Privacy Policy - AI Director

1. Introduction

AI Director ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our API gateway service.

2. Information We Collect

2.1 Account Information

When you create an account, we collect your email address and authentication credentials provided through our authentication provider.

2.2 API Usage Data

We collect information about your API requests including request metadata, response times, and usage statistics. We do NOT store the content of your prompts or AI responses.

2.3 API Keys

When you provide your own API keys (BYOK), they are encrypted at rest and are only used to make requests to AI providers on your behalf.

3. How We Use Your Information

To provide and maintain our service
To monitor usage and enforce rate limits
To improve and optimize our service
To communicate with you about service updates
To detect and prevent fraud or abuse

4. Data Retention

We retain your account information for as long as your account is active. API logs and usage data are retained for 90 days for analytics purposes. You may request deletion of your data at any time.

5. Data Security

We implement industry-standard security measures including encryption in transit (TLS), encryption at rest for sensitive data, and regular security audits.

6. Third-Party Services

We use the following third-party services:

Google Gemini, OpenRouter - AI model providers
Vercel - Hosting and infrastructure
Authentication providers - User authentication

7. Your Rights

You have the right to access, correct, or delete your personal data. Contact us at privacy@aidirector.dev to exercise these rights.

8. Contact Us

If you have questions about this Privacy Policy, please contact us at privacy@aidirector.dev