NeuroPipe ("we," "our," or "us") is committed to protecting the privacy and security of your personal information. This Privacy Policy describes how we collect, use, disclose, and safeguard your information when you use our platform, website, and related services.
1. Information We Collect
1.1 Information You Provide
- Account Information: Name, email address, GitHub profile URL, and LinkedIn profile URL submitted through our access request form.
- Authentication Data: Invite codes, API keys, and session tokens generated upon account activation.
- Usage Data: Pipeline configurations, stage definitions, and deployment parameters you create within the platform.
- Communications: Information you provide when contacting our support team or participating in feedback programs.
1.2 Information Collected Automatically
- Log Data: IP address, browser type, operating system, referring URLs, access times, and pages viewed.
- Device Information: Device type, unique device identifiers, and diagnostic data.
- Performance Metrics: API call frequency, pipeline execution metrics, and resource utilization data.
2. How We Use Your Information
We use the information we collect to:
- Provide, maintain, and improve our platform and services.
- Process your access requests and manage your account.
- Monitor and analyze usage patterns to optimize performance and reliability.
- Detect, prevent, and address technical issues and security threats.
- Communicate with you about service updates, maintenance windows, and incident notifications.
- Enforce our Terms of Service and comply with legal obligations.
3. Data Processing & Storage
Your pipeline data and configurations are processed within our secure infrastructure. We employ industry-standard encryption (AES-256 at rest, TLS 1.3 in transit) to protect your data at every layer.
Important: NeuroPipe does not train AI models on your data. Your pipeline inputs, outputs, and configurations are never used for model training purposes.
4. Data Sharing
We do not sell your personal information. We may share information with:
- Service Providers: Third-party vendors who assist in operating our platform (cloud infrastructure providers, monitoring services).
- Legal Compliance: When required by law, subpoena, or other legal process.
- Business Transfers: In connection with a merger, acquisition, or sale of assets, with prior notice.
5. Data Retention
We retain your account information for as long as your account is active. Pipeline execution logs are retained for 90 days by default, configurable up to 365 days. Upon account deletion, all associated data is permanently removed within 30 days.
6. Security
We implement comprehensive security measures including:
- SOC 2 Type II compliance (in progress)
- End-to-end encryption for all data in transit and at rest
- Regular penetration testing and vulnerability assessments
- Role-based access control (RBAC) for all internal systems
- Automated anomaly detection and incident response
7. Your Rights
You have the right to:
- Access, correct, or delete your personal information.
- Export your pipeline configurations and data.
- Opt out of non-essential communications.
- Request information about data sharing practices.
8. Cookies
We use essential cookies for authentication and session management. We do not use third-party advertising or tracking cookies. Analytics data is collected through privacy-respecting, first-party tooling only.
9. Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be communicated via email to active account holders and posted on this page with an updated effective date.
10. Contact
For privacy-related inquiries, contact us at privacy@neuropipe.co.