Sign In

Privacy Policy

Last updated: January 15, 2026

This Privacy Policy explains how Numino ("Numino", "we", "us", or "our") collects, uses, processes, and shares information when you access or use the Numino website, web application, and APIs (collectively, the "Service").

By using the Service, you acknowledge that your information will be processed as described in this Privacy Policy. If you do not agree, do not use the Service.

How Numino is designed differently

Numino only accesses the data required to carry the responsibility you delegate.

Your data is never used to train models, never shared, and never accessible to anyone but you.

Access can be revoked at any time, and responsibilities stop immediately when it is.

In short: Only you can access, control and use your data

1. Information We Collect

1.1 Information You Provide

We collect information you provide directly, including but not limited to:

  • Account information (such as name, email address, profile image, and account identifiers).
  • Authentication information (such as passwords or password-derived values).
  • User content (such as agent names, descriptions, system prompts, messages, instructions, workflows, skills, schemas, configurations, and any other content submitted through the Service).

You are solely responsible for the content you submit and for ensuring that you have all necessary rights and permissions to provide such content.

1.2 Information from Connected Third-Party Services

The Service allows you to connect third-party services (for example, Gmail, Google Calendar, Google Docs, GitHub, and other integrations).

If you connect a third-party service, we may receive, access, store, process, and transmit information from that service as authorized by you and as required to provide the Service. This may include content and metadata from the connected service.

Examples include (without limitation):

  • Reading, processing, and sending email messages via Gmail
  • Reading, creating, modifying, or deleting calendar events
  • Reading or creating documents
  • Accessing repositories, issues, or related metadata

The scope of access depends entirely on the permissions you grant. You may revoke access at any time through the Service or through the third-party provider.

1.3 Information Collected Automatically

We (and our service providers) may automatically collect information such as:

  • Session, device, and network information (including IP address, user agent, timestamps, and authentication events)
  • Cookies and similar technologies used for session management and security
  • Logs and diagnostic data (including error reports, execution traces, performance metrics, and usage information)

2. How We Use Information

We use information to:

  • Provide, operate, and maintain the Service
  • Authenticate users and manage accounts and sessions
  • Execute agents, skills, workflows, schedules, and triggers
  • Perform actions on connected third-party services as instructed by you
  • Provide customer support and respond to inquiries
  • Monitor, secure, debug, and improve the Service
  • Detect, prevent, and respond to fraud, abuse, or security incidents
  • Comply with legal obligations and enforce our agreements

3. Legal Basis for Processing (GDPR)

Where applicable, we process personal information based on one or more of the following legal bases:

  • Contractual necessity: to provide and operate the Service you request
  • Consent: where you voluntarily provide information or connect third-party services
  • Legitimate interests: including securing, operating, and improving the Service, provided such interests are not overridden by your rights
  • Legal obligation: where processing is required by applicable law

4. Data Roles

Depending on the context:

  • Numino acts as a data processor when processing data from connected third-party services strictly according to your instructions.
  • Numino acts as a data controller with respect to account information, authentication data, logs, security records, billing-related information (if applicable), and Service analytics.

5. AI Processing and Model Providers

The Service may use third-party AI model providers to generate outputs.

When you interact with an agent or execute a skill that uses an AI model, your inputs and relevant contextual data (including prompts, messages, and workflow data) may be transmitted to AI model providers and processed to generate outputs.

Important Disclosures

  • We do not guarantee confidentiality of any content submitted for AI processing.
  • AI model providers may process data outside of your jurisdiction.
  • Outputs may be inaccurate, incomplete, or inappropriate.
  • You assume all risk associated with using AI-generated outputs.

You should not submit sensitive, regulated, or confidential information unless you fully accept these risks.

6. How We Share Information

We may share information:

  • With service providers that support infrastructure, hosting, storage, analytics, security, and operations
  • With third-party services you connect, to perform actions and receive events as configured by you
  • With AI model providers, for the purpose of generating outputs
  • For legal, safety, or security reasons, including compliance with law, lawful requests, or protection of rights, property, or safety
  • In connection with a corporate transaction, such as a merger, acquisition, restructuring, or sale of assets

7. International Data Transfers

Your information may be processed and stored in countries other than your country of residence. These jurisdictions may have different data protection laws.

Where required, we rely on appropriate safeguards, such as contractual protections, to enable international data transfers.

8. Data Retention

We retain information only for as long as necessary to provide the Service, comply with legal obligations, resolve disputes, and enforce agreements.

Retention practices may include:

  • Account data retained while the account is active
  • Integration data retained while integrations are connected
  • Logs, backups, and diagnostic data retained for limited periods after deletion for security, audit, and recovery purposes

Deleted data may persist in backups or logs for a period of time.

9. Security

We implement reasonable technical and organizational measures to protect information, including encryption of credentials for third-party integrations.

However, no system is completely secure. We do not guarantee the security of information, and you use the Service at your own risk.

10. Your Rights and Choices

Depending on your jurisdiction, you may have rights to access, correct, or delete your personal information.

You may:

  • Disconnect third-party integrations at any time
  • Revoke access through third-party provider settings
  • Submit requests regarding your information by contacting us at the address below

We may require verification before responding to requests and may deny requests as permitted by law.

11. Children's Privacy

The Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18.

If you believe a child has provided personal information, contact us and we will take appropriate steps as required by law.

12. Changes to This Privacy Policy

We may update this Privacy Policy at any time. Changes are effective when posted. The "Last updated" date indicates the most recent revision.

Your continued use of the Service constitutes acceptance of the updated Privacy Policy.

13. Contact Us

If you have questions or requests regarding this Privacy Policy, contact us at:

legal@numino.ai