Continuance

Privacy Policy

Privacy policy for Continuance
Feb 27, 2026

Last updated: February 27, 2026

Scope

This policy covers data collected by Continuance (continuance.run) — a persistent Space system you access via the web dashboard and CLI. By using Continuance you accept this policy.

Information We Collect

1. Account Data

  • What we collect: Email address, display name, and account identifiers created during registration.
  • Why: Account management, authentication across dashboard and CLI, account-related communications.

2. Authentication and Session Data

  • What we collect: Session tokens, cookies, and CLI device tokens generated when you sign in via the web dashboard or CLI.
  • Why: Identity verification, session persistence, Space access authorization.

3. Payment Data

  • What we collect: Payment method type, billing address, transaction identifiers, invoice records, and subscription or balance status. Full credit card numbers are processed directly by Stripe and are never stored on our servers.
  • Why: Payment processing, invoicing, fraud detection, regulatory compliance.

4. Space Metadata

  • What we collect: Space names, state (Awake, Resting, Waking, Ended), Profile level (Standard, Accelerated, Intensive), region, creation and last-active timestamps, and associated configuration metadata.
  • Why: Space provisioning, scheduling, and lifecycle management. We do not read the contents of your Space (files, models, datasets) by default — see Data Access below.
  • SSH connection metadata (timestamps, duration) may be logged. SSH is a transport layer; the object you interact with is your Space.

5. Usage and Telemetry Data

  • What we collect: API request logs, error logs, page views, feature usage metrics, and performance data.
  • Why: Service health monitoring, debugging, product improvement. Not sold.

6. Device and Browser Data

  • What we collect: Browser type, operating system, IP address, and device identifiers when you access the web dashboard.
  • Why: Device compatibility, security enforcement, abuse prevention.

Cookies

  • Essential: Authentication and session management. Cannot be disabled without breaking core functionality.
  • Analytics: Vercel Analytics collects anonymized usage data. Block via browser settings if preferred.
  • Advertising / tracking: None.

Data Access

We do not proactively inspect the contents of your Spaces. However, we may access Space metadata and system logs in the following limited circumstances:

  • To respond to a support request you initiate.
  • To investigate a credible report of abuse, a security incident, or a violation of our Terms of Service.
  • To comply with a valid legal obligation.

In all cases, access is limited to the minimum scope necessary.

Third-Party Services (Subprocessors)

We share data with the following third-party services to operate Continuance:

ServicePurposeData Shared
SupabaseAuthenticationEmail, account identifiers, session tokens
NeonDatabase (PostgreSQL)Account data, Space metadata, transaction records
StripePayment processingPayment method details, billing address, transaction data
ResendTransactional emailEmail address, notification content
VercelHosting and analyticsIP address, page views, anonymized usage metrics
CloudflareInfrastructure, DDoS protection, CAPTCHA (Turnstile)IP address, request metadata

Each subprocessor is contractually obligated to protect your data and use it only for the stated purpose.

Data Retention

  • Account data: Retained for as long as your account is active. After account deletion, we remove personally identifiable information within 30 days, except where retention is required by law (e.g., financial records).
  • Space metadata: Retained for as long as the associated Space exists. Metadata for ended Spaces is retained for up to 90 days for billing and support purposes, then deleted.
  • Usage and telemetry logs: Retained for up to 12 months, then aggregated or deleted.
  • Payment records: Retained as required by applicable tax and financial regulations (typically 7 years).

Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you.
  • Correct inaccurate or incomplete data.
  • Delete your account and associated personal data.
  • Export your data in a portable format.

To exercise any of these rights, contact us at support@continuance.run. We will respond within 30 days.

Account Deletion

You may request account deletion at any time by contacting support@continuance.run. Upon deletion:

  • Your account and profile data will be removed within 30 days.
  • Active Spaces will be terminated and their data purged.
  • Financial records will be retained as required by law.

Data Security

We implement industry-standard security measures including encryption in transit (TLS), encryption at rest, and role-based access controls. However, no method of transmission over the Internet or electronic storage is completely secure, and we cannot guarantee absolute security.

International Data Transfers

Your data may be processed in jurisdictions outside your country of residence. Where we transfer data internationally, we rely on appropriate safeguards such as standard contractual clauses or equivalent mechanisms.

Children's Privacy

Continuance is not directed to individuals under the age of 16. We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us immediately.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the revised policy on this page and updating the "Last updated" date above. Continued use of Continuance after changes are posted constitutes acceptance of the revised policy.

Contact Us

If you have questions about this Privacy Policy or our data practices, contact us at:

Continuancecontinuance.run Email: support@continuance.run