Helio Additive Privacy Policy

last updated: September 11, 2025

1. Introduction

At Helio Additive, we build technology to make 3D printing faster, more reliable, and easier to use. Protecting your privacy and earning your trust is a core part of that mission. This Privacy Policy explains what data we collect, how we use it, and the choices you have. We’ve written it to be clear and straightforward—so you know exactly what we do (and don’t do) with your information. By using our Services, you agree to the practices described in this policy. If you have questions, reach us anytime at support@helioadditive.com.

2. Definitions

  • “Services” – Helio Additive’s physics-based simulation and optimization technology, including integrations with third-party slicers such as BambuStudio and OrcaSlicer.
  • “G-code” – Machine instructions (toolpaths) generated by slicers. This is the only file type currently processed by the Services. We do not collect STL, CAD, or project files.
  • “User Content” (or “Customer Data”) – Any data, files, or information you upload, submit, or provide when using the Services. While User Content may include G-code, STL/CAD, and material settings, in practice we only process G-code at this time.
  • “Output” – Any results, reports, recommendations, or files generated by the Services, including Simulations and Optimizations.
  • “Plans” – The subscription options available for the Services, including Personal Plans, Business Plans, and any add-ons or upgrades.
  • “Usage Data” – Limited technical information (e.g., request timestamps, error codes, performance metrics) collected to improve reliability.

3. The Basics Up Front

  • We only receive G-code that you explicitly submit—we do not collect STL, CAD, or project files.
  • We collect your email address for billing and verification. Payment details are handled by Paddle or Stripe—we never see or store your card information.
  • We do not sell your data, share it with advertisers, or use it for unrelated purposes.
  • We only collect what’s necessary to provide and improve our Services.
  • Confidentiality and retention differ between Personal Plans and Business Plans (see below).

4. What Data We Collect

Data You Submit Directly

When you use the Helio button in your slicer, only the G-code file you choose is sent. No STL, CAD, or project files are transmitted.

Account Information

Free simulations use anonymous access tokens—we don’t know who is using them. For paid optimizations, we collect your email address and verify it with a one-time password. This also prevents abuse (e.g. stealing anonymous access tokens). Payments are processed by Paddle or Stripe. We never see or store full payment details.

Usage & Technical Data

To keep our Services reliable, we may collect limited technical logs (e.g., simulation request times, error codes, performance metrics). This data is aggregated and not used to identify you individually.

Children’s Data

You must be at least 13 years old to use a Personal Plan. If your country sets a higher digital consent age (e.g., 16 in parts of the EU), you must meet that age. Our Services are not directed at children under these thresholds, and we do not knowingly collect data from them.

5. How We Use Data

We use your data only for:

  • Running simulations and optimizations (processing G-code).
  • Supporting and improving our Services.
  • Communicating with you about your account or updates (if you opt in). We do not:
  • Sell your data.
  • Use G-code beyond the requested simulation/optimization.
  • Profile you or show targeted advertising. Legal basis: We process your data to perform our contract with you (providing the Services), your consent (for optional communications), and our legitimate interest in improving performance.

6. Confidentiality & Data Handling

Personal Plans (including Free)

  • Reasonable care – We apply safeguards to reduce risks of unauthorized access.
  • No confidentiality guarantee – Because these Plans are free or low-cost, strict confidentiality cannot be guaranteed.
  • Retention – G-code files may be stored for up to 30 days to provide the Services and manage server load.
  • Access – Only authorized Helio staff may access files, and only when needed for support, troubleshooting, or maintenance.
  • Aggregated metadata – We may use non-identifying aggregated data (for example, usage counts, popular materials, or performance statistics) to improve the Services or share general insights with the community. We never include personally identifying data in such aggregated insights.

Business Plans

  • Confidential treatment – We will keep your files and Output confidential and will not disclose them to third parties except as required to operate the Services, comply with law, or with your written permission.
  • Immediate deletion – G-code files are deleted within 24 hours after processing.
  • Restricted access – Only a small, designated group of staff may access files in limited cases such as troubleshooting, and we will notify you where practical.
  • Use limitation – We will not use your files or Output for product development, testing, or analytics without your written consent.
  • Survival – These confidentiality obligations continue for three (3) years after your Business Plan ends.

7. Data Retention

  • Personal Plans – G-code files deleted within 30 days.
  • Business Plans – G-code files deleted within 24 hours after processing.
  • Logs – Diagnostic logs (e.g., errors, performance metrics) retained up to 90 days.
  • Aggregated statistics – Retained indefinitely in anonymized form, not linked to you.
  • Backups – Encrypted backups may persist up to 60 days solely for disaster recovery.

8. Security

We design our systems to minimize exposure and protect your data.

  • Minimal exposure: Only G-code is processed, never STL or CAD files.
  • Encrypted transfer: All uploads/downloads use HTTPS (TLS).
  • Isolated compute environments: Each job runs in a secure container.
  • Strict access controls: Your data is only accessible to you (or your organization).
  • Region-specific hosting:
    • Rest of World: AWS (US region).
    • Mainland China: hosted on China-based infrastructure.
  • International transfers (e.g., EU → US) use safeguards such as Standard Contractual Clauses (SCCs).

9. Your Rights

We extend global privacy rights to all users:

  • Access – Request a copy of your account data.
  • Delete – Ask us to delete your account and files (subject to legal retention).
  • Restrict – Ask us to stop processing data in certain ways.
  • Portability – Request data in a portable format. To exercise your rights, email support@helioadditive.com. We will not deny or reduce service quality if you exercise your rights.

10. Changes to This Policy

We may update this Privacy Policy as our Services evolve or as laws change.

  • Minor changes – posted on our website.
  • Material changes – notified by email or in-product before they take effect. By continuing to use our Services after updates take effect, you agree to the revised policy.

11. Contacts & Complaints

For questions or complaints, contact us at support@helioadditive.com.

  • Controller: Helio Additive, Inc. (Delaware, USA).
  • If you are in the EU/EEA or UK, you may also lodge a complaint with your local Data Protection Authority.