Neekware Inc. Privacy Policy
Last Updated: 2026-03-01
Effective Date: 2026-03-01
1. Introduction
This Privacy Policy ("Policy") describes how Neekware Inc. ("Company", "we", "us") collects, uses, and shares personal information of users of ehAye™ Engine and related services, including our website at ehaye.io and portal at app.ehaye.io (together, the "Services").
Short version: ehAye™ Engine runs locally on your computer. We collect minimal data, only what is required to operate accounts, licensing, billing, and security. We do not track your activity, analyze your usage, or collect your content.
2. Local Processing
ehAye™ Engine runs entirely on your hardware. All processing, content creation, and data manipulation occur locally on your device.
We have no access to:
- Your projects, files, or content
- Media you generate or process
- Local device configurations
- Streaming credentials or API tokens
No Hidden Remote Access or Inspection. Neekware Inc. does not perform hidden synchronization of user content, silent background uploads of user data, remote inspection of user files or projects, or remote desktop access to user systems.
3. Information We Collect
We collect only the minimum information necessary to operate the Services.
3.1 Account Information
| Data | Purpose | Required |
|---|---|---|
| Email address | Account login and authentication | Yes |
| Name | Receipts and invoices | No |
| Company name | Receipts and invoices | No |
3.2 Website Information
| Data | Purpose | Collected |
|---|---|---|
| Public IP address | Security, anti fraud, geographic restrictions | Automatic |
Your public IP address may be logged for security, fraud prevention, abuse prevention, and regulatory geographic restrictions. IP addresses are not used for behavioral tracking or marketing.
3.3 License Information
To activate and verify your license, we process:
- License key
- Machine identifier (anonymized hardware fingerprint)
- Activation timestamp
This license verification is the only required connection ehAye™ Engine makes to our servers.
3.4 Payment Information
Payments are processed by third party payment providers. We do not store your credit card or banking information. We receive only:
- Transaction confirmation
- Purchase amount
- Purchase date
4. Data Stays on Your Device
All data processed by ehAye™ Engine remains on your device and is not transmitted to Neekware Inc., except for:
- Account authentication via email
- Public IP address when accessing our websites
- License activation and verification
- Optional crash reports and analytics if explicitly enabled
Your projects, files, media, configurations, stream keys, and MCP integrations remain local.
5. Optional Crash Reports and Analytics
Crash reports and analytics are disabled by default.
If you opt in, we collect:
- Anonymized crash diagnostics
- High level usage metrics
These reports do not include personal files, project data, or personal content.
6. Information We Do Not Collect
We do not collect:
- User generated content
- Files, projects, or media
- Browsing history
- Persistent tracking cookies
- Marketing analytics
- Location tracking data
- Biometric, health, or sensitive personal data
7. How We Use Your Information
| Purpose | Data Used |
|---|---|
| Account authentication | |
| License verification | Email, license key, machine ID |
| Receipts and invoices | Email, name, company name |
| Support requests | Email, name |
| Security and fraud prevention | IP address |
| Service communications |
We do not send marketing emails unless you explicitly opt in.
Lawful Basis for Processing (GDPR)
For users in the EU and UK, the lawful bases for processing are:
| Processing Activity | Lawful Basis |
|---|---|
| Account authentication | Contractual necessity (Art. 6(1)(b)) |
| License verification | Contractual necessity (Art. 6(1)(b)) |
| Billing and invoicing | Contractual necessity (Art. 6(1)(b)) |
| Security and fraud prevention | Legitimate interest (Art. 6(1)(f)) |
| Optional crash reports and analytics | Consent (Art. 6(1)(a)) |
| LLM access plan billing metadata | Contractual necessity (Art. 6(1)(b)) |
8. AI Agent (Dojo) and LLM Provider Communication
ehAye™ Engine includes an AI coding agent ("Dojo") that operates primarily as a bring-your-own-LLM-key tool. Neekware Inc. may also offer optional LLM access plans where API usage is provided through Neekware's infrastructure.
How it works: When you use Dojo with your own API key, your prompts, code context, file contents, and terminal output may be transmitted directly from your device to the third-party LLM provider you configure (such as Anthropic, Google, OpenAI, or others). This communication occurs directly between your device and the provider. Neekware Inc. does not intermediate, intercept, monitor, log, filter, or store any of this traffic.
When you use a Neekware-provided LLM access plan, your prompts and context may be routed through Neekware's infrastructure to the underlying AI provider. In this case, Neekware Inc. may process request metadata (such as token counts and timestamps) for billing and fair use enforcement, but does not log, store, or review the content of your prompts or AI responses.
Data Processing Agreement (DPA): For users who require a Data Processing Agreement in connection with the Neekware-provided LLM access plan, a DPA is available upon request at privacy@neekware.com. The identity of the underlying LLM provider(s) used by Neekware access plans is available upon request as part of Neekware's sub-processor disclosure.
Data breach notification: In the event of a confirmed data breach affecting personal data processed through Neekware's infrastructure, Neekware Inc. will notify affected users and, where required, the applicable supervisory authority within the timeframes required by law (including 72 hours under GDPR Article 33).
What Neekware Inc. does not control:
- What data is sent to LLM providers (determined by the agent and your interactions)
- How LLM providers process, store, or retain your data
- The accuracy, safety, or predictability of AI-generated output
- Actions taken by the AI agent on your system based on LLM responses
Permission controls: ehAye™ Engine provides configurable permission modes that allow you to control what actions the AI agent can perform, such as file modifications, command execution, and network access. You are responsible for configuring permission levels appropriate to your security and privacy requirements.
Your responsibility:
- You choose which LLM provider to connect (via your own API key or a Neekware-provided access plan)
- You are solely responsible for understanding your provider's data handling and privacy practices
- You are responsible for reviewing all AI-generated actions before they are executed
- AI output is inherently unpredictable and may produce unexpected, incorrect, or harmful results
- You are responsible for configuring permission levels appropriate to your use case
If you do not accept these terms, do not configure an LLM provider or use Dojo functionality.
9. MCP Protocol and External Connections
ehAye™ Engine supports the Model Context Protocol (MCP) and other optional third-party integrations.
When you enable MCP or other external connections:
- You control all external integrations
- Data shared with third parties is governed by their privacy policies
- We do not monitor, intercept, log, or store MCP traffic
You are solely responsible for all data shared through third-party integrations.
10. Telegram and Remote Notifications
ehAye™ Engine supports optional Telegram Bot API integration for session notifications and remote monitoring.
How it works: When you enable Telegram notifications, session updates from Dojo are sent to Telegram chat IDs you configure using a bot token you provide. The application makes its best effort to restrict connections to private groups and private accounts only.
What Neekware Inc. does not control:
- The Telegram Bot API and its data handling practices
- Whether your configured chat or group is truly private
- How Telegram processes, stores, or retains messages sent via its Bot API
- Third-party access to messages in groups you configure
Your responsibility:
- You supply and manage your own Telegram bot token and chat IDs
- You are responsible for verifying that configured chats are private and secure
- You acknowledge the risk that session data, including terminal output and status updates, may be transmitted to Telegram
- You are solely responsible for compliance with Telegram's terms of service
Neekware Inc. does not receive, store, or have access to your Telegram bot token, chat IDs, or message content.
11. Data Sharing
We do not sell personal information.
Limited data sharing occurs only with:
- Payment processors
- Transactional email providers
And only when legally required by:
- Court orders
- Government requests
- Applicable laws
In the event of a business acquisition, merger, or asset sale, personal data may transfer as part of that transaction.
12. Data Retention
- Account data is retained while your account is active
- License records are retained for the duration of your license and legally required periods
- Payment records are retained for tax, accounting, and compliance
13. Data Security
We apply appropriate technical and organizational safeguards to protect personal information. No system is fully immune to risk, and you acknowledge this inherent limitation.
14. Your Rights and Account Deletion
You may:
- Access your personal data
- Correct inaccurate personal data
- Request deletion of your account
- Export your personal data
- Opt out of marketing emails
Requests may be sent to: privacy@neekware.com
Canadian Users
Protected under PIPEDA.
EU and UK Users
Protected under GDPR and UK GDPR, including the right to lodge complaints with supervisory authorities.
California Users (CCPA/CPRA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act and California Privacy Rights Act:
- Right to know: You may request disclosure of the categories and specific pieces of personal information we have collected.
- Right to delete: You may request deletion of your personal information, subject to legal exceptions.
- Right to opt-out of sale: Neekware Inc. does not sell personal information. We do not share personal information for cross-context behavioral advertising.
- Right to non-discrimination: We will not discriminate against you for exercising your CCPA/CPRA rights.
To exercise these rights, contact privacy@neekware.com.
Account Deletion and Data Erasure
You may request deletion of your account at any time after canceling all active subscriptions through your dashboard. Account deletion is not available while a subscription is active.
When a deletion request is confirmed:
- Your account enters a pending deletion state for 30 days
- Your licenses remain active during the grace period
During the 30-day period:
- You may restore your account by signing back in
- No permanent data destruction occurs until the period expires
After 30 days:
- Your account is permanently deleted
- All personal data, device records, and identifiers are irreversibly erased where legally permitted
- Receipts, licenses, and access records are no longer recoverable
You are solely responsible for downloading your receipts and records before the deletion deadline.
Certain records may be retained where required by law, including tax, billing, chargeback, and fraud prevention records. These retained records are isolated and no longer associated with an active account.
15. International Data Transfers
Your personal data may be processed in:
- Canada (primary operations)
- United States (infrastructure and service providers)
- Additional regions where providers operate
By using the Services, you consent to international transfers of your information.
16. Age Requirement
The Services are intended for users 18 years of age or older, or the legal minimum age required for contract formation in your jurisdiction.
17. Changes to This Policy
We may revise this Policy at any time. Continued use of the Services after publication of updates constitutes acceptance of the revised Policy.
18. Governing Law and Venue
These Terms are governed by and construed in accordance with the laws of the Province of Ontario and the federal laws of Canada applicable therein, without regard to conflict of law principles. Exclusive jurisdiction and venue shall reside in the courts located in Waterloo, Ontario, Canada.
The English version of this document is the only legally binding version. Any translations may be AI-generated, may contain inaccuracies, and are provided solely for convenience.
19. Related Legal Documents
- Terms of Service: https://neekware.com/terms.html
- Security Policy: https://neekware.com/security.html
- Beta License: https://neekware.com/license.html
20. Contact Information
Neekware Inc.
133 Weber St. N. Suite 3-204
Waterloo, ON N2J 3G9
Canada
Email: privacy@neekware.com