Last updated: June 2026
When you sign up, we collect your email address and a password (hashed). If you pay, we collect billing details processed by Stripe. We do not store full card numbers.
We do not log your prompts. We do not log your completions. We do not store conversation history. We do not train on your data. Your inputs and outputs are processed in memory and discarded immediately after delivery.
We track token counts for billing purposes only. This includes: total tokens used, model accessed, and timestamp. We do not store the content of requests or responses.
We use a single session cookie for authentication. No tracking cookies, no analytics cookies, no advertising cookies.
We use Stripe for payments. Stripe has its own privacy policy. We use our own infrastructure for model inference. No third party has access to your prompts or completions.
We retain your account email and billing records for as long as your account is active. Token usage records are retained for 90 days for billing audit, then deleted. No prompt or completion data is retained.
You can request export or deletion of your account data at any time. Email contact@openrout.ing with your request. We will process it within 30 days.
All data is encrypted in transit (TLS 1.3) and at rest. API keys are hashed. Passwords are bcrypt-hashed. Access to infrastructure is restricted and audited.
The service is not intended for users under 13. We do not knowingly collect data from children.
We may update this policy. We will notify users by email for material changes.
For privacy questions or data requests, email contact@openrout.ing.