NESTAI← Home

Legal

PRIVACY POLICY

Last updated: March 2026 · NestAI by chirai.dev

The short version

Your AI conversations stay on your private server. We never see them. We collect only what's needed to run your account and process payments. We don't sell your data. Ever.

1. WHAT WE COLLECT

We collect your name, email address, and payment information when you sign up. We collect server provisioning metadata (server IP, region, model choice, deployment status). We do NOT collect your AI conversations, documents, or prompts — these exist solely on your private server.

2. HOW WE USE YOUR DATA

We use your email to send account notifications, deployment status updates, billing receipts, and renewal reminders. We use provisioning metadata to manage your server lifecycle. We never sell your data to third parties.

3. YOUR AI DATA

All AI conversations, uploaded documents, and model outputs are stored exclusively on the Hetzner Cloud server we deploy for you. NestAI has no access to this data. When your server is deleted, this data is permanently destroyed. Export your data before cancellation.

4. THIRD-PARTY SERVICES

We use Supabase (EU region) for account and metadata storage. We use Hetzner Cloud for server provisioning in your chosen region. We use a global payment processor for billing — your card details are handled securely by the payment provider and never touch our servers. We use Zoho Mail for transactional emails.

5. COOKIES

We use session cookies for authentication only. No tracking cookies, advertising cookies, or analytics cookies. You can disable cookies in your browser, though this will prevent login from working.

6. DATA RETENTION

Account data is retained while your account is active. Payment records are retained for 7 years as required by applicable tax law. Server metadata is deleted when your server is deprovisioned. Request deletion by emailing nestaisupport@chirai.dev.

7. SECURITY

All data in transit is encrypted via HTTPS/TLS. Your server is protected by Nginx, UFW firewall, and Fail2ban. We use Supabase Row Level Security so users can only access their own data.

8. YOUR RIGHTS

You have the right to access, correct, or delete your personal data. You have the right to data portability. You have the right to withdraw consent and cancel at any time. Contact nestaisupport@chirai.dev for any privacy requests.

9. CHANGES

We will notify you by email 14 days before any material changes to this policy. The current version is always available at nestai.chirai.dev/privacy.

10. CONTACT

Privacy questions: nestaisupport@chirai.dev NestAI is operated by chirai.dev, India.

© 2026 NestAI by chirai.dev

Terms of Service →