Privacy Policy

Last updated: March 23, 2026

Riem.ai ("we," "us," or "our") operates the riem.ai website and platform (the "Service"). This Privacy Policy explains how we collect, use, disclose, and protect information when you use our Service.

By using the Service, you agree to the collection and use of information in accordance with this policy.

1. Information We Collect

1.1 Account Information

When you create an account, we collect your email address and password. Authentication is handled through Supabase. We do not store your password in plaintext.

1.2 Billing Information

Payment processing is handled by Stripe. We do not store your credit card number, bank account details, or other financial information on our servers. Stripe may collect information necessary to process your payment in accordance with their privacy policy.

1.3 Usage Data

We collect information about how you interact with the Service, including search queries, pages visited, and feature usage. This helps us improve the product.

1.4 Publicly Available Developer Data

Our Service analyzes publicly available data from GitHub via GH Archive (a public dataset of GitHub events hosted on Google BigQuery). This includes public repository contributions, commit messages, pull request titles, issue activity, and other publicly visible GitHub activity. We do not access private repositories or non-public GitHub data.

1.5 Enrichment Data

When a user requests candidate enrichment, we may obtain additional publicly available or commercially available information through third-party data providers (such as People Data Labs), including professional email addresses, LinkedIn profiles, and other social profiles. This data is only retrieved on a per-request basis and is not collected in bulk.

2. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the Service
  • Process your searches and deliver candidate results
  • Process payments and manage your subscription
  • Generate AI-powered candidate summaries and outreach emails
  • Communicate with you about your account, updates, and support
  • Detect and prevent fraud, abuse, and security incidents
  • Comply with legal obligations

3. AI Processing

We use Anthropic's Claude API to parse natural language search queries, generate candidate contribution summaries, and create outreach email drafts. Your search queries and publicly available candidate data are sent to Anthropic for processing. Anthropic's use of this data is governed by their privacy policy. We do not use your data to train AI models.

4. Data Sharing and Disclosure

We do not sell your personal information. We may share information with:

  • Service providers: Third-party companies that help us operate the Service (Supabase for authentication and database hosting, Stripe for payments, Google Cloud for data processing, Anthropic for AI processing, People Data Labs for enrichment, Sentry for error tracking).
  • Legal compliance: When required by law, regulation, legal process, or governmental request.
  • Safety and rights: To protect the rights, property, or safety of Riem.ai, our users, or the public.
  • Business transfers: In connection with a merger, acquisition, or sale of assets, in which case your information may be transferred to the successor entity.

5. Data Retention

We retain your account information for as long as your account is active. Search results and query caches are retained for up to 7 days and then automatically deleted. Enriched candidate profiles are retained indefinitely to avoid duplicate enrichment charges. You may request deletion of your account and associated data at any time by contacting us.

6. Developer Profiles and Opt-Out

Riem.ai indexes publicly available GitHub activity. If you are a developer whose public contributions appear in our search results and you would like to be excluded, you can opt out at any time through our opt-out process. Once you opt out, your profile will be excluded from all future search results.

Our legal basis for processing publicly available developer data is legitimate interest under GDPR Article 6(1)(f). We believe that connecting companies with developers based on publicly shared work serves a legitimate purpose, and we provide a straightforward opt-out mechanism for any developer who prefers not to be included.

7. Security

We implement industry-standard security measures to protect your information, including encryption in transit (TLS), secure authentication, and access controls. However, no method of transmission over the Internet or electronic storage is 100% secure, and we cannot guarantee absolute security.

8. Your Rights

You may request access to, correction of, or deletion of your personal information at any time. California residents have additional rights under the CCPA — see our Do Not Sell My Info page. We do not sell personal information.

To exercise any of these rights, contact us at privacy@riem.ai.

9. Changes and Contact

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated date. Your continued use of the Service after changes are posted constitutes acceptance.

Questions? Contact us at privacy@riem.ai.