What we do not store
We are designed around minimum data exposure. Specifically:- We do not store the content of your prompts or model responses. API calls pass through our gateway to upstream providers. We do not log, save, or analyse the text of your inputs or outputs.
- We do not sell, rent, or share your data with advertisers or data brokers.
- We do not track your browsing across other websites.
- We do not use advertising cookies or browser fingerprinting, and we never use your data for ad targeting.
- We do not build psychographic profiles of users. (For website analytics we use Yandex Metrika — see Website analytics below.)
What we operationally process
To run the Service we process the operational minimum:- Account information: email address, password hash, optional language preference. Used for authentication and transactional communication.
- API keys: hashed identifiers for tokens you generate. Used to authenticate your API requests.
- Balance and transaction records: USDT top-ups and per-call deductions. Used for billing.
- Request metadata (no content): model name, token counts, timestamp, status code. Used for billing and debugging.
- Email delivery status for verification and password-reset messages from our email provider.
Who we share information with
We share information only with these limited parties, each strictly necessary to operate the Service:- Upstream AI providers (OpenAI, Anthropic, Google, xAI, DeepSeek and others you call): receive your API requests. Subject to their respective privacy policies.
- Public blockchain networks (TRON, BSC, Polygon): receive on-chain transaction data inherent to USDT transfers.
- Email delivery provider (Amazon SES): handles outbound transactional emails.
- Hosting / DNS / CDN providers: process traffic incidentally as part of infrastructure operation.
- Web analytics (Yandex Metrika): our website loads the Yandex Metrika tag, which receives site-usage data — see Website analytics below.
Website analytics
Our website and documentation use Yandex Metrika (counter 109153189) to understand how visitors use the site and to improve it. Metrika sets cookies and may collect:- page views, referrer, approximate location (from IP), device and browser;
- click maps and scroll depth;
- session replay (Webvisor) — recordings of anonymized on-page interactions (mouse movement, clicks, scrolling; sensitive fields such as passwords are masked), used to diagnose usability problems.
mc.yandex.ru domain.
Security
- All traffic to and from the Service is encrypted via TLS (HTTPS).
- Passwords are stored as one-way hashes using industry-standard algorithms; we never store plaintext passwords.
- API keys are hashed before storage; the full key is shown only once at creation.
- Internal access to operational data is restricted on a need-to-know basis.
Your rights
You have the right to:- Access the information we hold about you (account email, balance, recent transactions — visible in your dashboard).
- Correct inaccurate account information through your dashboard.
- Delete your account to remove your account record from the active service.
- Withdraw consent to email notifications via account settings or by contacting support.
- Lodge a complaint with the Personal Data Protection Commission (PDPC) of Singapore.