Ipforward
Ipforward

Privacy Policy

Last Updated: August 13, 2025

Welcome to Ipforward (“we,” “our,” or “us”). We are committed to protecting your privacy and handling your data in an open and transparent manner. Our core mission is to provide secure and reliable AI API management services. This Privacy Policy explains what information we collect, how we use it, and your choices regarding your information.

Our guiding principle is to collect only the minimum data required to operate a reliable AI API gateway service at scale. We designed our systems to protect your sensitive data and API credentials; we implement strict security measures to safeguard the information we do need to collect.

I. Data Minimization Policy

We follow strict data minimization practices. When you use Ipforward, we **DO NOT** collect, log, or store any of the following:

  • The content of your API requests or responses.
  • Your AI model prompts or generated content.
  • Detailed logs of individual API calls beyond necessary metadata.
  • Personal information contained within your API interactions.

II. Information We Do Collect

To provide our AI API management services, secure your account, and improve Ipforward, we collect the following information:

A. Account & Payment Information

When you create an account, we collect your email address and payment information. This data is used solely for account creation, processing payments, and managing your subscription. We use third-party payment processors (like Stripe) and do not store your full credit card details on our servers.

B. API Management Data

To provide our core services, we collect:

  • API Keys & Credentials: We securely store your AI provider API keys using industry-standard encryption to facilitate API calls on your behalf.
  • Usage Metrics: We track API call counts, response times, and success/failure rates to provide usage analytics and billing.
  • Configuration Settings: Your gateway configurations, rate limits, and routing preferences.

C. Aggregated & Anonymized Data

To maintain service quality and troubleshoot issues, we may collect anonymized, aggregate data:

  • Service Performance Data: We monitor server performance, response times, and system reliability metrics.
  • Platform Diagnostics: Anonymized error logs and performance metrics to identify and fix issues.

III. How We Use Your Information

We use the information we collect for the following purposes:

  • To provide, operate, and maintain our AI API gateway services.
  • To process your payments and manage your subscription.
  • To route and manage your API calls to AI providers.
  • To provide usage analytics and cost optimization insights.
  • To communicate with you about service updates and support.
  • To enforce our Terms of Service and prevent fraud.
  • To improve our platform performance and features.

IV. Data Sharing and Third Parties

We do not sell, rent, or trade your personal information. We may share limited data with:

  • AI Providers: We forward your API requests to chosen AI services (OpenAI, Anthropic, etc.) as part of our core functionality.
  • Payment Processors: For billing and subscription management.
  • Service Providers: Contracted partners who help us operate our platform, bound by strict confidentiality agreements.

V. Data Security

We implement robust security measures to protect your data:

  • All API keys and sensitive data are encrypted at rest using AES-256 encryption.
  • All data transmission uses TLS/SSL encryption.
  • Access to user data is strictly limited to authorized personnel.
  • We conduct regular security audits and vulnerability assessments.
  • We follow industry best practices for cloud security and data protection.

VI. Your Rights

You have the right to:

  • Access, update, or delete your personal information.
  • Export your usage data and configurations.
  • Revoke API key access at any time.
  • Request deletion of your account and associated data.

You can manage your account through our dashboard or by contacting our support team.

VII. Data Retention

We retain your data only as long as necessary to provide our services:

  • Account data is retained while your account is active.
  • Usage metrics are retained for 24 months for analytics and billing purposes.
  • API keys are permanently deleted when removed from your account.
  • Upon account deletion, all personal data is removed within 30 days.

VIII. Changes to This Policy

We may update this Privacy Policy to reflect changes in our practices or legal requirements. We will notify you of significant changes via email or dashboard notification. The latest version will always be available on this page.

IX. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at: [email protected].