Legal · Privacy Policy

Privacy Policy.

Last updated: June 2026

This privacy policy sets out how Relay (collectively referred as “Relay”, “we”, “our”, “us”) collect, use, disclose, process, store, transfer and protect any personal information that you give us when you use our services or access our websites. This statement demonstrates our commitment to privacy rights.

Your right to privacy and the protection of your personal data is utmost importance to us. We protect your personal data in accordance with applicable laws and our data privacy policies. In addition, appropriate technical and organizational measures are adhered to, in order to protect your personal data against unauthorized or unlawful processing and/or against accidental loss, alteration, disclosure or access, or accidental or unlawful destruction of or damage.

Data we collect

To provide, secure, improve, and support our platform, we may collect and store the following categories of information:

Personal and Account Information

Personal data is information that can identify an individual, either on its own or when combined with other available information. We collect personal data only as needed to provide the services you choose to use, including responding to inquiries. Providing this information is voluntary, but if you choose not to provide requested details, we may be unable to deliver certain services.

Examples include:

  • Account details, such as your name, e-mail address, username, company name, billing address, and authentication credentials (for example, password hashes or third-party login identifiers).
  • Communication information, including support requests, customer service interactions, survey responses, and communications sent through our platform.
  • Payment and billing information, such as billing contact details, subscription status, transaction history, and partial payment identifiers. Payment card information is collected and processed directly by our third-party payment processor(s), and we do not store or have access to your full card number or sensitive authentication data.

Service Usage and Workflow Data

To operate the platform and fulfill service requests, we may collect:

  • Session telemetry and operational logs, particularly when requests are escalated for engineering or technical review, which may include:
    • AI tools or automated systems used,
    • project or repository metadata,
    • code diffs, patches, or transferred changes,
    • prompts, instructions, and conversation history,
    • timestamps, duration, diagnostic events, and session outcomes.
  • User-submitted content, such as descriptions, bug reports, prompts, screenshots, uploaded files, code snippets, documentation, and other materials submitted as part of the workflow.
  • Platform communications, including messages, comments, and file attachments exchanged between users, builders, developers, or support personnel through our built-in systems.

Technical and Device Information

We may automatically collect certain technical information necessary for security, analytics, and service delivery, including:

  • Browser type and version,
  • Device type, operating system, and hardware model,
  • Log data, crash reports, and performance diagnostics,
  • Session identifiers,
  • Approximate geographic location derived from IP address,
  • Referral URLs, pages visited, clickstream activity, and timestamps.

Cookies and Similar Technologies

We may use cookies, local storage, pixels, or similar technologies to:

  • Maintain secure sessions,
  • Remember preferences,
  • Analyze platform performance,
  • Improve usability,
  • Prevent fraud and abuse.

Other Information You Provide

Any additional information you voluntarily provide through digital, verbal, or physical means may be stored and processed as reasonably necessary for the purpose for which it was provided.

Non-Personal Data

We may collect and retain data that does not directly identify you, including aggregated, anonymized, or de-identified information, for lawful business purposes including analytics, research, product development, security, and operational improvement.

Examples include:

  • Aggregate usage trends,
  • Feature interaction metrics,
  • Device and browser analytics,
  • Performance benchmarks,
  • Conversion metrics.

Where possible, device analytics may be offered on an opt-in basis. We take reasonable measures to ensure such analytics do not intentionally identify individual users or expose the contents of user devices.

Website Browsing Information

When you visit our website, we may automatically collect single-session browsing information such as:

  • Pages viewed,
  • Time spent on pages,
  • Navigation patterns,
  • Referring websites,
  • Search terms,
  • Device/browser metadata.

This information may be collected using cookies, analytics tools, or server logs to understand website usage and improve performance. Unless required for security, fraud prevention, or legal compliance, we generally do not associate this browsing data with directly identifiable individuals.

Data Retention

We retain collected information for as long as reasonably necessary to:

  • Provide and maintain services,
  • Comply with legal obligations,
  • Resolve disputes,
  • Enforce agreements,
  • Improve platform functionality and security.

Retention periods may vary depending on the type of data, legal requirements, and legitimate business needs.

How we use your data

We process information to provide and operate the services you have opted for, including matching tasks with developers, processing payments and billing, and sending transactional communications such as status updates, payment confirmations, and deadline reminders. We may also process information to investigate security incidents, prevent fraud, abuse, or unauthorized use of the platform, and improve our internal classifiers using aggregated and anonymized data only.

Who we share the data with

The Relay engineer assigned to your session, for the duration of the session and any agreed retainer. Sub-processors listed at /trust/subprocessors (cloud, email, billing, observability) and such third-party service providers handling payment processing. To the authorities, when compelled by valid legal process and within the limits of applicable law.

Security and use of personal data

Personal data is collected, used, and stored only for legitimate business purposes, including providing and improving our services, responding to inquiries, maintaining platform functionality, and meeting legal obligations. We maintain reasonable administrative, technical, and physical safeguards designed to protect the personal data in our possession, in accordance with applicable data protection and privacy laws. These safeguards include security policies, access controls, encryption where appropriate, monitoring systems, and internal procedures intended to help prevent unauthorized access, loss, misuse, disclosure, alteration, or destruction of personal data. Information stored through our platform is protected using industry-standard security measures, which may include firewalls, secure hosting infrastructure, and restricted access controls. While we take reasonable steps to safeguard your information, we are not responsible for risks or security events beyond our reasonable control.

Processing of personal data

To operate our platform and provide services effectively, personal data you share with us may be accessed, processed, or shared with authorized team members, contractors, service providers, or technical partners located in different jurisdictions, where reasonably necessary for service delivery, support, security, or operational purposes. We take reasonable steps to ensure that such access is limited to appropriate purposes and subject to applicable confidentiality and data protection obligations.

We only collect, use, and process personal data where we have a valid legal basis to do so under applicable law, including:

  • Your consent, where required;
  • Performance of services you request or agree to use;
  • Our legitimate interests, such as operating, securing, improving, and supporting our platform, provided such interests are not overridden by your rights; or
  • Compliance with applicable legal obligations.

Where cross-border data access or transfers are necessary, we take reasonable measures designed to protect your personal data in a manner consistent with applicable privacy and data protection requirements.

Disclosure to third parties & transfer of data

We do not sell, trade or otherwise transfer your personal data to third parties for their independent marketing purposes. However, we may share personal data with trusted service providers, contractors, infrastructure partners, payment processors, analytics providers, professional advisors, or such third parties where reasonably necessary to operate our platform, deliver services, maintain security, process transactions, comply with legal obligations, or support legitimate business operations. Such third parties may only access personal data to the extent reasonably necessary for the services they provide to us or on our behalf, and are expected to handle such data subject to appropriate confidentiality, security, and applicable legal obligations. We ensure that before any such disclosure necessary steps are taken to ensure that your personal data will be given adequate protection as required by relevant data privacy laws.

We may also disclose personal data where reasonably necessary to:

  • Comply with applicable laws, regulations, legal processes, or lawful government requests;
  • Enforce our terms, policies, or contractual rights;
  • Detect, prevent, or address fraud, security, or technical issues; or
  • Protect the rights, property, safety, or legitimate interests of our platform, users, or others.

Because our platform may rely on globally distributed tools, providers, or personnel, personal data may be processed or accessed in jurisdictions outside your country of residence. Where such transfers occur, we take reasonable steps designed to implement appropriate safeguards consistent with applicable data protection requirements, which may include contractual protections, confidentiality obligations, or other recognized transfer mechanisms where legally required.

Where applicable, including for users in jurisdictions with cross-border transfer restrictions such as the European Economic Area (EEA), we aim to use appropriate legal safeguards for international data transfers as required under relevant law.

Data retention period

We will retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including providing and improving our services, your browsing experience, measure our audience, maintaining platform functionality, analyzing usage, supporting security, complying with legal obligations, resolving disputes, and enforcing our agreements. Retention periods may vary depending on the nature of the data, the purpose of processing, operational needs, and applicable legal requirements. Where permitted by law, you may request deletion of your personal data, subject to any legal, security, contractual, or legitimate business obligations that may require us to retain certain information.

Cookies

We use cookies and similar technologies on our website to analyze traffic, improve functionality, and enhance the overall browsing experience for our visitors. Cookies are small text files placed on your device when you visit our website. Some cookies are necessary for the website to function properly, while others help us improve performance and personalize your experience. Cookies may also be used through trusted third-party services, such as Google Ads, to display advertisements that are more relevant to your interests. These advertisements may appear on our website or on other websites you visit. The use of cookies is limited to these purposes and is carried out in compliance with applicable data protection laws.

Social media credentials

You may be able to connect to Relay website through social media platforms, programs or applications, such as Twitter, Google or Facebook or any other social media platform (“Social Media”), in which case we may collect your social media user name/ID, session key, timestamps and your user profile picture, URL (if applicable) provided by them, and list of friend/contact IDs etc.

Mailers

Relay may, if you so choose, send direct mailers to you at the address given by you.

Anti-spam policy

Relay identifies the receipt, transmission or distribution of spam emails as a major threat and concern and has taken reasonable measures to minimize its effect. All emails received by Relay are subject to spam check. Any email identified as spam will be rejected. Relay reserves the right to reject and/or report any suspicious spam emails, to the authorities concerned, for necessary action.

Link to other sites

This website may contain links to other sites. We are not responsible for the privacy practices or the content of such websites.

Children’s privacy & age requirements

Our website and services are not intended for individuals below the minimum age required under applicable law to consent to data processing in their jurisdiction. By using our website, you represent that you meet the applicable legal age requirement or have obtained valid parental or guardian consent where required. We do not knowingly collect personal data from individuals below the minimum age required by applicable law. If you become aware that someone under the applicable legal age is using our website or has provided personal data, please contact us, and we may take reasonable steps to review and delete such information where appropriate.

Your consent

By using interacting with us via this website for our services, you give us consent to collect, use, and storage of your information in the manner described in this Privacy Policy. You may withdraw your consent at any time by contacting us at legal@relay.green. Please note that such withdrawal will not affect the lawfulness of any processing carried out prior to the withdrawal.

Changes to our privacy policy

We may update this Privacy Policy and our use of cookies from time to time to reflect changes in our services, technology, business practices, or legal and regulatory requirements. Any updates will become effective upon posting the revised version on our website, unless otherwise required by applicable law. You are encouraged to review this page periodically to stay informed about how we collect, use, and protect your information. Your continued access to or use of the website after any updates are posted constitutes your acknowledgment of the revised policy.

Contact us

For more information about our privacy practices, or if you have any questions, please contact us by email at legal@relay.green. To inquire about or report any personal data breach incident, you may contact us by email at dpo@relay.green.

Related policies: Cookies.