Legal

Privacy Policy

Last updated: June 30, 2026


00

Introduction

Neural Arc Inc. ("Neural Arc," "we," "our," or "us") operates Helium AI, accessible at he2.ai and through associated applications. This Privacy Policy explains how we collect, use, store, and protect your personal information when you access or use our platform and services (collectively, the "Services").

By using the Services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with the practices described here, please discontinue use of the Services.

01

Information We Collect

Information You Provide

When you create an account, subscribe to a plan, or contact us, we collect information you submit directly:

  • Full name and email address
  • Company or organization name
  • Billing and payment details (processed by our third-party payment provider)
  • Any content, prompts, files, or data you submit through the Services
  • Communications you send to our support team

Information We Collect Automatically

When you use the Services, we automatically collect certain technical information:

  • IP address and approximate location
  • Browser type and version
  • Device type and operating system
  • Usage data, including features accessed and time spent
  • Log data and error reports
02

Messaging Platform Integrations

When you connect Helium AI to a messaging platform (currently Slack, Discord, or Telegram), we access and process the following data from that platform:

Data We Access

  • Messages you send directly to the Helium AI bot (DMs) or messages where you @mention the bot in a channel
  • Your platform user ID and display name (for linking your Helium account)
  • Workspace/server ID and name (for per-workspace installation management)
  • Files and images you upload to conversations with the bot

Data We Do NOT Access

  • We do not read or store messages in channels where the bot is not mentioned
  • We do not scrape channel history or bulk-export workspace data
  • We do not access private channels unless the bot is explicitly invited and mentioned

Storage and Security

  • Workspace bot tokens are encrypted at rest and never stored in plaintext
  • Your platform user ID is linked to your Helium account for identity resolution
  • Message content you send to the bot is processed to generate AI responses and may be stored as part of your conversation history within Helium AI

Disconnection and Uninstall

  • When a workspace administrator removes Helium AI, we immediately and permanently delete the stored bot token and installation record for that workspace
  • You may unlink your personal identity from your Helium account at any time using the /unlink command
  • Conversation history created via the platform remains in your Helium account unless you separately delete it or your account
03

How We Use Your Information

We use the information we collect for the following purposes:

  • To provide, maintain, and improve the Services
  • To process transactions and send related information
  • To send technical notices, updates, and support messages
  • To respond to comments and questions from users
  • To analyze usage patterns and improve user experience
  • To detect and prevent fraudulent or unauthorized activity
  • To comply with legal obligations
  • Your content is NOT used to train, fine-tune, or improve any AI model — whether ours or any third-party model
04

AI Processing and Third-Party Model Providers

To provide AI-powered responses, Helium AI sends the content of your messages (including text, uploaded files, and images) to third-party large language model (LLM) providers for inference processing. These providers currently include:

  • Amazon Web Services (AWS Bedrock) — hosts models from Anthropic (Claude), Meta (Llama), Moonshot (Kimi), Qwen, and others
  • Anthropic — Claude models accessed via AWS Bedrock

Important clarifications:

  • Your content is sent to these providers solely for generating a response to your query. It is not used to train, fine-tune, or improve any AI model.
  • These providers process your data under their enterprise API terms, which prohibit using API inputs for model training.
  • We do not sell, license, or otherwise share your content with third parties for their own purposes.

We may change or add model providers as the service evolves. This policy will be updated to reflect any new providers, and material changes will be communicated to you in advance.

06

Data Sharing

We do not sell your personal information. We may share your information with third parties only in the following circumstances:

  • Service providers — vendors who assist in delivering the Services (e.g., cloud infrastructure, payment processing)
  • AI model providers — message content is transmitted to LLM inference providers (listed in the AI Processing section above) solely for generating responses. These providers operate under enterprise API agreements that prohibit using your data for model training.
  • Business transfers — in connection with a merger, acquisition, or sale of company assets
  • Legal requirements — when required by law or to protect our rights and users
  • With your consent — in any other circumstances where you have given explicit consent
07

Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

When you delete your account, we will delete or anonymize your personal information within 90 days, except where we are required to retain certain data for legal compliance, dispute resolution, or fraud prevention purposes.

Messaging platform data: When you or your workspace administrator disconnects Helium AI from a messaging platform (Slack, Discord, or Telegram), we delete the stored authentication token and installation record immediately. Conversation history you created via the platform remains in your Helium account unless you separately delete it or your account.

08

Sub-Processors

We use the following categories of sub-processors to deliver the Services:

  • Cloud infrastructure — Amazon Web Services (AWS) for hosting, database, and encryption services
  • AI inference — AWS Bedrock (Anthropic Claude, Meta Llama, Moonshot Kimi, Qwen, and other models) for processing message content to generate AI responses
  • Payment processing — Stripe handles billing and payment card data (we do not store card numbers)
  • Authentication — AWS Cognito manages user identity and login sessions

All sub-processors are bound by data processing agreements and are required to protect your data to standards consistent with this policy.

09

Security

We implement industry-standard technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction.

These measures include encryption of data in transit and at rest, access controls, and regular security assessments. However, no method of transmission over the Internet or electronic storage is 100% secure, and we cannot guarantee absolute security.

10

Your Rights

Depending on your location, you may have the following rights regarding your personal information:

  • Access — the right to request a copy of the personal information we hold about you
  • Correction — the right to request correction of inaccurate or incomplete data
  • Deletion — the right to request deletion of your personal information
  • Portability — the right to receive your data in a structured, machine-readable format
  • Objection — the right to object to certain types of processing

To exercise any of these rights, please contact us at privacy@he2.ai.

11

International Transfers

Your information may be transferred to and processed in countries other than the country in which you reside. These countries may have data protection laws that differ from the laws of your country.

When we transfer personal information from the EEA to other countries, we use appropriate safeguards such as Standard Contractual Clauses approved by the European Commission to ensure your data remains protected.

12

Cookies

We use cookies and similar tracking technologies to collect and use personal information about you. Cookies are small data files stored on your device that help us provide and improve our Services.

We use the following types of cookies:

  • Essential cookies — required for the Services to function properly
  • Analytics cookies — help us understand how users interact with the Services
  • Preference cookies — remember your settings and preferences

You can control cookies through your browser settings or our cookie preference center.

13

Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email or through the Services, and update the "Last updated" date at the top of this page.

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information. Your continued use of the Services after changes take effect constitutes your acceptance of the revised policy.

14

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Neural Arc Inc., Pune, Maharashtra, India

Email: hello@neuralarc.ai

Website: he2.ai

We aim to respond to all legitimate privacy-related requests within 30 days.