Runlessrunless

Privacy Policy

Last updated: February 2026

The short version

We collect what we need to provide the service. We don't sell your data. If you want your data deleted, email us and we'll take care of it.

What we collect

Free workflow analyzer

When you paste a workflow and click Analyze, we store:

  • The workflow YAML you submitted
  • The analysis results
  • A timestamp

We keep this data to enable shareable result URLs and to improve our analysis rules over time. We do not associate this data with any personal information unless you're signed in.

Signed-in users

When you connect your GitHub account, we collect:

  • Your GitHub username and email
  • Information about repositories you grant us access to
  • Workflow run metadata from GitHub (status, duration, timestamps)
  • Workflow file contents for analysis

We do not access your source code beyond workflow files. We do not store your GitHub access token permanently — we use short-lived tokens that expire.

Analytics

We use Plausible Analytics, a privacy-focused analytics tool that doesn't use cookies or collect personal data. We can see aggregate traffic patterns but cannot identify individual users.

How we use your data

  • To provide the service (analyzing workflows, showing results)
  • To improve our analysis rules and accuracy
  • To send you notifications you've opted into
  • To respond to support requests

We do not sell your data. We do not share it with third parties except as necessary to provide the service (e.g., our hosting provider).

Data retention

Free analyzer (anonymous use)

When you use the free workflow analyzer without signing in, your submissions are not linked to any user account. We have no way to identify which analyses belong to you.

If you want a specific analysis deleted, email [email protected] with the URL(s) of the results pages (e.g., runless.dev/a/abc123xyz). We'll delete them within 30 days. Without the specific URLs, we cannot identify or locate your data.

Signed-in users

For signed-in users, we retain your data for as long as your account is active. If you disconnect your GitHub account or delete your account, we remove your data within 30 days.

Your rights

You can request:

  • A copy of the data we have about you
  • Deletion of your data
  • Correction of inaccurate data

Email [email protected] and we'll handle it within 30 days.

Security

We use industry-standard security practices including encrypted connections (HTTPS), secure credential storage, and limited access controls. That said, no system is perfectly secure. If you discover a vulnerability, please email [email protected].

Changes

We may update this policy from time to time. Significant changes will be announced via email to registered users. The "last updated" date at the top reflects the most recent revision.

Contact

Questions about this policy? Email [email protected].

© 2026 Runless