Privacy Policy

Neuramine Systems Inc. ("Neuramine", "we", "our", "us") operates the Neuramine private AI infrastructure platform (the "Service"). We are located in Moncton, NB, Canada. For privacy inquiries, contact us at hello@neuramine.io.

This policy explains what personal information we collect, why we collect it, how we use and protect it, and your rights under applicable Canadian privacy law (PIPEDA and provincial equivalents).

Account information

• Email address (required to create an account via Google OAuth or magic link).
• Google profile name and profile picture if you use Google OAuth.
• Organisation name and team member emails you invite to a workspace.

Usage and billing data

• Request counts, model selections, GPU tier, and workspace configuration.
• Payment method details (processed and stored by our payment provider — we do not store raw card numbers).
• Platform-level logs: API request timestamps, response latencies, error codes.

Inference content (prompts and responses)

• Cloud GPU workspaces: Prompts and responses are processed on the third-party GPU provider you select and are not stored by Neuramine's control plane beyond the duration of the request. Compliance mode customers who enable audit logging explicitly opt in to encrypted, append-only storage of request/response pairs.
• BYOG workspaces: Inference runs entirely on your hardware. Neuramine handles routing only; prompt and response content never transits our servers.

Technical information

• IP address, browser type, and operating system for security and fraud prevention.
• Cookies and local storage used for session management (no third-party advertising cookies).

• To create and manage your account and workspaces.
• To process payments and send billing receipts.
• To route API requests to the correct GPU infrastructure.
• To monitor platform health, diagnose errors, and improve reliability.
• To send transactional emails (magic links, billing notices, security alerts).
• To send product updates and announcements — you can unsubscribe at any time.
• To comply with legal obligations and enforce our Terms of Service.

We do not sell, rent, or trade your personal information to third parties. We do not use your data to train AI models.

We process your personal information on the following grounds:

• Contract performance — to provide the Service you signed up for.
• Legitimate interests — security monitoring, fraud prevention, and platform reliability.
• Consent — marketing communications and optional compliance audit logging. Consent can be withdrawn at any time.
• Legal obligation — where required by applicable law.

We share data only as necessary to operate the Service:

• GPU providers (RunPod, Lambda Labs, Vast.ai): Receive inference requests routed by Neuramine. Subject to their own data processing agreements.
• Payment processor: Processes card transactions on our behalf under PCI-DSS compliance. We receive only a tokenised reference.
• Cloud infrastructure (AWS): Hosts Neuramine's control plane, key management (KMS), and optional audit log storage.
• Analytics (Vercel Analytics): Privacy-friendly, cookieless page-view analytics. No personal data is shared.

We require all sub-processors to handle data according to standards at least as protective as this policy. We do not share data with advertisers or data brokers.

Neuramine's control plane is hosted in Canada (AWS ca-central-1 by default). Enterprise customers can request data residency in specific regions. If data is processed outside Canada (e.g. on a GPU provider in the US), it is subject to appropriate transfer safeguards including contractual clauses consistent with PIPEDA requirements.

• Account data: Retained while your account is active and for 90 days after deletion, then permanently removed.
• Billing records: Retained for 7 years as required by Canadian tax law.
• Platform logs (latency, errors): Retained for 90 days.
• Compliance audit logs (opt-in): Retained for 6 years (HIPAA default) or as configured by the enterprise customer.
• Inference content: Not retained by Neuramine's control plane beyond the request lifecycle, unless compliance audit logging is explicitly enabled.

We apply industry-standard security measures including:

• AES-256 encryption at rest per workspace, managed via AWS KMS.
• TLS 1.3 for all data in transit.
• Passwordless authentication — no credential database to breach.
• Per-workspace data isolation: separate PostgreSQL schemas and Qdrant collections.
• Regular security reviews and penetration testing.

No system is completely secure. If you discover a vulnerability, please disclose it responsibly to hello@neuramine.io.

We use only essential cookies required for authentication and session management. We do not use tracking, advertising, or third-party analytics cookies. You can disable cookies in your browser, but this will prevent you from logging in.

Under PIPEDA (and applicable provincial laws), you have the right to:

• Access — request a copy of the personal information we hold about you.
• Correction — ask us to correct inaccurate or incomplete information.
• Withdrawal of consent — withdraw consent for non-essential processing (e.g. marketing emails) at any time.
• Deletion — request deletion of your account and associated personal data, subject to legal retention obligations.
• Complaint — file a complaint with the Office of the Privacy Commissioner of Canada (OPC) if you believe we have mishandled your data.

To exercise any of these rights, email us at hello@neuramine.io. We will respond within 30 days.

The Service is not directed at individuals under the age of 16. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, contact us immediately and we will delete it.

We may update this policy from time to time. If we make material changes, we will notify you by email or via an in-app notice at least 14 days before the changes take effect. The effective date at the top of this page will always reflect the current version.

Privacy questions or requests: hello@neuramine.io

If we cannot resolve your concern, you may contact the Office of the Privacy Commissioner of Canada at priv.gc.ca or call 1-800-282-1376.