← Back to Home

Privacy Policy

Last Updated: February 01, 2026

This Privacy Policy describes how Brunology OÜ ("Company", "we", "us", or "our") collects, uses, and discloses your information when you use Ronin AI ("Application", "App", or "Service"). By using the Service, you agree to the collection and use of information in accordance with this Privacy Policy.

1. Company Information

Company: Brunology OÜ
Address: Saarvahtra pst 15, Tallinn, Harju county, 10915, Estonia
Contact: bruno@brunology.tech
Website: https://roninai.app/contact

For the purposes of the GDPR, the Company is the Data Controller.

2. Information We Collect

2.1 Account Information

When you sign in using Google or Apple, we collect:

  • User ID: A unique identifier provided by your sign-in provider
  • Email Address: Optional for Apple Sign-In users who choose to hide their email; provided by Google Sign-In

We do not collect your name, profile photo, or any other personal information from your sign-in provider beyond what is listed above.

2.2 Chat Messages

  • Storage Location: All chat messages are stored locally on your device only
  • Cloud Storage: Message content is never stored on our servers
  • AI Processing: Messages are transmitted to our AI provider (xAI) solely for generating responses; no user identifiers are attached to these transmissions

2.3 Chat Metadata

We store minimal metadata in our cloud database to enable features like conversation continuity:

  • Chat ID and title
  • Creation and last updated timestamps
  • Conversation state identifier (for AI conversation continuity)

2.4 Usage Data

We collect limited usage data to enforce service limits and prevent abuse:

  • Daily message count (for free tier limits)
  • Message timestamps (for rate limiting)
  • Subscription status

2.5 Data We Do Not Collect

We do not collect:

  • Location data
  • Device identifiers beyond what is necessary for authentication
  • Contacts or address book information
  • Photos or media (unless you explicitly share them in chat)
  • Biometric data
  • Browsing history
  • Analytics or behavioral tracking data

3. How We Use Your Information

We use your information for the following purposes:

  • To Provide the Service: Processing your messages through AI, maintaining conversation continuity, and delivering responses
  • To Manage Your Account: Authenticating your identity and managing your subscription
  • To Enforce Limits: Tracking daily message usage for free tier limits and rate limiting to prevent abuse
  • To Improve the Service: Analyzing aggregate, anonymized usage patterns (not individual message content)
  • To Communicate: Sending service-related notifications when necessary

4. How We Share Your Information

4.1 AI Processing (xAI)

Your chat messages are sent to xAI (X.AI LLC) for AI processing. Important details:

  • No User Identifiers: We do not send your email, user ID, or any personal identifiers to xAI
  • No Training: Per xAI's Enterprise API terms, your messages are not used to train their AI models
  • Conversation State: xAI retains conversation state for up to 30 days to enable conversation continuity, after which it is automatically deleted
  • xAI Privacy Policy: https://x.ai/legal/privacy-policy

4.2 Subscription Management (RevenueCat)

We use RevenueCat to manage subscriptions:

  • Data Shared: Your anonymous user ID (not your email)
  • Purpose: Processing payments and managing subscription status
  • RevenueCat Privacy Policy: https://www.revenuecat.com/privacy

4.3 Authentication (Firebase/Google)

We use Firebase Authentication:

4.4 Payment Processing (Apple)

All payments are processed through Apple's App Store:

4.5 Other Disclosures

We may disclose your information:

  • To comply with legal obligations or valid legal requests
  • To protect our rights, privacy, safety, or property
  • In connection with a merger, acquisition, or sale of assets (you will be notified)

We do not sell your personal information.

5. Data Retention

Data TypeRetention Period
Account InformationUntil you delete your account
Chat Messages (local)Stored on your device until you delete them
Chat MetadataUntil you delete your account
Usage DataUntil you delete your account
xAI Conversation StateUp to 30 days (managed by xAI)
Subscription RecordsPer RevenueCat's retention policy and applicable tax laws

Important Notes on Data Persistence

  • Device Switching: Because messages are stored locally on your device, switching devices or logging out will result in loss of conversation history. Messages do not sync between devices.
  • Complete Deletion Timeline: When you delete your account, most data is removed immediately. However, conversation state held by xAI may take up to 30 days to be fully deleted.

6. Data Security

We implement appropriate technical and organizational measures to protect your information:

  • All network communications use HTTPS encryption
  • Local data is protected by iOS sandboxing
  • Authentication uses industry-standard OAuth protocols via Google and Apple
  • API keys and sensitive credentials are stored securely on our servers, never in the app

However, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

7. Your Rights and Choices

7.1 Access and Export

You can view all your data within the app. The app includes a chat export feature that allows you to download your conversation history as a text file.

7.2 Deletion

You can delete your data in the following ways:

  • Delete Individual Chats: Remove specific conversations from within the app
  • Delete All Conversations: Clear all chat history from Settings
  • Delete Account: Permanently delete your account and all associated data from Settings

When you delete your account:

  • All local data is immediately removed from your device
  • All cloud data (chat metadata, usage data) is deleted from our servers
  • Your Firebase Authentication account is deleted
  • Conversation state at xAI will be deleted within 30 days
  • Subscription history at RevenueCat may be retained per their policies

7.3 Correction

You can rename chat titles within the app. For corrections to account information, contact us.

8. GDPR Rights (European Users)

If you are in the European Economic Area (EEA), United Kingdom, or Switzerland, you have additional rights under GDPR:

  • Right to Access: Request a copy of your personal data
  • Right to Rectification: Request correction of inaccurate data
  • Right to Erasure: Request deletion of your data
  • Right to Restrict Processing: Request limitation of processing
  • Right to Data Portability: Receive your data in a portable format
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Withdraw consent at any time

Legal Basis for Processing:

  • Contract Performance: Processing necessary to provide the Service
  • Legitimate Interests: Preventing abuse, improving the Service
  • Legal Obligation: Compliance with applicable laws

International Transfers:

Your data may be transferred to and processed in the United States (where xAI and other service providers are located). We ensure appropriate safeguards are in place, including Standard Contractual Clauses where required.

Complaints:

You have the right to lodge a complaint with your local data protection authority.

To exercise your GDPR rights, contact us at bruno@brunology.tech.

9. CCPA/CPRA Rights (California Residents)

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

  • Right to Know: Request disclosure of personal information collected, used, and shared
  • Right to Delete: Request deletion of your personal information
  • Right to Correct: Request correction of inaccurate information
  • Right to Opt-Out of Sale/Sharing: We do not sell or share your personal information
  • Right to Non-Discrimination: We will not discriminate against you for exercising your rights

Categories of Personal Information Collected:

CategoryExamplesCollected
IdentifiersEmail address, unique IDYes
Commercial InformationSubscription status, purchase historyYes
Internet ActivityApp usage, message countsYes (limited)
GeolocationPhysical locationNo
BiometricFingerprints, face dataNo
Sensitive Personal InformationN/ANo

To exercise your CCPA/CPRA rights, contact us at bruno@brunology.tech or visit https://roninai.app/contact.

10. Children's Privacy

The Service is not intended for anyone under the age of 18. We do not knowingly collect personal information from children under 18. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately. If we become aware that we have collected personal information from a child under 18, we will take steps to delete that information.

11. Third-Party Services

The Service uses the following third-party services. Please review their privacy policies:

ServicePurposePrivacy Policy
xAI (Grok)AI processinghttps://x.ai/legal/privacy-policy
Firebase (Google)Authentication, databasehttps://policies.google.com/privacy
RevenueCatSubscription managementhttps://www.revenuecat.com/privacy
AppleSign-in, paymentshttps://www.apple.com/legal/privacy/
GoogleSign-inhttps://policies.google.com/privacy

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

  • Posting the new Privacy Policy on this page
  • Updating the "Last Updated" date
  • Providing notice within the App for significant changes

You are advised to review this Privacy Policy periodically. Continued use of the Service after changes constitutes acceptance of the updated policy.

13. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, contact us:

We will respond to requests within 30 days, or within the timeframe required by applicable law.