Guardrail API

Privacy Policy

Guardrail Labs, LLC ("Guardrail", "we", "us") is committed to handling your information responsibly. This page explains what we collect when you interact with our website and services, and how we use that information.

This policy applies to the Guardrail website, Admin Console, and related API services. It is intended for early access and may be refined as the product moves toward general availability.

Information We Collect

We may collect the following categories of information:

  • Account information: your name, email address, and organization name when you sign up or request access.
  • Billing information: payment details and subscription status for paid plans, handled through our payment processor.
  • Usage metadata: information about how your tenant uses the Guardrail API, such as request counts, decision types, and error codes.
  • Website analytics: aggregate data about how visitors use the public website, collected via standard analytics tools.

We do not sell personal information and do not use your prompts or responses to train foundation models.

Prompts, Responses, and Logs

Guardrail evaluates prompts and responses to make safety and policy decisions. In early access deployments:

  • Evaluation happens in memory. We focus on storing decisions and metadata, not raw prompt content.
  • Enterprises can choose stricter or more limited logging policies, including disabling certain categories of stored data.
  • Logs and audit records belong to the customer; they can be exported into existing observability or compliance systems.

How We Use Data

We use the information we collect to:

  • Provide and improve the Guardrail services
  • Authenticate users and protect against abuse
  • Monitor reliability and security of the platform
  • Communicate about updates, incidents, or support issues
  • Comply with legal obligations where applicable

Sharing With Third Parties

We may share limited information with third-party service providers who help us operate the platform, such as:

  • Payment processors
  • Cloud infrastructure providers
  • Logging and analytics tools

These providers are only given the information necessary to perform their services and are expected to protect it appropriately. We do not sell personal information to third parties.

Your Choices

You may request that we update or delete account information associated with your profile by contacting us at privacy@guardrailapi.com. For enterprise deployments, additional data handling terms may be included in a separate agreement.

Changes to This Policy

We may update this Privacy Policy as the product evolves. When we do, we will update the effective date and, where appropriate, notify active customers through the Admin Console or email.

Contact

If you have questions about this policy, please contact privacy@guardrailapi.com or use the enterprise contact form.