Privacy Policy
Runa Labs Inc. (“Runa”)
Your privacy is important to us. This Privacy Policy explains our practices regarding the collection, use and disclosure of information that we receive through our Services. This Privacy Policy does not apply to any third-party websites, services or applications, even if they are accessible through our Services.
In this Privacy Policy:
- We’ll refer to our website as the “Site”.
- We’ll refer to all the products and services we provide, individually and collectively, as the “Services”.
- We’ll refer to you, the person or entity accessing our Site or using our Services, as “you” or “your” or (if you are a purchaser of our Services) our “customer”.
Table of Contents
- Definitions
- How do we collect Personal Information?
- What information do we collect?
- What do we use your Personal Information for?
- Your Choices About Your Personal Information
- Protection of Personal Information
- Cookies
- Who at Runa may access your Personal Information?
- Do we disclose any information to outside parties?
- How do we handle global transfers and processing of your Personal Information?
- Retention of your Personal Information
- Third-party Links
- Your Consent
- Minors
- Your Rights
- Changes to our Privacy Policy
- Jurisdiction-specific Provisions
- Contacting Us
1. Definitions
Data Controller: For general data protection regulation purposes, the “Data Controller” means the organization who decides the purposes for which, and the way in which, any Personal Information is processed. Our customers are the Data Controllers for their own data. For our direct Services, Runa is the Data Controller.
Data Processor: A “Data Processor” is an organization which processes Personal Information for a Data Controller. We are the Data Processor for our customers when acting under a Data Processing Agreement (DPA).
Data Processing: Any operation or set of operations (whether automated or not) performed upon Personal Information. Examples include: collection, storage, retrieval, use, disclosure, restriction, erasure, or destruction.
Personal Information: Any information which is about you, from which you can be identified. This includes identifiers (e.g., name, address, email), information about your activities (e.g., use of our Site or Services), and demographic data (e.g., date of birth, gender) when linked to identifiable information. It does not include “aggregate” or de-identified information.
2. How do we collect Personal Information?
We collect Personal Information in the following ways:
- Information you provide to us directly (e.g., account signup, billing, support requests).
- Information we receive from third parties (e.g., integrations you enable, payment processors, marketing partners).
- Automatically collected information through your use of the Services (e.g., cookies, logs, device data).
We may combine information from different sources, and this Privacy Policy applies to all combined data we maintain in personally identifiable form.
3. What information do we collect?
We may collect:
- Your first and last name, username, and email address.
- Your company’s name and role.
- Your (and/or your company’s) physical address.
- Billing and payment details (processed securely by third-party processors).
- Any content or files you upload to the Services (e.g., prompts, datasets, documents, code, outputs).
- Communications you send to us (support requests, feedback, event registrations).
- Device and usage data: IP address, device type, OS, browser, screen resolution, language, referring URLs, pages viewed, actions taken.
- Approximate location from your IP for fraud prevention and compliance.
- Cookies and similar tracking technologies for authentication, preferences, analytics, and advertising (see Section 7).
We may also allow third-party online advertising networks to collect information about your use of our Services to display ads relevant to your interests.
4. What do we use your Personal Information for?
We use your Personal Information to:
- Operate, maintain, and provide features and functionality of the Services.
- Compile statistics and analytics about use of our Site and Services.
- Personalize your experience.
- Improve our Site, Services, and customer support.
- Process transactions and manage billing.
- Send you transactional communications (e.g., account notices, updates, billing info).
- Send marketing communications about Runa products or services (you can opt out).
- Comply with legal obligations or respond to lawful requests.
- Protect rights, property, safety, and prevent fraud or abuse.
We will request your consent before using your Personal Information for any materially different purpose.
5. Your Choices About Your Personal Information
- Marketing communications – You can opt out of marketing emails via unsubscribe links or by contacting us.
- Cookies – You can disable cookies in your browser or device settings.
- Targeted advertising – Where required by law, we honor Global Privacy Control (GPC) and similar opt-out signals.
Even if you opt out of marketing, you’ll continue to receive essential service communications.
6. Protection of Personal Information
We implement reasonable security measures appropriate to the risk, including encryption, access controls, and monitoring. No system is 100% secure. If we become aware of a breach, we will notify you as required by law.
You are responsible for safeguarding your account credentials.
7. Cookies
We use cookies to:
- Remember your preferences.
- Authenticate logins.
- Analyze usage.
- Provide personalized content or ads.
Most browsers allow you to block or delete cookies, but doing so may affect functionality. We do not currently respond to browser “Do Not Track” signals.
8. Who at Runa may access your Personal Information?
Only designated Runa staff may access Personal Information, and only to the extent necessary to perform their job functions (e.g., support, security, engineering).
9. Do we disclose any information to outside parties?
We do not sell your Personal Information. We may share it with:
- Affiliates – entities under common ownership.
- Service providers – hosting, payment processing, analytics, communications, cloud storage, security.
- Legal authorities – where required to comply with the law.
- Business transfers – in connection with mergers, acquisitions, or similar events.
We require service providers to use your data only as instructed and to protect it.
10. How do we handle global transfers and processing of your Personal Information?
Your Personal Information may be stored or processed in the U.S. or other countries. Where required, we use legal transfer mechanisms such as Standard Contractual Clauses (SCCs) and supplementary safeguards.
11. Retention of your Personal Information
We retain your Personal Information for as long as necessary to provide Services and meet legal obligations. Typical retention:
- Account data – life of account + up to 3 years.
- Transaction/billing data – up to 7 years.
- Logs – 12–24 months.
12. Third-party Links
Our Services may link to third-party sites. These have their own privacy policies, and we are not responsible for their practices.
13. Your Consent
By using our Site or Services, you consent to this Privacy Policy.
14. Minors
Our Services are not directed to individuals under 13, and we do not knowingly collect their data.
15. Your Rights
Depending on your location, you may have rights to:
- Access your Personal Information.
- Correct inaccurate data.
- Delete certain data.
- Restrict or object to processing.
- Receive your data in a portable format.
- Withdraw consent.
To exercise your rights, contact admin@joinruna.com. We may verify your identity.
16. Changes to our Privacy Policy
If we change this Policy, we will post updates here. Material changes will be communicated via email or prominent notices where required.
17. Jurisdiction-specific Provisions
- EEA/UK/Switzerland – Contact admin@joinruna.com. You may lodge a complaint with your local authority.
- California (CPRA) – You have rights to know, delete, correct, opt out of sale/share, and limit Sensitive PI. We honor GPC where required.
- Other U.S. states – Similar rights where state laws grant them.
18. Contacting Us
Runa Labs Inc.
Attn: Privacy
Email: admin@joinruna.com