Session Data
NoMachine cannot access, and does not store, session data. Data transmission in all NoMachine connections (over IP, over HTTPS, using NoMachine Network) is always encrypted using end-to-end encryption. This basically means that all session content (any data being transferred within the remote access session, including keyboard and mouse input as well as screen output) between a NoMachine client and a NoMachine server cannot be intercepted and decrypted other than by the client and server in question. This applies also to NoMachine Network connections when users login to the service with their NoMachine account. Thanks to end-to-end encryption, it is impossible for NoMachine to access, and consequentially cannot store, any of the data being exchanged during a remote access connection.

For more details about end-to-end encryption in NoMachine, please see our Security Statement:

NoMachine Security Statement
https://kb.nomachine.com/AR04S01121

User Data
When connecting to a NoMachine computer using the hostname or IP address of the target machine, NO user data is gathered. 

When connecting over the NoMachine Network service, some basic user information is collected in our logs when a user connects to their remote computer (for example, your User Id, the OS you are running, the Machine Id) which we store only for the time strictly necessary in order to be able to operate and optimize the Services, gather usage statistics and diagnostic data, and spot possible problems. For in-depth details about what specific user data NoMachine can access, please consult the following:

NoMachine Privacy Policy
https://kb.nomachine.com/AR05P00977