Runstrap Logo

Privacy Policy

1. Introduction

Runstrap (“Runstrap”, “we”, “us”, or “our”) provides an AI-native integration runtime that enables teams to design, generate, and execute system integrations.

This Privacy Policy explains what information we collect, how we use it, and the choices you have regarding your data.

Runstrap is committed to handling data responsibly, securely, and transparently.

2. Scope of Roles

Runstrap acts in two different roles depending on the data involved:

  • Data Controller — for account, billing, and website data.
  • Data Processor — for customer integration logs and execution metadata processed on behalf of customers.

Customers remain responsible for the data they send through integrations and for ensuring they have the legal right to process such data.

3. Information We Collect

3.1 Account & Business Information (Controller Data)

When you create an account or interact with us, we may collect:

  • Name
  • Work email address
  • Company name
  • Role or title
  • Billing information
  • Authentication credentials (stored in hashed form)
  • Support communications

This data is used for account management, billing, and service operation.

3.2 Integration Runtime Logs (Processor Data)

When customers use Runstrap to execute integrations, we may store:

  • Execution logs
  • Error traces
  • Metadata related to integration runs
  • Performance metrics
  • Connector configuration metadata (excluding decrypted secrets)

Important:
Runstrap does not store full integration payloads long-term. Only logs and operational metadata required for observability, debugging, and reliability are retained.

Customers control what data flows through their integrations.

3.3 Connector Credentials

Connector credentials and secrets:

  • Are encrypted at rest
  • Are encrypted in transit
  • Are accessible only through controlled system processes
  • Are not exposed to other customers

3.4 Technical & Usage Data

We may automatically collect:

  • IP address
  • Browser type
  • Device information
  • Session metadata
  • Feature usage statistics
  • Security and audit logs

This data is used for:

  • Security monitoring
  • Abuse prevention
  • Platform reliability
  • Product improvement

4. AI and Code Generation

Runstrap may use AI systems to:

  • Generate integration code
  • Suggest transformations
  • Assist with debugging

We do not use customer runtime logs or integration data to train public AI models.

We may use aggregated and de-identified telemetry to improve platform performance and reliability.

Future versions of Runstrap may allow customers to bring their own language model infrastructure.

5. How We Use Information

We use collected data to:

  • Provide and operate the Runstrap platform
  • Authenticate users
  • Process billing transactions
  • Maintain system security
  • Detect misuse or fraud
  • Improve reliability and performance
  • Comply with legal obligations

We do not sell personal data.

6. Data Retention

We retain data only as long as necessary:

  • Account data → for the duration of the account and required legal periods
  • Integration logs → configurable retention periods
  • Billing records → as required by law
  • Security logs → as needed for fraud prevention and system integrity

Customers may request deletion of their account data by contacting team@runstrap.com.

7. Security

We implement industry-standard safeguards including:

  • TLS encryption in transit
  • Encryption at rest
  • Role-based access controls
  • Infrastructure isolation
  • Audit logging
  • Secure credential management

While no system can guarantee absolute security, we take reasonable and appropriate measures to protect data.

8. International Users

Runstrap may process data in jurisdictions where our infrastructure providers operate.

If we offer services to customers in the European Union or other regulated jurisdictions, we will implement appropriate legal safeguards, including Standard Contractual Clauses where required.

9. Self-Hosted Deployments

For enterprise customers using self-hosted deployments, Runstrap does not control customer infrastructure environments. Data governance responsibilities may vary depending on deployment configuration.

We may disclose information:

  • To comply with legal obligations
  • To respond to lawful requests by public authorities
  • To protect our rights, safety, or property

11. Children’s Privacy

Runstrap is not intended for individuals under the age of 18. We do not knowingly collect personal data from minors.

12. Changes to This Policy

We may update this Privacy Policy from time to time. If material changes are made, we will provide notice through the platform or via email.

The “Effective Date” at the top indicates when this policy was last revised.

13. Contact

If you have questions about this Privacy Policy or our data practices, please contact:

team@runstrap.com