RUNN is operated by eVamb Technologies ("RUNN", "we", "us"). We are the data controller for the information described here. For privacy questions, reach our privacy team at privacy@evamb.com.
| Category | Examples | Why |
|---|---|---|
| Account | Email, display name, handle, region, language | Create and secure your account |
| Precise location | GPS coordinates, routes, claimed blocks | The core game — drawing and holding turf |
| Health & fitness | Steps, distance, pace, heart rate, and any intake you choose to enter (e.g. resting HR, height/weight, goals) | Personalise training and stats — only with your explicit consent |
| Pet profile | Pet name, breed, age, weight (Dog Walk mode) | Enables the Dog Walk experience |
| Device & technical | Device type, OS, app version, IP, push tokens | Compatibility, security, notifications |
| Usage | Features used, sessions, in-game events | Operate and improve the service |
| Payment | Subscription status, processor token (we do not store full card numbers) | Billing via our payment processor |
Where GDPR / UK GDPR applies, we rely on these legal bases:
RUNN cannot work without location, but it is always your explicit choice. We request foreground location to track your route during a session and, where you enable it, background location to register turf while the screen is off. You can revoke location permission at any time in your device settings or our in-app preferences; the game simply stops claiming turf. We minimise precision to what gameplay requires and never sell location data.
Health and fitness data is treated as special-category / sensitive personal data (GDPR Art. 9, Australia's APPs, India's DPDP, UAE PDPL). We process it only on your explicit, separate consent, only to power your stats and personalisation, and never for advertising. You can delete your fitness history or disconnect any wearable integration (Apple Health, Google Fit, Garmin, Fitbit, Wear OS) at any time.
We do not sell your personal data. We share limited data with vetted processors under contract: cloud hosting and database (Google Firebase), our payment processor, push-notification delivery, and — if you enable it — mapping (Google Maps). Public elements of gameplay (your handle, claimed turf, leaderboard standing) are visible to other players by design.
We operate globally, so your data may be processed outside your country. Where required, we use appropriate safeguards such as Standard Contractual Clauses (EU/UK), the UK IDTA, and equivalent mechanisms for Canada, India, Australia and the UAE.
We keep personal data only as long as needed for the purposes above or as required by law. Account data is kept while your account is active; consent-ledger records are retained as compliance evidence; you can request deletion as described below.
Depending on where you live, you have some or all of these rights. Exercise any of them at privacy@evamb.com — we respond within the statutory window for your region.
| Region | Framework | Key rights |
|---|---|---|
| EU / EEA | GDPR | Access, rectify, erase, restrict, portability, object, withdraw consent, complain to your DPA |
| UK | UK GDPR + DPA 2018 | As GDPR; complain to the ICO |
| Canada | PIPEDA · Quebec Law 25 | Access, correction, withdraw consent, data portability, complain to the OPC / CAI |
| USA (CA & states) | CCPA / CPRA | Know, delete, correct, opt out of "sale"/"sharing", limit sensitive data, non-discrimination |
| India | DPDP Act 2023 | Access, correction, erasure, grievance redressal, nominate |
| Australia | Privacy Act (APPs) | Access, correction; complain to the OAIC |
| UAE | PDPL | Access, rectify, erase, restrict, portability, object |
US residents: we do not sell your personal information. To opt out of any "sharing" for cross-context advertising, use our in-app privacy preferences or email us.
RUNN is intended for players aged 16 and over. We apply a neutral age check and do not knowingly collect data from anyone under 16. If you believe a minor has provided us data, contact us and we will delete it.
We protect data with encryption in transit, strict server-side access rules (your data is isolated to your account), least-privilege processors, and an append-only consent ledger. No system is perfectly secure, but we work to industry standards and will notify you and regulators of qualifying breaches as the law requires.
We will post material changes here and, where required, ask for fresh consent. The "last updated" date above always reflects the current version.
eVamb Technologies — Privacy Team · privacy@evamb.com. EU/UK users may also contact our representative and lodge a complaint with their local supervisory authority.