Effective: June 2026 · hello@ankayma.com
Account data: GitHub username, email address (from GitHub OAuth).
Node data: WireGuard public key, device hostname, overlay IP, node ID. Your private key is generated on-device and never sent to us.
Usage data: Bandwidth consumed (bytes in/out per tenant, not content), connection timestamps, tunnel establishment events. This data is used for quota enforcement and billing.
Audit logs: Append-only ledger of enrollment events, tier transitions, and policy changes. Retained per your tier's retention policy.
Signal data (aggregate): Referrer URL, UTM parameters at signup, funnel events (signup started, first tunnel created). Used to understand how developers discover us. Not sold to third parties.
Stripe: Billing data for paid plans. Stripe's privacy policy applies.
Infrastructure providers: Cloud hosting for control plane. Data processed under DPA agreements.
We do not sell your data. We do not share your data with advertisers.
Account data: retained until account deletion. Audit logs: 1 year (F0/F0-Plus), 7 years (Enterprise — Phase 2+). Usage metrics: 90-day rolling window for F0.
You may request export or deletion of your account data at any time by emailing hello@ankayma.com or using in-app account deletion.
The mobile/desktop app uses no cookies. The web admin console uses a single session cookie. The marketing site (this page) uses no tracking cookies.
Data in transit is encrypted with TLS. Server-side data at rest is encrypted. See Honest Limits for the current state of independent security verification.
Material changes will be communicated via the email on your account with 14 days notice.