Privacy Policy

NetMind AI LTD ("Netmind", "we", "us", or "our") provides Netmind Cloud Agents, a platform for creating, hosting, and operating AI agents. This Privacy Policy explains how we collect, use, share, retain, and protect personal data when you use our websites, applications, hosted agent runtimes, APIs, integrations, support channels, and related services (collectively, the "Services").

Please read this Privacy Policy together with our Terms of Service. If you use the Services on behalf of an organization, you represent that you are authorized to provide personal data to us for that organization.

1. Who controls your personal data

NetMind AI LTD is responsible for the personal data it processes as a controller under applicable data protection laws, including the UK GDPR and, where applicable, the EU GDPR.

You can contact us about privacy matters at [email protected] or by post at 6th Floor, 75 King William Street, London, United Kingdom, EC4N 7BE.

2. Personal data we collect

The data we collect depends on how you use the Services. It may include:

• Account data, such as your name, email address, organization, profile information, authentication identifiers, and account preferences.
• Agent and workspace data, such as prompts, chat messages, code, repositories, files, command output, runtime state, agent configuration, installed skills, and other content you upload, generate, or ask an agent to process.
• Integration and credential data, such as API keys, OAuth tokens, model provider settings, channel configuration, and connection metadata that you provide so agents can access third-party services.
• Usage and diagnostics data, such as runtime status, logs, errors, model selections, token usage, cost estimates, feature interactions, IP address, device data, browser type, and timestamps.
• Communications data, such as support requests, feedback, survey responses, and messages you send to us.
• Billing or plan data, if paid or usage-limited features are enabled, such as plan selection, invoice details, usage limits, and payment status. Payment card data is handled by our payment provider where applicable.

Please do not submit special category, highly regulated, or sensitive personal data unless it is necessary for your use case and you have the right to provide it. You are responsible for obtaining any notices, permissions, or consents required before submitting personal data about other people.

3. How we collect personal data

We collect personal data from:

• You directly, when you create an account, configure agents, upload files, connect integrations, contact support, or use the Services.
• Automated systems, when the Services record logs, telemetry, usage events, security events, cookies, or similar diagnostic data.
• Third-party services that you connect or authorize, including identity providers, model providers, collaboration tools, messaging channels, source control systems, and payment providers.

4. How we use personal data

We use personal data to:

• Provide, operate, maintain, and secure the Services.
• Create, provision, run, pause, resume, debug, and delete AI agent runtimes and their associated workspaces.
• Route prompts, files, tool calls, and agent outputs to model providers, runtime infrastructure, and integrations that are necessary for your requested workflow.
• Preserve conversation history, workspace continuity, runtime recovery data, and usage records.
• Monitor reliability, enforce usage limits, investigate abuse, prevent fraud, and protect users, Netmind, and third parties.
• Provide support, respond to requests, send service notices, and communicate about product updates.
• Improve the Services, including by using aggregated, de-identified, or otherwise privacy-protective analytics.
• Comply with legal obligations and enforce our Terms of Service.

5. AI-generated content

The Services include AI-powered features that generate automated responses and content based on your inputs and connected tools. AI-generated content may be inaccurate, incomplete, outdated, offensive, or unsuitable for your situation. You are responsible for reviewing and verifying AI-generated content before relying on it.

AI-generated content is not professional legal, medical, financial, security, compliance, or other expert advice. Do not use it as a substitute for qualified professional judgment.

6. How we share personal data

We may share personal data with the following categories of recipients where needed to provide, secure, or improve the Services:

• Cloud hosting, runtime, storage, database, networking, and security providers.
• Authentication, account management, customer support, analytics, observability, billing, and communication providers.
• AI model providers, coding-agent providers, tool providers, and integrations that you configure, authorize, or ask an agent to use.
• Professional advisers, auditors, insurers, regulators, courts, law enforcement, or other parties when required by law or necessary to protect rights, safety, and security.
• Successors or affiliates in connection with a merger, acquisition, financing, reorganization, or sale of assets.

We do not sell your personal data. Third-party services you connect may process your data under their own terms and privacy policies.

7. International transfers

We are based in the United Kingdom, but our providers and users may be located in other countries. Where personal data is transferred internationally, we use appropriate safeguards where required by applicable law, such as contractual protections and provider data processing terms.

8. Retention and deletion

We retain personal data for as long as needed to provide the Services, maintain security and audit records, comply with legal obligations, resolve disputes, and enforce agreements. Agent workspaces, chat history, logs, credentials, and runtime state may remain available while your account, organization, runtime, or agent is active.

You may delete agents, conversations, files, credentials, or your account where the Services provide that control, or you may contact us for assistance. Deleted data may remain in backups, logs, or archival systems for a limited period before it is overwritten or removed according to our retention processes.

9. Security

We use reasonable technical and organizational safeguards designed to protect personal data, including access controls, runtime isolation, credential handling controls, encryption where appropriate, logging, and monitoring. No internet service is completely secure, and you are responsible for keeping your account, devices, repositories, tokens, and connected services secure.

10. Your rights

Depending on your location, you may have rights to request access to, correction of, deletion of, restriction of, portability of, or objection to certain processing of your personal data. You may also have the right to withdraw consent where processing is based on consent.

To exercise these rights, contact us at [email protected]. You may also complain to the UK Information Commissioner's Office or your local data protection authority.

11. Children's data

The Services are not intended for children under 18. You may not create an account or use the Services if you are under 18. Do not submit personal data about children through the Services unless you have a lawful basis and all required consents.

12. Third-party links and services

The Services may link to or interoperate with third-party websites, applications, models, tools, APIs, app stores, and platforms. We are not responsible for the privacy practices of those third parties. Review their terms and privacy notices before using them.

13. Changes to this policy

We may update this Privacy Policy from time to time. If changes are material, we will use reasonable efforts to notify users, such as by posting a notice in the Services or sending an email to the address associated with your account. The "Last updated" date shows when this version took effect.

14. Contact

For privacy questions or requests, contact [email protected].