Security
Last updated:
How we keep you safe
NEO handles two sensitive things: access to your WhatsApp account, and the conversations you have with your clients. We treat both with care, and we'd rather show our work than make abstract promises.
The short version: - Everything you send to NEO is protected with industry-standard encryption — both in transit and while it's stored. - Only you can sign in to your account. We never see your PIN. - Access to live data is restricted to a small, vetted team and every access is logged. - We don't share your data with anyone except the providers needed to run the service. Your conversations are never used to train models for anyone else. - Every behavior-changing feature has an emergency off-switch we can flip in seconds if anything misbehaves.
1. Connecting your WhatsApp
When you connect WhatsApp to NEO: - You scan a one-time pairing code from your own phone. We never see your WhatsApp password. - The connection is stored privately on our side and tied only to your account. - You can disconnect at any time from your phone (WhatsApp → Linked Devices → log out).
We follow WhatsApp's normal connection rules. Connecting NEO does not bypass any WhatsApp policy — if you spam or break their rules, the responsibility stays with the number's owner.
2. Encryption
- Your traffic to NEO is encrypted end-to-end while it travels. - Your data is also encrypted while it's stored on our side. - Backups are encrypted with separately managed keys.
In plain English: even people inside our hosting provider can't read your data. Only NEO, with your permission, can.
3. How we sign you in
- You sign in with your phone number and a short PIN you choose. - Your PIN is stored as a one-way fingerprint — even our engineers cannot read it. - After a few wrong attempts, sign-in is temporarily locked to stop guessing attacks. - A reset requires proof you own the phone number on file. - Your session is held in a private, secure cookie that other websites cannot read or steal.
4. Who can see what
- You only see your own clients, conversations, and metrics. Other reps never see your data and you never see theirs. - Internal admin tools are gated behind extra checks and every action there is logged. - A small, named team has access to live data only when needed to fix a problem.
5. How NEO writes replies
When NEO drafts a reply, it sends a short, focused snippet of context (recent messages and your style) to a trusted AI provider. Three things to know: - Our AI provider does not keep your data to train their models. - We never send your conversation data to anyone outside that flow. - Each draft is reviewed by NEO itself before it's sent — and if a client says they're not interested, NEO automatically stops and hands the conversation back to you.
6. Where it lives
- Production runs on trusted infrastructure providers in Europe. - Backups are taken regularly and kept for a sensible window. - Every code change goes through automated checks before it reaches the live service.
7. Emergency off-switches
Every behavior-changing feature in NEO has its own off-switch. If anything ever feels off in production, we can: - Pause AI replies entirely. - Disable any single behavior (style learning, contact classification, voice messages, etc.) on its own. - Roll back individual features without taking the whole product offline.
In short: we can correct course in seconds, not days.
8. Reporting a security issue
If you think you've found a security issue: 1. Email hello@hereisneo.com with [SECURITY] in the subject. 2. Share what you saw and how to reproduce it. 3. Please give us a chance to fix it before sharing it publicly.
We respond within 48 hours and aim to fix critical issues within 7 days. We don't run a paid bug-bounty program yet, but we credit responsible disclosures (with your permission).
9. Changes
When our security practices materially change, we'll update this page and the "Last updated" date. Active reps will be notified by email of any change that affects how their data is processed or stored.
10. Contact
Email: hello@hereisneo.com