Privacy policy
Last updated: pending — final language will be drafted by qualified counsel before Phase 1 launch.
What we collect
Account email, payout method, and usage metrics required to bill customers and pay providers. Provider hardware identifiers (CPU, GPU, OS) are collected for capability matching. Customer workload destinations and category labels are collected for audit logging.
What we do not collect
We do not see the plaintext payload of customer HTTPS traffic. We do not collect the contents of provider hardware (other than metrics they explicitly opt to share). We do not run third-party analytics on the provider dashboard or customer console.
How long we keep it
Account data is retained while the account is active and for 90 days after closure. Audit logs are retained for 12 months for customer compliance needs, and providers can purge their copy after 30 days.
Your rights
Users in the EU, UK, California, and other comparable jurisdictions can request a data export or deletion from their account settings. We honor these within 30 days.
Subprocessors
We use Stripe (payments), Stalwart SMTP (email), Hetzner Object Storage (artifact + audit log archive), Cloudflare (CDN), and the applicable on-chain primitives for $GRID settlement. A full subprocessor list will be published before paid launch.
This page is a public scaffold so the URL is reachable from navigation and the design is in place. The substantive legal text will be replaced ahead of paid traffic.