Privacy Policy

We collect the following types of information when you use Nourva: Account Information: When you register, we collect your email address and a hashed password. We do not store plaintext passwords. Usage Data: We collect anonymized telemetry about feature usage (e.g., which tools are activated) to improve the product. This data cannot be linked back to specific actions on your device. Payment Information: All payment processing is handled by Stripe. Nourva does not store your credit card number, CVV, or billing address. We receive only a payment confirmation and customer identifier from Stripe. Local Data: The Nourva desktop agent processes your tasks locally on your Windows machine. Conversation history, memory entries, generated documents, and desktop automation logs are stored in a local SQLite database on your device. This data is not transmitted to our servers unless you explicitly use a cloud sync feature (not yet available).

We use the information we collect to: - Provide, maintain, and improve the Nourva service - Process transactions and send billing-related communications - Send service updates, security notices, and support responses - Analyze usage patterns (in anonymized form) to improve product features - Comply with legal obligations We do not sell your personal data to third parties. We do not use your data to train AI models without your explicit, opt-in consent.

Nourva is designed with local-first privacy as a core principle. All AI processing for desktop tasks, document generation, and local automation is performed on your device using locally routed model calls. The data you process — your files, screen content, and task inputs — does not leave your machine unless: (a) You explicitly use a web-based feature (e.g., web search, which requires a network request) (b) You send a task that requires a cloud AI model inference call for advanced agent capabilities When cloud model calls are made, only the task prompt and relevant context is transmitted. No personally identifiable information beyond what you include in the prompt is sent.

We share data only with the following categories of third parties: Infrastructure Providers: We use cloud hosting providers (e.g., Google Cloud) to run our web application and API. These providers process data under strict confidentiality agreements. Payment Processor: Stripe processes all payments. Their privacy policy governs how they handle your payment data: https://stripe.com/privacy AI Inference Providers: When your tasks require cloud AI inference for advanced capabilities, prompts are sent to our trusted cloud AI providers. These providers process your prompts under their respective data handling terms and strict confidentiality agreements. We do not share your data with advertisers or data brokers.

Account data is retained for as long as your account is active. You may request deletion of your account and associated data at any time by contacting [email protected]. Local agent data (stored on your Windows device) is under your full control. You may delete it at any time by removing the Nourva application data folder. Anonymized usage telemetry may be retained for up to 24 months.

We implement industry-standard security practices including: - TLS encryption for all data in transit - Encrypted password storage (bcrypt) - Principle of least privilege for all internal data access - Regular security reviews No method of transmission over the internet or electronic storage is 100% secure. We strive to use commercially acceptable means to protect your data but cannot guarantee absolute security.

Depending on your location, you may have the following rights: - Right to access the personal data we hold about you - Right to correct inaccurate data - Right to request deletion of your data - Right to data portability - Right to withdraw consent at any time (where processing is based on consent) To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.

Our web application uses the following cookies: Session Cookies: Required for authentication and maintaining your logged-in state. These expire when you close your browser. Analytics Cookies: We use privacy-respecting analytics to understand traffic patterns. No personally identifiable data is collected via analytics. We do not use advertising cookies or third-party tracking cookies.

Nourva is not intended for use by individuals under the age of 13. We do not knowingly collect personal information from children under 13. If we discover that we have inadvertently collected such information, we will delete it promptly.

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or a notice within the application. Your continued use of Nourva after changes take effect constitutes acceptance of the updated policy.

For privacy-related questions or requests, contact us at: Email: [email protected] Company: Nourva Location: Saudi Arabia