Notice News, Inc., a Delaware corporation operating the RooneAI platform (“Roone,” “we,” “us,” or “our”), is committed to protecting the privacy of its customers and their Authorized Users. This Privacy Policy explains what information we collect, how we use it, and your rights with respect to it.
This Privacy Policy applies to the Roone platform and all associated services (the “Platform”). It should be read alongside our Terms of Service. Capitalized terms not defined here have the meanings given in the Terms of Service. By accessing or using the Platform, you agree to the terms of this Privacy Policy.
Roone’s Platform is a B2B service. We do not knowingly collect personal data directly from consumers or individuals other than Customer employees, contractors, and other Authorized Users who access the Platform on behalf of their organizations.
1. Information We Collect
1.1 Account and Contact Information
When a Customer or Authorized User creates an account or is provisioned access, we collect information such as: name, business email address, job title, organization name, billing address, and payment information (processed via our third-party payment processor; we do not store full payment card numbers). This information is provided directly by the Customer or Authorized User during registration or account setup.
1.2 Usage and Platform Data
We automatically collect technical and usage data when Authorized Users interact with the Platform, including:
- log data (IP addresses, browser type, operating system, referring URLs, access timestamps);
- device identifiers and session data;
- feature usage patterns, clicks, and navigation data within the Platform;
- content workflow activity (e.g., drafts created, content approved, editorial signals provided); and
- API access logs and integration activity.
This usage data is collected to operate, maintain, and improve the Platform, to diagnose technical issues, and to understand how customers use Roone’s features.
1.3 Customer Content
As part of providing the Platform, we process Customer Content — including source materials, style guides, brand guidelines, draft content, and editorial feedback signals — uploaded or generated by Customer and its Authorized Users. We process Customer Content solely on behalf of and at the direction of Customer. Customer is the data controller (or equivalent) with respect to any personal data contained within Customer Content.
We also process the configuration and outputs of the Editorial DNA system, including the editorial preferences and content guidelines derived from Customer's inputs and used to apply Customer's voice within that Customer's account, as described in Section 4 below.
1.4 Communications Data
We collect information you provide when you contact us for support, respond to surveys, or communicate with our team, including the content of those communications and any attachments.
1.5 Information We Do Not Collect
Roone’s Platform is not directed at consumers. We do not knowingly collect personal data directly from individuals other than Authorized Users acting in a professional capacity. We do not collect sensitive personal data (such as health, financial, or biometric data) as part of our standard Platform operations.
2. How We Use Information
We use the information we collect for the following purposes:
2.1 Providing and Operating the Platform
We use account information, usage data, and Customer Content to deliver the Platform’s features and services, authenticate users, process transactions, and fulfill our contractual obligations to Customers.
2.2 Personalizing the Editorial DNA System
We use Customer Content, editorial feedback signals, and usage patterns to configure and apply the Editorial DNA for each Customer's account, tailoring AI-generated outputs to reflect that Customer's editorial voice and standards. The Editorial DNA configured for a Customer is used only to provide the Platform to that Customer.
2.3 Improving the Platform
We use aggregated technical and operational data — such as system performance, reliability metrics, error diagnostics, and feature-usage patterns that do not contain Customer Content or editorial signals — to analyze trends, identify bugs, develop new features, and improve the quality and performance of the Platform. We do not use Customer Content or the editorial signals generated through a Customer's account to develop or improve features for the benefit of other customers without that Customer's explicit prior written consent, as described in Section 4.
2.4 Customer Communications
We use contact information to send service-related communications such as subscription confirmations, renewal notices, product updates, security alerts, and support responses. We may also send promotional communications about new features or services; Authorized Users may opt out of promotional emails at any time.
2.5 Security and Fraud Prevention
We use log data and usage information to detect, investigate, and prevent unauthorized access, abuse, or fraudulent activity on the Platform.
2.6 Legal and Compliance Obligations
We may process personal data as necessary to comply with applicable laws, respond to legal process, enforce our agreements, and protect the rights and safety of Roone, our customers, and others.
3. How We Share Information
We do not sell, rent, or trade personal data. We share information only in the following circumstances:
3.1 Service Providers
We share information with third-party vendors and service providers who perform services on our behalf, such as cloud hosting, payment processing, analytics, email delivery, and customer support tooling. These providers are contractually required to use data only as directed by Roone and to implement appropriate security measures.
3.2 AI and Technology Partners
The Platform may use third-party AI model providers (such as large language model APIs) to power certain Platform features. Customer Content processed through these services is subject to Roone’s data processing agreements with those providers, which require confidential and secure handling of the data.
3.3 Business Transfers
If Roone is involved in a merger, acquisition, sale of assets, financing, or similar transaction, personal data may be transferred as part of that transaction. We will provide notice before personal data is transferred and becomes subject to a materially different privacy policy.
3.4 Legal Requirements
We may disclose information if required by applicable law, court order, or governmental authority, or if we believe in good faith that disclosure is necessary to protect the rights, property, or safety of Roone, our customers, or others.
3.5 With Customer’s Consent
We may share information in other circumstances with Customer’s prior written consent.
4. Customer Content and AI Model Training
We understand that Customer Content may be sensitive and competitively valuable. Our commitments regarding Customer Content are as follows:
- We process Customer Content solely to provide the Platform to Customer and to configure and apply the Editorial DNA for that Customer's account.
- We do not train or fine-tune any artificial intelligence model on Customer Content.
- We do not use Customer Content, or the editorial signals, approvals, or preferences generated through a Customer's account, to benefit any other customer's account, and will not do so without the Customer's explicit prior written consent.
- The Editorial DNA configured for a Customer's account is specific to that account and is not shared with, or used to benefit, any other Customer.
- We may use aggregated technical and operational data that does not contain Customer Content or editorial signals — such as system performance, reliability, and usage metrics — to operate, secure, and improve the Platform.
For clarity: Roone owns the Editorial DNA system, including the software, prompt and retrieval frameworks, and configurations it develops, as described in the Terms of Service. Customer owns the underlying source materials and defined style parameters it contributed. The Editorial DNA system does not train or modify any AI model.
5. Data Retention and Deletion
We retain personal data and Customer Content for as long as necessary to provide the Platform, fulfill our contractual obligations, comply with applicable legal requirements, resolve disputes, and enforce our agreements.
5.1 Account and Usage Data
We retain account information and usage logs for the duration of the Subscription Term and for a reasonable period thereafter (typically up to three (3) years) for audit, legal compliance, and dispute resolution purposes, unless a shorter or longer period is required by applicable law.
5.2 Customer Content
We retain Customer Content for the duration of the Subscription Term. Upon termination or expiration of a Subscription Term, Customer may request export of its Customer Content within thirty (30) days. After that thirty (30) day window, Roone may permanently delete Customer Content from its systems. Customers with active export requests will not have content deleted until the export is completed.
5.3 Backups
Customer Content may persist in encrypted backup systems for up to ninety (90) days after deletion from active systems. Backup data is not accessible to Roone staff in the ordinary course of business.
5.4 Deletion Requests
Customers may request deletion of personal data associated with their account by contacting us at legal@roone.ai. We will fulfill such requests in accordance with applicable law.
6. Data Security
Roone implements commercially reasonable technical, administrative, and physical safeguards designed to protect personal data and Customer Content against unauthorized access, disclosure, alteration, or destruction. These include encryption of data in transit and at rest, access controls, and periodic reviews of our security practices.
No method of electronic transmission or storage is 100% secure. While we work to protect your data, we cannot guarantee absolute security. In the event of a data breach that affects personal data, we will notify affected Customers in accordance with applicable law.
7. GDPR — European and UK Data Subjects
This Section applies to personal data of individuals located in the European Economic Area (“EEA”) or the United Kingdom (“UK”) that is processed in connection with the Platform.
7.1 Roles
With respect to personal data of Authorized Users and other individuals whose personal data Customer uploads or provides through the Platform, Customer acts as the data controller and Roone acts as the data processor. With respect to personal data of Authorized Users that Roone collects directly (e.g., account information, usage logs), Roone acts as the data controller.
7.2 Lawful Basis for Processing
Where Roone processes personal data as a controller, we rely on the following legal bases: (a) performance of a contract — processing necessary to provide the Platform under the Terms of Service; (b) legitimate interests — processing for security, fraud prevention, and Platform improvement, where those interests are not overridden by data subjects’ rights; and (c) legal obligation — processing required by applicable law.
7.3 Data Processing Agreement
To the extent Roone processes personal data on behalf of Customer as a processor subject to GDPR or other applicable data protection law, the parties will enter into a Data Processing Agreement ("DPA") that satisfies the requirements of Article 28 of the GDPR. Roone will make a DPA available upon Customer's written request to legal@roone.ai.
7.4 Data Subject Rights
EU/EEA and UK data subjects have the right to access, rectify, erase, restrict, port, or object to the processing of their personal data, subject to applicable exceptions. Where Roone processes personal data as a controller, data subjects may exercise these rights by contacting legal@roone.ai. Where Roone processes personal data as a processor, data subjects should contact the relevant Customer (the data controller) to exercise their rights.
7.5 International Data Transfers
Roone is based in the United States, and Customer Content is hosted on infrastructure located in the United States. Personal data of EEA/UK data subjects may be transferred to and processed in the United States and other countries that may not provide the same level of data protection as the country in which the data subject resides. We rely on standard contractual clauses approved by the European Commission (and equivalent UK mechanisms) as the lawful transfer mechanism for such transfers. Customers may request a copy of applicable transfer mechanisms by contacting legal@roone.ai.
7.6 Data Protection Officer
Roone has designated Andrew Springer as its primary privacy contact. If we are required by applicable law to appoint a Data Protection Officer, that contact information will be updated here.
8. CCPA — California Residents
This Section applies to personal information of California residents under the California Consumer Privacy Act, as amended by the California Privacy Rights Act (collectively, “CCPA”).
8.1 Categories of Personal Information Collected
In the preceding twelve (12) months, Roone has collected the following categories of personal information from or about Authorized Users: identifiers (name, email address, IP address); professional or employment-related information (job title, organization name); commercial information (subscription and payment records); internet or other network activity (usage logs, feature interactions); and inferences drawn from the above to personalize the Platform experience.
8.2 Use and Disclosure of Personal Information
We use and disclose personal information for the business purposes described in Sections 2 and 3 of this Privacy Policy. We do not sell personal information as defined under the CCPA. We do not share personal information for cross-context behavioral advertising.
8.3 California Privacy Rights
California residents have the right to:
- Know what personal information we collect, use, disclose, and share;
- Delete personal information we hold about them, subject to certain exceptions;
- Correct inaccurate personal information;
- Opt out of the sale or sharing of personal information (not applicable, as we do not sell or share personal information as defined by the CCPA); and
- Non-discrimination for exercising their privacy rights.
To exercise these rights, California residents may contact us at legal@roone.ai. We will respond to verifiable requests within the timeframes required by applicable law. Requests may be submitted by the data subject or by an authorized agent with proper documentation of authority.
9. Cookies and Tracking Technologies
We use cookies, web beacons, and similar tracking technologies to operate the Platform, remember user preferences, analyze usage, and deliver service communications. We use the following types of cookies:
- Strictly necessary cookies: required for the Platform to function (e.g., session authentication, security tokens). These cannot be disabled.
- Functional cookies: remember user preferences and settings to improve the experience.
- Analytics cookies: collect aggregated, anonymized data about how Authorized Users interact with the Platform to help us improve it.
We do not use third-party advertising cookies on the Platform. Authorized Users may manage cookie preferences through their browser settings, but disabling strictly necessary cookies may impair Platform functionality.
10. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. If we make material changes, we will notify the Customer at the email address on file and post the updated policy on the Platform. The updated policy will be effective thirty (30) days after notice, unless a shorter period is required by law. Continued use of the Platform after the effective date constitutes acceptance of the updated policy.
11. Contact Us
If you have questions, concerns, or requests relating to this Privacy Policy or our data practices, please contact us at:
Notice News, Inc. d/b/a Roone · Attn: Privacy · PO Box 93, 179 Rehoboth Ave. Rehoboth Beach, DE 19971, United States · Email: legal@roone.ai
For EU/EEA or UK data subjects wishing to lodge a complaint, you also have the right to contact your local data protection authority.
This Privacy Policy is incorporated by reference into the Roone Terms of Service. In the event of any conflict between this Privacy Policy and the Terms of Service, the Terms of Service shall control.
