Privacy Policy

Last updated: May 17, 2026

1. Who We Are

Runik AI is a business management platform developed by Allware SpA, based in Santiago, Chile. We provide a chat-first system where users manage their business data through natural language and visual interfaces.

2. What Data We Collect

• Account information: Name, email address, and password (hashed with bcrypt).
• Business data: Tables, records, views, and files that you create within your workspace. This is YOUR data.
• Usage logs: Tool calls, timestamps, and error logs for debugging and service improvement. We do NOT log the content of your records.
• OAuth tokens: If you connect Gmail, Drive, or Calendar, we store encrypted refresh tokens to maintain the connection. We never read your emails unless you explicitly ask us to.

3. How We Use Your Data

• To provide and operate the Runik AI service.
• To process your natural language queries and return relevant results.
• To send service notifications (password resets, system alerts).
• To improve the service based on aggregate usage patterns (never individual data).

4. Third-Party AI Services

Runik AI uses third-party language models (Anthropic Claude, Mistral) to process your natural language queries. When you type a question:

• Your query and relevant table metadata (column names, not record data) are sent to the AI provider.
• Record data is only sent when explicitly needed to answer your question (e.g., "summarize my sales").
• We do NOT send your data to AI providers for training purposes.

5. MCP (Model Context Protocol) Integration

Runik AI exposes an MCP server that can be connected to ChatGPT, Claude, and other AI assistants. When you connect Runik to an external AI:

• The AI can only access YOUR workspace data, authenticated via OAuth 2.0.
• Read operations (listing, searching) are performed without additional confirmation.
• Write operations (create, update, delete) require explicit user approval in the AI interface.
• We do not share your data with other users or workspaces.

6. Data Storage and Security

• Isolation: Each company has its own SQLite database. Your data is physically separated from other users.
• Encryption: All connections use HTTPS/TLS. Passwords are hashed with bcrypt.
• Location: Data is stored on servers in the United States (Hostinger VPS).
• Backups: We maintain regular backups for disaster recovery.

7. Data Retention and Deletion

• Your data is retained as long as your account is active.
• You can delete individual records, tables, or your entire workspace at any time.
• If you request account deletion, we will permanently remove all your data within 30 days.
• To request deletion, email: privacy@allware.cl

8. Your Rights

You have the right to:

• Access all your data (export via CSV/PDF at any time).
• Correct inaccurate data (edit directly in the platform).
• Delete your data and account.
• Disconnect third-party integrations at any time.
• Request a copy of all your data in machine-readable format.

9. Cookies and Tracking

We use localStorage (not cookies) to maintain your session. We do NOT use third-party tracking, analytics, or advertising cookies. There is no Google Analytics, Facebook Pixel, or similar tracking on Runik AI.

10. Children

Runik AI is not intended for children under 13. We do not knowingly collect data from children.

11. Changes to This Policy

We may update this policy occasionally. We will notify registered users via email of any material changes.

12. Contact

For privacy questions or data requests:

• Email: privacy@allware.cl
• Company: Allware SpA, Santiago, Chile