This Privacy Policy explains how Runbase collects, uses, discloses, and protects information when you use our website, dashboard, API, AI tools, billing, support, and related services. Runbase is operated by TokenMade LLC, a limited liability company registered in the United States.
Runbase provides AI tools and API access. To provide the service, we process your account information, billing information, API usage information, request and response logs, and other information described below. We also work with AI service providers and other service providers as needed to process your requests.
Information we collect
We may collect the following categories of information:
- Account information: name, email address, login method, account ID, organization details, preferences, and authentication data.
- API and usage information: API key names, key IDs, API methods, models, request time, response time, status, error details, supplier reference IDs, cost, credit usage, rate-limit signals, IP address, user agent, and device or browser metadata.
- Request and response content: prompts, inputs, uploaded files, image URLs, generated outputs, response bodies, error messages, model metadata, and other content submitted to or returned by the service.
- Billing information: purchases, credit balance, transaction history, invoices, tax information, payment status, refund records, and payment provider identifiers. Full payment card details are processed by our payment provider and are not stored by Runbase.
- Referral program information: referral codes, referral links, referrer and referred-user relationships, attribution data, reward status, reward amounts, and abuse or fraud review signals.
- Support and communications: messages you send to us, support requests, feedback, survey responses, and related correspondence.
- Website and analytics information: pages visited, referral URLs, approximate location, cookie identifiers, session events, diagnostics, and product analytics.
How we use information
We use information to:
- provide, process, and return AI requests;
- create and manage accounts, sessions, API keys, credits, payments, invoices, and customer support;
- show request logs, usage history, billing history, and debugging information in your dashboard;
- calculate usage, prices, credit costs, refunds, and billing adjustments;
- monitor availability, latency, errors, abuse, fraud, security risks, and policy violations;
- improve reliability, product features, documentation, pricing, and support;
- communicate service updates, security notices, billing notices, and policy changes;
- comply with law, enforce our Terms, and protect users, service providers, Runbase, and third parties.
AI request handling
When you submit a request through Runbase, we may transmit your request content and related metadata to AI service providers or other suppliers used for storage, moderation, processing, delivery, support, or security.
These service providers may process your content according to their own terms, privacy policies, data processing terms, retention rules, abuse monitoring rules, and legal obligations. Runbase cannot control every data handling practice of third-party services.
We do not sell your prompts or outputs. We do not use your API request content to train Runbase-owned AI models. If we use request content for troubleshooting, abuse review, product debugging, or support, access is limited to personnel or service providers with a need to know.
Logs and retention
Runbase may store request and response bodies, usage metadata, error details, supplier reference IDs, API key names, cost information, and timing information so that you can view logs, debug requests, verify charges, and receive support.
We retain information for as long as reasonably needed to provide the service, operate logs and billing, comply with legal obligations, resolve disputes, enforce agreements, prevent abuse, and maintain backups. Retention periods may vary by data type and account status.
You should avoid submitting secrets, credentials, private keys, payment card data, regulated health information, or highly sensitive personal data unless your use case is lawful, permitted by applicable service terms, and protected by appropriate safeguards.
How we share information
We may share information with:
- AI service providers and other suppliers needed to process your requests;
- cloud hosting, database, storage, logging, security, monitoring, email, analytics, and customer support providers;
- payment processors, tax providers, fraud prevention providers, banks, and card networks;
- professional advisors, auditors, insurers, and legal service providers;
- authorities, courts, regulators, or third parties when required by law or when we believe disclosure is necessary to protect rights, safety, security, or the integrity of the service;
- another organization in connection with a merger, acquisition, financing, reorganization, sale of assets, or similar transaction.
We require service providers to process information only for authorized purposes and to use appropriate safeguards.
International transfers
Runbase and our service providers may process information in countries other than where you live. These countries may have data protection laws different from those in your jurisdiction. Where required, we use appropriate safeguards for international transfers.
Security
We use technical and organizational measures designed to protect information, including access controls, encryption in transit where appropriate, credential controls, monitoring, and operational safeguards. No online service can guarantee perfect security.
You are responsible for protecting your account, login methods, API keys, systems, and applications that use Runbase.
Your choices and rights
Depending on your location, you may have rights to access, correct, delete, export, restrict, or object to certain processing of your personal information. You may also have the right to withdraw consent where processing is based on consent.
You can access some account, billing, API key, credit, and log information through the dashboard. For other requests, contact us using the support contact listed on our website or in your account dashboard.
We may need to verify your identity before fulfilling a request. We may retain certain information where required or permitted by law, including for security, fraud prevention, billing, tax, dispute, legal, backup, and compliance purposes.
Children's privacy
Runbase is not intended for children under 13, and we do not knowingly collect personal information from children under 13. If you believe a child has provided personal information to Runbase, contact us and we will take appropriate steps.
Business and enterprise use
If you use Runbase on behalf of an organization, your organization may control or access information associated with your account, API keys, usage, logs, and billing. Your organization is responsible for providing any required notices and obtaining any required rights or consents from end users whose information is submitted to Runbase.
Changes to this Policy
We may update this Privacy Policy from time to time. If changes are material, we will take reasonable steps to notify you, such as by updating the date above, posting a notice, emailing you, or showing an in-product notice.
Contact
Questions or requests about this Privacy Policy can be sent to support@runbase.net or through the support contact listed on our website.