HowWorks
Back to Home

Privacy Policy

Last Updated: January 26, 2026
Effective Date: January 26, 2026

This Privacy Policy explains how we collect, use, share, and protect your information. By using HowWorks, you agree to this Policy.

1. Who We Are

HowWorks is a digital service operated by an individual.
Contact Email: support@howworks.ai

2. Information We Collect

2.1 Account & Identity Information

  • Login information (e.g., account identifiers and basic profile from GitHub/Google OAuth)
  • Your account identifier (userId) and basic profile (e.g., email address)

2.2 Usage & Log Information

  • Usage records: feature usage frequency, request latency, error logs, performance metrics, etc.
  • Security & fraud prevention logs: used for abuse prevention, fraud detection, audit, and troubleshooting

2.3 Content You Provide (Customer Data)

May include:

  • Your input prompts/questions, text, code snippets, repository links
  • Generated reports/outputs (e.g., DeepResearch/DeepDive results)

Please do not submit sensitive information (government ID numbers, bank card details, health information, passwords, private keys, etc.).

2.4 Payment-Related Information

  • We do not directly collect or store your bank card/payment account sensitive information.
  • Payments are processed by third-party payment processors such as PayPal; we may receive minimal transaction-related information (e.g., order ID, payment status, amount, currency, timestamp) for accounting, reconciliation, and fraud prevention.

3. How We Use Information

We use the information above to:

  • Provide & maintain services: Complete AI generation, task execution, deliverables, accounting, and balance display
  • Security & fraud prevention: Detect abuse, fraud, attacks, and anomalous behavior
  • Troubleshooting & improvement: Performance optimization, bug fixes, stability enhancements
  • Compliance: Comply with legal requirements, respond to lawful requests, handle disputes

4. Third-Party AI Processing

To provide our services, we will send your input, prompts, and related data to artificial intelligence systems to generate outputs. These AI systems may be provided by us or by third-party providers.

  • Types of data that may be transmitted: Prompts/questions, text or code snippets you provide, repository links/identifiers you select, and minimal technical metadata required to complete requests.
  • Data transmission security: We use industry-standard encryption technologies (TLS/SSL) to protect all data in transit.
  • Sensitive information reminder: Please do not submit government ID numbers, bank card details, health information, passwords, private keys, or other sensitive information.
  • Vendor disclosure: We do not maintain a fixed list of all providers in this Policy; if you need a "current list of primary third-party AI inference providers" (for compliance disclosure and due diligence), please email support@howworks.ai to request it.
  • Your consent: By using our services, you consent to the data transmission, processing, and storage necessary to provide the services.

4.1 We Do Not Use Your Data for Training

  • We do not use your customer content to train our models.
  • However, how third-party AI providers handle data is governed by their respective terms; if you have concerns about third-party processing, please do not submit such content or discontinue use of the services.

5. With Whom We Share Information

We may share information within the following scope (only as necessary):

  • Payment processors: PayPal (to process payments, refunds, disputes)
  • Third-party AI providers: To generate AI outputs
  • Infrastructure & cloud service providers: To host and operate services (e.g., Cloudflare, Fly.io, etc.)
  • Legal compliance: To comply with laws or respond to law enforcement/judicial requests (within lawful scope)

We do not sell your personal information to third parties for advertising or marketing purposes.

6. Sub-Processors / Third-Party Service List

To provide our services, we may use the following categories of third parties:

  • Payment processing: PayPal
  • Third-party AI inference: Third-party model providers, model routing/aggregation service providers
  • Infrastructure/hosting: Edge computing/site hosting/data storage and other infrastructure service providers

Note: Each of these third parties has its own privacy policy and terms; by using our services, you understand and consent to this processing chain. If you need a more specific "current list of primary sub-processors", please email us to request it.

7. Data Retention & Deletion

  • We will retain your information as long as necessary to provide services, and may continue to retain certain records for a reasonable period for security, compliance, and dispute resolution.
  • Deletion requests: You may contact us via email to submit deletion/account closure requests; some data may be fully deleted only after a period of time due to legal obligations or backup mechanisms.
  • Logs & anonymized data: We may retain anonymized/aggregated data for long-term security and statistical analysis.

8. Cookies & Similar Technologies

  • We may use necessary cookies to maintain login sessions and security (e.g., session cookies, anti-abuse identifiers).
  • If we introduce analytics/marketing cookies in the future, we will update this Policy and obtain consent where required by applicable law.

9. Your Privacy Rights

Depending on the laws of your country/region, you may have the following rights (to the extent permitted by law):

  • Access/export: Request access to information we hold about you
  • Correction: Correct inaccurate information
  • Deletion/account closure: Request deletion of account and related information (subject to backup and legal obligations)
  • Object/restrict processing: Object to or restrict processing in certain circumstances

You may submit requests via support@howworks.ai. We may need to verify your identity before processing.

10. Cross-Border Transfers

Since we and our third-party service providers may be located in different countries/regions, your data may be transferred and processed internationally. By using our services, you consent to this.

11. Security

We will take reasonable technical and organizational measures to protect your information, but internet transmission and storage cannot guarantee absolute security. Please safeguard your account and device security.

12. Minors

Our services are not directed to minors. If you are under 18 years of age (or the legal age of majority in your jurisdiction), please do not use our services.

13. Policy Updates

We may update this Policy from time to time. Significant changes will be communicated through reasonable means such as on-site announcements or email. Your continued use of the services indicates acceptance of the updated Policy.