Privacy Policy

1. Introduction

API-Direct ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and share information when you use our services.

2. Information We Collect

2.1 Information You Provide

• Account Information: Name, email address, password, and payment information
• API Data: API code, configurations, and documentation you upload
• Usage Data: API calls, performance metrics, and error logs
• Communications: Support tickets, feedback, and email correspondence

2.2 Information We Collect Automatically

• Log Data: IP address, browser type, operating system, and access times
• Device Information: Hardware model, operating system version, and unique device identifiers
• Cookies: Session cookies and persistent cookies for authentication and preferences
• Analytics: Usage patterns, feature adoption, and performance metrics

3. How We Use Information

We use collected information to:

• Provide, maintain, and improve our services
• Process transactions and send related information
• Send technical notices and support messages
• Respond to your comments and questions
• Monitor and analyze usage trends
• Detect and prevent fraudulent activity
• Comply with legal obligations

4. Information Sharing

We do not sell your personal information. We share information only in these circumstances:

4.1 Service Providers

We share information with third-party service providers that help us operate our business:

• Stripe: Payment processing
• AWS: Cloud infrastructure and storage
• SendGrid: Email delivery
• Google Analytics: Usage analytics

4.2 Business Transfers

If we're involved in a merger, acquisition, or sale of assets, your information may be transferred.

4.3 Legal Requirements

We may disclose information if required by law or to protect rights and safety.

5. Data Security

We implement appropriate technical and organizational measures to protect your information:

• Encryption in transit (TLS/SSL)
• Encryption at rest for sensitive data
• Regular security audits
• Access controls and authentication
• Regular backups

6. Data Retention

We retain your information for as long as necessary to provide services and comply with legal obligations:

• Account Data: Until account deletion + 30 days
• API Logs: 30 days
• Analytics Data: 90 days
• Financial Records: 7 years

7. Your Rights

You have the right to:

• Access: Request a copy of your personal information
• Correction: Update inaccurate information
• Deletion: Request deletion of your account and data
• Portability: Export your data in a machine-readable format
• Opt-out: Unsubscribe from marketing communications

8. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for such transfers.

9. Children's Privacy

Our services are not directed to individuals under 18. We do not knowingly collect information from children.

10. California Privacy Rights

California residents have additional rights under the CCPA, including the right to know what personal information we collect and the right to opt-out of the sale of personal information (which we do not do).

11. Cookie Policy

We use cookies and similar technologies to:

• Keep you logged in
• Remember your preferences
• Analyze site usage
• Deliver targeted content

You can control cookies through your browser settings.

12. Changes to This Policy

We may update this policy from time to time. We will notify you of material changes via email or through the service.

13. Contact Us

For privacy-related questions or concerns, contact us at:

API-Direct, Inc.
Privacy Team
privacy@apidirect.dev

For data protection inquiries in the EU, contact our Data Protection Officer at: dpo@apidirect.dev