Rhei

Privacy Policy

Last updated June 9, 2026

Table of Contents
  1. Introduction
  2. 1. Personal data we collect
  3. 2. How we use personal data
  4. 3. How we share personal data
  5. 4. Retention
  6. 5. Security
  7. 6. Your rights and choices
  8. 7. Jurisdiction-specific disclosures
  9. 8. Privacy policy changes
  10. 9. Contacting us

Note: For information about how Rhei handles local code intelligence, Rhei Pro, source-upload modes, model-provider boundaries, and training defaults, please see our Data Use & Privacy Overview.

Introduction

Rhei is committed to respecting your privacy and keeping secure the information you share with us. This Privacy Policy explains how we collect, use, disclose, and process personal data when you use Rhei websites, applications, command-line tools, MCP integrations, APIs, documentation, and related services.

This policy also explains how you can access, update, delete, or otherwise exercise rights that may be available under your country, state, or regional privacy laws. If your employer or organization provides your Rhei account, your use may also be governed by that organization's agreement with Rhei.

1. Personal data we collect

We may collect the following categories of personal data:

  • Account information: name, email address, authentication records, workspace or organization identifiers, and account preferences.
  • Payment and entitlement information: plan, trial, billing, license, rate-limit, and entitlement status.
  • Product inputs and outputs: prompts, commands, selected code slices, review requests, responses, feedback, and related context when you choose features that send that information to Rhei.
  • Usage and device information: browser, device, operating system, IP address, log events, error traces, timestamps, feature usage, and diagnostic information.
  • Communications: messages, support requests, survey responses, and feedback you send to us.

2. How we use personal data

  • To provide, operate, secure, and maintain Rhei.
  • To create, administer, and authenticate accounts.
  • To provide Rhei Pro features, entitlement checks, and support.
  • To debug, monitor, and improve reliability and performance.
  • To prevent fraud, abuse, security incidents, and policy violations.
  • To comply with legal obligations and enforce applicable agreements.

Rhei does not train models on customer code by default. More detail about source upload, local mode, and Pro/server-backed capabilities is available in the Data Use & Privacy Overview.

3. How we share personal data

  • Service providers: vendors that help us host, secure, support, analyze, or operate Rhei.
  • Model and infrastructure providers: providers used for selected server-backed capabilities, subject to the product settings and provider path used.
  • Workspace administrators: account and usage information may be available to administrators of a workspace, organization, or enterprise account.
  • Legal and safety: we may disclose information when required by law or when needed to protect users, Rhei, or third parties.
  • With your consent: when you direct us to share information or enable a feature that does so.

4. Retention

We retain personal data only as long as reasonably necessary to provide Rhei, meet legal obligations, enforce agreements, resolve disputes, protect safety, and maintain reliable services. Retention depends on the type of data, your settings, the feature used, and applicable legal requirements.

When personal data is no longer needed, we take steps to delete, de-identify, or anonymize it in accordance with applicable law and operational requirements.

5. Security

We use technical and organizational measures designed to protect personal data from unauthorized access, disclosure, alteration, or destruction. No method of transmission or storage is completely secure, so you should use care when choosing what information to share with any online service.

6. Your rights and choices

Depending on where you live, you may have rights to access, correct, delete, export, object to, or restrict processing of your personal data. You may also be able to withdraw consent where processing is based on consent.

To exercise privacy rights, contact us at [email protected]. We may request information to verify your identity before processing a request.

7. Jurisdiction-specific disclosures

Some jurisdictions require additional disclosures about categories of data, purposes of processing, legal bases, rights, or transfer mechanisms. Where those laws apply, this Privacy Policy and the Data Use & Privacy Overview are intended to supplement those disclosures.

8. Privacy policy changes

We may update this Privacy Policy from time to time. When we do, we will publish the updated version and update the date at the top of this page unless another notice is required by law.

9. Contacting us

If you have questions about this Privacy Policy, contact us at [email protected].