Privacy Policy

Last updated: October 22, 2025

1. Information We Collect

Account Information

We collect your email address and password when you create an account. Your password is securely hashed and never stored in plain text.

Usage Data

We collect and store usage data including:

  • Number of API calls made
  • Timestamp of each API request
  • AI provider used (OpenAI, Anthropic, Gemini)
  • Credit balance and transaction history

2. Conversation Privacy

We do NOT save or store any conversations or chat messages.

Your conversations with AI assistants are sent directly to the respective AI providers (OpenAI, Anthropic, or Google) and are not logged, stored, or retained on our servers. We only track that a request was made for billing and usage analytics purposes.

3. How We Use Your Information

We collect and use information solely for the following purposes:

  • Service Operation: To authenticate users and process API requests
  • Billing & Credits: To track usage and manage your account balance
  • Service Continuation: To ensure fair usage and prevent abuse
  • Analytics: To provide you with usage statistics and insights

4. Data Sharing

Third-Party AI Providers

When you make a request, your message is sent to the selected AI provider (OpenAI, Anthropic, or Google Gemini). These providers have their own privacy policies and data handling practices. We recommend reviewing their privacy policies:

  • OpenAI Privacy Policy
  • Anthropic Privacy Policy
  • Google AI Privacy Policy

Payment Processing

We use Stripe for payment processing. We do not store your credit card information on our servers.

No Sale of Data

We do not sell, rent, or trade your personal information to third parties for marketing purposes.

5. Data Retention

  • Account Data: Retained while your account is active and for a reasonable period after deletion for legal and audit purposes
  • Usage Data: Retained for billing reconciliation and service improvement
  • Conversations: Not stored at all

6. Security

We implement industry-standard security measures to protect your data:

  • Encrypted data transmission (HTTPS/TLS)
  • Secure password hashing with bcrypt
  • JWT-based authentication
  • API keys stored securely on the server (never exposed to browser)

7. Your Rights

You have the right to:

  • Access your account information
  • Request deletion of your account
  • Export your usage data
  • Revoke API keys at any time

8. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify users of any material changes by updating the “Last updated” date at the top of this policy.

9. Contact Us

If you have any questions about this Privacy Policy, please contact us through our support channels.