Privacy Policy

1. Who We Are

data-runner.dev is a solo-operated software studio based in Tampa, FL, USA. We operate two platforms: data-runner.dev (web scraping and lead generation tools) and agents.data-runner.dev (AI agent services for small businesses). Contact: [email protected]

2. Information We Collect

Information you provide directly:

• Name and email address when you submit a contact form or join a waitlist
• Business name and contact details when you onboard as an AI agent client
• Payment information processed securely through Stripe — we never store card numbers

Information collected automatically:

• Browser type, IP address, and pages visited via server logs
• Usage data and interaction patterns through cookies

3. AI Calling Agent — Call & Voice Data

When a business subscribes to our AI Calling Agent, their dedicated phone number is answered (or dialed) by an AI assistant. For these calls we process, on behalf of the subscribing business:

• Call audio and recordings — every call is disclosed as AI-assisted and as possibly recorded at the start of the conversation
• Transcripts and call summaries — generated automatically to power the business's dashboard, notifications, and lead qualification
• Caller details — phone number, name if provided during the call, and information the caller chooses to share (e.g. service needs, address, scheduling preferences)
• SMS messages — follow-up texts sent on behalf of the business; reply STOP at any time to opt out

For this data we act as a service provider / processor for the subscribing business, which is the data controller. If you called a business powered by our agents and want your data corrected or deleted, contact that business directly, or email us at [email protected] and we will route your request.

Call recordings and transcripts are retained while the business's account is active and deleted upon verified deletion request. A Data Processing Agreement (DPA) is available to business customers upon request.

4. How We Use Your Information

• To deliver and maintain services you have purchased
• To send transactional emails (onboarding, invoices, service updates)
• To send marketing emails if you opted in — you can unsubscribe at any time
• To process payments and prevent fraud
• To improve our products and respond to support requests

5. Email Communications

If you submit your email through any form on our sites, you may receive a follow-up email sequence. Every email contains an unsubscribe link. We do not sell or rent your email address to third parties.

6. Data Sharing & Sub-Processors

We do not sell your personal data. We share data only with the following service providers (sub-processors) who help us operate our platforms:

• Stripe — payment processing and subscription billing
• Supabase — database hosting
• Clerk — account authentication
• Vercel — application hosting
• Vapi — voice AI infrastructure for calling agents (call audio, transcription via Deepgram, speech synthesis via Cartesia/ElevenLabs)
• Twilio — phone numbers, call routing, and SMS delivery
• OpenAI — conversational AI processing during calls (conversation data only)
• DeepSeek — post-call transcript analysis for lead qualification (transcript text only)
• Resend — transactional email delivery
• Cloudflare — CDN and DDoS protection

All providers are contractually bound to protect your data and process it only for the purposes we define. Conversation data sent to AI providers is used solely to deliver the service — not to train their models per their respective API terms.

7. Cookies

We use essential cookies required for site functionality. We do not use advertising or tracking cookies. You can disable cookies in your browser settings, though some features may not work as expected.

8. Data Retention

We retain your personal data for as long as your account is active or as needed to provide services. If you request deletion, we will remove your data within 30 days except where we are legally required to retain it.

9. Your Rights

Depending on your location, you may have rights to access, correct, delete, or export your personal data. To exercise any of these rights, email us at [email protected]. We will respond within 30 days.

• CCPA (California): You have the right to know what data we collect and request deletion.
• GDPR (EU/UK): You have rights of access, rectification, erasure, and data portability.

10. Children's Privacy

Our services are not directed to children under 13. We do not knowingly collect data from minors. If you believe a child has provided us data, contact us immediately.

11. Changes to This Policy

We may update this policy periodically. Material changes will be communicated by updating the date at the top of this page. Continued use of our services after changes constitutes acceptance.