Privacy Policy

This Policy describes how we collect, use, store, and disclose Personal Data from individuals who interact with the Services, including:

• visitors to www.near.ai;
• users of Agent Hosting at https://agent.near.ai/, including the managed agent hosting platform, APIs, and related features;
• users of NEAR AI Cloud at https://cloud.near.ai/, to the extent they interact with NEAR AI's Websites or provide Business Contact Information for account administration;
• users of the IronClaw open-source framework (https://www.ironclaw.com/) to the extent they interact with NEAR AI Websites or create a NEAR AI account.

By using the Services, you accept and agree to be bound by this Privacy Policy and the applicable Terms of Service. If you do not agree, you must not access or use the Services.

Our public marketing website (www.near.ai) may use analytics and advertising-related tracking technologies described in Section 4.

NEAR AI may collect certain Personal Data directly from you, as well as from other available sources, to the extent relevant and permitted by applicable local law. The categories of Personal Data we collect and process include the following:

Our infrastructure providers may process limited network metadata (e.g., IP addresses) to deliver the service.

We use the personal and usage information we collect for the following purposes:

• Account and Authorisation. To provide access to and administer your account; authenticate you; manage access tokens and session information.
• Analytics. To allow us and our analytics partners to understand how users use our Services so we can measure and improve them.
• Billing and Administration. To meter token usage, process payments (without storing full card numbers, which is managed by our payment processor), manage subscriptions, reconcile billing, and provide invoicing.
• Communication. To communicate with you, including service-related communications (purchases, payment notices, security alerts, technical notices, changes to terms or policies), feature updates, and product changes, in accordance with applicable law.
• Legal Compliance. To comply with applicable laws, regulations, legal processes, audit and security requirements, and to enforce our Terms and other agreements.
• Security and Integrity. To detect fraud or abuse, enforce rate limits, safeguard the Services, and verify Confidential Compute environment integrity via per-request attestation; to ensure network and information security; to maintain the ongoing confidentiality, integrity, availability, and resilience of the Services.
• Operate, Deliver, and Improve the Services. To authenticate you, route requests, generate responses, and otherwise provide, operate, and improve the Services you request.
• Support. To respond to questions, bug reports, or feedback you submit; provide in-product support.
• Marketing. To send you emails and messages about NEAR AI's products and services, events, and similar content, in accordance with applicable law. You can opt out of marketing communications as described in this Policy.
• Advertising and Campaign Measurement. To measure the performance of our and our advertising partners' advertising campaigns on www.near.ai (e.g., page views, sign-ups, or form submissions).

We may de-identify information we collect so the information cannot reasonably identify you or your device, or we may collect information that is already in de-identified form. Our use and disclosure of de-identified information is not subject to any restrictions under this Privacy Policy, and we may use and disclose it to others for any purpose, without limitation.

The laws in certain jurisdictions (such as those in the European Union and United Kingdom), require us to inform you of the “legal bases” on which we process your information.

• Contractual Necessity (Art. 6(1)(b)). When processing is required for the performance of an agreement to which you are a party, including to set up and run your account, provide the Services, support you, apply your settings, and fulfil other contractual obligations.
• Legal Obligation (Art. 6(1)(c)). Where processing is necessary to comply with legal obligations, such as security and audit requirements, record-keeping, responding to lawful requests, and fulfilling data-rights requests.
• Legitimate Interest (Art. 6(1)(f)). Where processing serves our legitimate interests, such as research and development, marketing and promotion, protection of our legal rights, keeping the service secure and reliable (logging, threat detection, abuse prevention), measuring and improving performance, running light product analytics, and defending legal claims.
• Consent (Art. 6(1)(a)). Where you give us permission to collect and use your Personal Data for a specific purpose. You can withdraw consent at any time.
• Special Categories (Art. 9). The Services are not intended for special-category or criminal-convictions data. Please do not input such data unless it is necessary and permitted by law.

We retain Personal Data only for as long as needed to provide and secure the Services, or as required to comply with law. When data is no longer necessary, we delete, de-identify, or aggregate it in accordance with our retention procedures, unless a particular retention period is required by law or a valid legal hold applies.

If you have an account with us, we retain your information while the account is active and as needed to perform our contractual obligations, deliver the Services, comply with legal obligations, resolve disputes, preserve legal rights, and enforce our agreements.

How we disclose Personal Data depends on the product you use and your relationship with us, and may include:

• Affiliates. We may disclose information among our group companies or affiliates for the business purposes described in this Policy.
• Vendors and Service Providers. We engage vendors and service providers to perform business purposes on our behalf, including analytics, hosting, payment processing, fraud prevention and security, customer support tools, email and communications services, and database and archival services.
• Website Analytics and Advertising Measurement (for www.near.ai), such as: PostHog; LinkedIn (Insight Tag); Twitter/X (Ads Pixel) to help us understand how you and our Users interact with the Services.
• Auditors, Accountants, and Lawyers. We may transfer your Personal Data to auditors, accountants, and lawyers in order to complete financial, technical, and legal audits, as well as for other legal requirements.
• Law Enforcement and Regulators. We disclose information as appropriate when we have a good faith belief that such disclosure is necessary to protect legal rights, privacy, and safety; detect fraud or abuse; respond to lawful requests from government authorities; or comply with legal process.
• Business Transactions. In the event of a merger, acquisition, transfer of control, bankruptcy, reorganisation, or sale of assets, we may transfer information as part of that transaction.
• Others. We may disclose your Personal Data where permitted or required by applicable law, including to comply with legal obligations, protect our rights, during emergencies, or with your consent.

We implement technical and organisational measures appropriate to the risk level of each product and service, including encryption in transit and at rest, access controls, continuous monitoring, and incident-response procedures. Where we use third-party service providers or model APIs, they operate under written data-processing terms and are subject to appropriate security and privacy due diligence.

No method of transmitting data over the internet or storing data is completely secure. While we work to protect your information, you acknowledge that you provide Personal Data at your own risk.

Depending on your location, you may have rights to access, correct, delete, or port your data, and to object to or restrict certain processing.

This section describes how we collect, use, and share Personal Information of California residents in our capacity as a “Business” under the California Consumer Privacy Act (“CCPA”), as amended by the California Privacy Rights Act (“CPRA”).

CCPA Rights: As a California resident, you have the following rights: the right to know, the right to delete, the right to correct, the right to opt out of sale or sharing, the right to limit use of sensitive personal information, and the right to non-discrimination. You can submit a request to legal@near.ai or privacy@near.ai.

Sale/Sharing of Personal Information: You have the right to opt out of the sharing/sale of your personal information for purposes of online analytics and advertising by clicking the “Your Privacy Choices” link on our website footer. Over the last 12 months, we have not knowingly “sold” or “shared” personal information of individuals under 16.

Your Personal Data may be transferred outside your home country, including outside the European Economic Area (EEA), Switzerland, and the United Kingdom, for purposes described in this Policy. Whenever we transfer your Personal Data out of these jurisdictions, we will endeavour to ensure a similar degree of protection by implementing at least one of the following safeguards:

• Adequacy Decisions. We may transfer your Personal Data to countries that have been deemed to provide an adequate level of protection by the European Commission or UK authorities.
• Standard Contractual Clauses (SCCs). We may rely on European Commission-approved standard contractual clauses, UK International Data Transfer Addenda, or similar instruments.
• Vendor-Specific Compliance Mechanisms. We may rely on vendor-specific data protection addenda or frameworks that incorporate SCCs or equivalent safeguards.

Please contact us if you want further information on the specific mechanism used when transferring your Personal Data outside your jurisdiction.

All Services are intended solely for individuals aged 18 or older. By accessing or using any of the Services, you represent and warrant that you are at least 18 years of age. We do not permit use of the Services by anyone under 18, regardless of parental consent.

We do not knowingly collect Personal Data from individuals under 18 in connection with our Services. If we become aware that we have inadvertently collected such data, we will take reasonable steps to delete it promptly.

When you connect Google services to NEAR AI / IronClaw, we access Google user data only as needed to perform actions you explicitly request through the AI assistant. This section describes how we handle data received from Google APIs, in compliance with the Google API Services User Data Policy, including the Limited Use requirements.

The Websites may contain links to third-party websites or services that are not operated or controlled by NEAR AI. We are not responsible for the privacy practices, content, or policies of any third-party sites. We encourage you to review the privacy policies of any such third parties before providing them with your Personal Data.

This Privacy Policy may change from time to time. When changes are made, we will post a revised version on our Website with the last updated date at the top of this page. Your continued use of the Services after we make changes is deemed to be acceptance of those changes.

To ask questions or comment about this Privacy Policy and our privacy practices, please contact us at:

• privacy@near.ai
• legal@near.ai