Ruse App Privacy Policy

Last Updated: May 13, 2026

1. Introduction

1.1 Who We Are

ARCOS Labs ("ARCOS Labs," "we," "us," or "our") operates the Ruse AI Detection App (the "App") and the related website at ruseapp.ai (the "Website") (collectively, the "Services"). The App is available on iOS in the United States and is the primary interface through which users submit media for AI detection analysis. The Website provides information about our services.

We are committed to handling your information responsibly and securely. Please note that the disclosures and rights set forth in this Privacy Policy are provided in the interest of transparency and are not intended to waive any applicable exemptions under state and federal law. We do not sell user-submitted media and do not use it to train AI models without explicit consent.

1.2 Scope of This Policy

This Privacy Policy describes:

• What personal information we collect
• How we collect, use, and disclose personal information
• Your rights and choices regarding your personal information
• How we protect your personal information

This Privacy Policy applies to personal information collected through the Services, including:

• The Ruse website (ruseapp.ai)
• The Ruse iOS App
• Submissions made through the App
• Communications with ARCOS Labs
• Any other interactions with the Services

This Privacy Policy should be read together with our Terms and Conditions, available at https://www.ruseapp.ai/terms.html, which govern your use of the Services. Please note that our Services may contain links to third-party websites or services. This Privacy Policy does not apply to those third parties. We are not responsible for their privacy practices and encourage you to read their privacy policies.

2. Information We Collect

As used in this Privacy Policy, "personal information" means information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with an identifiable individual. Personal information includes "personal data" and "personally identifiable information" as those terms are defined in applicable privacy laws.

Personal information does not include publicly available information (as defined under applicable law); information that has been deidentified; or aggregate consumer information. "Publicly available information" includes information made available from federal, state, or local government records; information that a business has a reasonable basis to believe is lawfully available to the general public, either through widely distributed media or by the individual; unless such information is subject to applicable legal restrictions. We may create aggregated, anonymized, and deidentified information from personal information through processes designed to remove or obscure identifiers or through aggregation, obfuscation, or other means. Subject to applicable law, such information is not considered personal information under this Privacy Policy.

2.1 Information You Provide Directly

User Information:

When you use the App, we may collect:

• Email address (if provided for communications or support)
• IP addresses
• Preferences and settings

Payment Information:

Payment information is processed exclusively through Apple Inc.'s App Store (In-App Purchases). We do not directly collect or store credit card or banking details. We may receive payment confirmation and transaction history from Apple for the purpose of maintaining your subscription and payment records.

Submission Information:

When you submit media through the App, we collect information associated with your submission:

• Media content you submit (e.g. images, screenshots, and videos) including any thumbnails or previews
• URLs or links to detection results
• Timestamps and technical metadata associated with media submission

Communications:

When you communicate with us, we collect:

• Email correspondence
• Support tickets and help requests
• Any other information you choose to provide

2.2 Information Collected

Our Services may use cookies and other tracking technologies such as web beacons, embedded scripts, and tags (collectively, "Cookies"), which collect information from you upon consent as you use our Services. On our Website, this may include:

• Browser and device data. When you use our Services, we may automatically collect information such as IP address, geolocation data, device identifier (generated by your browser or device), device type and operating system, and browser type and version.
• Usage data. When you use our Services, we may automatically collect information such as screens visited and features used, date and time of access, and duration of visits and session information.

For more information on our use of tracking technologies, please review Section 5 ("Cookies").

On the iOS App, we collect the following information that you consent to:

• Anonymous identifier. Upon first launch, we generate a unique anonymous identifier for your account in our systems. This identifier is not linked to your name or personal identity.
• Device identifier. We collect your device identifier to associate your device with your account and ensure proper functionality of the App.
• Push notification token. With your permission, we collect your push notification token to deliver notifications to your device.
• Usage and session data. We collect standard session and usage data, such as screens visited, features used, and session duration, in accordance with Apple's platform guidelines.
• Advertising and measurement identifiers. Through Apple's App Tracking Transparency prompt, we collect identifiers and event data used for advertising measurement and attribution, including the Identifier for Advertisers (IDFA). If you decline tracking, we still collect limited event data in a privacy-protective mode that does not identify you for advertising purposes.

2.3 Information from Third Parties

We may receive limited information from our service providers, including those providing infrastructure and hosting services, payment processing, communications, security, and other services. For example, we may collect payment confirmation and subscription status information from Apple to facilitate payments and prevent fraud.

We do not purchase data from data brokers or third-party marketing companies.

3. How We Use Your Information

We may use your personal information for the following purposes:

3.1 To Provide and Operate the Services

• Identify your device and authorize access to App features
• Provide customer support and respond to inquiries
• Process and manage your submissions
• Analyze and determine detection results for submitted media
• Verify subscription payments through Apple to enable access to App features

3.2 For Legal and Evidentiary Purposes

ARCOS Labs may retain user-submitted media, including associated analysis and AI detection results, where reasonably necessary for legitimate legal purposes. Such purposes may include:

• Preserving submissions as potential evidence in connection with actual or reasonably anticipated litigation, arbitration, or other legal proceedings
• Providing submission data to potential litigation clients, their legal counsel, or their representatives in connection with legal matters, based on jurisdictional requirements or applicable court orders
• Establishing, exercising, or defending legal rights and claims

Where appropriate and permitted by law, ARCOS Labs may disclose relevant submission data to legal professionals, advisors, courts, or other authorized parties in connection with such proceedings. We will take reasonable steps to limit such disclosures to what is necessary and, where feasible, to de-identify or minimize personal information.

3.3 To Communicate With You

App Communications:

• Send notifications about your submissions
• Provide updates about features, functionality or changes to the App
• Deliver transaction related information or payment confirmations
• Respond to your questions and support requests

Important: We do not send marketing communications or newsletters. All communications are transactional and related to your use of the App.

3.4 For Security and Fraud Prevention

Security:

• Protect against security threats and vulnerabilities
• Monitor for suspicious activity and unauthorized access
• Verify the authenticity and integrity of submissions
• Prevent fraud, manipulation, and abuse of the App

Compliance:

• Comply with legal obligations and regulatory requirements
• Enforce our Terms and Conditions
• Protect our rights, property, and safety and those of users and others
• Prevent illegal activities

3.5 For Analytics and Improvement

Service Improvement:

• Analyze how users interact with our Services (using aggregated or deidentified information)
• Identify technical issues and improve App functionality
• Develop new features and services
• Understand submission patterns and detection effectiveness

Research:

• Conduct research on AI-generated content detection and related topics (using anonymized data only)
• Publish research findings (using aggregated or deidentified information, subject to applicable law)

3.6 Use of Submission Media

We understand that the media you submit through the App may be personal or sensitive in nature. We want to be transparent about how your submissions are and are not used:

• No Public Display: We will never publicly display, publish, or distribute your submitted media in any form — including on our Website, in social media, in press materials, or in any other public-facing channel — without your express, prior written consent.
• No Marketing Use: Your submissions will never be used for marketing, advertising, promotional purposes, or in any commercial context outside of the Services, unless you provide express, prior written consent.
• Limited Internal Use: Submissions are used solely to provide you with AI detection results, to maintain and improve the App's detection capabilities (in anonymized and aggregate form), and for potential legal and evidentiary purposes as described in Section 3.2. To provide detection results, submitted media is transmitted to third-party AI service providers on our behalf, as described in Section 4.2.

If we ever wish to use your submission for a purpose not described in this Privacy Policy, we will contact you and obtain your explicit consent before doing so.

3.7 Prohibited Submissions

To protect all users and comply with applicable law, you must not submit, upload or provide content through the App that falls into the following categories Child Sexual Abuse Material (CSAM): Any content that depicts, appears to depict, or facilitates the sexual exploitation or abuse of a minor. We are required by law to report any such content to the National Center for Missing & Exploited Children (NCMEC) and to applicable law enforcement.

• Non-Consensual Intimate Imagery: Intimate, sexual, or nude images or videos of any person shared without that person's consent.
• Sensitive Personal Data / Personal Identity Documents of Others: Government-issued identification, medical records, financial documents, Social Security numbers, or other sensitive personal documents belonging to someone other than yourself, unless you are legally authorized to submit them.
• Content Submitted in Violation of Law: Content submitted for purposes that violate applicable law or infringe upon the rights of others — for example, submitting proprietary or confidential materials obtained without authorization.
• Content That Facilitates Harm: Media depicting or promoting terrorism, violent extremism, human trafficking, or other content that facilitates serious harm to individuals.

For clarity: The App is designed for users to analyze publicly available or publicly posted content (such as social media posts, online videos, and other publicly shared media) to determine whether it may be AI-generated. Submitting screenshots or recordings of publicly available content for AI detection analysis is a permitted and intended use of the App.

If we become aware that prohibited content has been submitted, we reserve the right to:

• Immediately remove, restrict, or quarantine the content
• Suspend or revoke the user's access to the App without notice
• Report the content to law enforcement or other appropriate authorities as required or permitted by law
• Cooperate with law enforcement investigations related to such content

This list of prohibited submissions is also addressed in our Terms and Conditions. By using the App, you agree not to submit prohibited content as described herein and in the Terms and Conditions.

4. How We Disclose Your Information

We may disclose your information to the following categories of recipients. We do not disclose personal information to third parties for those third parties' own marketing or advertising purposes.

4.1 Legal and Evidentiary Disclosures

Submissions:

We may make available your submissions (detection outputs, URLs, and analysis) as necessary and in accordance to applicable law, to:

• Potential litigation clients and their legal counsel or representatives, in connection with actual or anticipated proceedings
• Expert witnesses and consultants (when necessary for legal proceedings)
• Courts, arbitrators, or tribunals in connection with legal proceedings

Identity Protection:

We do not disclose user identity unless:

• You consent to identification
• Disclosure is required by legal proceedings or for valid discovery requests
• Necessary to prevent fraud or enforce our Terms

4.2 Service Providers

We may disclose information to service providers who perform services on our behalf, including:

Infrastructure and Hosting:

• Cloud hosting providers (e.g., AWS, Google Cloud, or similar) for secure data storage and platform hosting
• Database management services

Payment Processing:

• Apple Inc. App Store for subscription payment processing

Communications:

• Email service providers for transactional emails
• Customer support platforms

Security:

• Fraud detection and prevention services
• Security monitoring and incident response providers

AI Processing:

• Analysis, detection, and summarization services

When you submit media through the App, the media content is transmitted to third-party AI service providers for detection analysis and evidence summarization on our behalf. We configure these services in accordance with their published API data usage policies, which generally state that customer content submitted through API services is not used to train their general AI models without permission.

Analytics:

• PostHog for product analytics, usage tracking, and service improvement across the App and Website.
• Google Analytics for website analytics and usage reporting

Advertising and Measurement:

• Meta Platforms, Inc. (Meta Pixel and related business tools) for advertising measurement, attribution, and ad delivery

When you use the App, we may share information with Meta and similar advertising and measurement providers, including event data (such as App installs, subscription events, and other actions), device identifiers, and IP address. These providers may use this information to provide measurement services and to target and deliver advertisements on their platforms. For users who allow tracking through Apple's App Tracking Transparency prompt, full event data is shared with Meta for measurement, attribution, audience building, and ad targeting. For users who decline tracking, event data is shared in Meta's Limited Data Use mode, which restricts Meta to providing measurement services only and prevents the use of your data for ad targeting or audience building. This limitation applies to all users globally, regardless of location.

These service providers are authorized to process personal information only as necessary to provide services to us and are subject to contractual obligations to protect such information.

4.3 Parties Related to Compliance and Harm Prevention

We may disclose information:

In Legal Proceedings:

• To courts, arbitrators, or tribunals in connection with litigation
• To opposing parties and their counsel as required by discovery rules
• As evidence in legal proceedings, including potential copyright or intellectual property litigation

To Law Enforcement or Regulatory Authorities, as required or permitted by applicable law:

• In response to lawful requests from law enforcement
• To comply with legal obligations or judicial orders
• To protect rights, property, and safety
• To prevent, investigate, or prosecute crimes

In Emergency Situations:

• To prevent imminent harm to persons or property
• To address security or technical issues
• To protect against fraud or illegal activities

4.4 Business Transferees

If ARCOS Labs is involved in a merger, acquisition, bankruptcy, dissolution, reorganization, or similar transaction or proceeding, personal information may be transferred to the successor entity, subject to this Privacy Policy or an equivalent policy.

4.5 Aggregate, Anonymized, and Deidentified Data

We may create and disclose aggregate, anonymized, or deidentified data that cannot reasonably identify you in accordance with applicable law, including:

• For research and statistical purposes
• To publish insights about AI-generated content detection
• With the public or research community
• For business development purposes

5. Cookies

We use Cookies on our Website to maintain your session and keep you logged in; remember your preferences and settings; provide security and prevent fraud; ensure the Website functions properly; and analyze the use of our Website. The iOS App does not use browser cookies but may use other technologies, such as device identifiers and SDKs, to support similar functionality in accordance with applicable platform requirements.

5.1 Cookies We Use

Cookies on our Website generally fall into the following categories:

• Essential Cookies: These Cookies are necessary for the Website to function and cannot be disabled. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in, or filling in forms.
• Functional Cookies: These Cookies enable the Website to provide enhanced functionality and personalization. They may be set by us or by third-party providers whose services we have added to our pages. If you do not allow these Cookies, some or all of these services may not function properly.
• Performance/Analytics Cookies: These Cookies track information about how users use the Website so we can make improvements and report our performance. For example, we may analyze user behavior to provide more relevant content or suggest certain activities.

You can modify your browser settings to accept or decline certain cookies. However, if you decline certain cookies, some features of our Website may not function as designed.

5.2 Analytics Information

We may use Google Analytics or other providers for analytics services. These analytics services may use Cookies for the purpose of providing analytics services to us on how users use the Website. Information generated by these services (e.g., your IP address and other usage information) may be transmitted to and stored by Google Analytics and other service providers on servers in the U.S. (or elsewhere) and these providers may use this information for purposes such as evaluating your use of the Website, compiling statistical reports on Website activity, and providing other services relating to Website activity and other Internet usage. You may exercise choices regarding the use of cookies from Google Analytics by going to https://tools.google.com/dlpage/gaoptout or downloading the Google Analytics Opt-out Browser Add-on.

We also use PostHog for product analytics across both the Website and the iOS App. PostHog collects usage data such as screens visited, features used, session duration, and device information to help us understand how users interact with our Services and to improve functionality. PostHog processes this data on our behalf and is subject to contractual obligations to protect your information. PostHog does not use your data for its own advertising or marketing purposes. For more information about PostHog's privacy practices, please visit PostHog's privacy policy at https://posthog.com/privacy.

5.3 Advertising and Measurement Technologies

We use Meta Pixel and similar advertising and measurement technologies on our Website and within the iOS App to measure the effectiveness of our marketing, attribute App installs and subscription conversions, and deliver advertisements on third-party platforms. These technologies may collect device identifiers, event data, and information about your interactions with our Services, and may share this information with Meta and other advertising partners. On the iOS App, the data shared is governed by your response to Apple's App Tracking Transparency prompt, as described in Section 2.2. For more information about Meta's data practices, please visit Meta's privacy policy.

5.4 Do Not Track

Some browsers transmit "Do Not Track" signals. We do not currently respond to Do Not Track signals because there is no industry standard for how to interpret them. We will continue to evaluate this approach as standards evolve.

6. International Data Transfers

The Services are primarily intended for users in the United States. However, your information may be transferred to, stored, and processed in countries other than your own where our service providers operate. These countries may have data protection laws different from those in your jurisdiction.

We take reasonable measures to protect personal information transferred across borders in accordance with applicable law.

6.1 Where We Process Data

ARCOS Labs is based in the United States. Your information may be transferred to, stored, and processed in:

• The United States
• Other countries where our service providers operate

For users subject to EU, UK, or Swiss data protection laws, we will implement Standard Contractual Clauses or other legally approved transfer mechanisms as applicable.

7. Data Retention

7.1 Retention Periods

We retain personal information for as long as necessary to fulfill the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law.

7.2 Evidentiary Retention

Submissions retained for potential legal or evidentiary purposes will be held for the duration of any active or reasonably anticipated legal proceeding in which such submissions may constitute relevant evidence. ARCOS Labs will review the continued necessity of such retention on a rolling basis no less than annually. Upon final resolution of any associated proceeding, or if no proceeding materializes within three (3) years of the date the submission was first flagged for evidentiary retention, submissions will be deleted or anonymized consistent with Section 7.3 below, unless a longer retention period is required by applicable law or court order.

7.3 Deletion and Anonymization

After retention periods expire:

• Personal information is securely deleted or destroyed
• Or anonymized so it can no longer identify you
• Anonymized data may be retained indefinitely for research

7.4 Exceptions to Deletion

We may retain information longer when:

• Required by law or regulatory obligations
• Necessary for pending or potential legal proceedings
• Needed to establish, exercise, or defend legal rights
• Required for legitimate business purposes with justification
• You have consented to longer retention

8. Data Security

The security of your personal information is important to us, but no method of transmission over the Internet or method of electronic storage is 100% secure. We implement reasonable administrative, technical, and physical security measures to protect personal information against unauthorized access, disclosure, alteration, and destruction, but we cannot guarantee its absolute security. You transmit information to us at your own risk and are responsible for the security of information in your possession or control. We recommend: being cautious about phishing attempts that may attempt to access your device.

8.1 Data Breach Notification

In the event of a data breach that compromises the security, confidentiality, or integrity of your personal information, we will notify affected users in accordance with applicable federal and state law, including California's data breach notification statute (Cal. Civ. Code § 1798.82), and also in adherence to laws in other jurisdictions. Notification may be provided via email, in-App notice, or prominent posting on our Website, depending on the circumstances and as required by law. We will also notify relevant regulatory authorities as required.

9. Your Privacy Choices

9.1 General Choices

All users may have certain choices regarding our collection, use, and disclosure of personal information.

Access:

You can request access to the personal information we hold about you by contacting us at support@ruseapp.ai.

Correction:

You can request corrections to your personal information by contacting us at support@ruseapp.ai.

Deletion:

You can request deletion of your personal information through the Ruse App or by contacting support@ruseapp.ai, subject to exceptions under applicable law. Please note that we may retain your personal information even after a deletion request when required or permitted by applicable law, including when:

• Information is required for legal proceedings or investigations
• Deletion would impair or prevent legal claims or defenses
• Retention is required by law or regulatory obligations
• Information is needed to fulfill our contract with you
• We have legitimate interests that override your rights
• Information has been anonymized and no longer identifies you

We may also retain aggregate, anonymized, or deidentified data about you. We may need to verify your identity before processing requests, and may request additional information to confirm identity.

If we decline to fulfill a deletion request due to an active legal hold, we will notify you in writing of the basis for the denial to the extent permitted by applicable law.

9.2 Limitations on Choices

Your privacy choices are subject to the exceptions described above. In particular, we may decline or limit requests where the information is required for legal proceedings, where deletion would impair legal claims or defenses, or where retention is required by law.

9.3 How to Exercise Choices

To exercise your choices:

• Email: support@ruseapp.ai
• Settings: Manage or delete information directly in the App
• Mail: ARCOS Labs, Attn: Privacy Officer, 228 Park Ave S PMB 265575, New York, NY 10003

We will respond to requests within the timeframes required by applicable law (generally 30–45 days).

9.4 Verification

We may need to verify your identity before processing requests, particularly for:

• Access to sensitive information
• Deletion requests
• Information about another person

We may request additional information to confirm identity, such as:

• Verification questions
• Email confirmation

10. California Privacy Rights (CCPA/CPRA)

This section provides additional disclosures required under the California Consumer Privacy Act, as amended by the California Privacy Rights Act (collectively, "CCPA"), and applies to California residents whose personal information we collect.

10.1 Your California Privacy Rights

If you are a California resident, you have the following rights under the CCPA:

• Right to Know: You have the right to request that we disclose the categories and specific pieces of personal information we have collected about you, the categories of sources from which that information was collected, the business or commercial purpose for collecting the information, and the categories of third parties with whom we have disclosed the information. Your right to know is not limited to a 12-month look-back period for personal information we have retained longer than 12 months (for information collected on or after January 1, 2022).
• Right to Delete: You have the right to request that we delete any personal information we have collected about you, subject to certain exceptions (such as when the information is necessary for legal proceedings, completing transactions, detecting security incidents, or complying with legal obligations).
• Right to Correct: You have the right to request that we correct inaccurate personal information we maintain about you.
• Right to Opt-Out of Sale or Sharing: You have the right to opt out of the "sale" or "sharing" of your personal information. We do not sell personal information as defined by the CCPA. We may share personal information for advertising measurement and attribution purposes, which may constitute 'sharing' under the CCPA. You may opt out as described in Section 10.5.
• Right to Limit Use of Sensitive Personal Information: You have the right to limit the use and disclosure of sensitive personal information to only what is necessary to perform the Services.
• Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights. We will not deny you goods or services, charge you different prices, or provide you a different level or quality of goods or services for exercising your rights.

10.2 Categories of Personal Information Collected

In the preceding 12 months, we have collected the following categories of personal information:

• Identifiers (email address, IP address, device identifiers)
• Commercial information (subscription and payment records)
• Internet or electronic network activity (browsing history on our Website, app usage data, interaction with the Services)
• Geolocation data (approximate location derived from IP address)
• Audio, electronic, or visual information (media submitted through the App for AI detection analysis)

10.3 How We Use and Disclose Personal Information

We use and disclose personal information for the business purposes described in Sections 3 and 4 of this Privacy Policy. We disclose personal information to the following categories of recipients for business purposes:

• Service providers (cloud hosting, payment processing, email services, security)
• Advertising and measurement partners (for marketing attribution and campaign measurement)
• Legal counsel and parties in connection with legal proceedings
• Law enforcement or government agencies in response to lawful requests

We do not sell personal information for monetary consideration. We may share personal information with advertising and measurement partners (such as Meta) for marketing attribution and measurement purposes, which may be considered "sharing" under the CCPA. You may opt out of such sharing as described in Section 10.5.

10.4 How to Exercise Your California Rights

To submit a request to exercise your California privacy rights:

• Email: support@ruseapp.ai
• Mail: ARCOS Labs, Attn: Privacy Officer, 228 Park Ave S PMB 265575, New York, NY 10003

We will verify your identity before processing your request. We will respond to verifiable consumer requests within 45 days. If we need additional time (up to an additional 45 days), we will notify you in writing. You may designate an authorized agent to submit requests on your behalf. We may require verification that you authorized the agent to act on your behalf.

10.5 Opt-Out Preference Signals

We honor opt-out preference signals on our Website, including the Global Privacy Control (GPC). If we detect a GPC signal from your browser, we will treat it as a valid opt-out request for the sale or sharing of personal information associated with that browser and will configure our advertising and measurement partners (including Meta) accordingly. We will provide confirmation when an opt-out request has been processed. On the iOS App, you may opt out of tracking-based advertising by declining the App Tracking Transparency prompt, in which case event data shared with advertising partners is limited to measurement-only purposes.

11. European Privacy Rights (GDPR)

While the Services are primarily intended for users in the United States, this section provides additional information for individuals located in the European Economic Area, United Kingdom, or Switzerland, should they access or use our Services.

11.1 GDPR Rights

If you are located in the EEA, UK, or Switzerland, you may have the following rights under applicable data protection law:

• Right of Access: Obtain confirmation of whether we process your personal data and access to that data.
• Right to Rectification: Correct inaccurate personal data and complete incomplete personal data.
• Right to Erasure: Request deletion of your personal data when it is no longer necessary, you withdraw consent, or data has been unlawfully processed, subject to applicable exceptions.
• Right to Restriction of Processing: Restrict processing when you contest accuracy, processing is unlawful, or you need the data for legal claims.
• Right to Data Portability: Receive your personal data in a structured, commonly used, machine-readable format when processing is based on consent or contract and carried out by automated means.
• Right to Object: Object to processing based on legitimate interests. We will cease processing unless we demonstrate compelling legitimate grounds.
• Right to Withdraw Consent: Where processing is based on consent, withdraw consent at any time without affecting the lawfulness of processing based on consent before withdrawal.
• Right to Lodge a Complaint: Lodge a complaint with a supervisory authority in the EU member state where you reside, work, or where an alleged infringement occurred.

11.2 Legal Bases for Processing

We process personal data under the following legal bases:

• Contract Performance: Processing submissions and payments, providing customer support, and fulfilling our obligations under the Terms and Conditions.
• Legitimate Interests: Operating and improving the App and Services, retaining submission data for potential use in legal proceedings, fraud prevention and security, and analyzing usage to improve services (in anonymized form). For users located in the EEA, UK, or Switzerland, the retention of submission data for potential evidentiary purposes is grounded in Legitimate Interests rather than Consent. ARCOS Labs has assessed that this processing does not unduly override users' fundamental rights, given the limited categories of data retained, the legal importance of preserving potential evidence, and the availability of user rights under Section 11.1. Users may object to this processing at any time pursuant to the Right to Object described in Section 11.1.
• Legal Obligation: Tax reporting and compliance, responding to legal process, and meeting regulatory requirements.
• Consent: Any processing where we specifically request your consent. You may withdraw consent at any time. Where ARCOS Labs wishes to use submission data for any purpose not described in this Privacy Policy, it will seek explicit consent as described in Section 3.6. The Consent basis does not apply to evidentiary retention, which is based on Legitimate Interests as described above.

11.3 How to Exercise GDPR Rights

To exercise your rights:

• Email: support@ruseapp.ai
• Mail: ARCOS Labs, Attn: Privacy Officer, 228 Park Ave S PMB 265575, New York, NY 10003

We will respond within one month, or notify you if we need up to two additional months for complex requests. We will respond to requests free of charge unless requests are manifestly unfounded, excessive, or repetitive. We will verify your identity before processing requests.

11.4 Supervisory Authorities

If you are in the EU, UK, or Switzerland, you have the right to lodge a complaint with your local data protection authority:

• EU: https://edpb.europa.eu/about-edpb/board/members_en
• UK: Information Commissioner's Office (ICO) – https://ico.org.uk
• Switzerland: Federal Data Protection and Information Commissioner (FDPIC)

12. Children's Privacy

12.1 Minimum Age Requirements

Ruse is intended for users who are 13 years of age or older. By using the App, you represent that you are at least 13 years old. If you are under 13, you may not use Ruse, and you should not submit any personal information to us. If we learn that we have collected personal information from a user under 13 without verifiable parental consent, we will delete that information promptly.

12.2 Users Between 13 and 17

If you are between the ages of 13 and 17, you may use Ruse subject to any applicable parental consent requirements in your jurisdiction. We collect only the minimum personal information necessary to provide the service to teen users, and we do not target advertising campaigns toward users we know to be under 18.

12.3 Age Signals from the App Store

Where Apple provides us with age-range signals through the App Store (including via the Declared Age Range API), we use that information to apply age-appropriate restrictions and defaults in accordance with applicable law. If those signals indicate that a user is under 13, we will restrict access to the service and promptly delete any personal information collected, consistent with our obligations under the Children's Online Privacy Protection Act (COPPA) and applicable state law. If signals indicate a user is between 13 and 17, we will apply additional data minimization practices, restrict features that are not appropriate for minor users, and avoid targeting advertising campaigns toward them.

12.4 Parental Consent and Controls

We support Apple's Family Sharing and parental control features. Parents or guardians who believe their child under 13 has submitted personal information to Ruse may contact us at support@ruseapp.ai to request deletion of that information. We will respond to all verified requests as permitted by applicable law.

12.5 Advertising and Minors

We do not display advertising within the App. We may share event data with advertising and measurement partners for marketing attribution and analytics purposes as described in Sections 2.2, 4.2, and 5.3. We do not actively target advertising campaigns toward users under 18, and we apply additional restrictions where age signals are available to us through the App Store.

12.6 Compliance with Applicable Law

We comply with the Children's Online Privacy Protection Act (COPPA) and applicable state privacy laws governing the collection and use of personal information from children and teenagers, including laws in California, Texas, Louisiana, and Utah. As these laws evolve, we will update our practices and this policy accordingly.

12.7 If We Discover Data from Minors

If we learn that we have collected personal information from a person under 13, we will:

• Delete the information as quickly as possible
• Not use or disclose the information
• Take steps to prevent future collection

13. Detection Accuracy and Limitation of Liability

13.1 No Guarantee of Accuracy

The App uses artificial intelligence and machine learning technologies to analyze media and estimate the likelihood that content is AI-generated. Detection results are probabilistic estimates and should not be treated as definitive or conclusive proof that any particular piece of content was or was not generated by artificial intelligence. AI detection technology is inherently limited and may produce false positives (incorrectly identifying human-created content as AI-generated) or false negatives (failing to detect AI-generated content).

13.2 Not Legal Advice

Detection results provided by the App do not constitute legal advice, expert opinion, or forensic analysis. You should not rely solely on the App's results to make legal, employment, academic, or other consequential decisions. If you intend to use detection results in connection with legal proceedings or other significant matters, we recommend consulting with qualified legal counsel and independent forensic experts.

13.3 Limitation of Liability

To the fullest extent permitted by applicable law, ARCOS Labs provides the Services on an "as is" and "as available" basis, without warranties of any kind, whether express, implied, or statutory, including but not limited to implied warranties of merchantability, fitness for a particular purpose, and non-infringement. ARCOS Labs does not warrant that the Services will be uninterrupted, error-free, or that detection results will be accurate or reliable. In no event shall ARCOS Labs be liable for any indirect, incidental, special, consequential, or punitive damages arising out of or related to your use of or inability to use the Services, including but not limited to damages arising from reliance on detection results. This limitation of liability applies to the fullest extent permitted by law and is further described in our Terms and Conditions.

14. Apple App Store Privacy Disclosures

As required by Apple Inc., we provide a summary of our data collection and use practices on the App's product page in the Apple App Store (commonly referred to as "privacy nutrition labels"). These disclosures are intended to be consistent with this Privacy Policy. To the extent permitted by applicable law, in the event of any conflict between the App Store privacy disclosures and this Privacy Policy, this Privacy Policy shall control. We review and update our App Store privacy disclosures periodically when we update this Privacy Policy or when our data practices change.

15. Governing Law

This Privacy Policy and any disputes arising out of or related to it shall be governed by and construed in accordance with the laws of the State of New York, United States, without regard to its conflict of law principles. Any legal action or proceeding arising under this Privacy Policy shall be brought exclusively in the federal or state courts located in New York County, New York, and you consent to the personal jurisdiction of such courts.

16. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. We will notify you of any changes consistent with applicable law, including by posting the new Privacy Policy on the Website and within the App and updating the "Effective Date" at the top of this Privacy Policy. We encourage you to review this Privacy Policy periodically to stay informed about our information practices. Changes to this Privacy Policy are effective when they are posted.

17. Contact Us

For questions, concerns, or requests regarding this Privacy Policy or our privacy practices:

Email: support@ruseapp.ai
Mail: ARCOS Labs, 228 Park Ave S PMB 265575, New York, NY 10003