Privacy Policy

1. Introduction

Apixo ("we", "our", or "us") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our API hosting service ("Service"). Please read this policy carefully to understand our practices regarding your personal data.

2. Information We Collect

We collect information that you provide directly and information collected automatically:

2.1 Information You Provide

• Account Information: Email address, username, and profile information when you register
• API Data: JSON data files you upload to create APIs
• Payment Information: Billing details processed securely through our payment processor
• Communications: Messages you send us for support or feedback

2.2 Information Collected Automatically

• Usage Data: API request logs, response times, cache hit rates, and bandwidth consumption
• Device Information: Browser type, operating system, and device identifiers
• IP Addresses: Used for security and geographic analytics
• Cookies: Session management and authentication tokens

3. How We Use Your Information

We use the collected information for the following purposes:

• To provide, maintain, and improve our Service
• To process transactions and manage your subscription
• To send you technical notices, updates, and support messages
• To monitor usage patterns and optimize performance
• To detect, prevent, and address security threats and abuse
• To enforce our Terms of Use and protect our legal rights
• To aggregate anonymized data for statistical analysis

4. Data Storage and Security

Your data is stored on secure servers provided by our infrastructure partners:

• Cloudflare: Edge caching, KV storage, R2 object storage, and CDN services globally distributed
• Neon: PostgreSQL database with SSL encryption and automated backups
• Clerk: Authentication service with SOC 2 Type II certification

We implement industry-standard security measures including encryption in transit (TLS), encryption at rest, access controls, and regular security audits. However, no method of transmission over the Internet is 100% secure.

5. Data Sharing and Disclosure

We do not sell your personal data. We may share information in the following circumstances:

• Service Providers: With trusted third parties who assist in operating our Service (hosting, payment processing, analytics)
• Legal Requirements: When required by law, subpoena, or legal process
• Business Transfers: In connection with a merger, acquisition, or sale of assets
• Protection of Rights: To protect the safety and rights of users or the public
• With Your Consent: When you explicitly authorize sharing

6. Your Rights and Choices

Depending on your location, you may have the following rights:

• Access: Request a copy of your personal data
• Correction: Request correction of inaccurate data
• Deletion: Request deletion of your personal data
• Portability: Request your data in a machine-readable format
• Objection: Object to certain processing of your data
• Restriction: Request restriction of processing

To exercise these rights, please contact us at info@apixo.io. We will respond within 30 days.

7. Cookies and Tracking

We use cookies and similar technologies for:

• Essential Cookies: Required for authentication and security
• Preference Cookies: Remember your settings (theme, language)
• Analytics Cookies: Understand usage patterns to improve the Service

You can control cookies through your browser settings. Disabling essential cookies may prevent you from using certain features of the Service.

8. Data Retention

We retain your personal data for as long as your account is active or as needed to provide the Service. API analytics data is retained for 90 days. After account deletion, we may retain certain data as required by law or for legitimate business purposes (fraud prevention, legal compliance). Backups are purged within 30 days of deletion.

9. International Data Transfers

Your data may be processed in countries other than your own where Cloudflare operates edge servers. We ensure appropriate safeguards are in place for cross-border transfers, including Standard Contractual Clauses where applicable.

10. Children's Privacy

Our Service is not intended for users under 13 years of age. We do not knowingly collect personal data from children under 13. If you believe a child has provided us with personal data, please contact us immediately.

11. Third-Party Links

Our Service may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any personal data.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the new policy on this page and updating the "Last updated" date. Continued use of the Service after changes constitutes acceptance of the updated policy.

13. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

• Email: info@apixo.io