Nerve Privacy Policy

General Intuition US Inc.
Effective Date: May 13, 2026  ·  Version 0.1 (pre-final)
Draft notice. This is a pre-final draft pending legal review. Substantive revisions are expected before the public launch of Nerve. The version-controlled, final text will be posted at this URL on or before launch.

This Privacy Policy describes how General Intuition US Inc. (“Nerve”, “we”, “us”, or “our”) collects, uses, shares, and protects personal information in connection with the Nerve platform, websites, applications, and related services (collectively, the “Platform”). It is incorporated by reference into the Nerve Terms of Service.

Plain-English summary. Nerve pays people to play specific video games so we can collect gameplay data to train AI models. To do that, we record your gameplay video, your keyboard / mouse / controller inputs, and related telemetry. We also collect what we need to pay you (identity, tax forms, payment routing). We share data with our payment processor (Tipalti), our cloud providers, and other parties listed below. We don’t sell your personal information.

1. Information We Collect

1.1 Information You Provide When You Sign Up

When you create a Nerve account, we collect the following from your chosen identity provider (currently Discord for workers, Google for administrators):

We do not receive your password from those providers. We do not have access to any information in your Discord or Google account beyond what those services explicitly hand to us during sign-in.

1.2 Identity-Verification (KYC) Information

Before you may withdraw Earnings, you must complete identity verification through our Payment Processor (currently Tipalti). The information collected for verification may include:

This information is collected by Tipalti on our behalf and is subject to Tipalti’s privacy policy in addition to this one.

1.3 Task-Performance Data

While you perform a Task on the Platform, we collect the data necessary to verify the Task was performed properly, to detect fraud and cheating, and to use the data for the purposes described in the Terms of Service. This includes:

1.4 Behavioral Signals — Not Biometric Identifiers

For the avoidance of doubt: the behavioral signals we collect are aggregate input-cadence and timing statistics used for fraud detection. They are not “biometric identifiers” or “biometric information” within the meaning of any law, including the Illinois Biometric Information Privacy Act (740 ILCS 14/), the Texas Capture or Use of Biometric Identifier Act (Tex. Bus. & Com. Code § 503.001), the Washington biometric privacy law (RCW 19.375), or analogous statutes. We do not collect retina or iris scans, fingerprints, voiceprints (in the technical, identification sense), or scans of hand or face geometry.

1.5 Communications With Us

If you contact us (for example, by emailing hello@nerve.org or replying to one of our messages), we keep your message and our reply for support and recordkeeping purposes.

1.6 Information Automatically Generated About Your Account

We generate and store information about your relationship with the Platform, including:

2. How We Use Personal Information

We use the information described in Section 1 for the following purposes:

3. Sharing

We share personal information only as described below. We do not sell personal information.

3.1 Service Providers Acting on Our Behalf

Service providers act on our behalf under contracts that restrict their use of personal information to the services they provide to us.

3.2 Identity Providers You Choose

When you sign in with Discord or Google, those providers receive information about your authentication with us. They process that information under their own privacy policies.

3.3 Other Parties

4. Retention

We retain personal information for as long as we need it for the purposes described in this Policy. Specific retention practices include:

5. Security

We use a combination of administrative, technical, and physical safeguards to protect personal information, including:

No security program is perfect. We cannot guarantee that personal information will never be accessed, disclosed, altered, or destroyed in an unauthorized way.

6. Your Rights

You have a number of rights regarding the personal information we hold about you. Some of these are granted by U.S. state laws (California, Colorado, Connecticut, Virginia, Utah, and others), some by the GDPR / UK GDPR / Swiss FADP if you are located in those regions, and some apply globally. To exercise any of the rights below, contact us at privacy@nerve.org. We will respond within the time period required by applicable law (generally within thirty (30) days, or up to forty-five (45) days under California law and one (1) month under GDPR, with possible extensions where the request is complex). We may need to verify your identity before acting on a request.

6.1 Right of Access

You have the right to confirm whether we process personal information about you and to request a copy of that information, including the categories of data, purposes of processing, recipients with whom we share data, and retention periods.

6.2 Right to Rectification

You have the right to ask us to correct personal information about you that is inaccurate or incomplete. Much of your account data is editable directly in the Nerve application.

6.3 Right to Erasure (“Right to be Forgotten”)

You have the right to ask us to delete personal information about you. We will honor such requests except where retention is required by law (for example, tax records under IRS rules) or where personal information is contained within Task Work Product, which Nerve owns under Section 10 of the Terms of Service and uses as a long-lived training-data resource. Where we cannot delete Task Work Product, we will, on request, take reasonable steps to disassociate the Task Work Product from identifying information where doing so is technically feasible and does not undermine the data’s training value.

6.4 Right to Restrict Processing

In certain circumstances under the GDPR / UK GDPR (for example, while a rectification or objection request is pending), you have the right to ask us to limit how we use your personal information.

6.5 Right to Data Portability

You have the right to receive personal information you provided to us in a structured, commonly used, machine-readable format, and to have that information transmitted to another controller where technically feasible. This right applies to data we process based on your consent or in performance of our contract with you.

6.6 Right to Object

You have the right to object to processing that we carry out on the basis of our legitimate interests, including processing for purposes of fraud detection, anti-cheat enforcement, and AI/ML model development. We will consider your objection and balance it against our legitimate interests. Note that, given the nature of the Platform, objecting to fraud-detection or anti-cheat processing will likely make it impossible for us to allow you to continue using the Platform.

6.7 Right to Withdraw Consent

Where we rely on your consent as the legal basis for a particular processing activity, you have the right to withdraw that consent at any time. Withdrawal does not affect the lawfulness of processing carried out before the withdrawal.

6.8 Right to Lodge a Complaint

If you are located in the European Economic Area, the United Kingdom, or Switzerland, you have the right to lodge a complaint with your local data protection supervisory authority. A list of EEA authorities is available at edpb.europa.eu; UK users can complain to the Information Commissioner’s Office; Swiss users can complain to the Federal Data Protection and Information Commissioner. U.S. state law residents may have analogous rights to complain to their state attorney general or designated agency.

6.9 Account Closure

You may close your account at any time by contacting us. Closing your account stops new data collection but does not delete Task Work Product (see Section 4 above) and does not delete records we are required to retain for tax, fraud, or other legal reasons.

6.10 Communications Preferences

Account-related notices (security, payments, terms changes) are not optional while your account is active. You may opt out of non-essential marketing communications by using the unsubscribe link in any such message or by contacting us.

6.11 Non-Discrimination

We will not deny you services, charge you a different price, or provide you a different level of service because you exercised any of the rights described in this Section.

7. Geographic Availability

Nerve is available globally, except in countries, regions, or territories subject to comprehensive U.S. government embargoes or trade sanctions (currently Cuba, Iran, North Korea, Syria, and the Crimea, Donetsk, and Luhansk regions of Ukraine). We may also block account creation or suspend account activity from any jurisdiction we determine in good faith we cannot lawfully serve, including in response to changes in sanctions or other applicable legal regimes.

If you are located in the European Economic Area, the United Kingdom, or Switzerland, additional rights and protections apply to you under the General Data Protection Regulation (Regulation (EU) 2016/679, the “GDPR”), the UK General Data Protection Regulation, or the Swiss Federal Act on Data Protection. The Lawful Basis section below identifies our legal basis for each processing activity, and Section 6 (Your Rights) describes how to exercise the rights granted by those laws.

8. Cookies and Similar Technologies

The Nerve application is primarily a desktop application and does not use browser cookies. The Nerve websites (including this one) may use a minimal set of strictly necessary cookies for security and basic functionality. We do not use advertising cookies. If we add analytics cookies to the websites in the future, we will update this Policy and provide notice and choice as required by applicable law.

9. Children

Nerve is intended only for users who are eighteen (18) years of age or older. We do not knowingly collect personal information from anyone under 18. If we learn that we have collected such information, we will delete it promptly. If you believe a child has provided us with personal information, please contact us at privacy@nerve.org.

10. International Data Transfers

Personal information is processed and stored on servers operated by Google Cloud Platform in the United States. If you access Nerve from outside the United States, your information will be transferred to and processed in the United States.

For transfers from the European Economic Area, the United Kingdom, or Switzerland to the United States, we rely on the European Commission’s Standard Contractual Clauses, supplemented by the UK International Data Transfer Addendum and the Swiss equivalent, to provide a lawful basis for the international transfer. Where one of our service providers is certified under the EU-U.S. Data Privacy Framework, the UK Extension to the DPF, or the Swiss-U.S. DPF, we may also rely on that certification. You may obtain a copy of the safeguards in place by contacting us at privacy@nerve.org.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will provide reasonable notice (for example, by posting a revised version with an updated effective date, by in-application notice, or by email). Material changes may also require you to re-accept the updated Terms of Service and Privacy Policy before continuing to use the Platform. Your continued use of the Platform after the effective date of an updated Privacy Policy constitutes your acceptance of the updates.

12. Lawful Basis for Processing (EEA, UK, and Switzerland)

If you are located in the European Economic Area, the United Kingdom, or Switzerland, the GDPR / UK GDPR / Swiss FADP requires us to identify our legal basis for each processing activity. The bases we rely on are:

12.1 Performance of a Contract (Art. 6(1)(b))

We rely on the performance of our contract with you (the Terms of Service) to: create and manage your account; provide access to and operate the Platform; deliver, evaluate, and accept the Tasks you perform; calculate and pay your Earnings (in cooperation with the Payment Processor); and communicate with you about your account and any Tasks you accept.

12.2 Compliance with Legal Obligations (Art. 6(1)(c))

We rely on legal obligations to: report and withhold taxes; comply with anti-money-laundering and sanctions laws; complete identity verification (KYC); respond to lawful requests by governmental authorities; and retain records for the periods required by law.

12.3 Legitimate Interests (Art. 6(1)(f))

We rely on our legitimate interests to: detect, prevent, and investigate fraud, cheating, and other prohibited conduct; secure the Platform against attack; develop, train, evaluate, and improve our artificial-intelligence and machine-learning models using Task Work Product; establish, exercise, and defend legal claims; and manage our business, including in connection with corporate transactions. We have balanced these interests against your fundamental rights and freedoms and consider the processing proportionate. You may object to processing based on our legitimate interests as described in Section 6.6.

12.4 Consent (Art. 6(1)(a))

We rely on your consent for processing that does not fit one of the bases above, including any future marketing communications. You may withdraw your consent at any time without affecting the lawfulness of processing carried out before withdrawal.

12.5 Special Categories of Data

We do not knowingly process “special categories of personal data” as defined in Article 9 of the GDPR (data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic data, biometric data for the purpose of uniquely identifying a natural person, or data concerning health, sex life, or sexual orientation). See Section 1.4 regarding our position on behavioral signals.

13. Automated Decision-Making

The Platform uses automated systems to verify that Tasks have been performed properly, to detect cheating and fraud, and to determine whether Earnings should be approved, adjusted, or forfeited. These automated processes include input-cadence analysis, gameplay-pattern detection, validation of uploaded files (duration, integrity, content match), and rule-based or model-based scoring of session quality. The output of these processes can affect your eligibility for payment for a particular Task.

If an automated decision adversely affects your Earnings or account status, you have the right to: (a) obtain a meaningful explanation of the basis for the decision; (b) request human review by a Nerve representative; (c) contest the decision; and (d) express your point of view. To request human review, email privacy@nerve.org or legal@generalintuition.com within thirty (30) days of the decision. Where required by Article 22 of the GDPR, you will not be subject to a decision based solely on automated processing that produces legal effects or similarly significantly affects you, unless the decision is necessary for performing a contract with you, authorized by law, or based on your explicit consent.

14. Contact

Questions or requests about this Privacy Policy can be directed to:

General Intuition US Inc.
Attn: Privacy
Email: privacy@nerve.org

If you are located in the European Economic Area, the United Kingdom, or Switzerland, you may also contact our designated representative (to be appointed and updated at this URL prior to scaled service in those regions).

Version 0.1 (pre-final draft) · Effective Date: May 13, 2026