Legal
Privacy Policy
Last updated: May 2026
What we collect
We collect your email address and name when you register. We collect the queries you submit to Sage and Roundtable, along with metadata (model used, response time, category). We do not collect payment card numbers — payments are processed by Stripe and we only receive a tokenized reference.
How we use your data
Query data is used to compute model performance rankings. This data is aggregated and anonymised before being used in rankings — we never surface individual queries publicly. Your email is used to send verification codes, product updates (if opted in), and billing notifications. We do not sell your data to third parties.
Data retention
Account data is retained as long as your account is active. Queries are retained for 12 months for ranking computation, then aggregated into summary statistics. You can request deletion of your account and associated data at any time by emailing support@roundtableci.com.
Third-party services
We use Supabase (database), Railway (hosting), Resend (transactional email), and Stripe (payments). Each of these services has their own privacy policy. AI queries are routed to model providers (OpenAI, Anthropic, Google, etc.) via OpenRouter. Queries may be retained by those providers per their own policies.
Security
Passwords are hashed with SHA-256 and a random salt. Sessions use signed JWT tokens. Database connections are encrypted in transit. We conduct periodic security reviews.
Your rights
You have the right to access, correct, or delete your personal data. To exercise these rights, email support@roundtableci.com. We will respond within 30 days.
Changes to this policy
We may update this policy as the product evolves. Material changes will be communicated via email to registered users. Continued use of the platform after changes constitutes acceptance.
Contact
For privacy questions: privacy@roundtableci.com