Privacy Policy
Last updated: April 11, 2026
This Privacy Policy explains how Brüng ("Brüng," "we," "us," or "our") collects, uses, stores, and shares information when you use our web application and related services (the "Service"). By creating an account and checking the box indicating you have read and agree to this Privacy Policy, you consent to the practices described here.
If you do not agree with this policy, do not use the Service.
1. Who We Are
Brüng is a web application that helps small business owners and eCommerce founders produce AI-assisted marketing outputs — including communications strategies, product copy, and launch materials.
For questions about this policy or your data, contact us at: support@brung.studio
2. Information We Collect
2.1 Account Information
When you create an account, we collect:
- Email address
- Password (stored as a hashed credential — we do not store your plaintext password)
- Any profile information you choose to provide
2.2 Project and Content Data
When you use the Service, we collect and store:
- Projects you create and the names you give them
- Business context, product information, and prompts you enter to generate outputs
- Content outputs generated on your behalf (e.g., marketing copy, strategy documents, briefs)
This content is stored in your account and is used to deliver the Service to you.
2.3 eCommerce Integration Data (Shopify)
If you choose to connect a Shopify store to your Brüng account, we may access:
- Shop identity and store metadata
- OAuth access tokens required to authenticate the integration
- Product data necessary to power the features you enable
This integration is optional and only activated when you explicitly authorize it. You may disconnect it at any time from your account settings.
2.4 Usage and Technical Data
We may automatically collect limited technical data when you use the Service, including:
- Browser type and version
- Operating system
- IP address
- Pages visited and actions taken within the application
- Session duration and timestamps
This data is used to operate, maintain, and improve the Service.
2.5 Communications
If you contact us (e.g., for support), we retain the content of that communication to respond to you and improve the Service.
3. How We Use Your Information
We use the information we collect to:
- Create and maintain your account
- Deliver the features and outputs you request
- Send transactional communications (e.g., account confirmation, password reset)
- Monitor and improve service performance and reliability
- Detect and prevent fraud, abuse, or security issues
- Comply with applicable legal obligations
We do not use your data for advertising, and we do not sell your data to third parties.
4. AI Processing
Core features of Brüng use third-party AI model providers to generate content outputs. When you submit prompts or business context through the Service, that content may be transmitted to one or more of these providers for processing.
Categories of data that may be sent to AI providers include:
- Business context you provide (e.g., brand description, product details)
- Prompts and instructions you enter
- Content generated in response to your requests
We work with AI providers who are bound by data processing agreements that restrict how they may use submitted data. We do not knowingly transmit personally identifiable information to AI providers beyond what you explicitly include in your inputs.
You should avoid entering sensitive personal data (such as customer records, financial account numbers, or health information) into prompt fields.
5. Cookies and Local Storage
We use cookies and similar technologies to maintain your session and authenticate your account. These are functional and necessary for the Service to work.
We use analytics tools (see Section 6) that may set their own cookies or collect anonymized usage data.
We do not use cookies for advertising or cross-site tracking.
6. Third-Party Services and Subprocessors
We rely on the following categories of third-party services to operate the Service:
| Category | Provider | Purpose |
|---|---|---|
| Authentication & Database | Supabase | User accounts, session management, data storage |
| AI / Content Generation | Third-party AI providers | Generating marketing outputs from your inputs |
| eCommerce Integration | Shopify | Optional store connection and product data access |
| Analytics & Telemetry | Vercel Analytics | Anonymized usage data and performance monitoring |
| Hosting & Infrastructure | Vercel | Application hosting and delivery |
| Transactional Email | Google Workspace | Account confirmation, password reset, product notifications |
Each provider processes data only as necessary to perform their function and is bound by applicable data protection terms.
7. Data Retention
We retain your data for as long as your account is active or as needed to provide the Service.
- Account data: Retained until you delete your account or request deletion.
- Project and content data: Retained as part of your account until deletion.
- Technical and log data: Retained for a limited period consistent with operational and security needs.
- Integration data (Shopify): Retained while the integration is active; removed upon disconnection or account deletion.
We may retain certain data longer where required by law or to resolve disputes.
8. Data Security
We implement technical and organizational measures to protect your data, including encrypted storage, hashed credentials, and access controls. Supabase implements row-level security to restrict data access to authorized users.
No system is perfectly secure. We encourage you to use a strong, unique password and to contact us immediately if you suspect unauthorized access to your account.
9. International Data Transfers
Brüng and some of its subprocessors operate in or may process data in countries outside your own, including the United States. By using the Service, you acknowledge that your data may be transferred to and processed in these countries.
Where required, we rely on appropriate safeguards (such as standard contractual clauses or the data processing terms of our subprocessors) to govern international transfers.
10. Your Rights and Choices
Depending on where you are located, you may have rights with respect to your personal data, including the right to:
- Access the personal data we hold about you
- Correct inaccurate data
- Delete your account and associated data
- Object to certain processing activities
- Withdraw consent where processing is based on consent
To exercise any of these rights, contact us at support@brung.studio. We will respond within a reasonable timeframe consistent with applicable law.
You may delete your account at any time from your account settings. Upon deletion, we will remove your personal data from active systems, subject to any legal retention obligations.
11. Children
The Service is not directed at children under the age of 13 (or 16 where applicable under local law). We do not knowingly collect personal data from children. If we become aware that a child has provided us with personal data, we will take steps to delete it promptly.
12. Third-Party Links
The Service may contain links to third-party sites or services. We are not responsible for the privacy practices of those third parties. We encourage you to review their privacy policies before providing any information.
13. Changes to This Policy
We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email or through a notice within the Service, and we will update the "Last updated" date at the top of this page.
Your continued use of the Service after any changes take effect constitutes your acceptance of the updated policy.
14. Contact
If you have questions, concerns, or requests regarding this Privacy Policy or how we handle your data, contact us at:
Brüng
Email: support@brung.studio