Privacy Policy

1. Information We Collect

Account data: email address and hashed password. Usage data: request counts, token usage, costs, latency, and model tier selections. Payment data: processed by Stripe; we store only Stripe customer IDs and credit balance.

2. What We Do Not Collect

We do not store your prompt content or model responses. Requests are forwarded to LLM providers in real time and not logged. Only metadata such as token counts, costs, and tier selection is retained for billing and analytics.

3. How We Use Your Data

Account data is used for authentication and communication. Usage data is used for billing, analytics dashboards, and routing optimization. Payment data is used for credit balance management via Stripe.

4. Third-Party Services

Your API requests are routed to third-party LLM providers such as OpenAI, Anthropic, Google, and DeepSeek via OpenRouter. These providers have their own privacy policies. Stripe processes all payments.

5. Data Retention

Usage metadata is retained for 90 days for analytics, then aggregated. Account data is retained until you delete your account. Payment records are retained as required by law.

6. Data Security

Passwords are hashed with bcrypt. API keys are stored as SHA-256 hashes. JWT tokens expire after 7 days. All API communication uses HTTPS.

7. Your Rights

You can view your data via the dashboard, export your usage data via API, delete your account by contacting support, and revoke API keys at any time.

8. Contact

For privacy inquiries: [email protected]

Last updated: April 2026