Privacy Policy

This Privacy Policy explains how GW SOLAR LTDA CNPJ 27.998.198/0001-09 ("Company", "we", "us") collects, uses, and protects information when you use Nic Hyper Flow ("Service").

1. Information We Collect

A) Account & Authentication Data

If you sign in using GitHub or other providers, we may collect:

• Basic account identifiers (e.g., user ID)
• Username and/or email (if provided by the provider)
• Authentication tokens (stored securely and only as needed)

B) Usage and Diagnostics

We may collect limited telemetry to improve the Service:

• Feature usage events (e.g., button clicks, command usage)
• Token usage/consumption counters
• Error logs, crash reports, performance metrics
• Device/app technical data (e.g., extension version)

C) Prompts, Code, and AI Requests (Inputs)

Depending on how you use the Service, the Service may process:

• Prompts you type
• Code snippets or file context you include
• Tool calls and agent instructions

We recommend you avoid submitting sensitive personal data or secrets (passwords, private keys) in prompts.

D) Payments

If you subscribe to a paid plan, payments are processed by a third-party processor (e.g., Stripe). We may receive:

• Subscription status (active/canceled)
• Plan and billing timestamps
• Limited payment metadata (not full card data)

We do not store full payment card numbers.

2. How We Use Your Information

We use data to:

• Provide and operate the Service
• Authenticate users and secure access
• Enforce limits (trials, free tiers, quotas)
• Improve reliability, performance, and features
• Prevent fraud, abuse, or unauthorized access
• Provide customer support

3. Legal Bases (GDPR/LGPD)

Where applicable, we process data based on:

• Contract (to provide the Service)
• Legitimate interests (improving security and stability)
• Consent (where required for specific processing)
• Legal obligations (compliance)

4. Sharing of Information

We may share information with:

• AI Providers you choose to use (to generate Outputs)
• Cloud infrastructure providers (hosting, storage, logging)
• Payment processors (subscription billing)
• Law enforcement or authorities when legally required

We do not sell your personal information.

5. Data Retention

We keep data only as long as necessary for:

• Providing the Service
• Security, audit, or compliance purposes
• Resolving disputes and enforcing Terms

Retention periods may vary by data type. Some logs and metrics may be kept longer for security and debugging.

6. Security

We use reasonable technical and organizational measures to protect information, such as:

• Secure authentication mechanisms
• Encrypted transport (HTTPS)
• Access controls and least-privilege policies

However, no system is 100% secure, and you use the Service at your own risk.

7. International Transfers

Your data may be processed in countries other than your own, including where our providers operate. Where required, we use safeguards to protect international transfers.

8. Your Rights

Depending on your location, you may have rights to:

• Access your personal data
• Correct inaccurate data
• Delete your data (subject to legal requirements)
• Object to or restrict processing
• Data portability

To request these rights, contact: tobias.mecatronica@gmail.com

9. Children’s Privacy

The Service is not intended for children under the age of 13. We do not knowingly collect data from children.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Continued use after changes means you accept the updated policy.

11. Contact

For questions about this Privacy Policy, contact:
Email: tobias.mecatronica@gmail.com
Company: GW SOLAR LTDA CNPJ 27.998.198/0001-09