LIMITED TIME: Get 50% OFF your first year! Use code LAUNCH50 Claim Now →

Platform
Use Online
Launch the IDE in your browser
Download App
Desktop app for Windows, Mac, Linux
Alfred AI
1,220+ tools · 24 agents · 16 engines
Dashboard
Your account overview
Live Demo
See the ecosystem in action
Voice & AI
Voice Products
Voice AI suite overview
Voice Cloning
Clone voices with AI
Command Center
Voice-activated operations hub
Experiences
Pulse
Social network & ecosystem hub
VR World
Immersive 3D environments
Chess Arena
Play AI agents in VR
Games & Arcade
Browser games collection
Website Templates
Open-Source Tools
Core
Tool Directory
Browse 1,220+ AI tools
Marketplace
Extensions, templates & more
Alfred Search
Sovereign search engine
AgentPedia
AI-written knowledge base
Pricing
Plans & token packs
Use Cases
33 industries
Compare
Features
Fleet Dashboard
Manage AI agent fleet
Agent Orchestrator
Deploy coding agents
Conference Rooms
AI-powered meetings
Team Chat
Collaborate & negotiate
Voice Cloning
Workflow
Agent Templates
Pre-built AI agents
IVR Builder
Visual call flow designer
Conversations
Analytics
Team Workspace
Creator Dashboard
Call Campaigns
Hosting & Domains
AI Hosting
AI-powered web hosting with editor
Domains
Register & transfer domains
Token Packs
AI usage credits
SSL Certificates
Secure your site
Infrastructure
Build AI Server
GPU-powered dedicated servers
Training
Learn to build & manage
White Label
Resell under your brand
System Status
Uptime & incidents
Get Started
Developer Portal
Build on the platform
Getting Started
Quick start guide
Documentation
Full reference docs
Changelog
APIs & SDKs
API Reference
RESTful API docs
SDKs
Python, Node, PHP, Go & more
Webhooks
Event-driven integrations
Extend
Extensions
Browse & install plugins
Integrations
Connect third-party services
Languages
300+ language support
Company
About Us
Enterprise
Custom plans for organizations
Careers
Join the ecosystem
Ecosystem
The sovereign internet platform
Security
Pulse
Social network & ecosystem hub
Veil
Encrypted messaging & payments
Post-Quantum
Learn & Support
Research Chronicles
Innovation lab & breakthroughs
Health Research
50K agents — ask any health question
Help Center
FAQs & guides
Blog
Blog & tutorials
Support
News
Finance & Investment
Invest in GoSiteMe
Join our growth story
Affiliate Program
Earn 20% commission
Crypto Trading
GSM Token
Mine GSM
Earn tokens while you browse
Wallet
Balance, mining & transactions
QGSM Whitepaper
Post-quantum cryptocurrency
QGSM Bridge
Passport & earning gateway
ESC
↑↓ Navigate Open ESC Close
AI Hosting Token Packs SSL Certificates Training Server Support Build AI Server
Use Online Download App Alfred AI — 1,220+ Tools Voice & AI Products VR World & Chess Arena Games & Arcade Website Templates Open-Source Tools Project Directory
Tool Directory Marketplace Pricing Use Cases Fleet Dashboard Agent Orchestrator Conference Rooms Team Chat Voice Cloning Agent Templates
Crypto Trading GSM Token Mine GSM Wallet Crypto Reports Invest in GoSiteMe QGSM Whitepaper QGSM Bridge
Developer Portal Extensions SDKs Webhooks API Reference Getting Started Documentation
Domains Cart News Contact Help Center Affiliate Program — Earn 20%
Français Login Get Started

Privacy Policy

Last Updated: March 8, 2026  |  Effective Date: March 8, 2026

Welcome to GoSiteMe (https://gositeme.com) ("Company", "we", "us", "our"), a privately held technology company. This Privacy Policy explains how we collect, use, process, store, share, and protect your personal information when you use our AI development platform, robotics and IoT services, virtual reality environments, application marketplace (App Store), encrypted communications (Veil Protocol), voice technology, hosting services, cryptocurrency features, and all related products and services (collectively, the "Services").

This Privacy Policy is incorporated into and forms part of our Terms of Service. By using our Services, you consent to the collection and use of your information as described in this Privacy Policy. If you do not agree, please do not use our Services.

Privacy Officer Contact
GoSiteMe — Quebec, Canada
Privacy Officer: privacy@gositeme.com
Data Protection Officer (GDPR): dpo@gositeme.com
Phone: 1-833-GOSITEME (1-833-467-4836)

1. Information We Collect

We collect the following categories of information depending on which Services you use:

1.1 Account & Identity Information

1.2 Technical & Device Information

1.3 Usage & Behavioral Data

1.4 Biometric Data

BIOMETRIC DATA NOTICE
We collect and process biometric data only with your explicit consent. You may decline to provide biometric data, but certain features (such as Voice Cloning) will be unavailable.

1.5 Robotic & IoT Sensor Data

1.6 Communication Data

1.7 Financial & Cryptocurrency Data

1.8 User-Generated Content

2. How We Use Your Information

We use your information for the following purposes:

2.1 Service Delivery & Operations

2.2 Safety & Security

2.3 Communications

2.4 Analytics & Improvement

2.5 Legal & Compliance

3. Legal Bases for Processing (GDPR)

For users in the European Economic Area (EEA), United Kingdom, and Switzerland, we process personal data under the following legal bases:

Legal BasisApplicable Processing Activities
Contract PerformanceService delivery, billing, account management, device management, app distribution
Legitimate InterestSecurity monitoring, fraud prevention, analytics, service improvement, network protection
ConsentMarketing communications, biometric data collection (voice prints), non-essential cookies, optional telemetry from devices
Legal ObligationTax compliance, KYC/AML, law enforcement cooperation, data breach notification, ICANN requirements
Vital InterestSafety-critical robotics alerts, security breach notifications involving personal safety

4. How We Share Your Information

We do not sell your personal information. We may share your information with the following categories of recipients:

4.1 Service Providers

4.2 App Store Developers

When you purchase or download a Store Application, the developer may receive: your display name (not email unless you consent), purchase confirmation, and aggregated usage analytics. Developers do not receive your payment details, email address, or other personal information unless you explicitly consent.

4.3 Legal & Safety Disclosures

We may disclose your information when we believe in good faith that disclosure is necessary to:

4.4 Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, your information may be transferred as part of that transaction. We will notify you via email and/or prominent notice on our website before your information becomes subject to a different privacy policy.

4.5 With Your Consent

We may share your information with third parties when you have given your explicit consent to do so.

5. Data Storage & Security

5.1 Data Location

5.2 Security Measures

While we implement industry-leading security measures, no system is 100% secure. You are responsible for securing your account credentials, device access, and maintaining your own backups.

5.3 Biometric Data Security

Biometric data (voice prints, VR behavioral biometrics) is stored separately from other personal data with additional encryption layers and access restrictions. Biometric data is never shared with third parties except as required by law.

6. Data Retention

Data CategoryRetention PeriodBasis
Account informationDuration of account + 30 daysService delivery
Billing & transaction records7 years after transactionTax & legal compliance
AI conversation historyDuration of account (user-deletable)Service delivery
Voice Clone modelsDuration of account (user-deletable)Service delivery
Voice recordings (raw samples)90 days after Voice Clone creation, then deletedQuality assurance
Server & access logs90 daysSecurity & troubleshooting
Hosting account data & backupsDuration of account + 30 days post-cancellationService delivery
Robotic Device telemetry12 months (aggregated thereafter)Service improvement
IoT sensor data6 months (configurable by user)Service delivery
VR behavioral dataDuration of account (anonymized after 12 months)Service improvement
App Store purchase records7 yearsTax & legal compliance
Cryptocurrency transaction records7 yearsAML/KYC compliance
Support tickets & correspondence3 years after resolutionService quality
Marketing consent recordsDuration of consent + 3 yearsLegal compliance
Safety incident records10 yearsLegal & safety compliance

When data reaches its retention limit, it is securely deleted or anonymized so it can no longer be associated with you. You may request earlier deletion of certain data categories (see Section 9).

7. Cookies & Tracking Technologies

7.1 Cookies We Use

CategoryPurposeDurationConsent Required
EssentialAuthentication, session management, security, load balancingSession / 30 daysNo (necessary)
FunctionalLanguage preferences, theme settings, UI customization1 yearNo (necessary)
AnalyticsUsage patterns, feature adoption, error tracking13 monthsYes
MarketingAd targeting, conversion tracking, retargeting13 monthsYes

7.2 Managing Cookies

You can manage cookie preferences through our cookie consent banner, browser settings, or by contacting us. Disabling essential cookies may prevent the Services from functioning correctly. We respect Do Not Track (DNT) browser signals.

7.3 Other Tracking Technologies

We may use local storage, session storage, pixel tags, and similar technologies for functionality and analytics purposes. These are subject to the same consent requirements as cookies where applicable.

8. AI-Specific Data Practices

8.1 AI Prompt & Response Data

8.2 AI Agent Behavioral Data

8.3 Automated Decision-Making (GDPR Article 22)

We use automated processing for:

You have the right to request human review of any automated decision that significantly affects you. Contact privacy@gositeme.com to exercise this right.

9. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal information:

9.1 Universal Rights

9.2 GDPR Rights (EEA, UK, Switzerland)

9.3 CCPA/CPRA Rights (California Residents)

9.3.1 California Shine the Light (Civil Code §1798.83)

California residents may request a list of personal information (if any) we have disclosed to third parties for their direct marketing purposes during the preceding calendar year. We do not currently disclose personal information to third parties for their direct marketing purposes. If this practice changes, we will update this section and provide an opt-out mechanism. To make a Shine the Light request, email privacy@gositeme.com with the subject "Shine the Light Request" and include your California mailing address.

9.4 Quebec Law 25 Rights (Quebec Residents)

9.5 PIPEDA Rights (Canadian Residents)

9.6 How to Exercise Your Rights

Submit requests to privacy@gositeme.com or through your account settings. We will respond within 30 days (or sooner if required by applicable law). We may verify your identity before processing requests. Some data may be retained as required by law even after a deletion request.

10. Robotics & IoT Privacy

IN-HOME DATA COLLECTION NOTICE
Robotic Devices and IoT Devices in your home may collect ambient data including audio, video, temperature, movement, and environmental information. You are responsible for informing all household members, guests, and visitors about the presence and data collection capabilities of these devices.

10.1 What Robots Collect

10.2 Your Controls

10.3 Third-Party IoT Integrations

If you connect third-party smart home devices or platforms to our Services, data exchange between systems is governed by both our Privacy Policy and the third party's privacy policy. We are not responsible for the data practices of third-party IoT devices or platforms.

10.4 GoSiteMe-Manufactured Hardware (Alfred Robot) Data

Alfred Robots manufactured by GoSiteMe collect additional data specific to their operation:

Data on Device Return/Disposal: When GoSiteMe Hardware is returned under warranty, traded in, or sent for recycling, GoSiteMe performs certified data destruction (secure overwrite + cryptographic erasure) on all personal data stored on the device. A data destruction certificate is available upon request.

11. VR & Metaverse Privacy

11.1 VR Data Collection

11.2 VR Behavioral Biometrics

We acknowledge that movement patterns, gaze data, and hand tracking data may constitute behavioral biometric data that could potentially identify individuals. This data is:

11.3 VR Content Moderation

We may monitor public VR environments for safety and conduct violations. Private VR spaces are not monitored unless a conduct report is filed. Moderation data may include behavioral logs and session recordings relevant to the reported incident.

12. Voice Technology Privacy

12.1 Voice Command Processing

12.2 Voice Cloning Data

12.3 Consent Records

We maintain records of consent for Voice Clone creation, including: the identity of the voice provider, date of consent, method of consent, and scope of authorized use. These records are retained for 5 years after the Voice Clone is deleted.

13. Cryptocurrency & Financial Data Privacy

14. International Data Transfers

14.1 Transfer Mechanisms

Your data is primarily stored and processed in Quebec, Canada. Canada has received an adequacy decision from the European Commission, meaning data transfers from the EEA to Canada are permissible under GDPR. For transfers to other jurisdictions (e.g., AI processing through US-based providers), we rely on:

14.2 Sub-Processor List

A list of our current sub-processors and their locations is available upon request by contacting privacy@gositeme.com. We will notify subscribers of material changes to our sub-processor list at least 30 days in advance.

14.3 Sub-Processor Objection Rights

In accordance with GDPR Article 28, if you have a legitimate objection to a new or replacement sub-processor, you may submit a written objection to privacy@gositeme.com within 10 business days of receiving our sub-processor change notification. Your objection must include specific, documented reasons why the proposed sub-processor would compromise the protection of your personal data. GoSiteMe will use commercially reasonable efforts to address your concerns, including offering an alternative sub-processor where feasible. If GoSiteMe cannot reasonably accommodate your objection, either party may terminate the affected Services without penalty upon 30 days' written notice, and GoSiteMe will refund any prepaid fees for the unused portion of the terminated Services.

15. Children's Privacy

15.1 Age Requirements

15.2 COPPA Compliance

We comply with the Children's Online Privacy Protection Act (COPPA). We do not knowingly collect personal information from children under 13 without verifiable parental consent. If we discover that we have inadvertently collected personal information from a child under 13 without proper consent, we will promptly delete that information.

15.3 Parental Controls

Parents and guardians of minor users (13-17) can:

Contact privacy@gositeme.com for parental access requests.

16. Third-Party Links & Services

Our Services may contain links to third-party websites, services, and applications. This includes third-party Store Applications, external integrations, and linked services. We are not responsible for the privacy practices, content, or data handling of third-party websites or services. We encourage you to review their privacy policies before providing any personal information.

17. Data Breach Notification

17.1 Notification Timeline

17.2 Notification Content

Breach notifications will include: (a) the nature of the breach; (b) categories and approximate number of records affected; (c) likely consequences; (d) measures taken or proposed to address the breach; and (e) contact information for our Privacy Officer.

17.3 Biometric Data Breaches

In the event of a breach involving biometric data (voice prints, VR behavioral biometrics), we will provide enhanced notification including specific guidance on risk mitigation, as biometric data cannot be changed like passwords.

18. Privacy Impact Assessments

In compliance with Quebec Law 25 and GDPR, we conduct Privacy Impact Assessments (PIAs) / Data Protection Impact Assessments (DPIAs) before implementing:

PIAs are reviewed and updated annually or when material changes occur.

19. Data Processing Agreements

Enterprise Customers who are data controllers processing personal data through our platform may request a Data Processing Agreement (DPA) that addresses:

Contact enterprise@gositeme.com to request a DPA.

20. Do Not Track & Global Privacy Control

We respect the Global Privacy Control (GPC) signal and Do Not Track (DNT) browser preferences. When we detect a GPC or DNT signal, we will:

21. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with a revised "Last Updated" date.

Continued use of the Services after the effective date of any change constitutes acceptance of the updated Privacy Policy.

22. Additional US State Privacy Rights

In addition to CCPA/CPRA rights for California residents (Section 9.3), residents of the following states have additional privacy rights under their respective state laws:

22.1 Virginia Consumer Data Protection Act (VCDPA)

Virginia residents have the right to: access, correct, and delete personal data; obtain a portable copy of personal data; opt out of the processing of personal data for targeted advertising, sale, or profiling. To appeal a denied request, contact privacy@gositeme.com with subject line "VCDPA Appeal."

22.2 Colorado Privacy Act (CPA)

Colorado residents have the right to: access, correct, and delete personal data; obtain a portable copy; opt out of targeted advertising, sale of personal data, and automated profiling that produces legal or similarly significant effects. Universal opt-out mechanisms (Global Privacy Control) are honored.

22.3 Connecticut Data Privacy Act (CTDPA)

Connecticut residents have the right to: access, correct, and delete personal data; obtain a portable copy; opt out of targeted advertising, sale of personal data, and profiling. You may appeal denied requests within 60 days.

22.4 Utah Consumer Privacy Act (UCPA)

Utah residents have the right to: access and delete personal data; obtain a portable copy; opt out of targeted advertising and sale of personal data.

22.5 Nevada SB-220

Nevada residents may submit a request directing us not to sell their personal information. Submit requests to privacy@gositeme.com. We do not currently sell personal information.

22.6 Oregon Consumer Privacy Act (OCPA)

Oregon residents have the right to: access, correct, and delete personal data; data portability; opt out of targeted advertising, sale of personal data, and profiling.

22.7 Texas Data Privacy and Security Act (TDPSA)

Texas residents have the right to: access, correct, and delete personal data; data portability; opt out of targeted advertising, sale, and profiling. We recognize universal opt-out mechanisms.

22.8 Montana Consumer Data Privacy Act (MCDPA)

Montana residents have rights substantially similar to those under the VCDPA. Submit requests to privacy@gositeme.com.

22.9 Exercising State-Specific Rights

To exercise any state-specific privacy rights, submit a verifiable request to privacy@gositeme.com specifying your state of residence. We will respond within the timeframe required by your applicable state law (typically 45 days). You will not be discriminated against for exercising your privacy rights.

23. California Age-Appropriate Design Code

In compliance with the California Age-Appropriate Design Code Act, we:

24. Advertising, Marketing & Behavioral Targeting

24.1 Our Advertising Practices

We may display advertisements within free-tier Services. We use the following types of advertising:

24.2 What We Do NOT Do

24.3 Opting Out

You may opt out of personalized advertising through your account settings, by using the Global Privacy Control (GPC) signal, or by contacting privacy@gositeme.com. Paid subscribers do not receive third-party advertisements.

25. Aggregate & De-Identified Data

25.1 Definitions

"Aggregate Data" means data that has been combined with data from other users and cannot reasonably be used to identify any individual. "De-Identified Data" means data from which all personally identifiable information has been permanently removed using industry-standard techniques and for which we have implemented technical safeguards, business processes, and contractual obligations to prevent re-identification.

25.2 Use of Aggregate & De-Identified Data

We may create, use, and share Aggregate Data and De-Identified Data for any lawful purpose, including: research, analytics, benchmarking, industry reports, service improvement, and new product development. GoSiteMe retains all rights, title, and interest in and to all Aggregate Data, De-Identified Data, statistical analyses, models, indices, benchmarks, and any other derivative works, insights, or intellectual property created from or based on Aggregate Data or De-Identified Data. This data is not subject to the restrictions of this Privacy Policy because it does not constitute personal information. This ownership right survives termination of your account.

25.3 Re-Identification Prohibition

We contractually prohibit any recipients of De-Identified Data from attempting to re-identify individuals. We maintain administrative, technical, and physical safeguards designed to prevent re-identification.

26. Cross-Device Tracking

We may link your activity across multiple devices (desktop, mobile, VR headset, IoT devices, robotic devices) when you log into the same account on different devices. This cross-device linking enables:

You can manage device linkage through your account settings. Removing a device from your account will stop future cross-device tracking for that device. Previously collected data may be retained as per Section 6.

27. Social Features & Public Profiles

27.1 Public Profile Information

If you create a public profile (e.g., for the App Store, developer community, VR multiplayer, or game leaderboards), the following information may be publicly visible: display name, profile photo, public bio, published applications or content, ratings, review history, public achievements, and public statistics. Never include sensitive personal information in your public profile.

27.2 Social Interactions

Information shared in public channels, team chats, VR public environments, forums, or community features is visible to other users and may be cached or saved by other users. You should have no expectation of privacy for information shared in public or group contexts.

27.3 Controlling Visibility

You can control the visibility of your profile and social features through your account privacy settings, including options to: hide your profile from public search, disable leaderboard participation, restrict who can see your online status, and control who can invite you to VR environments.

28. Biometric Data Retention & Destruction Schedule

BIOMETRIC DATA RETENTION NOTICE
This section provides specific retention and destruction timelines for biometric data in compliance with the Illinois Biometric Information Privacy Act (BIPA), Texas Capture or Use of Biometric Identifier Act (CUBI), and Washington Biometric Identifiers law (RCW 19.375).

28.1 Voice Prints (Voice Cloning)

Data TypeRetention PeriodDestruction Method
Raw voice samples90 days after Voice Clone creationSecure deletion (overwrite + cryptographic erasure)
Voice Clone model (voice print)Duration of account or until user deletesSecure deletion within 30 days of request/account closure
Consent records for voice cloning5 years after Voice Clone deletionArchived securely, then deleted

28.2 VR Behavioral Biometrics

Data TypeRetention PeriodDestruction Method
Hand tracking geometryDuration of VR session (real-time processing only)Not stored beyond session unless analytics enabled
Gaze patternsAnonymized after 12 monthsAggregation removes individual identifiability
Locomotion patternsAnonymized after 12 monthsAggregation removes individual identifiability

28.3 Destruction Certification

Upon request, we will provide written certification that your biometric data has been permanently destroyed. Requests for destruction certification should be directed to privacy@gositeme.com.

28.4 Biometric Data Purpose Limitation

Biometric data collected by GoSiteMe (including voice prints, VR behavioral biometrics, and any other biometric identifiers) is used solely for the specific purposes disclosed at the time of collection (e.g., Voice Clone creation, VR session optimization, authentication). GoSiteMe will not:

This section is intended to comply with the Illinois Biometric Information Privacy Act (BIPA), Texas Capture or Use of Biometric Identifier Act (CUBI), Washington Biometric Identifiers Law (RCW 19.375), and all other applicable biometric data protection laws.

29. AI Transparency & Model Provenance

29.1 AI Models Used

Our AI features are powered by third-party large language models (LLMs) and proprietary algorithms. We provide transparency about which AI engines are available per subscription tier in our documentation and pricing pages. The specific model used for each interaction is displayed in the user interface where technically feasible.

29.2 AI Training Data

29.3 AI Decision Transparency

For automated decisions that significantly affect you (e.g., content moderation actions, fraud flags, account restrictions), you may request a human review of the decision. To initiate a review:

  1. Submit a request within 30 calendar days of the automated decision by contacting support@gositeme.com with the subject "AI Decision Review" and including your account identifier and a description of the decision you wish to contest.
  2. Initial response: GoSiteMe will acknowledge your request within 3 business days and provide a meaningful explanation of the decision criteria, the data relied upon, and the significance of the decision.
  3. Human review: A qualified human reviewer will complete a substantive review within 15 business days of the initial acknowledgment, and will communicate the outcome in writing.
  4. Appeal: If you disagree with the human review outcome, you may submit a final appeal within 10 business days of receiving the review decision. Appeals are escalated to a senior reviewer and resolved within 10 business days.

This process is available to all users regardless of jurisdiction. For EEA users, this process supplements (and does not replace) your rights under GDPR Article 22.

29.4 AI Limitations Disclosure

AI-generated content may contain errors, hallucinations, biases, or inaccuracies. AI outputs should be independently verified before use in critical applications. We do not guarantee the accuracy, completeness, originality, or non-infringement of AI-generated content.

30. Lawful Interception & Government Access

30.1 Government Requests

We may be compelled to disclose user data in response to valid legal process, including court orders, subpoenas, warrants, national security orders, and requests from law enforcement agencies in Canada and other jurisdictions. We evaluate each request for legal validity and narrow scope before compliance.

30.2 Transparency

30.3 End-to-End Encrypted Communications

For communications encrypted with Veil Protocol (end-to-end encryption), we are technically unable to provide decrypted message content in response to any request, including government orders, because we do not hold the encryption keys. We can only provide metadata (sender, recipient, timestamps, message sizes) for encrypted communications.

30.4 No Backdoors

We do not build backdoors, maintain decryption master keys for end-to-end encrypted communications, or provide "lawful interception" capabilities that would compromise the integrity of our encryption. If compelled by law to modify our encryption architecture, we will pursue all available legal challenges and provide public notice to the extent permitted.

31. Accessibility of This Policy

31.1 Plain Language Summary

We strive to write this Privacy Policy in clear, understandable language. If you have difficulty understanding any section, contact privacy@gositeme.com and we will provide a plain-language explanation.

31.2 Format Accessibility

This Privacy Policy is available in accessible HTML format that is compatible with screen readers and assistive technologies. Alternative formats (large print, audio summary) are available upon request. Contact accessibility@gositeme.com.

31.3 Languages

This Privacy Policy is available in English and French. For Quebec residents, the French version shall prevail in the event of any discrepancy.

32. Encryption Sovereignty

32.1 Encryption Architecture

GoSiteMe employs a 10-layer hybrid encryption architecture combining classical and post-quantum cryptographic primitives. Your communications, files, AI interactions, robot telemetry, and device data are protected by:

This encryption stack is designed to resist attacks from current classical computers, future quantum computers, and nation-state adversaries.

32.2 Zero-Knowledge Architecture

GoSiteMe operates on a zero-knowledge principle for encrypted content. We cannot read your messages, decrypt your files, listen to your calls, or access your encrypted AI conversations. Your encryption keys are generated and stored exclusively on your device. We never have access to your keys and never will.

32.3 Forward Secrecy

Every message is encrypted with a unique per-message key derived from a continuously ratcheting cryptographic chain. Even if an attacker compromises a single message key, they cannot decrypt any past or future messages. This protection operates automatically and requires no User action.

33. No-Backdoor Privacy Guarantee

33.1 Absolute Prohibition

GoSiteMe guarantees that it has never, and will never, insert any backdoor, surveillance mechanism, key escrow system, or decryption capability into any of its products, services, encryption libraries, AI systems, or device firmware. This prohibition is absolute and applies regardless of:

33.2 Technical Enforcement

This guarantee is enforced technically, not merely by policy. GoSiteMe's encryption architecture makes backdoor insertion mathematically detectable. Any modification to the cryptographic protocols would be detectable through the published cryptographic specification and independent audit mechanisms.

34. Anti-Compelled Disclosure

34.1 Response to Legal Process

When GoSiteMe receives legal process requesting User data:

  1. GoSiteMe will scrutinize the legal validity, scope, and jurisdiction of every request;
  2. GoSiteMe will challenge overbroad, vague, or jurisdictionally improper requests;
  3. GoSiteMe cannot provide decrypted communications because we do not have the keys;
  4. GoSiteMe will notify the affected User to the maximum extent permitted by law;
  5. GoSiteMe will publish aggregate statistics about legal requests received in its Transparency Report;
  6. GoSiteMe will never voluntarily provide User data to any government absent valid legal process.

34.2 What We Can and Cannot Provide

In response to valid legal process, GoSiteMe can only provide unencrypted metadata that it retains (such as account creation date and subscription tier). GoSiteMe cannot provide: message content, file content, call audio/video, AI conversation content, robot telemetry data, or any other end-to-end encrypted data. This is a technical impossibility, not a policy choice.

35. Warrant Canary & Transparency

35.1 Warrant Canary

GoSiteMe publishes a cryptographically signed Warrant Canary at gositeme.com/security, updated quarterly. The absence or non-renewal of any Canary statement should be interpreted accordingly by Users. See Section 69 of the Terms of Service for full Warrant Canary provisions.

35.2 Transparency Report

GoSiteMe publishes an annual Transparency Report disclosing: the number and type of legal requests received, the number challenged, the number complied with, and the categories of data provided. The Transparency Report is available at gositeme.com/security.

36. Alfred OS & Robot Data Privacy

36.1 Alfred OS Data Processing

Alfred OS — GoSiteMe's AI operating system for robotics and automation — processes data locally on the device (edge AI) whenever possible. Data transmitted to GoSiteMe infrastructure (telemetry, fleet management, firmware updates) is encrypted end-to-end using the same 10-layer encryption stack described in Section 32.

36.2 Sensor Data Privacy

Robots and devices running Alfred OS may collect sensor data including camera feeds, LiDAR, depth sensors, microphones, GPS, accelerometers, and environmental sensors. This data is:

  1. Processed locally on the device wherever feasible;
  2. Encrypted before any transmission;
  3. Never sold, shared, or monetized;
  4. Never used for advertising or profiling;
  5. Retained only as long as necessary for the stated purpose;
  6. Deletable by the User at any time.

36.3 Edge AI Model Privacy

AI models deployed to Alfred OS devices (vision, navigation, NLP, anomaly detection) run entirely on-device. Inference results are not transmitted to GoSiteMe unless the User explicitly configures cloud processing. No User data is used to train GoSiteMe AI models without explicit User opt-in consent.

36.4 MQTT & Telemetry Privacy

Fleet telemetry data transmitted via MQTT broker infrastructure is encrypted with per-topic encryption keys. Topic-level access control lists (ACLs) ensure that only authorized Users and devices can subscribe to telemetry topics. GoSiteMe does not inspect, log, or retain the content of encrypted MQTT messages beyond the configured message TTL.

37. Sovereign Data Processing

37.1 No Bulk Data Collection

GoSiteMe does not engage in bulk data collection, mass surveillance, or dragnet data harvesting. Data collection is limited to the minimum necessary to provide the requested service. GoSiteMe does not build advertising profiles, behavioral models, or predictive analytics based on User data.

37.2 No Data Brokerage

GoSiteMe is not a data broker and will never become one. GoSiteMe will never sell, trade, license, or provide User data to data brokers, advertisers, analytics companies, AI training companies, or any other entity seeking bulk User data.

37.3 Encryption at Rest

All User data stored on GoSiteMe infrastructure is encrypted at rest using AES-256. Encryption keys are managed using a hierarchical key management system with per-tenant key isolation. GoSiteMe employees do not have access to User encryption keys.

38. Contact Us

For questions about this Privacy Policy, your data, or to exercise your privacy rights:

GoSiteMe — Privacy Department
Privacy Officer: privacy@gositeme.com
Data Protection Officer (GDPR): dpo@gositeme.com
Security Incidents: security@gositeme.com
Phone: 1-833-GOSITEME (1-833-467-4836)
General Support: support@gositeme.com

Regulatory Authorities:

GoSiteMe — A privately held technology company
Copyright © 2026 GoSiteMe. All rights reserved.
This document does not constitute legal advice.

Someone from somewhere

just launched website.com

Just now

Call Alfred