Skip to content
Trust & architecture

Claims you can check.

Every promise on our homepage maps to a mechanism on this page. If something here ever stops being true, that is a bug, and we want to hear about it.

Privacy

Private by design, not by policy

Sealed before it leaves your machine

Your prompt and context are encrypted on your device with keys that never leave it. The relay forwards ciphertext between you and the donor and has no way to open it.

0 prompts logged, 0 results stored

Task payloads are not written to our databases. What we store is accounting metadata: token counts, coin amounts, timestamps, and states, because that is what settlement needs.

Secrets stay local

When your MCP servers and agents travel with a task, credentials and grants stay on your machine. The donor side runs against your relayed context without ever holding your keys.

Donors see nothing, you touch nothing

Donors run encrypted workloads through their own AI tooling and cannot read your plaintext. You never see their account or credentials either. Both sides stay sealed.

Money

Your coins, accounted for

Escrow first, charge after

Coins are held in escrow when a task starts and the charge is computed from actual usage when it settles. You are never billed more than the cap you approved.

Unused coins refund automatically

Whatever the task does not consume returns to your wallet at settlement. Cancelled tasks refund their escrow in full.

A dispute window on every task

If a result looks wrong you can open a dispute after completion. Disputes go to humans, and every admin access to sealed evidence is itself logged to an audit trail.

One auditable ledger

Every coin movement, purchase, refund, transfer, earning, is a ledger entry you can see in your wallet history. Donor earnings settle from the same ledger.

Network

The network, unvarnished

7
concurrent tasks live now
80%
max savings vs direct API
0
prompts stored on our servers
Accountability

Who answers when something breaks

Versioned terms

Terms changes are versioned and re-accepted explicitly. You can always see which version you agreed to and when.

Admin actions are logged

Platform staff actions, including any access to dispute evidence, land in an append-only audit log.

Humans on disputes

Dispute outcomes are decided by people reviewing sealed evidence, not by an automated score.