Privacy Policy

Introduction

APIAny.AI is an AI API aggregation and cost governance platform. This policy explains what we collect and how we use it.

Information We Collect

• Account information: email, name, avatar, login provider, locale, and account status.
• Billing information: Stripe checkout identifiers, order status, payment metadata, credit ledgers, and manual enterprise recharge notes.
• API usage metadata: API key id, application name, model, endpoint, request id, timestamps, latency, status, credits consumed, processing attempt metadata, and error summaries.
• Request and response bodies: stored by default for up to 30 rolling days when content logging is enabled for an API key.
• Media metadata: object storage URLs, file metadata, generated asset URLs, and task state. PostgreSQL should not store binary media or base64 payloads.
• Device and security metadata: IP address, user agent, and related logs needed for security and abuse prevention.

How We Use Information

We use this information to operate the API platform, authenticate users, process payments, calculate credits, show usage audits, troubleshoot failures, detect abuse, maintain model status, and provide support.

Request and Response Retention

Request and response body content is retained for 30 rolling days and then hard deleted by scheduled maintenance. API key owners may disable body logging for specific applications. When body logging is disabled, APIAny.AI keeps only metadata needed for billing, rate limits, and operational audit.

Authentication headers, API keys, cookies, Stripe secrets, and other credentials must not be stored in request and response logs.

Financial Data

Orders, Stripe event ids, manual recharge records, credit ledgers, monthly usage summaries, and monthly cost summaries may be retained long term for accounting, reconciliation, and compliance.

Sharing

We do not sell personal information. We share limited data with service providers required to operate the platform, including payment processors, email providers, object storage providers, analytics, hosting, and model infrastructure subprocessors.

Security

We use access controls and operational safeguards to protect platform data. No internet service can guarantee absolute security, so users must protect their own account and API keys.

Changes

We may update this policy from time to time. Continued use of APIAny.AI after updates means you accept the revised policy.

Contact

Questions: support@apiany.ai