Privacy Policy
Last updated: May 2026
What We Collect
reAPI collects only the metadata necessary to operate the service: your short code identifier, model names requested, token counts (input, output, and cache-read), request timestamps, and billing amounts deducted. We do not collect, read, or store the content of your prompts or AI responses. We do not collect your name, email address, or any personally identifying information unless you voluntarily provide it when contacting support.
What We Do Not Collect
Prompt text, response text, system prompts, tool call arguments, and API keys are never written to disk or logged. Authorization headers are used only to authenticate the current request and are discarded immediately afterward.
Data Retention
Request metadata is retained for a maximum of 90 days. After 90 days, records are permanently deleted. Wallet and billing records (credit balances, top-up amounts) are retained for the life of the account and for a reasonable period after account closure for accounting purposes.
Third-Party Sharing
Your requests are forwarded to the upstream AI provider (e.g., DeepSeek) as part of normal proxy operation. The upstream provider receives the content of your request and is subject to their own privacy policy. Beyond this necessary forwarding, we do not sell, share, or disclose your data to any third party.
Security
API keys stored in the pool are encrypted at rest. Metadata logs are stored in a private database not accessible from the public internet. We apply reasonable technical measures to protect stored data, but no system is perfectly secure.
Contact
If you have questions about this privacy policy or wish to request deletion of your account data, contact us at [email protected].