Account data: Email address, username, and a hashed (non-reversible) version of your password.
Device metadata: Device name, operating system type, registration date, last-seen timestamp, and a public key used to establish your device's encrypted connection. The corresponding private key is generated on your device and never transmitted to us.
Usage data: Connection events, session durations, and approximate bytes transferred per device, used for service operation and your account dashboard.
Agent content: The messages, instructions, and files you send to the agent, and the responses and results it produces — including screenshots and media captured from your devices at your direction. We process this content to deliver the Service, and — unless you opt out (see below) — to secure, analyze, and improve it. To generate responses, this content is sent to our artificial-intelligence model provider for processing.
Attachments: Files you attach to a chat are stored temporarily to deliver them to the agent or a device, and are deleted after use or on a short expiry. File types the agent cannot read are stored without being opened.
Voice: If you use voice features, your audio is converted to text, and replies are synthesized to speech, by our processing providers. Audio is processed transiently and is not retained after processing.
Compute workloads: If you provision cloud machines or accelerated computing, the workloads and data you place there run on third-party infrastructure providers at your direction, under your account.
Server access logs: IP addresses, request paths, HTTP status codes, and timestamps of requests to our servers. Retained for 90 days, then deleted.
Payment data: Payment processing is handled entirely by Stripe. We do not receive, store, or have access to your full card number or payment credentials. We store only what Stripe provides: subscription status, plan type, and a Stripe customer ID.
We do not access, inspect, store, or retain the content of network traffic tunneled directly between your own devices — that traffic passes through our infrastructure without logging or inspection. (This is distinct from agent content you send to the assistant, described above.) We do not sell or rent your personal data, and we do not share it with third parties for advertising or marketing purposes.
To authenticate you, operate device connectivity, display your dashboard, process payments, send service-related notifications you have opted into, detect abuse, and maintain the security and reliability of the Service. We also use usage and content data to debug, evaluate the quality of agent runs, and improve the Service, including through automated analysis and feature experiments. You can turn off use of your data for product improvement at any time in Settings → privacy; this does not affect processing needed to operate, secure, or bill the Service.
We may create aggregated or de-identified data from your use of the Service and retain and use it to evaluate quality and develop and improve our products. Such data does not identify you or your content.
The set of providers may change as the Service evolves; this list is kept current with material changes.
Our public pages, including the front-page build tool, can be used without an account. For anonymous use we record de-identified interaction signals — the requests made to the tool, coarse usage counts, and a salted hash of the network address for abuse prevention — without linkage to any account or identity. These signals are pruned on a rolling window and are used to operate, protect, and improve the product.
Account and device data is retained while your account is active and for 30 days following account deletion, after which it is purged. Access logs are retained for 90 days. Payment records are retained as required by applicable law.
You may request access to, correction of, or deletion of your personal data at any time by contacting us. We will respond within 30 days.
We implement reasonable technical and organizational measures to protect your data. No method of transmission over the internet is completely secure, and we cannot guarantee absolute security.
The Service is not directed to individuals under the age of 18. We do not knowingly collect data from minors.
We may update this policy at any time. Continued use of the Service after changes constitutes acceptance. Material changes to data practices are reflected on this page; the changelog records when practice-affecting features ship.