Privacy Policy

Last Updated: March 9, 2026 · Version 1.3

1. Introduction

This Privacy Policy (the "Policy") describes the information collection, use, storage, and disclosure practices of RTRGRD (referred to herein as "Company," "we," "us," or "our") in connection with the RTRGRD desktop application (the "Application" or "Service"). The Application is an AI-assisted terminal workspace designed for network engineering professionals.

The Company is committed to protecting user privacy. The Application employs a local-first architecture wherein the majority of data processing occurs on the user's local device, and transmission to external services is minimized.

By downloading, installing, or using the Application, you acknowledge that you have read, understood, and consent to the practices described in this Policy. If you do not agree to this Policy, you must discontinue use of the Application.

2. Information Collection

2.1 Information Provided Directly by User

Account Credentials. Email address and authentication tokens provided through Google OAuth or Microsoft Azure AD OAuth during account registration. Both authentication methods are facilitated through Google Firebase Authentication.
Subscription Information. When subscription payments are enabled, payment and billing information will be processed through our third-party payment processor, Lemon Squeezy. The Company does not store complete payment card details.
Bug Reports. If you submit a bug report through the Application, the information you provide (category, severity, summary, reproduction steps, and expected behavior) is transmitted to Company systems for issue tracking purposes.

2.2 Information Collected Automatically

Cloud AI Query Counts. Daily counts of cloud-based AI requests, used for quota enforcement and billing.
Per-Query AI Metadata. For each cloud AI request, the Application records the AI model used, input and output token counts, processing mode, and timestamp to the user's account record. This data is used for billing, quota enforcement, and service monitoring.
Cumulative Token Consumption. Total AI tokens consumed, tracked for billing and usage cap enforcement.
Subscription Status. Tier classification (Core or Apex) and associated usage quotas.
Anonymous Rate Limiting. For users who have not signed in, a one-way cryptographic hash (SHA-256, truncated) of the user's IP address is stored temporarily alongside a daily request counter. The raw IP address is never stored, logged, or transmitted. This hashed identifier is used solely to enforce daily usage limits on anonymous cloud AI requests (currently 5 per day) and is automatically deleted after seven (7) days. Because the hash is irreversible, it cannot be used to identify or contact the user.

Not Collected. The following activities are tracked exclusively on the user's local device and are not intentionally transmitted to Company servers during normal Application operation: workflow executions, device profiling operations, terminal command history, learned command patterns, and all other local feature activity.

2.3 Information Stored Locally

The following categories of information are stored exclusively on the user's local device and are not intentionally transmitted to Company servers or third-party services during normal Application operation:

Network Credentials. SSH passwords, private keys, and enable passwords, stored using the Electron safeStorage API with operating system-level encryption.
Device Configurations. Running configurations, interface states, and routing tables captured during device profiling operations.
Terminal Session Data. Command history and terminal output, retained in volatile memory during active sessions.
User Knowledge Base. User-uploaded PDF documents, learned command patterns, and custom workflows.
Local AI Models. Machine learning models for local inference, including IBM Granite and Google Gemma models.

3. Use of Information

3.1 Primary Purposes

Service Delivery. To authenticate users, process subscription payments, and provide access to Application features according to subscription tier.
AI-Assisted Features. To provide command suggestions, troubleshooting analysis, and workflow automation. When cloud-based AI features are used, the Application applies an automated Sanitization Service that is designed to detect and redact network credentials, cryptographic keys, and other sensitive data from prompts before they are sent to the AI provider. Users may enable Privacy Mode to process all AI queries locally with no external transmission.
Security and Fraud Prevention. To detect and prevent unauthorized access, abuse, or circumvention of usage limitations.
Service Improvement. To analyze aggregate usage patterns for the purpose of improving Application functionality.

3.2 Data Processing for AI Features

When users engage cloud-based AI features, including the Copilot sidebar, War Room analysis, and Command Deck automation, the Application transmits contextual information to third-party AI providers after applying automated sanitization.

Sanitization Service. The Company has implemented a sanitization layer as a commercially reasonable measure to reduce the risk of sensitive network credentials being included in data transmitted to third-party AI providers. Prior to transmission, the Sanitization Service applies numerous pattern-matching algorithms designed to detect and redact common credential formats. This service represents a best-effort safeguard and does not constitute a guarantee that all sensitive information will be detected or redacted.

The following categories of secrets are targeted for automatic redaction:

Authentication Credentials:

Passwords in all formats (plaintext, Type 5, Type 7, Type 8, Type 9, bcrypt, scrypt)
Enable secrets and privilege escalation credentials
TACACS+ and RADIUS shared secrets
LDAP bind credentials and Active Directory service account passwords

Cryptographic Materials:

RSA, ECDSA, and Ed25519 private keys
X.509 certificates containing private key material
IKE/IPsec pre-shared keys and Phase 1/Phase 2 secrets
TLS/SSL private keys and certificate signing request private components

Network Authentication Secrets:

SNMP v1/v2c community strings (read-only and read-write)
SNMP v3 authentication and privacy passwords
BGP, OSPF, and IS-IS routing protocol authentication keys
VRRP, HSRP, and GLBP authentication strings
MACsec connectivity association keys (CAK/CKN pairs)

Access Tokens and API Keys:

Bearer tokens and JWT secrets
API keys and webhook signing secrets
Cloud provider access credentials
OAuth client secrets and refresh tokens

Transparency and Auditability. Each sanitization operation is logged to a local audit trail accessible through the Application's Privacy Shield panel. Users may review the count of secrets redacted, categories detected, and timestamps in real time. This transparency enables users to verify that the sanitization layer is actively protecting their data.

DISCLAIMER OF WARRANTY. NOTWITHSTANDING THE FOREGOING, THE SANITIZATION SERVICE IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. THE COMPANY DOES NOT WARRANT THAT THE SANITIZATION PROCESS WILL DETECT OR REDACT ALL SENSITIVE INFORMATION. Users are expressly advised of the following inherent limitations: custom credential formats or proprietary authentication mechanisms may not match predefined patterns; obfuscated or encoded secrets (e.g., Base64-encoded passwords in configuration comments) may evade detection; contextual secrets embedded in natural language descriptions or non-standard formats may not be recognized; the Company cannot anticipate every possible credential format across all network vendors and software versions.

User Responsibility. Users remain solely responsible for reviewing AI prompts before submission and for ensuring that sensitive information is not inadvertently disclosed. The sanitization layer is a technical safeguard designed to reduce risk, not eliminate it.

Privacy Mode. Users who wish to prevent AI-related data from being transmitted to external services may enable Privacy Mode. When active, Privacy Mode routes all AI inference to local models running entirely on the user's device. Privacy Mode is designed to prevent external data transmission for AI processing purposes. The Company does not warrant that Privacy Mode will prevent all forms of network communication by the Application or the underlying operating system.

4. Third-Party AI Providers

4.1 Google Cloud / Vertex AI

The Application utilizes Google's Gemini API through the Vertex AI platform for cloud-based AI inference. The Company maintains a paid commercial relationship with Google Cloud.

According to Google's published terms for paid API tiers as of the date of this Policy:

No Training on User Data. Google states that user prompts, responses, and contextual data submitted through paid API tiers are not used to train, tune, or improve Google's generative AI models.
Compliance Certifications. Google Cloud reports compliance with SOC 1, SOC 2, and SOC 3 standards.
Data Processing. Google processes data pursuant to its Data Processing Addendum, available at https://cloud.google.com/terms/data-processing-addendum.

THE COMPANY DOES NOT WARRANT OR GUARANTEE THE ACCURACY, COMPLETENESS, OR CONTINUED APPLICABILITY OF GOOGLE'S POLICIES. Google's terms are subject to change without notice from the Company. Users are encouraged to review Google's current data handling terms independently.

4.2 Local AI Models

The Application includes optional local AI models that execute entirely on the user's device:

IBM Granite 3.3 (licensed under Apache License 2.0)
Google Gemma 3 (licensed under Gemma Terms of Use)
Nomic Embed v1.5 (licensed under Apache License 2.0)

When operating in Privacy Mode, AI inference is performed locally. Privacy Mode is designed to prevent the transmission of user data to external AI services for processing purposes. The Company does not warrant that Privacy Mode will prevent all forms of network communication by the Application or the underlying operating system.

4.3 Bring Your Own Key (BYOK) — User-Provided API Keys

The Application includes a feature that allows Apex-tier subscribers to provide their own API keys for third-party AI services, including but not limited to Google Gemini, OpenAI, Anthropic, xAI (Grok), and Groq (the "BYOK Feature"). When BYOK is active, user prompts, contextual data, and associated content are transmitted directly from the Application to the third-party AI provider designated by the user's API key.

Data Routing. When using the BYOK Feature, the Application routes AI requests directly to the third-party provider's API endpoints using the user's provided API key. These requests bypass the Company's cloud infrastructure entirely.

Sanitization. The Company's automated Sanitization Service (described in Section 3.2) is applied to all outbound AI requests, including those routed through the BYOK Feature. The same credential redaction and sensitive data detection measures are applied before data is transmitted to the third-party provider. The limitations of the Sanitization Service described in Section 3.2 apply equally to BYOK requests.

Key Storage. User-provided API keys are stored locally on the user's device using operating system-level encryption (Electron safeStorage API). API keys are never transmitted to Company servers.

Third-Party Privacy Policies. When using the BYOK Feature, your data is subject to the privacy policy, terms of service, and data handling practices of the third-party AI provider associated with your API key.

THE COMPANY HAS NO CONTROL OVER, AND ASSUMES NO RESPONSIBILITY FOR, HOW THIRD-PARTY AI PROVIDERS PROCESS, STORE, RETAIN, OR USE DATA TRANSMITTED THROUGH USER-PROVIDED API KEYS.

Users are solely responsible for:

Reviewing and understanding the privacy policy and terms of service of their chosen third-party AI provider.
Ensuring that their use of third-party API keys complies with their organization's security and data governance policies.
Understanding the data retention, training, and usage policies of their chosen provider, which may differ from the Company's arrangements with its own AI providers.
Any costs, charges, or fees incurred through the use of their own API keys.

No Liability for Third-Party Data Handling. THE COMPANY EXPRESSLY DISCLAIMS ALL LIABILITY FOR ANY DATA LOSS, UNAUTHORIZED ACCESS, DATA BREACH, OR OTHER ADVERSE CONSEQUENCE ARISING FROM THE TRANSMISSION OF DATA TO THIRD-PARTY AI PROVIDERS THROUGH THE BYOK FEATURE. Users acknowledge that the Company cannot guarantee the security, privacy, or confidentiality practices of third-party providers.

5. Disclosure of Information

The Company does not sell, rent, or trade user information to third parties for marketing purposes.

Information may be disclosed in the following circumstances:

Service Providers. To third-party vendors who perform services on our behalf, including cloud infrastructure (Google Firebase), payment processing (Lemon Squeezy), and AI inference (Google Cloud).
Legal Compliance. When required by applicable law, regulation, legal process, or governmental request.
Protection of Rights. To protect the rights, property, or safety of the Company, its users, or the public.
Business Transfers. In connection with a merger, acquisition, or sale of assets, subject to the acquiring entity's agreement to honor this Policy.

6. Data Retention

Account Information. Retained until the user requests account deletion or the account is terminated for violation of terms.
Usage Metrics. Retained for ninety (90) days on a rolling basis, after which data is automatically purged.
Anonymous Rate Limit Data. Hashed IP counters are automatically deleted after seven (7) days via Firestore TTL policy.
Subscription Records. Retained as required by applicable tax and accounting regulations.
Local Data. User-controlled; retained indefinitely until manually deleted by the user.

7. Data Security

The Company implements reasonable technical and organizational measures to protect user information, including:

Encryption at Rest. Local credentials are encrypted using the Electron safeStorage API, which leverages operating system-level encryption facilities.
Encryption in Transit. The Application is designed to utilize TLS or similar industry-standard encryption for communications with Company servers and third-party services.
Access Controls. Administrative access to cloud infrastructure is restricted to authorized personnel on a principle of least privilege basis.
Dependency Monitoring. Open-source dependencies are monitored for known security vulnerabilities.

Notwithstanding these measures, no method of transmission over the Internet or electronic storage is completely secure. The Company cannot guarantee absolute security of user information.

8. User Rights

8.1 General Rights

All users may exercise the following rights:

Access. Request a copy of personal information held by the Company.
Correction. Request correction of inaccurate personal information.
Deletion. Request deletion of personal information, subject to legal retention requirements.
Portability. Request export of personal information in a machine-readable format.
Restriction. Limit data processing by enabling Privacy Mode, which prevents cloud AI transmission.

To exercise these rights, contact the Company at rtrgrd.sh@gmail.com.

8.2 European Economic Area and United Kingdom

Users located in the European Economic Area or United Kingdom are entitled to additional rights under the General Data Protection Regulation (GDPR), including the right to object to processing based on legitimate interest and the right to lodge a complaint with a supervisory authority.

8.3 California Residents

Users who are California residents are entitled to additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), including:

The right to know what personal information is collected, used, and disclosed.
The right to delete personal information.
The right to opt-out of the sale of personal information. The Company does not sell personal information.
The right to non-discrimination for exercising privacy rights.

9. Children's Privacy

The Application is intended for use by network engineering professionals and is not directed at individuals under eighteen (18) years of age. The Company does not knowingly collect personal information from children. If you believe that a child has provided personal information to the Company, please contact us immediately at rtrgrd.sh@gmail.com.

10. International Data Transfers

User information may be transferred to and processed in the United States, where the Company's service providers maintain infrastructure. For users located in the European Economic Area or United Kingdom, such transfers are made pursuant to Standard Contractual Clauses approved by the European Commission.

11. Updates to This Policy

The Company may update this Policy from time to time to reflect changes in practices or applicable law. The "Last Updated" date at the top of this Policy indicates when revisions were last made. For material changes, the Company will provide notice through the Application interface or via email to registered users.

Continued use of the Application following the posting of changes constitutes acceptance of the revised Policy.

12. Contact Information

For questions regarding this Policy or to exercise your privacy rights, contact:

Privacy Inquiries
Email: rtrgrd.sh@gmail.com

The Company will respond to all privacy-related requests within thirty (30) days of receipt.

13. Governing Law

This Policy shall be governed by and construed in accordance with the laws of the State of New Mexico, United States, without regard to principles of conflict of laws. The exclusive venue for any dispute arising under this Policy shall be the state or federal courts located in Sandoval County, New Mexico.

This Privacy Policy is intended to describe the Company's data practices as of the Effective Date. The Company reserves the right to interpret and apply this Policy in its sole discretion.

Terms of Service

Last Updated: March 9, 2026 · Version 1.2

1. Acceptance of Terms

These Terms of Service (the "Terms" or "Agreement") constitute a legally binding agreement between you (the "User") and RTRGRD (the "Company") governing your access to and use of the RTRGRD desktop application (the "Application" or "Service").

BY DOWNLOADING, INSTALLING, OR USING THE APPLICATION, YOU ACKNOWLEDGE THAT YOU HAVE READ, UNDERSTOOD, AND AGREE TO BE BOUND BY THESE TERMS. IF YOU DO NOT AGREE TO THESE TERMS, YOU MAY NOT USE THE APPLICATION.

If you are using the Application on behalf of an organization, you represent and warrant that you have the authority to bind such organization to these Terms.

2. Description of Service

The Application is an AI-assisted terminal workspace designed for network engineering professionals. The Service includes:

SSH and serial terminal emulation capabilities
Artificial intelligence-assisted command suggestions and troubleshooting analysis
Local knowledge base functionality with device profiling
REST API integration for network device automation
Configuration checkpoint and rollback features

3. Eligibility

You must be at least eighteen (18) years of age, or the age of legal majority in your jurisdiction, to use the Application. By using the Application, you represent and warrant that:

You have the legal capacity to enter into this Agreement.
You are authorized to access and configure the network devices to which you connect using the Application.
Your use of the Application complies with all applicable laws, regulations, and your organization's policies.

4. Account Registration and Security

4.1 Account Creation

Certain features of the Application require account registration through Google OAuth or Microsoft Azure AD OAuth authentication, both facilitated through Google Firebase Authentication. You agree to provide accurate, current, and complete information during registration.

4.2 Account Security

You are solely responsible for maintaining the confidentiality of your account credentials and for all activities that occur under your account. You agree to notify the Company immediately of any unauthorized access to or use of your account.

4.3 Account Termination

The Company reserves the right to suspend or terminate your account at any time, with or without notice, for conduct that the Company, in its sole discretion, determines to be in violation of these Terms or harmful to other users, the Company, or third parties.

5. Subscription Tiers and Payment

5.1 Service Tiers

Tier	Price	Details
Anonymous	$0	Limited functionality without account registration
Core	$0	Trial period with limited feature access upon account creation
Apex	$10/mo or $99/yr	Full feature access, unlimited AI, Privacy Mode, Expert Model Routing

Subscription fees are billed in advance on a monthly or annual basis. All payments are processed through Lemon Squeezy, which serves as the Company's Merchant of Record. The Company does not directly store or handle payment card data. Pricing is subject to change upon thirty (30) days' prior notice. All subscription fees are non-refundable except as required by applicable law. Subscriptions automatically renew unless cancelled prior to the renewal date.

6. Acceptable Use

You may use the Application solely for lawful purposes related to network engineering. You agree NOT to:

Access network devices or systems without authorization.
Use the Application for penetration testing, vulnerability scanning, or security assessment without explicit written authorization from the system owner.
Reverse engineer, decompile, disassemble, or otherwise attempt to derive the source code of the Application.
Circumvent, disable, or interfere with any security features, usage limitations, or access controls of the Application.
Share account credentials or allow unauthorized third parties to access your account.
Use the Application to transmit malicious code, commands, or content.
Interfere with or disrupt the integrity or performance of the Application or its related systems.
Violate any applicable law, regulation, or third-party rights in connection with your use of the Application.

7. Artificial Intelligence Features

7.1 Nature of AI-Generated Content

The Application incorporates artificial intelligence features that generate command suggestions, troubleshooting analysis, and automation workflows. These features utilize machine learning models, including models provided by Google and models that execute locally on the user's device.

7.2 No Guarantee of Accuracy

NOTWITHSTANDING THE COMPANY'S USE OF A VERIFIED COMMAND DATABASE AND RETRIEVAL-AUGMENTED GENERATION TECHNOLOGY, THE COMPANY MAKES NO REPRESENTATION OR WARRANTY THAT AI-GENERATED CONTENT WILL BE ACCURATE, COMPLETE, RELIABLE, OR SUITABLE FOR ANY PARTICULAR PURPOSE.

Artificial intelligence systems, by their nature, may produce outputs that are incorrect, incomplete, or inappropriate for the user's specific context. Such outputs are commonly referred to as "hallucinations" in the industry.

7.3 User Responsibility for Verification

YOU ACKNOWLEDGE AND AGREE THAT:

(a) All AI-generated commands, configurations, and recommendations must be reviewed and verified by a qualified network professional before execution on any network device.
(b) The Application does not automatically execute AI-generated commands. All command execution requires explicit user action.
(c) You bear sole responsibility for any damage, service interruption, data loss, or other adverse consequences resulting from the execution of AI-generated commands or reliance on AI-generated analysis.
(d) The Company is not liable for any network outages, configuration errors, security incidents, or business interruption arising from your use of AI-generated content.

7.4 Experimental Features

Certain AI features, including but not limited to the "War Room" multi-device analysis feature, are designated as experimental. These features may be less stable, less accurate, or subject to change without notice. Use of experimental features is at your own risk.

8. Sanitization Service

8.1 Function

The Application includes a Sanitization Service that is designed to automatically scan user prompts and contextual data for sensitive information prior to transmission to cloud-based AI providers. The Sanitization Service applies pattern-matching algorithms designed to detect and redact credentials, cryptographic keys, SNMP community strings, and similar sensitive data.

8.2 Limitation of Sanitization

THE COMPANY DOES NOT WARRANT THAT THE SANITIZATION SERVICE WILL DETECT AND REDACT ALL SENSITIVE INFORMATION.

Automated pattern-matching technology has inherent limitations. Custom credential formats, obfuscated secrets, proprietary authentication mechanisms, and context-dependent sensitive information may not be detected by the Sanitization Service.

8.3 User Responsibility

You remain solely responsible for:

(a) Ensuring that sensitive information is not transmitted to cloud services in violation of your organization's security policies.
(b) Using Privacy Mode for operations involving highly sensitive or classified information.
(c) Reviewing AI prompts before submission when handling sensitive data.
(d) Compliance with all applicable data protection laws and regulations.

9. Configuration Checkpoint and Rollback

9.1 Checkpoint Functionality

The Application includes a configuration checkpoint feature that attempts to capture device configuration state prior to applying changes. This feature is designed to facilitate rollback in the event of configuration errors.

9.2 Limitation of Checkpoint and Rollback

THE COMPANY DOES NOT WARRANT THAT THE CHECKPOINT OR ROLLBACK FEATURES WILL FUNCTION ON ALL NETWORK DEVICES OR IN ALL CIRCUMSTANCES.

9.3 User Responsibility

You are solely responsible for maintaining independent backup procedures for network device configurations. The Company is not liable for any inability to restore prior configurations using the checkpoint or rollback features.

10. Intellectual Property

10.1 Company Intellectual Property

The Application, including its source code, user interface, documentation, and all related intellectual property, is the exclusive property of the Company and is protected by copyright, trademark, and other intellectual property laws.

10.2 User Content

You retain ownership of configurations, documents, and other content that you upload to or create within the Application. By using the Service, you grant the Company a limited, non-exclusive license to process your content solely for the purpose of providing the Service.

10.3 Open Source Components

The Application incorporates open-source software components. See the Third-Party Licenses tab for details.

11. Privacy

Your use of the Application is subject to the Company's Privacy Policy, which is incorporated into these Terms by reference.

12. Third-Party Services

12.1 Google Cloud Services

Cloud-based AI features of the Application are powered by Google's Gemini API through the Vertex AI platform. Your use of these features is subject to Google's Terms of Service and Privacy Policy. According to Google's published terms for paid API tiers, user data is not used to train Google's machine learning models. The Company does not warrant or guarantee the continued applicability of Google's policies.

12.2 Firebase Services

Authentication and usage tracking features utilize Google Firebase. Your use of these features is subject to the Firebase Terms of Service.

12.3 Payment Processing

Subscription payments are processed by Lemon Squeezy, which serves as the Merchant of Record. Your payment transactions are subject to Lemon Squeezy's terms and policies. The Company does not directly handle or store payment card information.

12.4 Bring Your Own Key (BYOK) — User-Provided API Keys

The Application allows Apex-tier subscribers to provide their own API keys for third-party AI services, including Google Gemini, OpenAI, Anthropic, xAI (Grok), and Groq. When this feature is active, AI requests are routed directly to the designated third-party provider using the user's API key.

THE COMPANY DOES NOT CONTROL AND IS NOT RESPONSIBLE FOR THE DATA HANDLING PRACTICES OF THIRD-PARTY AI PROVIDERS ACCESSED THROUGH USER-PROVIDED API KEYS.

By using the BYOK Feature, you acknowledge and agree that:

(a) Data transmitted through user-provided API keys is subject to the third-party provider's terms of service, privacy policy, and data handling practices, not the Company's.
(b) The third-party provider's policies regarding data retention, model training, and data usage may differ from those described in Section 12.1 of these Terms.
(c) The Company's Sanitization Service (described in Section 8) is applied to BYOK requests as a best-effort protective measure. The limitations described in Section 8.2 apply equally to BYOK transmissions.
(d) You are solely responsible for evaluating the privacy and security practices of your chosen third-party AI provider and for ensuring compliance with your organization's data governance requirements.
(e) You assume all risk associated with the transmission of data to third-party providers through the BYOK Feature, including but not limited to risks of data loss, unauthorized access, model training on your data, or breach of confidentiality.
(f) The Company expressly disclaims all liability for any adverse consequences arising from the use of third-party AI services through user-provided API keys.

13. Disclaimer of Warranties

THE APPLICATION IS PROVIDED "AS IS" AND "AS AVAILABLE" WITHOUT WARRANTIES OF ANY KIND, EITHER EXPRESS OR IMPLIED.

TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, THE COMPANY EXPRESSLY DISCLAIMS ALL WARRANTIES, INCLUDING BUT NOT LIMITED TO:

IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND NON-INFRINGEMENT.
WARRANTIES REGARDING THE ACCURACY, RELIABILITY, OR COMPLETENESS OF AI-GENERATED CONTENT.
WARRANTIES THAT THE APPLICATION WILL BE UNINTERRUPTED, ERROR-FREE, OR FREE OF VIRUSES OR OTHER HARMFUL COMPONENTS.
WARRANTIES REGARDING THE SECURITY OR RELIABILITY OF DATA TRANSMISSION.
WARRANTIES THAT THE SANITIZATION SERVICE WILL DETECT ALL SENSITIVE INFORMATION.
WARRANTIES THAT CHECKPOINT AND ROLLBACK FEATURES WILL FUNCTION ON ALL DEVICES.

14. Limitation of Liability

14.1 Exclusion of Damages

TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, IN NO EVENT SHALL THE COMPANY, ITS OFFICERS, DIRECTORS, EMPLOYEES, AGENTS, OR LICENSORS BE LIABLE FOR ANY:

INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES.
LOSS OF PROFITS, REVENUE, DATA, OR BUSINESS OPPORTUNITY.
NETWORK OUTAGES, SERVICE INTERRUPTIONS, OR CONFIGURATION ERRORS.
DAMAGES ARISING FROM AI-GENERATED CONTENT, INCLUDING INACCURATE COMMANDS OR ANALYSIS.
DAMAGES ARISING FROM FAILURE OF THE SANITIZATION SERVICE TO DETECT SENSITIVE INFORMATION.
DAMAGES ARISING FROM YOUR RELIANCE ON AI-GENERATED OUTPUTS.

THESE LIMITATIONS APPLY REGARDLESS OF THE THEORY OF LIABILITY.

14.2 Liability Cap

Total aggregate liability shall not exceed the greater of (a) amounts paid by you in the twelve (12) months preceding the claim, or (b) $100 USD.

14.3 Basis of the Bargain

THE LIMITATIONS SET FORTH IN THIS SECTION 14 REFLECT THE ALLOCATION OF RISK BETWEEN THE PARTIES AND ARE AN ESSENTIAL BASIS OF THE BARGAIN BETWEEN YOU AND THE COMPANY.

15. Indemnification

You agree to indemnify, defend, and hold harmless the Company from and against any claims, actions, demands, liabilities, damages, losses, costs, and expenses arising out of or related to:

Your use of the Application.
Your violation of these Terms.
Your violation of any third-party rights.
Your execution of commands or configurations generated by AI features.
Any claim by your employer, clients, or third parties related to your use of the Application.
Network damage, service interruption, or data loss caused by your actions.

16. Governing Law and Dispute Resolution

16.1 Governing Law

These Terms shall be governed by and construed in accordance with the laws of the State of New Mexico, United States, without regard to principles of conflict of laws.

16.2 Venue

The exclusive venue for any dispute arising under these Terms shall be the state or federal courts located in Sandoval County, New Mexico.

16.3 Informal Resolution

Prior to initiating any formal dispute proceeding, you agree to contact the Company at rtrgrd.sh@gmail.com and attempt to resolve the dispute informally for at least thirty (30) days.

16.4 Class Action Waiver

TO THE EXTENT PERMITTED BY APPLICABLE LAW, YOU AGREE THAT ANY DISPUTE RESOLUTION PROCEEDINGS WILL BE CONDUCTED ON AN INDIVIDUAL BASIS AND NOT AS PART OF A CLASS, CONSOLIDATED, OR REPRESENTATIVE ACTION.

17. Termination

17.1 Termination by User

You may terminate your use of the Application at any time by uninstalling the Application and, if applicable, requesting deletion of your account by contacting rtrgrd.sh@gmail.com.

17.2 Termination by Company

The Company may terminate or suspend your access at any time, with or without cause or notice, including but not limited to situations involving violation of these Terms, non-payment, fraudulent or abusive conduct, or legal or regulatory requirements.

17.3 Effect of Termination

Upon termination, your license terminates immediately. The Company may delete your account data after a reasonable period. Sections 10, 13, 14, 15, 16, and this Section 17.3 survive termination.

18. General Provisions

Entire Agreement. These Terms, together with the End User License Agreement and Privacy Policy, constitute the entire agreement between you and the Company.

Severability. If any provision is found unenforceable, it shall be modified to the minimum extent necessary, and the remaining provisions continue in effect.

Waiver. The failure to enforce any provision shall not constitute a waiver.

Assignment. You may not assign your rights without the Company's prior written consent. The Company may assign its rights without restriction.

Force Majeure. The Company shall not be liable for any failure or delay due to circumstances beyond its reasonable control.

Notices. Notices to the Company should be sent to rtrgrd.sh@gmail.com.

BY USING THE APPLICATION, YOU ACKNOWLEDGE THAT YOU HAVE READ THESE TERMS OF SERVICE, UNDERSTAND THEM, AND AGREE TO BE BOUND BY THEIR TERMS AND CONDITIONS.

End User License Agreement

Last Updated: March 9, 2026 · Version 1.2

1. Grant of License

Subject to your compliance with the terms of this End User License Agreement (the "Agreement" or "EULA"), RTRGRD (the "Licensor") grants you a limited, non-exclusive, non-transferable, revocable license to install and use the RTRGRD desktop application (the "Software") on devices that you own or control.

This license is granted solely for your personal use or for internal business purposes within your organization.

2. Scope of License

2.1 Permitted Activities

Install and operate the Software on compatible devices.
Use the Software to connect to network devices for which you have proper authorization.
Access features and functionality according to your subscription tier.

2.2 License Restrictions

You may not:

Copy, distribute, sell, lease, sublicense, or otherwise transfer the Software to any third party.
Modify, adapt, translate, or create derivative works based on the Software.
Reverse engineer, decompile, disassemble, or otherwise attempt to derive the source code of the Software, except to the extent such activity is expressly permitted by applicable law.
Remove, alter, or obscure any proprietary notices, labels, or marks on the Software.
Use the Software to develop a competing product or service.
Share your account credentials or allow unauthorized third parties to access the Software through your account.
Circumvent, disable, or interfere with any security features, access controls, or usage limitations of the Software.

3. Artificial Intelligence Disclaimer

THE SOFTWARE INCORPORATES ARTIFICIAL INTELLIGENCE FEATURES THAT GENERATE COMMAND SUGGESTIONS, TROUBLESHOOTING ANALYSIS, AND OTHER OUTPUTS. THE LICENSOR MAKES NO REPRESENTATION OR WARRANTY REGARDING THE ACCURACY, COMPLETENESS, OR RELIABILITY OF AI-GENERATED CONTENT.

You acknowledge that:

(a) AI-generated outputs may contain errors, inaccuracies, or inappropriate suggestions.
(b) Human verification by a qualified professional is required before executing any AI-generated command or configuration.
(c) You bear sole responsibility for any consequences resulting from your reliance on or execution of AI-generated content.
(d) The Licensor is not liable for network damage, data loss, service interruption, or other adverse consequences arising from the use of AI features.

4. Data Handling

4.1 Local Storage

The Software stores sensitive information, including network credentials and device configurations, locally on your device using operating system-level encryption. This data is not transmitted to the Licensor's servers.

4.2 Cloud Features

When using cloud-based AI features, contextual data is transmitted to third-party AI providers after automated sanitization. According to the provider's published terms for paid API tiers, user data is not used to train or improve the provider's generative AI models. The Company does not warrant or guarantee the continued applicability of third-party provider policies.

4.3 Privacy Mode

The Software includes a Privacy Mode that processes all AI queries locally without network transmission. Use of Privacy Mode requires an Apex tier subscription.

4.4 Bring Your Own Key (BYOK)

The Software allows Apex-tier subscribers to configure their own third-party AI provider API keys (the "BYOK Feature"). When BYOK is active, AI requests are transmitted directly to the third-party provider using the user's API key, bypassing the Licensor's cloud infrastructure.

You acknowledge and agree that:

(a) When using the BYOK Feature, your data is transmitted to a third-party AI provider of your choosing, and is subject to that provider's terms of service, privacy policy, and data handling practices.
(b) The Licensor has no control over how third-party AI providers process, store, or use data transmitted through user-provided API keys.
(c) The Licensor's automated Sanitization Service is applied to all BYOK requests as a best-effort safeguard, subject to the same limitations described in the Privacy Policy.
(d) The Licensor is not liable for any data loss, unauthorized access, privacy breach, or other adverse consequence arising from data transmitted to third-party providers through the BYOK Feature.
(e) You are solely responsible for any costs, charges, or fees incurred through the use of your own API keys.
(f) User-provided API keys are stored locally on your device using operating system-level encryption and are never transmitted to the Licensor's servers.

Refer to the Privacy Policy for complete information regarding data collection and handling practices.

5. Third-Party Components

The Software incorporates third-party open-source software components that are subject to their own license terms. A complete list of third-party components and their applicable licenses is provided in the file THIRD_PARTY_LICENSES.md included with the Software. See the Third-Party Licenses tab for details.

6. Intellectual Property

The Software, including its source code, user interface, documentation, and all associated intellectual property rights, remains the exclusive property of the Licensor and is protected by copyright, trademark, and other intellectual property laws.

This Agreement does not transfer to you any ownership interest in the Software. You receive only the limited license rights expressly granted herein.

7. Updates and Modifications

The Licensor may, from time to time, release updates, patches, or new versions of the Software. Such updates may add, modify, or remove features or functionality, require acceptance of revised terms, or be required for continued access to certain features.

The Licensor is under no obligation to provide updates, support, or maintenance for the Software.

8. Term and Termination

8.1 Term

This Agreement is effective upon your installation or use of the Software and remains in effect until terminated.

8.2 Termination by You

You may terminate this Agreement at any time by uninstalling the Software and deleting all copies from your devices.

8.3 Termination by Licensor

The Licensor may terminate this Agreement immediately, with or without notice, if you fail to comply with any term or condition of this Agreement.

8.4 Effect of Termination

Upon termination, all rights granted under this Agreement terminate immediately. You must uninstall the Software and delete all copies. Provisions that by their nature should survive termination shall survive, including Sections 3, 6, 9, 10, 11, 12, 13, and 14.

9. Disclaimer of Warranties

THE SOFTWARE IS PROVIDED "AS IS" AND "AS AVAILABLE" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESS OR IMPLIED.

TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, THE LICENSOR EXPRESSLY DISCLAIMS ALL WARRANTIES, INCLUDING BUT NOT LIMITED TO:

IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND NON-INFRINGEMENT.
WARRANTIES REGARDING THE ACCURACY OR RELIABILITY OF AI-GENERATED CONTENT.
WARRANTIES THAT THE SOFTWARE WILL BE ERROR-FREE OR UNINTERRUPTED.
WARRANTIES REGARDING THE SECURITY OF DATA TRANSMISSION OR STORAGE.

10. Limitation of Liability

TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, IN NO EVENT SHALL THE LICENSOR BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES, INCLUDING LOSS OF PROFITS, REVENUE, DATA, OR BUSINESS OPPORTUNITY; NETWORK OUTAGES, SERVICE INTERRUPTIONS, OR CONFIGURATION ERRORS; OR DAMAGES ARISING FROM AI-GENERATED CONTENT.

THE LICENSOR'S TOTAL AGGREGATE LIABILITY SHALL NOT EXCEED THE AMOUNT PAID BY YOU FOR THE SOFTWARE LICENSE DURING THE TWELVE (12) MONTHS PRECEDING THE CLAIM, OR ONE HUNDRED UNITED STATES DOLLARS ($100.00 USD), WHICHEVER IS GREATER.

11. Governing Law

This Agreement shall be governed by and construed in accordance with the laws of the State of New Mexico, United States, without regard to principles of conflict of laws. The exclusive venue for any dispute arising under this Agreement shall be the state or federal courts located in Sandoval County, New Mexico.

12. Export Compliance

The Software may be subject to United States export control laws, including the Export Administration Regulations (EAR). You agree to comply with all applicable export control laws and regulations. You represent and warrant that you are not located in, under the control of, or a national or resident of any embargoed or sanctioned country, and that you are not listed on any U.S. government restricted party list.

13. High-Risk Activities

THE SOFTWARE IS NOT DESIGNED, MANUFACTURED, OR INTENDED FOR USE IN HAZARDOUS ENVIRONMENTS REQUIRING FAIL-SAFE PERFORMANCE, INCLUDING BUT NOT LIMITED TO: THE OPERATION OF NUCLEAR FACILITIES, AIRCRAFT NAVIGATION OR COMMUNICATION SYSTEMS, AIR TRAFFIC CONTROL SYSTEMS, LIFE SUPPORT SYSTEMS, WEAPONS SYSTEMS, OR ANY OTHER ACTIVITY IN WHICH THE FAILURE OF THE SOFTWARE COULD LEAD DIRECTLY TO DEATH, PERSONAL INJURY, OR SEVERE ENVIRONMENTAL DAMAGE.

THE LICENSOR EXPRESSLY DISCLAIMS ANY EXPRESS OR IMPLIED WARRANTY OF FITNESS FOR HIGH-RISK ACTIVITIES. You agree not to use the Software for any such purposes.

14. U.S. Government End Users

If you are a U.S. Government end user, the Software is classified as "Commercial Computer Software" and "Commercial Computer Software Documentation" under 48 C.F.R. §12.212 and 48 C.F.R. §227.7202, as applicable. Government use, duplication, or disclosure is subject to the restrictions set forth in this Agreement and the applicable FAR/DFARS provisions. Unpublished rights are reserved under the copyright laws of the United States.

15. Entire Agreement

This Agreement, together with the Terms of Service and Privacy Policy, constitutes the entire agreement between you and the Licensor concerning the Software and supersedes all prior or contemporaneous agreements, representations, and understandings.

16. Severability

If any provision of this Agreement is found to be unenforceable or invalid, such provision shall be modified to the minimum extent necessary to make it enforceable, and the remaining provisions shall continue in full force and effect.

BY INSTALLING OR USING THE SOFTWARE, YOU ACKNOWLEDGE THAT YOU HAVE READ THIS END USER LICENSE AGREEMENT, UNDERSTAND IT, AND AGREE TO BE BOUND BY ITS TERMS AND CONDITIONS.

Third-Party Licenses

Last Updated: February 22, 2026

AI Models (Downloaded at Runtime)

Note: The following AI models are NOT included in the Application installer. They are downloaded by the user at runtime from their respective repositories. The applicable license terms govern the user's use of the model.

Google Gemma 3

License: Gemma Terms of Use
Source: https://ai.google.dev/gemma
Usage: Local LLM for Privacy Mode AI assistance and enrichment tasks.
Terms: https://ai.google.dev/gemma/terms

IBM Granite 3.3

License: Apache License 2.0
Source: GitHub
Usage: Local LLM alternative for Privacy Mode AI assistance.

Nomic Embed Text v1.5

License: Apache License 2.0
Source: Hugging Face
Usage: Local embedding model for RAG vector search and semantic similarity.

Core Libraries (Bundled)

Library	License	Usage
Electron	MIT	Cross-platform desktop application framework
React	MIT	UI component library
xterm.js	MIT	Terminal emulator for SSH/serial sessions
ssh2	MIT	SSH2 protocol implementation
serialport	MIT	Serial port communication for console cables
node-pty	MIT	Pseudo-terminal for local shells
node-llama-cpp	MIT	Local LLM inference engine (GGUF format)
LanceDB	Apache 2.0	Local vector database for RAG retrieval and FTS
Transformers.js	Apache 2.0	Local embedding generation
ONNX Runtime	MIT	ML model execution engine
Firebase SDK	Apache 2.0	Authentication, Cloud Functions, Firestore
Kreuzberg	MIT	Rust-based PDF text extraction
pdf-parse	MIT	Fallback PDF text extraction
pdfjs-dist (PDF.js)	Apache 2.0	PDF font analysis for document classification

Visualization Libraries (Bundled)

Library	License	Usage
react-force-graph-2d/3d	MIT	Network topology visualization
ReactFlow	MIT	Workflow management UI
Three.js	MIT	3D graphics rendering

UI Libraries (Bundled)

Library	License	Usage
Zustand	MIT	State management
TailwindCSS	MIT	CSS framework
Lucide React	ISC	Icon set
Framer Motion	MIT	Animation library
Fira Code	OFL 1.1	Monospace font for terminal display

Content Processing (Bundled)

Library	License	Usage
react-markdown / remark-gfm	MIT	Markdown rendering in chat interfaces
NTC Templates	Apache 2.0	TextFSM templates for CLI output parsing
OpenAI SDK	Apache 2.0	AI API client library

pyaoscx (Reference Only — NOT bundled)

License: Apache License 2.0
Source: GitHub
Usage: REST API intent patterns inspired by pyaoscx and common REST conventions.

Legal Disclaimer: No proprietary data from Aruba CX switches or vendor-provided JSON/OpenAPI files was used to create the intent patterns bundled in this application. All intent definitions were built from common REST API conventions, the open-source pyaoscx SDK, and general networking domain knowledge. At runtime, OpenAPI schemas are downloaded directly from the user's own devices.

Appendix A: Required NOTICE Files

Apache Arrow NOTICE (via LanceDB)

Apache Arrow
Copyright 2016-2024 The Apache Software Foundation

This product includes software developed at
The Apache Software Foundation (http://www.apache.org/).

This product includes software from the SFrame project (BSD, 3-clause).
* Copyright (C) 2015 Dato, Inc.
* Copyright (c) 2009 Carnegie Mellon University.

This product includes software from the Feather project (Apache 2.0)
https://github.com/wesm/feather

This product includes software from the DyND project (BSD 2-clause)
https://github.com/libdynd

This product includes software from the google-lint project
* Copyright (c) 2009 Google Inc. All rights reserved.

This product includes software from the mman-win32 project
* Copyright https://code.google.com/p/mman-win32/
* Licensed under the MIT License;

This product includes software from the LevelDB project
* Copyright (c) 2011 The LevelDB Authors. All rights reserved.

This product includes code from Apache Kudu:
  Apache Kudu
  Copyright 2016 The Apache Software Foundation

This product includes code from Apache ORC:
  Apache ORC
  Copyright 2013-2019 The Apache Software Foundation

License Texts

Apache License 2.0

Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at

    http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

MIT License

Permission is hereby granted, free of charge, to any person obtaining
a copy of this software and associated documentation files (the
'Software'), to deal in the Software without restriction, including
without limitation the rights to use, copy, modify, merge, publish,
distribute, sublicense, and/or sell copies of the Software, and to
permit persons to whom the Software is furnished to do so, subject to
the following conditions:

THE SOFTWARE IS PROVIDED 'AS IS', WITHOUT WARRANTY OF ANY KIND.

ISC License

Permission to use, copy, modify, and/or distribute this software for any
purpose with or without fee is hereby granted, provided that the above
copyright notice and this permission notice appear in all copies.

THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES.

SIL Open Font License 1.1

Copyright (c) 2014, Nikita Prokopov and contributors

This Font Software is licensed under the SIL Open Font License, Version 1.1.
This license is available at: http://scripts.sil.org/OFL