Legal

Privacy Policy

Last updated May 14, 2026

This policy describes what Arbiter collects, why, and how it is handled. Arbiter is a workspace and runtime for supervised agent workflows — the guiding principle here is the same one that shapes the product: collect what the service needs to run, and nothing more.

Data we collect

We collect the minimum needed to run the service:

  • Account data — the email address and name you provide at sign-up, and an invite code if you joined through the closed beta.
  • Usage metadata — per-request token counts, model identifiers, timestamps, and cost figures. This is what powers your usage dashboard and billing.
  • Operational logs — request IDs, error codes, and latency, retained short-term for debugging and abuse prevention.

We do not retain the content of your prompts or agent responses for analytics, profiling, or model training. Prompt and response bodies are processed to fulfil a request and to populate features you explicitly use (conversation history, memory entries, artifacts) — they are not mined for any other purpose.

How we use it

Collected data is used to:

  • operate, maintain, and secure the platform;
  • meter usage and bill credits against your account;
  • respond to support requests and investigate incidents;
  • detect and prevent abuse, fraud, and violations of our terms.

We do not sell personal data, and we do not use your prompts or outputs to train models — ours or anyone else’s.

Third parties

Running an agent workflow necessarily involves passing your prompt to a model provider. When you send a request, the relevant content is forwarded to the upstream LLM provider (e.g. Anthropic, OpenAI, Google) needed to fulfil it, subject to that provider’s terms and data policies.

We also rely on a small set of infrastructure and payment processors to host the service and handle credit purchases. These vendors receive only the data required to perform their function and are bound by their own contractual obligations.

Retention

Account data is retained for as long as your account is active. Conversation history, memory entries, and artifacts persist until you delete them or delete your account. Usage metadata is retained for billing and accounting purposes. Operational logs are rotated on a short cycle.

When you delete your account, associated tenant data is removed; some records may be retained where required by law or for legitimate accounting purposes.

Your rights

You can access and export your conversations, memory, and artifacts from within the app. You can request correction or deletion of your personal data, and you can close your account at any time. Depending on where you live, you may have additional rights under local data-protection law — we honour those requests regardless of jurisdiction.

Contact

Questions about this policy or a data request? Email privacy@arbiter.run.