Privacy Policy

GhostNexus (Salim LABOUE, entrepreneur individuel — SIRET 102 801 883 00012) — Effective date: April 19, 2026

This policy applies to all personal data processed by GhostNexus in connection with the Service. It is written in compliance with Regulation (EU) 2016/679 (“GDPR”) and the French loi Informatique et Libertés.

1. Data Controller

2. Data We Collect

We collect the minimum data necessary to provide and improve the Service:

Account Data

• Email address (used for authentication and transactional communications)
• Password (stored as a bcrypt hash; the plaintext is never retained)
• Account display name (optional)
• Billing address and VAT number (if applicable, for invoice generation)

API Usage Logs

• Job ID (randomly generated UUID, not derived from workload content)
• Job duration (wall-clock seconds, used for billing)
• GPU tier and node region selected
• Job status (queued, running, completed, failed, terminated)
• Credits consumed per job
• API request timestamps and HTTP status codes

Payment Data

• Payment card data is processed directly by Stripe. GhostNexus does not receive or store raw card numbers, CVVs, or full card data.
• GhostNexus retains only: last 4 digits of the payment card (for display), card brand, expiry month/year, Stripe customer ID, and subscription or credit purchase status.
• Transaction IDs and amounts are retained for accounting and legal compliance purposes.

Provider Node Metadata

• Provider account identifiers and payment details (for revenue share disbursements)
• Node availability telemetry (GPU model, VRAM, region) — not linked to user jobs

3. What We Do NOT Collect

To be explicit, GhostNexus does not collect, store, or process the following:

• Script contents after job completion — your code is not retained by GhostNexus in any form once the job container is destroyed.
• Training data or datasets submitted as inputs to your jobs.
• Model weights or checkpoints generated by your jobs (these are your responsibility to export before container destruction).
• Any data processed inside a Docker container — the container filesystem is isolated (--network=none --read-only --cap-drop=ALL) and wiped on completion.
• Browser cookies beyond those strictly necessary for session management (no third-party analytics cookies, no advertising trackers).
• Biometric data, location data, or special-category data as defined in GDPR Art. 9.

4. Legal Basis for Processing (GDPR Art. 6)

Every processing activity carried out by GhostNexus rests on one of the following legal bases:

• Art. 6(1)(b) — Contract performance: Processing of account data, API usage logs, and billing data is necessary to perform our contract with you (provisioning compute, billing per-second usage, authenticating API requests).
• Art. 6(1)(f) — Legitimate interest: Security monitoring, fraud detection, AUP enforcement, and platform abuse prevention. Our legitimate interest in maintaining a secure, fair marketplace is balanced against your privacy interests; the data involved (job metadata, request logs) is minimal and not used for profiling.
• Art. 6(1)(a) — Consent: Sending marketing or promotional emails. You may withdraw consent at any time by clicking “Unsubscribe” in any marketing email or by contacting us. Withdrawal does not affect the lawfulness of processing before withdrawal.
• Art. 6(1)(c) — Legal obligation: Retention of payment records for the duration required by French accounting law (Code de Commerce Art. L123-22: 10 years).

5. Data Residency & International Transfers

Primary platform data (account database, job metadata, billing records) is stored on Hetzner infrastructure within the EU. The following limited transfers to sub-processors outside the EEA apply:

• Stripe: Payment processing may involve transfer of billing data to Stripe, Inc. (US). Stripe is certified under the EU–U.S. Data Privacy Framework and Standard Contractual Clauses (SCCs, Commission Decision 2021/914) are in place.
• Resend: Transactional email delivery. Resend operates on EU-based infrastructure; no personal data is transferred outside the EEA in connection with email sending.

We do not sell, rent, or otherwise share your personal data with third parties for their own marketing purposes.

6. Compute Isolation & Technical Architecture

Each job is executed in a dedicated Docker container configured with the following security parameters:

• --network=none — the container has no network access; it cannot initiate outbound connections or receive inbound traffic.
• --read-only — the container root filesystem is mounted read-only; no persistent writes to the host.
• --cap-drop=ALL — all Linux capabilities are dropped; no privilege escalation is possible.
• --user 65534 — containers run as the unprivileged nobody user (UID 65534).

The container filesystem — including any temporary files, intermediate outputs, and in-memory data persisted to disk — is destroyed on job completion. There is no persistent storage between jobs. Users are responsible for exporting outputs (e.g. model checkpoints, result files) via the GhostNexus output API before job termination.

7. Sub-processors

GhostNexus uses the following sub-processors to deliver the Service. We maintain data processing agreements with each.

We will update this list before onboarding any new sub-processor that processes personal data. Where required by your data processing agreement with GhostNexus, we will notify you in advance of material sub-processor changes.

8. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes described in this policy, or as required by law:

• Account data (email, hashed password, profile): retained for the duration of your account plus 30 days after deletion (to allow reactivation and resolve disputes). After 30 days, account data is permanently deleted.
• Job metadata (job ID, task name, duration, GPU tier, cost, status): retained for 2 years from job completion, for billing accuracy, dispute resolution, and fraud detection.
• Job output logs (stdout/stderr of your script): retained for 90 days from job completion, then automatically purged. These logs may contain data you choose to print in your script; you are responsible for not including personal data in script output unless you have a lawful basis.
• Payment and transaction records: retained for 10 years from the transaction date, in compliance with French accounting and tax law (Code de Commerce Art. L123-22).
• Application and access logs (IP address, API request logs): retained on a 30-day rolling basis, then automatically purged.
• Script content and container data: zero retention — destroyed on job completion (see Section 6).
• Marketing consent records: retained until you withdraw consent, plus 1 year for compliance evidence.

9. Your Rights Under GDPR (Art. 15–22)

You have the following rights with respect to your personal data. To exercise any of these rights, contact us at contact@ghostnexus.net with subject line “Data Subject Request”. We will respond within 30 days (extendable by a further 60 days for complex requests, with notice).

• Art. 15 — Right of access: Obtain confirmation of whether we process your personal data and receive a copy.
• Art. 16 — Right to rectification: Correct inaccurate or incomplete personal data we hold about you.
• Art. 17 — Right to erasure (“right to be forgotten”): Request deletion of your personal data where it is no longer necessary for the purposes for which it was collected, or where you withdraw consent (subject to overriding legal obligations, e.g. 10-year accounting retention).
• Art. 18 — Right to restriction: Request that we restrict processing of your data in certain circumstances (e.g. while you contest accuracy).
• Art. 20 — Right to data portability: Receive your personal data in a structured, commonly used, machine-readable format (JSON export available via the dashboard).
• Art. 21 — Right to object: Object to processing based on legitimate interests (Art. 6(1)(f)), including profiling. We will cease processing unless we demonstrate compelling legitimate grounds.
• Withdrawal of consent: Where processing is based on consent (Art. 6(1)(a)), you may withdraw consent at any time without affecting the lawfulness of prior processing.

10. Security Measures

GhostNexus implements technical and organisational measures appropriate to the risks involved:

• Password hashing: User passwords are hashed using bcrypt with a work factor of at least 12. Plaintext passwords are never stored or logged.
• API key security: API keys are hashed at rest using a one-way cryptographic function; only the hash is stored. The raw key is shown only once at creation.
• Encryption in transit: All communications between clients and GhostNexus infrastructure use TLS 1.3. Older protocol versions are not supported.
• Compute isolation: Each job runs in an isolated Docker container (--network=none --read-only --cap-drop=ALL --user 65534) with no shared state between jobs or users.
• Access controls: Internal access to production systems is restricted by role, enforced via short-lived credentials, and subject to audit logging.
• Breach notification: In the event of a personal data breach, GhostNexus will notify the CNIL within 72 hours where required and will notify affected users without undue delay where the breach is likely to result in high risk to their rights and freedoms.

No system is perfectly secure. We encourage you to use strong, unique passwords and rotate API keys regularly (mandatory 90-day TTL — see Terms of Service, Section 3).

11. Contact & Requests

For any questions about this Privacy Policy, to exercise your data subject rights, or to reach our Data Protection Officer, please contact:

We may update this Privacy Policy from time to time. Material changes will be communicated by email to your registered address. The “Effective date” at the top of this page reflects the date of the most recent revision.

Last updated: April 19, 2026. This Privacy Policy supersedes all prior versions.