Privacy Policy

At Responsible AI Labs ("RAIL", "we", "us", or "our"), we are committed to protecting your privacy and ensuring transparency about how we collect, use, and safeguard your information. This Privacy Policy explains our practices regarding personal data when you use our AI safety evaluation platform and services.

1. Information We Collect

1.1 Information You Provide

• Account Information: Name, email address, password (encrypted), and organization details
• Billing Information: Payment card details (processed securely through Razorpay and PayPal), billing address
• Communication Data: Information you provide when contacting our support team or participating in surveys

1.2 Information We Collect Automatically

• Usage Data: API calls, endpoints accessed, request/response patterns, timestamps, and feature usage
• Technical Data: IP address, browser type, device information, operating system, and referring URLs
• Performance Metrics: API latency, error rates, and service performance indicators
• Cookies and Similar Technologies: See our Cookie Policy for details

1.3 API Input and Output Data

When you use our AI safety evaluation services, we process:

• AI model inputs and outputs submitted for evaluation
• Safety scores, risk assessments, and evaluation results
• Metadata associated with your API requests

2. How We Use Your Information

2.1 Service Provision

• Provide, maintain, and improve our AI safety evaluation services
• Process API requests and deliver evaluation results
• Manage your account, subscriptions, and billing
• Provide technical support and respond to inquiries

2.2 Service Improvement and Research

We may use aggregated and anonymized data to:

• Improve our AI safety evaluation models and algorithms
• Develop new features and detection capabilities
• Conduct research to advance AI safety standards
• Generate insights about AI risk patterns and trends

2.3 Communication

• Send service updates, security alerts, and administrative messages
• Respond to your requests and provide customer support
• Send marketing communications (with your consent; you may opt out anytime)

2.4 Legal and Security

• Comply with legal obligations and enforce our Terms of Service
• Detect, prevent, and address fraud, security issues, and technical problems
• Protect the rights, property, and safety of RAIL, our users, and the public

3. Data Retention and Storage

3.1 Retention Periods

• Account Data: Retained while your account is active and for 90 days after account closure
• API Logs: Retained for 90 days for operational purposes, then deleted or anonymized
• Billing Records: Retained for 7 years to comply with tax and accounting regulations
• Anonymized Analytics: May be retained indefinitely for research and service improvement

3.2 Data Storage and Security

We store your data securely using:

• Industry-standard encryption (AES-256 at rest, TLS 1.3 in transit)
• Access controls and authentication mechanisms
• Regular security audits and vulnerability assessments
• Secure cloud infrastructure (Google Cloud Platform)

4. Data Sharing and Disclosure

We do not sell your personal information. We may share your data only in the following circumstances:

4.1 Service Providers

We share data with trusted third-party service providers who assist us in operating our platform:

• Payment Processors: Razorpay (India), PayPal (International)
• Cloud Infrastructure: Google Cloud Platform
• Email Services: Resend for transactional emails
• Analytics: Anonymized usage analytics (no personal data shared)

4.2 Legal Requirements

We may disclose your information if required by law, court order, or government request, or to:

• Comply with legal obligations
• Protect our rights, property, or safety
• Investigate fraud or security issues
• Enforce our Terms of Service

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity. We will notify you via email and/or a prominent notice on our website before your data is transferred.

5. Your Rights and Choices

Depending on your location, you may have the following rights:

5.1 Access and Portability

• Request a copy of your personal data
• Export your API usage data and evaluation results

5.2 Correction and Deletion

• Update or correct your account information
• Request deletion of your account and associated data
• Note: Some data may be retained as required by law or for legitimate business purposes

5.3 Opt-Out Rights

• Unsubscribe from marketing emails via the link in any marketing message
• Disable cookies through your browser settings (see our Cookie Policy)
• Object to processing of your data for certain purposes

5.4 Exercising Your Rights

To exercise any of these rights, please contact us at legal@responsibleailabs.ai. We will respond within 30 days.

6. International Data Transfers

RAIL operates globally. Your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for international transfers, including:

• Standard Contractual Clauses approved by the European Commission
• Adequacy decisions for countries with equivalent data protection laws
• Compliance with GDPR, CCPA, and other applicable privacy regulations

7. Children's Privacy

Our services are not directed to individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected data from a child, please contact us immediately at legal@responsibleailabs.ai.

8. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

• Posting the updated policy on this page with a new "Last updated" date
• Sending an email notification to your registered email address
• Displaying a prominent notice on our website

Your continued use of our services after such changes constitutes acceptance of the updated policy.

9. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: