Last Updated: April 27, 2025

Ada Labs LLC ("Ada Labs," "we," "us," or "our") is the owner of Bearify, a Software-as-a-Service (SaaS) platform that uses Agentic AI to help tech engineers create runbooks in natural language to automate tasks. We respect your privacy and are committed to protecting it. This Privacy Policy describes how we collect, use, share, and protect your personal information when you use Bearify (the "Service"), and what rights you have with respect to your information.

This Privacy Policy applies to all users of Bearify in the United States and worldwide. Ada Labs is based in California, USA, and we comply with applicable U.S. privacy laws (including the California Consumer Privacy Act (CCPA)). By using our Service, you agree to the collection and use of information in accordance with this Privacy Policy.

Minors: Our Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from anyone under 18. If you are under 18, please do not use Bearify or provide any information to us. If we learn that we have collected personal data from a minor under 18, we will take steps to delete such information. Parents or guardians who believe their child under 18 may have provided us personal information should contact us so we can delete it.

We collect several types of information from and about users of Bearify in order to operate our Service effectively. This includes information that you provide to us directly, information collected automatically about your use of the Service, and information obtained from third parties (such as integrated services). The types of personal information we may collect include:

When you register or contact us, we may collect personal identifiers such as your name, email address, phone number, company/organization name, and other contact details. This information is used to create your account, communicate with you, and personalize your experience.

If you create an account, our authentication system (managed by Auth0) will collect login credentials such as your email/username and password. (Note: Auth0 handles password security, and we do not have access to your raw password.) We may also assign you a user ID. For OAuth integrations (e.g., signing in via Google or GitHub), we collect tokens or identifiers necessary to authenticate you without storing your third-party login secrets.

We collect any content you input into Bearify or create using the Service. This includes natural language descriptions, runbook configurations, documentation, or other materials you submit to our AI to generate automation runbooks. This content may include personal or company data if you choose to include it. We store and process this content to provide you with the Service's functionality (for example, to generate runbooks and allow you to retrieve them later).

If you choose to integrate Bearify with third-party services (for example, connecting your GitHub, PagerDuty, or other developer tools), we will collect information necessary to enable the integration. This can include your account ID or username on the third-party service, OAuth tokens or API keys to access that service (with your permission), and data retrieved from those services as needed for the integration (e.g., repository names or incident data). We handle this information securely and only use it to facilitate the integration you have authorized.

If you purchase a subscription or pay for certain features, we (or our third-party payment processor) will collect payment and billing information. This may include your credit card number, billing address, and other payment details.

Note: Ada Labs uses reputable third-party payment processors (such as Stripe) to handle credit card transactions. We do not store your full credit card information on our own servers; that data is handled directly by the payment processor on our behalf. We do retain basic transaction records (e.g. the fact that you subscribed, the amount and date of payment, and an invoice record) for accounting and customer service purposes.

We automatically collect information about how you access and use Bearify. This includes technical information like your Internet Protocol (IP) address, login timestamps, browser type, device type, operating system, and device identifiers. We also collect information about your activity on the Service, such as the pages or features you visit, the time spent on those pages, search queries, runbook generation activity, clickstream data, and error logs or crash reports. This usage data helps us understand how our Service is performing, identify and fix bugs, and improve the user experience.

When you use our website or application, we and third parties use cookies and similar tracking technologies to collect certain information (see Cookies and Tracking Technologies below for details). This might include your preferences and browsing behavior on our site.

If you contact us directly (for example, via support email or chat), we will receive the information you provide in those communications. This may include your contact details and the content of your message (such as questions or feedback). We keep these communications to respond to you and improve our support services.

We collect the minimum amount of personal information necessary to fulfill the purposes outlined in this policy. You have the option not to provide certain information; however, doing so may limit your ability to use some features of Bearify (for example, we need basic contact and authentication info to create an account).

We use the personal information we collect for the following purposes, all in accordance with applicable laws and on appropriate legal bases (such as your consent, our legitimate interests, performance of a contract, or compliance with legal obligations):

We use your information to create, maintain, and support your Bearify account and to deliver the features and services you request. This includes using your data and content to generate runbooks through our AI, to facilitate any integrations you enable, and to ensure the Service functions as intended. For example, your integration credentials allow Bearify to fetch or send data to third-party tools per your instructions, and your user-provided content is processed by our AI to create customized automation steps for you.

We use contact information (like your email and phone number) to communicate with you about your account and the Service. This includes sending you transactional emails or messages for things such as account confirmations, password resets, alerts and notifications about runbook execution or system status, updates about new features, security or maintenance announcements, and responses to support inquiries. These communications are part of the Service and are necessary for us to perform our contract with you and keep you informed.

We analyze usage data and user feedback (in aggregated or de-identified form whenever possible) to understand how Bearify is used and how we can make it better. Your information helps us troubleshoot technical issues, monitor performance, and develop new features or improvements to the Service and our AI algorithms. For instance, usage patterns might inform us which features are most valuable, and error logs help us fix bugs. We may also use user-provided content in a de-identified manner to train or refine our AI models, only for the purpose of improving the Service's capabilities (and not for any unrelated purposes).

We may use the information we collect to personalize your experience with Bearify. This can include remembering your settings and preferences so that you don't have to re-enter them, tailoring content or recommendations within the app to your usage, or providing customized help and tips relevant to how you use the Service.

We use cookies and third-party analytics tools (like Google Analytics or similar) to collect and analyze information on user behavior and demographics. This helps us measure the effectiveness of our Service, understand user engagement, and improve our website's design, functionality, and content. For example, analytics data may tell us which tutorials are most viewed or where users drop off in a workflow, so we can enhance those areas.

With your consent (where required by law), we may use your contact information to send you promotional materials or newsletters about new products, features, offers, or events from Ada Labs that we believe may interest you. You can always opt out of these marketing communications – see Your Rights below (specifically "Opt-Out of Marketing Communications"). We do not spam, and you have control over how you hear from us.

We use information (such as device info, IP addresses, and usage activity) to protect the security of the Service, our company, and our users. This includes monitoring for suspicious or fraudulent activity, debugging to identify and fix security vulnerabilities, verifying user identities when necessary, enforcing our Terms of Service, and otherwise protecting the Service from misuse. For example, if we detect unusual login activity that might indicate unauthorized access, we may investigate or take action to secure the account.

We may process your personal information as required to comply with applicable laws, regulations, lawful requests and legal processes. For instance, we might retain certain transaction records for tax and accounting purposes, or disclose information in response to a court order. We also use your data to enforce our agreements and to protect our legal rights or the rights of others (such as investigating potential violations, fraud, or security issues).

If we intend to use your information for any purpose that is not outlined in this Privacy Policy, we will explain it at the time of collection and, if required, obtain your consent. We will not use your personal data for any purposes incompatible with those described above without informing you and getting your permission.

Like most online services, Bearify uses cookies and similar tracking technologies to gather usage information, improve our site, and enhance your user experience. This section explains how we use these technologies and your choices regarding them.

Cookies are small text files that websites send to your device (computer, smartphone, etc.) when you visit. They are stored in your web browser and contain information that allows the site to recognize you and remember your preferences or actions over time. We also may use related technologies like web beacons (small graphic images in emails or on pages that track if an email is opened or a page is viewed) and local storage.

Bearify uses cookies and tracking technologies for several reasons, including:

We do not use cookies for advertising or targeting purposes at this time (i.e., we are not showing third-party ads on Bearify that track you across other sites).

Aside from analytics providers, some third-party services that we integrate with might use their own cookies when you use their integration through our Service. For example, if Bearify offers a feature that includes content from another site (like a video or a plugin), those third parties might set cookies. We do not control these cookies, and their use is governed by the privacy policies of the third-party providers.

Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies or alert you when a cookie is being placed on your device. The Help section of your browser or device should explain how to manage cookies. Keep in mind that disabling or deleting cookies may affect the functionality of our Service; for instance, you might need to log in again or some features might not work as intended.

If you do not want Google Analytics to use your data, Google provides an opt-out mechanism for web browsers (the Google Analytics Opt-out Browser Add-on).

Additionally, if we send any email that contains a tracking pixel or beacon, you can typically avoid tracking by disabling image loading in your email client (though doing so may also hide images in the email).

For further information on how we use cookies or to manage your cookie preferences with Bearify (if applicable, via a cookie consent banner or settings), please refer to any additional Cookie Notice on our website or contact us as described below.

We value your privacy and handle your personal information with care. We do not sell your personal data to third parties for profit or share it with third parties for their own independent marketing purposes. However, we do share certain information with third parties in the following limited circumstances, to run our business and provide our Service to you:

We employ trusted third-party companies and individuals to support our Service – for example, cloud hosting providers, data storage services, payment processors, email service providers, analytics services, and customer support tools. These third parties perform services on our behalf, such as managing infrastructure, processing payments, authenticating users (e.g., Auth0 for login), sending out newsletters or system emails, or analyzing data. We only share with them the information that is necessary for them to perform their specific tasks. For instance, our payment processor will receive your card information to process payments, and our analytics provider will receive certain usage data.

Contractual Obligations: All our service providers are bound by appropriate confidentiality and data protection agreements. They are not permitted to use your personal information for any purpose other than to provide services to us and must protect it in accordance with this Privacy Policy and applicable law.

When you choose to integrate Bearify with third-party services or platforms (such as GitHub, PagerDuty, or other tools), we will share and/or receive information as necessary to execute that integration and only with your consent. For example, if you connect Bearify to your GitHub repository to generate runbooks based on your code, Bearify might send requests to GitHub's API using your provided credentials and retrieve information (like repository data) for your use within our Service. Similarly, if Bearify triggers an action in PagerDuty for you, it will send the necessary data to your PagerDuty account.

Important: Any information we share with or receive from an integrated third-party service will also be subject to that service's own privacy policy. We recommend you review the privacy policies of any third-party services you connect to Bearify. We are not responsible for how those third-party services use your data, but we only pass information to them as needed to fulfill the integration features you have enabled.

If Ada Labs LLC is involved in a merger, acquisition, financing due diligence, reorganization, bankruptcy, receivership, sale of company assets, or transition of service to another provider, your personal information may be disclosed to an acquiring entity or other relevant third parties as part of the transaction. In such cases, we will ensure that the recipient of the data commits to a privacy policy that offers the same level of protection as this one, and we will provide notice to you before your personal information is transferred and becomes subject to a different privacy policy.

We may disclose your personal information when we, in good faith, believe that release is appropriate or required to comply with the law. This includes situations such as:

Apart from the cases above, we will share your personal information with companies, organizations, or individuals outside of Ada Labs only if we have your explicit consent to do so. For instance, if we ever want to share testimonials that include your information, or have a partner offer that requires sharing data, we would only do so if you agreed.

In all cases of sharing, we strive to disclose the minimum information necessary and to ensure any third party we share it with has robust privacy and security standards. We do not sell your data to data brokers or advertisers. If in the future we ever consider a new kind of data sharing that is not covered by this Privacy Policy, we will update you and obtain any necessary consent before doing so.

Ada Labs takes the security of your personal information very seriously. We use a combination of administrative, technical, and physical safeguards to protect the data we collect and store. However, please be aware that no method of transmitting data over the Internet or storing data is 100% secure, and we cannot guarantee absolute security. That said, here are some key measures we have in place:

All personal data is encrypted at rest and in transit. This means that when your data is stored in our databases or on our servers, it is encrypted using industry-standard encryption algorithms. Likewise, communications between your browser (or app) and our servers are encrypted via Transport Layer Security (HTTPS/TLS). Encryption helps protect your data from unauthorized access, both as it travels over the internet and when it's stored on disk.

Our infrastructure is designed with network security best practices. The databases and servers that store sensitive information are network/VPN isolated, residing in a private network subnet not directly accessible from the public internet. Internal (intracluster) communication between our application components occurs over this private subnet, which adds an extra layer of protection around your data. Only the portions of our Service that must communicate externally (such as the web application front-end or API endpoints) reside in a public subnet to accept incoming connections – and even those are protected by firewalls and strict access controls.

User authentication is managed by Auth0, a leading identity management platform, which provides secure login and token-based authentication (OAuth 2.0). This ensures that access to your account is protected by robust protocols; for example, Auth0 securely stores password hashes and can enable features like multi-factor authentication (if we provide that option to users). All API calls and integration actions are secured with OAuth 2.0 tokens or keys, meaning only authorized requests with valid credentials can access data.

Internally, Ada Labs enforces the principle of least privilege – only those employees, contractors, or service accounts that absolutely need access to systems or data to perform their job are granted access, and even then it's limited to the minimum scope required. All access to sensitive systems is logged and monitored.

We keep our software and infrastructure updated with the latest security patches. We deploy firewalls and monitoring systems to guard against intrusions and attacks. Our databases are password-protected and accessible only by authorized services and machines within our secure environment. We also use VPNs or secure channels for administrative access to our servers. Regular backups are performed for data resilience, and those backups are encrypted as well.

We periodically review our security procedures and infrastructure. This may include conducting vulnerability scans, penetration testing by ourselves or third-party experts, code reviews for security issues, and auditing access logs for any unusual activity. By proactively testing our defenses, we aim to identify and remediate potential weaknesses before they can be exploited.

Ada Labs team members are trained on data security and privacy practices. We have internal policies in place to handle user data confidentially. Any third-party contractors or partners who might assist in development or support are also required to follow strict confidentiality and security obligations.

In the event of a data breach or security incident, we have a process to respond promptly. This includes investigating the incident, taking necessary steps to mitigate harm, and where required by law, notifying affected users or authorities about the breach.

While we work very hard to protect your information, it's also important for users to take precautions. You are responsible for keeping your account credentials safe. Please use a strong, unique password and do not share it. If you believe your Bearify account has been compromised or suspect any unauthorized access or use of your account, please notify us immediately so we can help secure your account.

You have certain rights and choices regarding your personal information. Ada Labs is committed to providing you with access to your data and the ability to correct or delete it, as well as other rights granted by privacy laws. The availability of these rights and the ways to exercise them are described below:

You have the right to request access to the personal information we hold about you. This includes asking for confirmation of whether we are processing your data, and to receive a copy of the information. We will provide you with such information in a readily usable format (often electronically).

If any of your personal information is inaccurate or incomplete, you have the right to request that we correct or update it. You can also review and update some of your information directly by logging into your Bearify account (for example, updating your profile or contact details). For any information not editable through the interface, contact us and we will make the corrections as needed.

You have the right to request that we delete your personal information. You can achieve many deletions by yourself (for instance, you may be able to delete certain content you've provided, or you can close your account which triggers deletion of associated data). For complete removal, you may contact us to request deletion of all personal data we have about you. We will honor deletion requests to the extent required by law.

Please note: there are some situations where we may retain certain information after a deletion request, for example, to comply with legal obligations or if the information is needed to resolve disputes, enforce our agreements, or for other legitimate business purposes (we will inform you if such an exception applies).

To the extent required by applicable law, you have the right to receive the personal data you have provided to us in a structured, commonly used, and machine-readable format, and you have the right to transmit that data to another service provider (if it's technically feasible). In practice, if you need such data portability (for example, exporting your runbook content or account data), let us know and we will work with you to provide it.

In cases where we rely on your consent to process your personal information (such as for sending marketing emails or for optional data sharing), you have the right to withdraw your consent at any time. Withdrawing consent will not affect the lawfulness of any processing we conducted prior to your withdrawal. For example, if you previously gave consent to receive our newsletter, you can opt-out by clicking the "unsubscribe" link in any of those emails or by contacting us, and we will stop sending you the newsletter.

Even if not based on consent (e.g., perhaps allowed as legitimate interest in some jurisdictions), we provide you the opportunity to opt out of marketing and promotional emails. You can unsubscribe from our marketing emails at any time by clicking the unsubscribe link included in the footer of those emails or by contacting us at the email address provided in Contact Information. Please note that you will still continue to receive transactional or account-related messages from us (such as password reset emails, billing notices, important service announcements) even if you opt out of marketing, as those are necessary for servicing your account.

If you are a resident of California, you have specific rights under the CCPA (as amended by the CPRA):

If you are a California resident and would like to exercise any of your rights under CCPA, please contact us as described in Contact Information below. We will need to verify your identity before fulfilling certain requests (for example, by having you log into your account or providing additional information). If you have an authorized agent making a request on your behalf, we will require proof of that authorization as permitted by CCPA. We aim to respond to verified requests within 45 days as required by law.

If you are located in the European Economic Area (EEA), United Kingdom, or another jurisdiction with similar data protection laws, you are entitled to rights under the GDPR or those local laws. These include all of the rights mentioned above (access, correction, deletion, portability, withdrawal of consent, etc.), and additionally:

To exercise any of Your Rights, please contact us using the information in the Contact Information section. We will respond to your request as soon as reasonably possible and in accordance with applicable law. Typically, we will not charge a fee for these requests unless they are manifestly unfounded or excessive. Please note that for security reasons, we may need to verify your identity before executing certain requests (to ensure that it's actually you making the request).

Bearify is offered by Ada Labs LLC, a company based in the United States. As such, if you are accessing our Service from outside the U.S., please be aware that your personal information will be transferred to and processed in the United States (and possibly in other countries where we or our service providers maintain servers or facilities). The data protection and privacy laws in these countries may be different from those in your home jurisdiction.

However, we take steps to ensure that your privacy is protected in line with this Policy and applicable law. For individuals located in the European Economic Area (EEA), United Kingdom, or other regions with data protection laws, we adhere to the requirements of the GDPR and related regulations for the transfer of personal data outside of those regions. This includes:

The GDPR requires us to inform you of the legal grounds we rely on to process your personal data. We only process personal data when we have a valid legal basis to do so. Depending on the context, our legal basis may be:

When we transfer personal data from the EEA/UK to the U.S. (or other countries that may not have been deemed "adequate" by the EU Commission), we rely on appropriate safeguards to ensure your personal data remains protected. These safeguards may include:

We are committed to ensuring that any international transfer of your data is done securely and in compliance with GDPR. If you have questions about our data transfer practices, please contact us.

Although not specifically asked in your question, international users often have concerns about how long their data is kept. We retain personal data only for as long as necessary to fulfill the purposes for which we collected it (as described in this Policy) or as required by law. This means, for example, we will keep your account information while your account is active and for a reasonable period thereafter in case you decide to reactivate, and as needed to comply with our legal obligations or resolve disputes. We may retain aggregated or anonymized data (which is not linked to an identifiable individual) for longer periods for analysis and improvements.

As noted in Your Rights, if you are an EU/EEA or UK user, you have the rights granted by the GDPR. We have a process in place to facilitate those rights. You can contact us at any time to discuss your privacy-related questions or to exercise your rights. We may ask you to verify your identity and request before acting, especially for sensitive requests like deletion or data export, to ensure the security of your data.

If you believe we have not been able to assist with your privacy concern or you have a complaint, you may lodge a complaint with your local Data Protection Authority. For example, if you are in the UK, this would be the Information Commissioner's Office (ICO); in France, the CNIL; in Germany, your state's DPA; etc. We would, of course, appreciate the chance to address your concerns directly first, so we encourage you to reach out to us.

By using Bearify, international users acknowledge that their information will be processed in the United States (and possibly other jurisdictions as explained) as necessary to provide the Service. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy, wherever it is processed.

We may update or modify this Privacy Policy from time to time to reflect changes in our business, legal or regulatory obligations, or the features of our Service. When we make changes, we will revise the "Last Updated" date at the top of this Policy. If the changes are material, we will provide you with additional prominent notice of such changes. This might include posting a notice on our website or within the app, or sending an email notification to the address associated with your account, prior to the change becoming effective.

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of Bearify after any update to this Privacy Policy will constitute your acceptance of the changes. If you do not agree to the updated terms, you should stop using the Service and may close your account if you wish.

For significant changes, especially those that might retroactively apply to personal data collected under a previous policy, we will either seek your consent or provide an opportunity for you to review the changes before they take effect, as required by law.

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please do not hesitate to contact us. We are here to help and will respond as promptly as we can. Contact Ada Labs LLC (Bearify) at:

Email: privacy@adalabs.org

You may also reach out to our support team through the Bearify website or app for general inquiries, and they can route your privacy-related questions to the appropriate team.

Ada Labs is committed to protecting your data and respecting your privacy. Thank you for trusting Bearify. We value your use of our Service, and we are always looking for ways to ensure your information is safe and your privacy rights are honored.