Legal

What we know about you. What we don't.

Privacy policy and terms of use, in the order you actually care about them. Lawyer-language at the bottom for the people who need it.

Privacy.

What we store.

  • The email and password (hashed) you sign up with.
  • The name you give each gateway you create.
  • The per-gateway API tokens we mint, in hashed form for lookup.
  • Activity timestamps: last seen, last packet, last GPS fix.
  • Every BLE packet your gateway forwards. We have to, in order to forward it upstream. The packet payload itself is encrypted by the broadcasting device and we never decrypt it.
  • The IP address your gateway last connected from, so the dashboard can say "last seen 2m ago".
  • The contents of any message you send through our contact form.

What we don't store.

  • Payment information. We don't charge anyone.
  • Decrypted BLE packet contents. The encryption key belongs to the device's owner, not to us.
  • Browser fingerprints or third-party analytics cookies.
  • Your physical address, beyond what your gateway's GPS reports per packet.

What we share.

  • With the upstream network (Hubble Network today): every BLE packet your gateway forwards, plus its GPS coordinates if present. That's the whole product.
  • With our infrastructure providers (Heroku, GitHub, our email sender): only what's technically required to run the service.
  • With law enforcement: only when legally compelled, and only the minimum the law requires.
  • With anyone else: nothing.

We reserve the right to modify this policy. If we change it in a way that materially affects what we collect or share, we'll email every account at the address on file before the change takes effect.

Terms.

Use it, fork it, don't blame us if you break it. The detailed version:

  1. You must be at least sixteen years old to create an account.
  2. You agree not to use Encrypted Energy for illegal activity, harassment, or to attack other systems.
  3. The gateway software (both containers) is licensed under GPL-3.0. You can run it, modify it, redistribute it, and read the source. Do all four.
  4. The hosted EE service (encryptedenergy.com and the API at /api/v1/*) is provided as-is, with no warranty. We try hard. We don't guarantee anything.
  5. We can revoke a token, suspend an account, or block a gateway that abuses the service (spam, denial-of-service, illegal traffic, fraud). We'll tell you when we do, and why, unless legally prevented from doing so.
  6. You agree to indemnify and hold harmless Encrypted Energy from claims and expenses, including attorneys' fees, arising out of your use of the service.

We reserve the right to modify these terms. If we change them materially, every active account gets an email before the change takes effect.

Source.

The gateway worker and UI are both GPL-3.0, at github.com/Encrypted-Energy/gateway. Read it. The Rails service that handles /api/v1/gateways/* on our side is proprietary today. If you want to write a competing proxy, the gateway worker's HTTP contract is documented in the docs.