This Privacy Policy describes how Hyperbola LTD ("Hyperbola", "we", "us", or "our") handles information in connection with deverywhere — the deverywhere mobile application (the "App"), the deverywhere server component that you install on your own computer (the "Server Component"), the relay infrastructure we operate (the "Relay Service"), and the deverywhere website at deverywhere.io (together, the "Service").
We built deverywhere around a simple principle: your work stays your own. This policy explains what that means in practice.
Summary
- Your sessions are not stored on our servers. All session traffic between your phone and your computer is relayed end-to-end encrypted, as pass-through traffic only. We cannot read it, and we do not store it.
- We collect the minimum needed to operate your account: your email address and login credentials.
- Credentials you save in the App (such as SSH usernames, passwords, or keys) are stored encrypted on your device and are never transmitted to us.
- We do not sell personal information, we do not show ads, and we do not use third-party analytics or tracking.
The full policy follows.
1. Information We Collect
1.1 Account information
When you create a deverywhere account, we collect your email address and authentication credentials. Passwords are stored in hashed form. We use this information to create and manage your account, authenticate you, and associate your subscription with your account.
1.2 Payment information
Payments for deverywhere subscriptions are handled by third-party payment processors or the platform through which you purchase. We do not receive or store your full payment card details. We receive limited transaction information from the processor — such as confirmation that a payment was made and the status of your subscription — which we use to provide you with the features you have paid for.
1.3 Support communications
If you contact us (for example, by email), we receive the contents of your message and the contact details you provide, and we use them to respond to you.
1.4 Essential cookies and similar technologies
We use only cookies and similar technologies that are strictly necessary to operate the Service, such as keeping you signed in. We do not use advertising cookies or third-party analytics.
2. Information We Do Not Collect
By design, deverywhere does not collect:
- Terminal session content. The commands you type, the output you see, the files and code you work on, and anything else that happens inside your sessions is transmitted between your phone and your computer as end-to-end encrypted traffic. The Relay Service forwards this traffic without the ability to decrypt it. No part of your sessions is stored on our servers.
- Connection credentials. SSH usernames, passwords, keys, and other credentials you save in the App are stored encrypted on your device only. They are never uploaded to us or to any third party.
- Port-forwarded traffic. Traffic between your phone and development servers running on your computer is relayed in the same pass-through, end-to-end encrypted manner.
- The contents of your computer. The Server Component runs entirely on your own computer, under your control, and accesses your computer only as directed by you from your paired device. It does not transmit data from your computer to Hyperbola.
- Analytics, tracking, or advertising identifiers. We do not use third-party analytics SDKs, advertising networks, or behavioral tracking.
Transient connection routing
To establish and maintain a relayed connection, our servers necessarily handle basic routing information — such as the network addresses of the connecting devices — in memory while a connection is active. This information is used solely to route your encrypted traffic and is not recorded or retained.
3. How We Use Information
We use the information described in Section 1 to:
- provide, operate, and maintain the Service, including authenticating you and verifying your subscription status;
- process transactions through our payment providers;
- respond to your support requests;
- send you service-related communications, such as receipts, security notices, and notices of material changes to the Service or our terms;
- protect the security and integrity of the Service, prevent fraud and abuse, and enforce our Terms and Conditions; and
- comply with applicable legal obligations.
We do not use your information for profiling or advertising, and we do not sell it.
4. How We Share Information
We share personal information only in the following circumstances:
- Service providers. We use a small number of third-party providers to operate the Service — for example, infrastructure hosting, payment processing, and email delivery. They may process personal information only as needed to provide their services to us and are subject to appropriate confidentiality and data-protection obligations.
- Legal requirements. We may disclose information where required by law or valid legal process, or where necessary to protect the rights, safety, or property of Hyperbola, our users, or others. Because session content is never stored on our servers and is end-to-end encrypted in transit, we are not in a position to produce it.
- Business transfers. If Hyperbola is involved in a merger, acquisition, or sale of assets, personal information may be transferred as part of that transaction. We will provide notice before your information becomes subject to a different privacy policy.
- With your consent. We may share information for other purposes with your consent.
We do not sell or rent personal information to anyone.
5. Data Retention
We retain account information for as long as your account is active. If you delete your account, we delete or anonymize your personal information within a reasonable period, except where we are required to retain certain records (for example, transaction records for tax and accounting purposes).
Session content is never retained, because it is never stored in the first place.
6. Your Rights and Choices
Depending on where you live, you may have rights regarding your personal information, which may include the right to access, correct, delete, or receive a copy of it, to object to or restrict certain processing, and to withdraw consent where processing is based on consent.
You can exercise these rights, and request deletion of your account, by contacting us at support@deverywhere.io. We will respond within the timeframe required by applicable law. We will not discriminate against you for exercising any of these rights.
7. Security
We use industry-standard measures to protect the information we hold, including encryption in transit and hashed storage of passwords. Session traffic is protected by SSH-based end-to-end encryption between your devices, and credentials saved in the App are stored encrypted on your device.
No method of transmission or storage is completely secure. You are responsible for keeping your account credentials confidential and for securing the devices and computers you use with the Service.
8. International Transfers
Your account information may be processed in countries other than the one in which you live, including locations where we or our service providers operate. Where required by applicable law, we use appropriate safeguards for such transfers.
9. Children
The Service is not directed to individuals under 18, and we do not knowingly collect personal information from them. If you believe a person under 18 has provided us with personal information, please contact us and we will delete it.
10. Third-Party Tools and Services
deverywhere lets you operate third-party command-line tools (for example, AI coding assistants) running on your own computer. Those tools are independent products: any data they themselves collect, transmit, or process is governed by their own terms and privacy policies, not this one. Likewise, the payment processors and platforms through which you purchase a subscription handle your payment data under their own policies.
11. Changes to This Policy
We may update this Privacy Policy from time to time. If we make material changes, we will notify you — for example, by email or through the App or website — before the changes take effect. The "Effective date" above reflects the most recent revision.
12. Contact
Hyperbola LTD support@deverywhere.io