Privacy Policy

How we handle your data — plainly and precisely.

Effective Date: February 24, 2026 · Last Updated: February 24, 2026

Plain-Language Summary We collect very little data. We don't require accounts. We don't track you. We don't train models on your data. With E2E encryption enabled, we can't even read your prompts. For the full technical breakdown of who sees what, see our Data Visibility Matrix.

1. Who We Are

This Privacy Policy applies to the RAM Aggregator network, website (ramaggregator.com), chat application, macOS provider application, and all related APIs and services (collectively, the "Service"), operated by the RAM Aggregator team ("we", "us", "our").

2. Data We Collect

2.1 Data You Provide

Data	When	Required?
Ethereum wallet address	When you connect MetaMask	Only for paid usage
Inference prompts	When you send a chat message	Yes (to perform inference)
Provider node name	When you register as a provider	Yes (for identification)
Provider wallet address	When you register as a provider	Yes (for reward payments)

2.2 Data Collected Automatically

Data	Purpose	Retention
IP address	Rate limiting, abuse prevention	Not stored persistently
Request metadata (model, token count, timing)	Billing, validation, analytics	Duration of session
Provider hardware specs (RAM, chip)	Job routing, model compatibility	While provider is registered

2.3 Data We Do NOT Collect

No personal identity information. No name, email, phone number, or date of birth.
No cookies or tracking pixels. The chat app does not use cookies, third-party analytics, advertising trackers, or browser fingerprinting.
No browsing history. We do not track pages you visit before or after using the Service.
No device identifiers. We do not collect IDFA, GAID, or other device-level identifiers.

3. How We Use Your Data

We use the data we collect for the following purposes and no others:

Service operation: Routing inference requests to providers, managing the token ledger, validating results.
Billing: Calculating xRAM token charges and provider rewards based on inference usage.
Anti-abuse: Rate limiting, fraud detection, anti-gaming validation, and Sybil resistance.
Network analytics: Aggregate statistics (total providers online, models available, network utilization). These are not linked to individual users.

We Never Use Your Data For Training, fine-tuning, or improving AI models. Advertising or marketing. Selling to third parties. User profiling or behavioral analytics. Credit scoring or automated decision-making.

4. End-to-End Encryption

When E2E encryption is enabled in the chat application:

Your prompts and responses are encrypted in your browser using X25519 ECDH key exchange and AES-256-GCM before being transmitted.
The coordinator receives and forwards only encrypted ciphertext. It cannot decrypt or read the content.
The coordinator stores <encrypted> as a placeholder instead of actual prompt/response text.
Only the assigned provider can decrypt your prompt (to perform inference) and you can decrypt the response.
Each request uses a new ephemeral key pair, preventing correlation of requests across sessions.

When E2E encryption is disabled, the coordinator can access prompt and response text for routing and validation purposes. We recommend enabling E2E encryption for sensitive conversations.

For complete technical details, see E2E Encryption Documentation.

5. Data Sharing

5.1 With Providers

When you submit an inference request, the assigned provider receives your prompt text (encrypted or plaintext depending on E2E setting), the model name, and generation parameters. Providers do not receive your wallet address, IP address, or session token.

5.2 With Third Parties

We do not sell, rent, or share your data with third parties for marketing or advertising purposes. We may share data only in the following limited circumstances:

Legal requirements: If required by law, subpoena, or court order.
Safety: If necessary to prevent imminent harm to persons or property.
Blockchain (public): xRAM token transactions are recorded on the Base blockchain, which is publicly visible. Wallet addresses and transaction amounts are public on-chain data.

5.3 International Transfers

The coordinator is hosted on Fly.io infrastructure. Providers are located worldwide. Your data may be processed in any country where providers operate. By using the Service, you consent to the transfer of data to countries that may have different data protection laws than your own.

6. Data Retention

Data	Retention Period
Inference prompts/responses (E2E off)	Duration of session; purged on session close
Inference prompts/responses (E2E on)	Not stored (only `<encrypted>` placeholder)
Session tokens	Until session is closed or deposit withdrawn
Provider registration data	While provider is registered; removed on de-registration
Token ledger (billing records)	Indefinitely (required for accounting)
On-chain transactions	Permanently (immutable blockchain)

7. Data Security

We implement the following security measures:

Transport encryption: All connections use TLS 1.3 (HTTPS/WSS).
Application-layer encryption: Optional E2E encryption (X25519 + AES-256-GCM) for prompt/response content.
Provider key management: Provider encryption keys are stored locally with restrictive file permissions (0600) and never transmitted to the coordinator.
Rate limiting: Per-key and per-IP rate limits to prevent abuse.
Admin access control: Administrative operations require a secret key.

Despite these measures, no system is 100% secure. We cannot guarantee absolute security of your data. Use E2E encryption for sensitive content.

8. Your Rights

Depending on your jurisdiction, you may have the following rights:

Access: Request a copy of the data we hold about you.
Deletion: Request deletion of your data. Note: on-chain transactions cannot be deleted from the blockchain.
Correction: Request correction of inaccurate data.
Portability: Request your data in a machine-readable format.
Objection: Object to certain processing of your data.
Withdrawal of consent: Withdraw consent at any time by ceasing use of the Service.

Because we collect minimal identifying data (no accounts, no emails), we may not be able to verify your identity for data subject requests. Wallet addresses are pseudonymous, not anonymous — if you can prove ownership of a wallet address (via signature), we will honor applicable requests.

8.1 GDPR (European Economic Area)

If you are in the EEA, our legal basis for processing is: (a) contract performance (providing the Service), (b) legitimate interests (anti-abuse, network analytics), and (c) consent (for optional features like E2E encryption preference storage). You may contact your local data protection authority if you believe your rights have been violated.

8.2 CCPA (California)

If you are a California resident: we do not sell your personal information. We do not use your personal information for targeted advertising. You have the right to know what data we collect and to request deletion. We will not discriminate against you for exercising these rights.

9. Children's Privacy

The Service is not directed to children under 18. We do not knowingly collect data from children. If you believe a child has provided us with data, contact us and we will delete it.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be posted on this page with an updated "Last Updated" date. Your continued use of the Service constitutes acceptance of the updated policy.

11. Contact

For privacy-related questions or data subject requests, contact us at: privacy@ramaggregator.com