Open Menu icon

Our Privacy Policy

Last Updated: Sep 17, 2024

Expand All
Expand/Collapse Icon

WELCOME TO RUNE!

Rune AI Inc. provides a social platform via the Rune application (the “App”) and related Internet services (collectively, the “Service(s)”). The Service is operated by Rune AI Inc. (the “Company”, “we” or “us”) for users of the Service (“you”). This Privacy Policy sets forth our policy with respect to information that is collected from users of the App and/or the Services. Under applicable law, Rune AI Inc. is the “data controller” of personal data collected through the Services. Please also review our Terms of Service available at https://www.rune.ai/eula.

INFORMATION WE COLLECT

When you interact with us through the Services, we may collect information from you. We may collect the following categories of personal information about Users:

  • Personal Identifiers, including Telephone number
  • Online Identifiers, including Device identifier, IP address, Customer number, and Online identifier
  • Internet Activity, including Interactions with websites, apps or ads

We collect the following categories of personal information about Prospective Partners:

  • Personal Identifiers, including Email address
  • Internet Activity, including Email open and click-through rates

Data We Collect Automatically: When you interact with us through the Services, we receive and store certain information such as an IP address, device ID, and your activities within the Services. We may store such information and the Services may use such information and pool it with other information to track, for example, the total number of visitors to our Site, the amount of time users spend on voice chat, as well as the sites which refer visitors to Rune.

Aggregated Information: In an ongoing effort to better understand and serve the users of the Services, we may conduct research on our customer demographics, interests and behavior based on the information collected. This research may be compiled and analyzed on an aggregate basis, and we may share this aggregate data with our affiliates, agents and business partners. We may also disclose aggregated user statistics in order to describe our services to current and prospective business partners, and to other third parties for other lawful purposes.

We may use third party web site analytic tools such as Google Analytics on our website that employ cookies to collect certain information concerning your use of our Services. However, you can disable cookies by changing your browser settings. Further information about the procedure to follow in order to disable cookies can be found on your Internet browser provider's website via your help screen.

WHERE INFORMATION IS PROCESSED

The Company is based in the United States. No matter where you are located, you consent to the processing and transferring of your information in and to the U.S. and other countries. The laws of the U.S. and other countries governing data collection and use may not be as comprehensive or protective as the laws of the country where you live.

OUR USE OF YOUR INFORMATION

We use the information you provide in a manner that is consistent with this Privacy Policy. If you provide information for a certain reason, we may use the information in connection with the reason for which it was provided. For instance, if you contact us by email, we will use the information you provide to answer your question or resolve your problem. Also, if you provide information in order to obtain access to the Services, we will use your information to provide you with access to such services and to monitor your use of such services. The Company and its subsidiaries and affiliates (the “Related Companies”) may also use your information collected through the Services to help us improve the content and functionality of the Services, to better understand our users and to improve the Services.

OUR LEGAL BASES FOR HANDLING OF YOUR PERSONAL DATA

The laws in some jurisdictions require companies to tell you about the legal ground they rely on to use or disclose your personal data. To the extent those laws apply, our legal grounds are as follows:

  • To honor our contractual commitments to you: Much of our processing of personal data is to meet our contractual obligations to our users, or to take steps at users’ request in anticipation of entering into a contract with them. For example, we handle personal data on this basis to create your account and provide our Services.
  • Legitimate interests: In many cases, we handle personal data on the ground that it furthers our legitimate interests in ways that are not overridden by the interests or fundamental rights and freedoms of the affected individuals: This includes:
    • Provide Products or Services;
    • Providing a safe and enjoyable user experience;
    • Customer service;
    • Marketing, e.g. sending emails or other communications to let you know about new features;
    • Protecting our users, personnel, and property;
    • Analyzing and improving our business, e.g. collecting information about how you use our Services to optimize the design and placement of certain features;
    • Processing job applications;
    • Managing legal issues.

OUR DISCLOSURE OF YOUR INFORMATION

The Company is not in the business of selling your information. We consider this information to be a vital part of our relationship with you. There are, however, certain circumstances in which we may share your information with certain third parties, as set forth below:

  • Legal Requirements: We may disclose your information if required to do so by law or in the good faith belief that such action is necessary to (i) comply with a legal obligation, (ii) protect and defend the rights or property of the Company or Related Companies, (iii) protect the personal safety of users of the Services or the public, or (iv) protect against legal liability.
  • Aggregated Data: We may also share aggregated information with our partners or others for business purposes.

UNSOLICITED INFORMATION

You may provide us with ideas for new products or modifications to existing products, and other unsolicited submissions (collectively, “Unsolicited Information”). All Unsolicited Information shall be deemed to be non-confidential and we shall be free to reproduce, use, disclose, and distribute such Unsolicited Information to others without limitation or attribution.

CHILDREN

Our Services are for users age 13 and over and we do not knowingly collect personal information from children under the age of 13. If you are a parent or guardian of a child under the age of 13 and believe he or she has disclosed personal information to us please contact us at privacy@rune.ai.

DATA RETENTION

We generally retain personal data for so long as it may be relevant to the purposes identified herein. To dispose of personal data, we may anonymize it, delete it or take other appropriate steps. Data may persist in copies made for backup and business continuity purposes for additional time.

SECURITY

We take reasonable steps to protect the information provided via the Services from loss, misuse, and unauthorized access, disclosure, alteration, or destruction. However, no Internet or email transmission is ever fully secure or error free. In particular, email sent to or from the Services may not be secure. Therefore, you should take special care in deciding what information you send to us via email. Please keep this in mind when disclosing any information via the Internet.

YOUR DATA RIGHTS AND CHOICES

We believe that users should be treated equally no matter where they are, and so we are making the following options to control your data available to all users, regardless of their location.

Individuals in the European Economic Area, Canada, Costa Rica and some other jurisdictions outside the United States have certain legal rights to obtain confirmation of whether we hold personal data about them, to access personal data we hold about them (including, in some cases, in portable form), and to obtain its correction, update, amendment or deletion in appropriate circumstances. They may also object to our uses or disclosures of personal data, to request a restriction on its processing, or withdraw any consent, though such actions typically will not have retroactive effect. They also will not affect our ability to continue processing data in lawful ways.

  • How can I access the personal data you have about me?

If you would like to submit a data access request, you can contact us at privacy@rune.ai. We will then start the process and provide you a link to access the personal data that Rune has on you within 30 days.

  • How do I correct, update, amend, or delete the personal data you have about me?

You can also request modifications from us directly by writing to us at privacy@rune.ai with an explanation of what data subject right you are seeking to exercise. For your protection, we may take steps to verify identity before responding to your request.

CHANGES TO THIS PRIVACY POLICY

We reserve the right to update or modify this Privacy Policy at any time and from time to time without prior notice. Please review this policy periodically, and especially before you provide any information. This Privacy Policy was last updated on the date indicated above. Your continued use of the Services after any changes or revisions to this Privacy Policy shall indicate your agreement with the terms of such revised Privacy Policy.

CONTACTING US

Please feel free to contact us if you have any questions about this Privacy Policy or the information practices of the Services. You may contact us as follows: privacy@rune.ai.

GDPR Notice

The following disclosure is made pursuant to the European General Data Protection Regulation (GDPR):

As a data controller of our clients’ personal data, we are committed to protecting and respecting your privacy in compliance with EU- General Data Protection Regulation (GDPR) 2016/679, dated April 27th 2016. This privacy statement explains when and why we collect personal information, how we use it, the conditions under which we may disclose it to others and how we keep it secure. This Privacy Statement applies to the use of our products and to our sales, marketing and customer contract fulfillment activities. You have the right to withdraw your consent at any time; and to submit a complaint to the relevant supervisory data protection authority.

Our legal basis for collecting personal data

We process personal data under the following lawful bases:

  • To honor our contractual commitments to you: Much of our processing of personal data is to meet our contractual obligations to our users, or to take steps at users’ request in anticipation of entering into a contract with them. For example, we handle personal data on this basis to create your account and provide our Services.
  • Legitimate interests: In many cases, we handle personal data on the ground that it furthers our legitimate interests in ways that are not overridden by the interests or fundamental rights and freedoms of the affected individuals:

We will always inform individuals about their privacy rights and the purpose for collecting personal data. Please refer to our privacy policy at privacy.rune.ai to understand the information we collect and how it's stored/transmitted. We may transfer personal data to countries other than the country in which the data was collected.

Your provision of personal data is part of contractual obligation. If you do not provide the required data, we will not be able to provide you the expected services outlined by our contract.

Your rights to your personal data

You have the following rights with respect to your personal data:

  • The right to request a copy of your personal data that Rune holds about you.
  • The right to request that Rune correct your personal data if inaccurate or out of date.
  • The right to request that your personal data be deleted when it is no longer necessary for Rune to retain such data.
  • The right to withdraw any consent to personal data processing at any time. For example, your consent to receive e-marketing or push notifications.
  • The right to request that Rune provide you with your personal data and, if possible, to pass on this information directly (in a portable format) to another data controller when the processing is based on consent or contract.
  • The right to request a restriction on further data processing, in case there is a dispute in relation to the accuracy or processing of your personal data.
  • The right to object to the processing of personal data, in case data processing has been based on legitimate interest and/or direct marketing.

Contact Us

If you have any questions related to this GDPR notice or our processing of your personal data, please send them to ia.enur@ycavirp. If you'd like to make use of your rights then please send a privacy request to us at https://privacy.rune.ai/privacy-request.

We collect the personal information you provide to us when you purchase our products or visit our website. The categories of information we may collect include:

  • Personal Identifiers, including email address, telephone number, and online Identifiers
  • Internet Activity
  • Location Information, including general location data

How long we keep your data

We do not retain data for any longer than is necessary for the purposes described in this Policy.

We generally retain data according to the guidelines below.

Type of DataRetention Period
Data we collect when you contact us for customer support and other inquiries, including Email address, Online IdentifiersAs a general rule, we keep customer feedback and correspondence until we have satisfactorily responded to their questions and comments. After emails have been archived, they are automatically deleted after 90 days.
Data we collect in connection with privacy requests, including Email address, Online IdentifiersAs a general rule, we keep customer privacy requests and correspondence until we have satisfactorily responded to their questions and comments. After emails have been archived, they are automatically deleted after 90 days.
Data we collect for security purposes, including Telephone number, Online IdentifiersWe retain security-related data as long as necessary to comply with our legal obligations and to maintain and improve our information security measures. After emails have been archived, they are automatically deleted after 90 days.

Why we process your information

We process personal information for the following business and commercial purposes:

  • Creating Customer Profiles
  • Data Storage
  • Operating our Website or Mobile Apps

We may disclose personal information about you for business and commercial purposes when you purchase our products or visit our website:

Personal Information CategoryCategories of Service ProvidersCategories of Third Parties
Personal IdentifiersCustomer Support Tools, Cybersecurity Providers, Governance, Risk & Compliance Software, IT Infrastructure Services, and Sales & Marketing ToolsNone
Internet ActivityCybersecurity ProvidersNone
Location InformationIT Infrastructure ServicesNone

This section provides additional information for people in the European Economic Area (EEA) or United Kingdom (UK). The terms used in this section have the same meaning as in the General Data Protection Regulation and the UK Data Protection Act (GDPR). The term “personal information” as used in this notice has the same meaning as “personal data” in the GDPR.

Collection and Disclosure of Personal Data

The personal data we collect and how we share it is described above in our Privacy Policy.

Lawful Bases and Legitimate Interests

We process personal data on the following lawful bases:

  • Complying with legal obligations
  • Fulfilling contracts
  • Consent
  • Legitimate interests

Where we process personal data on the basis of our legitimate interests, we pursue the following interests: Operating our Website or Mobile Apps, Creating Customer Profiles, and Data Storage.

International Data Transfers

We may send the personal data of individuals in the EEA/UK/CH to third countries, including the United States, where it may be stored or processed, for example on our service providers’ cloud servers. When we transfer personal data, we rely either on Adequacy Decisions as adopted by the European Commission (EC), the UK Information Commissioner's Office (ICO), or the Swiss Federal Data Protection and Information Commissioner (FDPIC) on the basis of the EU-US Data Privacy Framework, UK-US Data Bridge, and Swiss-U.S. Data Privacy Framework agreements, Standard Contractual Clauses (SCCs) issued by the EC or the FDPIC, or International Data Transfer Agreements (IDTAs) approved by the ICO. Data protection authorities have determined that the SCCs and IDTAs provide sufficient safeguards to protect personal data transferred outside the EEA/UK/CH. You may read more about international data transfer mechanisms at the following links:

Privacy Rights

Individuals in the EEA/UK/CH have the following rights regarding their personal data.Make a Privacy Request by clicking here. Once you submit a request, we will verify your identity and process your request in most cases within 30 days.

Right to access. You have the right to request a copy of the personal data we hold about you.

Right of portability. You have the right to ask us to transfer your data to another party.

Right to rectification. You have the right to request that we rectify any incorrect information we have about you.

Right of erasure. You have the right to request that we erase (delete) any personal information we hold about you.

Right to withdraw consent. You have the right to withdraw your consent at any time when we rely on your permission to process your personal data.

Right to object. You have the right to object to our use of data about you.

Right to lodge a complaint with a supervisory authority. You have a right to lodge a complaint with a supervisory authority. For more information, you can visit theInformation Commissioner’s Office website at https://ico.org.uk/, the Federal Data Protection and InformationCommissioner’s website at https://www.edoeb.admin.ch/, or see a list of EU Data Protection Authorities athttps://www.gdprregister.eu/gdpr/dpa-gdpr/.

Inquiries

Controller contact information

Rune

ia.enur@ycavirp