do not associate search activity to IP addresses, we take measures to make it difficult for anyone to track you, and we do not sell any information we obtain from you to third parties.
When ordering or registering on our site, as appropriate, you may be asked to enter your: name, e-mail address, mailing address, phone number or credit card information. You may, however, visit our site anonymously.
Input Sanitization Enabled
SQL Injection Protection Enabled
XSS Protection Enabled
Remote File Inclusion Protection Enabled
Computer Security Incident Response Team (CSIRT) on Alert
Incident Response Plan (IRP) Completed (following the SANS Institute guidelines of preparation, identification, containment, eradication, recovery, lessons learned) as well as additional contingency plans
Black Hat Penetration Testing
Established Adversary Research, Competitor Benchmarking and Security Research Teams
Front-end and Back-end Security Scans Enabled
Network Layer: The Website uses the full (strict) SSL/TLS setting with HTTP Strict Transport Security (HSTS, RFC 6797) ("Full SSL (strict): Your origin has a valid certificate (not expired and signed by a trusted CA or Cloudflare Origin CA) installed. Cloudflare will connect over HTTPS and verify the cert on each request.") Our CDN (Cloudflare) does have access to your IP as well as your search terms as a result of having access to the visited URLs for network security purposes (Cloudflare's data retention policy). Therefore, if privacy is of utmost importance to you we recommend changing your IP.
HTTP Strict Transport Security (HSTS, RFC 6797) Enabled: Status: On / Max-Age: 12 months / Include subdomains: On / Preload: On / No-sniff: On "HTTP Strict Transport Security (HSTS, RFC 6797) is a header which allows a website to specify and enforce security policy in client web browsers. This policy enforcement protects secure websites from downgrade attacks, SSL stripping, and cookie hijacking. It allows a web server to declare a policy that browsers will only connect using secure HTTPS connections, and ensures end users do not "click through" critical security warnings. HSTS is an important security mechanism for high security websites. HSTS headers are only respected when served over HTTPS connections, not HTTP."
Authenticated Origin Pulls Enabled: "TLS client certificate presented for authentication on origin pull."
Minimum TLS Version Enabled: TLSv1.3+0RTT
"TLS 1.3 is the newest, fastest, and most secure version of the TLS protocol. SSL/TLS is the protocol that encrypts communication between users and your website. When web traffic is encrypted with TLS, users will see the green padlock in their browser window. By turning on the TLS 1.3 feature, traffic to and from your website will be served over the TLS 1.3 protocol when supported by clients." Please note that the padlock symbol in your browser window for external websites you visit never indicates the websites trust/authenticity level, only that the connection between you and the server is encrypted. It also does not denote whether the server is using Full (no cert checking) or Strict (cert is checked) mode of SSL. We use the strict mode. The benefit of using strict mode for TLS/SSL is that it prevents man in the middle attacks.
"0-RTT is a feature that improves performance for clients who have previously connected to your website. It allows the client's first request to be sent before the TLS connection is fully established, resulting in faster connection times."
Opportunistic Encryption Enabled: "Opportunistic Encryption allows browsers to benefit from the improved performance of HTTP/2 by letting them know that your site is available over an encrypted connection. Browsers will continue to show "http" in the address bar, not "https"."
Secure Google Results (powered by Google) Enabled: Retrieved With Strong Protocol (QUIC) (View Secure Google Results Qualys SSL Labs report)
Forward Secrecy Yes (with modern browsers)
Authenticated using QUIC (a strong protocol)
Google Internet Authority G3 (issuer)
X25519 (a strong key exchange)
AES_128_GCM (a strong cipher)
sha256RSA (signature algorithm)
sha256 (signature hash algorithm)
ECC (256 Bits public key)
ECDSA_P256 (public key parameters)
Advanced Onion Routing for Tor Enabled:
"Onion Routing allows routing traffic from legitimate users on the Tor network through Cloudflare's onion services rather than exit nodes, thereby improving privacy of the users and enabling more fine-grained protection. When this setting is enabled, the response to HTTPS requests coming from the Tor Browser will include an "alt-svc" header containing the address of one or more onion services operated by us. The Tor Browser establishes a Tor circuit with one of our onion services and, after a verification step by the browser, the subsequent requests will be routed through the onion service instead. This allows us to distinguish individual circuits and only challenge circuits that show unusual behavior, while keeping users' anonymity intact."
Automatic HTTPS Rewrites Enabled: "Fixes mixed content by changing "http" to "https" for all resources or links"
Always use HTTPS Enabled: "Redirect all requests with scheme "http" to "https". This applies to all http requests to the zone."
Firewall Security Level High Enabled: "Blocks data harvesting bots / additional firewalls and protections in place"
Browser Integrity Check Enabled: "Evaluate HTTP headers from your visitors browser for threats. If a threat is found a block page will be delivered. Browser Integrity Check looks for requests with HTTP headers commonly used by spammers, bots, and crawlers such as requests with a missing or non-standard user agent. If a threat is found, Cloudflare will present a block page."
Challenge Passage Enabled:
"Specify how long a visitor with a bad IP reputation is allowed access to your website after completing a challenge. After the Challenge Passage TTL expires the visitor in question will have to pass a new Challenge."
Privacy Pass Support Enabled:
"Privacy Pass is a browser extension that makes browsing Cloudflare-protected websites a better experience for users. In particular, if a user IP address is designated to have a poor reputation then the user may have to solve a Cloudflare CAPTCHA page before they can gain access to such websites. Privacy Pass uses elliptic curve cryptography to generate 'anonymous' tokens after a single CAPTCHA page is solved. These tokens can be used in future engagements with Cloudflare websites to prevent having to solve more CAPTCHAs." The extension can be downloaded from both the Google Chrome and Firefox extension stores: Privacy Pass for Chrome Privacy Pass for Firefox
Unmetered DDoS Mitigation Enabled: "Cloudflare will stand in front of your website regardless of attack size or duration."
Under Attack Mode Available: "Helps mitigate DDoS attacks (unmetered)"
HTTP/2 or HTTP/3 (with QUIC) Enabled:
HTTP/2 or HTTP/3 improves page load times by:
"HTTP/2 - Connection multiplexing: Multiple resources can be retrieved in a single network request. Responses are sent when resources are available (sometimes out of order), to avoid slowing down page rendering. HTTP header compression: HTTP requests are simplified to avoid resending headers, and compression is applied to headers that must be sent. HTTP/2 Server Push: Allows Cloudflare to provide content to clients without waiting for a request. This can improve the time to retrieve a resource by "pushing" the responses it thinks the client will need into its cache."
"HTTP/3 - HTTP/3 is a major revision of the Web’s protocol designed to take advantage of QUIC, a new encrypted-by-default Internet transport protocol that provides a number of improvements designed to accelerate HTTP traffic as well as make it more secure."
0-RTT Connection Resumption Enabled:
"Improves performance for clients who have previously connected to your website."
Brotli Compression Enabled:
"Speed up page load times for your visitor's HTTPS traffic by applying Brotli compression."
Auto Minify Enabled:
"Reduces file sizes"
What do we use your information for?
Any of the information we collect from you may be used in one of the following ways:
To personalize your experience
Your information helps us to better respond to your individual needs.
To improve our website
We continually strive to improve our website offerings based on the information and feedback we receive from you.
To improve customer service
Your information helps us to more effectively respond to your customer service requests and support needs.
To process transactions
Your information, whether public or private, will not be sold, exchanged, transferred, or given to any other company for any reason whatsoever, without your consent, other than for the express purpose of delivering the purchased product or service requested.
To send periodic emails
The email address you provide may be used to send you information, respond to inquiries, and/or other requests or questions.
Note: If at any time you would like to unsubscribe from receiving future emails, we include detailed unsubscribe instructions at the bottom of each email.
How do we protect your information?
We use encryption and firewalls to maintain the safety of your personal information when you place an order or enter, submit, or access your personal information.
Yes, but not for tracking purposes. Cookies are small files that a site or its service provider transfers to your computers hard drive through your Web browser (if you allow) that enables the sites or service providers systems to recognize your browser and capture and remember certain information.
You may notice a "__cfduid" cookie during your browsing sessions on the Website. This cookie is set by our CDN, Cloudflare, as a security feature. It does not store any personally identifiable information and remembers if you completed a captcha so that you do not need to keep doing so.
The cookies we use in our online shopping store are available on the privacy and cookies policy on that URL.
Do we disclose any information to outside parties?
We are incorporated on an island nation, we do not store connection logs, and we cannot be compelled to hand over data we do not have. We do maintain security logs to block hackers, spy agencies, spammers, and those trying to interfere with our availability. We do not sell, trade, or otherwise transfer to outside parties your Personally Identifiable Information (PII).