Privacy Policy

Last updated: March 26, 2026

Nod (“we”, “our”, or “us”) operates the Nod mobile application, the website at asknod.ai, and the Nod CLI (collectively, the “Service”). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

By creating an account or using the Service, you agree to this Privacy Policy and our Terms of Service.

1. Information We Collect

Information You Provide

  • Account information: name, email address, and authentication credentials when you create an account.
  • Agent configuration: agent names, descriptions, scopes, and settings you configure through the CLI or app.
  • Messages and decisions: chat messages, approval requests, and responses exchanged between you and your agents through the Service.
  • Task data: scheduled task configurations, prompts, and execution results.

Information Collected Automatically

  • Usage data: features accessed, actions taken, timestamps, and interaction patterns.
  • Device information: device type, operating system, app version, and unique device identifiers.
  • Log data: IP address, browser type, pages visited, and referring URLs when you visit our website.

2. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the Service.
  • Deliver messages, decisions, and activity data between your agents and your devices in real time.
  • Execute scheduled tasks and process webhook events.
  • Send you transactional notifications (e.g., approval requests, task completions).
  • Respond to your support requests and communicate with you about the Service.
  • Monitor and analyze usage trends to improve the user experience.
  • Detect, prevent, and address technical issues and security threats.

3. Data Sharing

We do not sell your personal information. We may share your data with:

  • Service providers: third-party vendors who assist us in operating the Service (e.g., hosting, analytics), bound by confidentiality obligations.
  • Legal compliance: when required by law, regulation, or legal process.
  • Business transfers: in connection with a merger, acquisition, or sale of assets.

4. How Nod Works — No AI Processing

Nod does not integrate with any AI vendor, does not make AI/LLM calls, and does not send your data to any third-party AI service. Nod is a communication platform — a bridge between you and your own independently-operated systems. Think of it like a messaging app designed for human-to-agent communication.

You choose to connect your own external systems to Nod via our public API or WebSocket protocol. Nod relays messages between your device and the endpoints you configure (your webhook URLs or WebSocket connections). We do not host agents, run AI models, or process your data with any AI service. All AI processing, if any, happens entirely outside of Nod, in systems you own and control.

We do not store credentials for any third-party service. The only credentials we store are Nod agent secrets, which authenticate the connection between your system and the Nod platform.

The content of messages, approval requests, and task results passes through our servers solely for delivery to your devices. We retain this data as long as your account is active or as needed to provide the Service.

5. Optional Voice Transcription

The app includes an optional voice message transcription feature. When enabled by the user, audio recordings are sent directly from your device to a speech-to-text provider of your choice (OpenAI Whisper or Deepgram) for transcription. This communication happens directly between your device and the provider — audio data does not pass through Nod servers.

This feature is entirely optional and not required for the app to function. To use it, you must provide your own API key from the provider. Your API key is stored securely on your device using the operating system's keychain (iOS Keychain / Android Keystore) and is never sent to or stored on Nod servers.

Your use of these third-party transcription services is subject to their respective privacy policies (OpenAI Privacy Policy, Deepgram Privacy Policy). Nod has no control over how these providers process your audio data.

6. Data Retention

We retain your data for as long as your account is active or as needed to provide the Service. You may request deletion of your account and associated data at any time by contacting us or using the account deletion feature in the app. Upon deletion, we will remove your data within 30 days, except where retention is required by law.

7. Data Security

We implement industry-standard security measures to protect your data, including encryption in transit (TLS) and at rest. Agent connections are authenticated using unique secrets. However, no method of transmission or storage is 100% secure, and we cannot guarantee absolute security.

8. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate data.
  • Request deletion of your data.
  • Object to or restrict certain processing of your data.
  • Data portability.

To exercise these rights, contact us at privacy@asknod.ai.

9. Children's Privacy

The Service is not directed at children under 13. We do not knowingly collect personal information from children under 13. If we learn that we have collected data from a child under 13, we will delete it promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the new policy on this page and updating the “Last updated” date. Your continued use of the Service after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy, contact us at privacy@asknod.ai.