SargalaySargalay

Privacy Policy

Last updated: February 19, 2026

1. Information We Collect

When you use AI Gateway, we collect:

  • Account Information: Email address and name from your GitHub account when you sign in
  • Usage Data: API requests, model usage, token counts, and associated costs
  • Transaction Data: Top-up amounts, payment timestamps, and balance history
  • Technical Data: IP addresses, browser type, and access timestamps for security purposes

2. How We Use Your Information

We use collected information to:

  • Provide and maintain the API gateway service
  • Process payments and manage your account balance
  • Track usage and billing accurately
  • Prevent fraud and abuse
  • Improve our services
  • Communicate important service updates

3. Data Retention

We retain your data as follows:

  • Account data: Retained while your account is active
  • Usage logs: Retained indefinitely for billing accuracy and audit purposes
  • Transaction history: Retained indefinitely for financial records
  • API request content: Not stored; requests are proxied in real-time

4. API Request Privacy

We NEVER collect, store, or log your API request payloads or response data.

We act as a transparent proxy to LLM providers. Your prompts, messages, and AI responses pass through our system but are never stored, logged, or analyzed by us.

We only log metadata for billing purposes:

  • Model used
  • Token counts (input/output)
  • Cost charged
  • Timestamp
  • Success/failure status

Your conversations with AI models are private and are only subject to the privacy policies of the underlying model providers (e.g., OpenRouter, OpenAI, Anthropic, Google).

5. Data Sharing

We may share your information with:

  • LLM Providers: API requests are forwarded to model providers (e.g., OpenRouter)
  • Payment Processors: Payment information is shared with MMQR for processing top-ups
  • Legal Requirements: When required by law or to protect our rights

We do not sell your personal information to third parties.

6. Security

We implement security measures to protect your data, including:

  • Encrypted connections (HTTPS)
  • Secure API key generation and storage
  • JWT-based authentication
  • Regular security reviews

7. Your Rights

You have the right to:

  • Access your personal data
  • View your usage history and transaction records
  • Request deletion of your account (note: this does not entitle you to a refund of remaining balance)
  • Revoke API keys at any time

8. Cookies

We use essential cookies for authentication and session management. These are necessary for the service to function and cannot be disabled.

9. Changes to This Policy

We may update this privacy policy from time to time. We will notify users of significant changes through the service interface or via email.

10. Contact

For privacy-related inquiries, please contact us through our support channels.