Privacy & Data Sovereignty

Last updated: May 2026

Full Data Sovereignty Guaranteed

At GridPulseNodes, data sovereignty is not a marketing term — it is the core architectural principle of our service. Your data never leaves your hardware. Period.

1. Local Storage Guarantee

All operational data resides exclusively on the Client's bare-metal server, including but not limited to:

WhatsApp session tokens — Authentication data for each active node
Lead databases — Contact lists, phone numbers, and segmentation data
Message logs — Complete history of sent and received messages
AI-generated content — Rewritten message variants and templates
Campaign analytics — Delivery rates, response metrics, and performance data
Proxy configurations — SOCKS5 credentials and rotation schedules

Zero Cloud Transfer: GridPulseNodes does not operate any centralized data collection servers. We do not sync, replicate, or backup any Client data to our own infrastructure.

2. Access Protocols

GridPulseNodes technical staff access the Client's server only under the following circumstances:

Scheduled Maintenance — Pre-agreed updates to the orchestration layer, performed during Client-approved windows
Critical Updates — Security patches or bug fixes with advance notification
Troubleshooting — Only when explicitly requested by the Client via support channels
Initial Deployment — One-time setup and configuration phase

All remote access sessions are logged. The Client may request access logs at any time.

3. No Data Mining

We make the following binding commitments regarding Client data:

We do not harvest, collect, or aggregate Client lead lists
We do not sell, trade, or share any Client communication data with third parties
We do not monitor, read, or analyze Client message content
We do not track campaign performance metrics for our own analytics
We do not retain any Client data after service termination

4. Third-Party Data Flow

When the system operates, data flows directly between the Client's server and the following third-party services (all using the Client's own API credentials):

OpenAI — Message text sent for rewriting (governed by Client's OpenAI agreement)
SMS Providers — Verification requests (governed by Client's provider agreement)
Proxy Providers — Network traffic routed through Client's proxies
WhatsApp — Message delivery via the platform's protocol

GridPulseNodes has no visibility into these data flows. We do not act as an intermediary or processor for any of this traffic.

5. Post-Termination

Upon service termination:

All Client data remains on the Client's server, untouched
GridPulseNodes removes its proprietary orchestration software
SSH access credentials are revoked and rotated
No residual data, tokens, or configurations are retained by GridPulseNodes

6. Client Obligations

The Client is responsible for:

Compliance with data protection regulations applicable in their jurisdiction (GDPR, CCPA, etc.)
Maintaining adequate server security beyond GridPulseNodes' configured baseline
Ensuring lead lists are obtained through lawful means
Managing data retention and deletion according to their own policies

7. Contact

For privacy-related inquiries or to request an access log, contact us through the support dashboard or at the address provided during onboarding.