Good Ventures Lab Inc. operates the managed plane of RelayGate. This policy describes what data the managed plane collects, the lawful bases for processing, retention, and your rights. The self-host binary collects nothing on its own.
Good Ventures Lab Inc. (Canada) is the data controller for the managed plane of RelayGate. Subprocessors (cloud, KMS, observability, support) act as processors under data-processing agreements that mirror our obligations to you.
Account-level data. Company name, billing contact email, billing address, tax registration number where applicable. We use this to invoice and to respond to support requests.
Operational data. Per-request metadata: timestamp, tenant id, model id, backend id, latency, token counts, policy decision, receipt hash. We do not collect request bodies or response bodies. The receipt is a signed metadata digest, not a payload archive.
Telemetry. Error reports, request latency histograms, backend success rates. Telemetry is aggregated at the tenant level and is used to operate the service. Telemetry is not sold and is not shared with third parties for advertising.
Marketing site. Standard server-side request logs (IP address, user agent, requested URL) retained for 30 days for security and operational purposes. We do not run third-party analytics scripts on relaygate.ai.
We do not collect the contents of inferences. We do not store prompts or completions. We do not run third-party advertising trackers. We do not sell or rent any user data. We do not collect biometric, health, or payment-card data.
Operational receipts. Retained for the contractual retention window agreed in the order form, default seven years (matches the longest applicable financial-records retention period in our markets). Receipts can be exported and deleted on customer request, except where retention is mandated by applicable law.
Account-level data. Retained for the duration of the customer relationship plus seven years after termination for tax and audit purposes.
Server logs. 30 days. Aggregated telemetry. 13 months. Support tickets. Three years from resolution.
We share with: cloud infrastructure providers (currently Google Cloud Platform), the model backends our customers route to, and government bodies where required by lawful process. We do not sell. We do not share with marketing third parties.
Backend traffic. When a customer's request is routed to a model backend (OpenAI, Anthropic, Google, etc.), the request body is passed through to the backend so it can produce a response. RelayGate does not retain a copy of the body. The backends operate under their own data-handling policies, which the customer is responsible for evaluating.
Cross-border transfer. Managed plane data is processed in the United States and Canada by default. EU customer data is processed under standard contractual clauses where applicable. The Enterprise tier offers sovereign BC-Canadian tenancy via the Heroa substrate for customers with data-residency requirements.
You may access, correct, export, or delete your personal data by writing to [email protected]. We respond within 30 days. EU residents have additional rights under GDPR; California residents under CCPA/CPRA; Canadian residents under PIPEDA. We honor all of them.
If your data was processed on behalf of a RelayGate customer (i.e., we are a processor and they are the controller), please contact the controller directly. We will assist them in fulfilling their obligations to you.
Material changes to this policy are announced on the changelog and emailed to billing contacts at least 30 days in advance. The current revision date is at the bottom of this page.
For questions: [email protected].
Last updated 2026-04-26.