1. What this policy covers
This Privacy Policy describes how trAIce ("trAIce", "we") collects, uses, and shares information when you use the hosted dashboard and APIs backing the open-source @traice/sdk package.
2. Information we collect
From you, when you sign in:
- GitHub profile (name, email, avatar): via OAuth, the minimum needed to authenticate
- Workspace and API-key metadata you create
From your application, when you stream events:
- Event payloads you choose to send: provider, model, feature, user ID, tenant ID, agent IDs, token counts, cost, latency, status, custom metadata
- If you enable the optional eval-sampling feature: prompt and output text for a sampled fraction of events. Captured samples are deleted after 14 days.
We do not collect raw LLM prompt/output text unless you explicitly opt in.
3. How we use it
- To operate the dashboard, alerts, and analytics you signed up for
- To meter usage against your plan's monthly event quota
- To fix bugs and prevent abuse (via error tracking and rate limiting)
- To communicate about your account (welcome, alerts, billing receipts)
We do not sell your data, train models on it, or share it for advertising.
4. Subprocessors
We rely on these services to operate trAIce:
- Vercel: application hosting
- Supabase: Postgres database hosting
- Sentry: error monitoring
- Upstash: Redis-based rate limiting
- Brevo: transactional email
- GitHub: OAuth identity provider for sign-in
5. Retention
Raw event records are retained for the retention window of your plan (7 days on Free, 14 days on Starter, 30 days on Pro, and 90 days on Team). A daily retention job removes raw events older than that window, while aggregated usage rollups are kept so historical dashboards remain intact. Sampled prompts/outputs (if you opted in) have a 14-day expiration and are removed by the sample-retention job. Account and workspace records are removed according to the account deletion behavior described below, subject to backups and records we must keep for security, abuse prevention, or legal reasons.
6. Your rights (GDPR / CCPA)
You can export the currently supported account dataset via Settings → Account → Export: your user record, workspace and membership records, API-key metadata (not raw keys or key hashes), budgets, customer revenue rows, and event records. The export does not currently include sessions, OAuth account records, sampled prompt/output records, experiments, or admin audit logs. Workspace owners can schedule a workspace for deletion in Settings. The workspace remains available during a 30-day recovery period, and an owner can cancel the deletion before the scheduled date. Personal-account deletion is a separate, immediate action: it removes solo workspaces you own and removes your membership from shared workspaces; if you are the sole owner of a shared workspace, you must transfer ownership first. For other requests (correction, restriction, portability), contact us.
7. Security
API keys are stored as SHA-256 hashes: the raw key is never persisted. Data is encrypted at rest by Supabase and in transit via TLS. We follow the principle of least privilege for subprocessor access. We are not yet SOC 2 certified.
8. International transfers
Data is processed in the regions where our subprocessors operate (primarily the United States and the EU, depending on the provider).
9. Changes
We'll post material updates here and update the effective date. Continued use after changes constitutes acceptance.
10. Contact
Privacy questions: privacy@runtraice.com