Privacy Policy

We collect information automatically when you interact with our public REST API, including:

• API requests (endpoint, parameters, request body)
• Usage metadata (IP address, User-Agent, request headers, timestamps)
• Response status codes and error logs

We use the collected data to:

• Operate and maintain the public REST API service
• Monitor performance, uptime, and rate-limit compliance
• Detect and prevent abuse, DDoS attacks, or unauthorized usage
• Improve API functionality and documentation
• Comply with legal obligations

We implement industry-standard security measures to protect your data:

• HTTPS encryption for all API traffic
• Secure storage of logs with restricted access
• Regular security audits and penetration testing

We do not sell your personal data. We may share API usage data with:

• Infrastructure providers (cloud hosting, CDN, logging services)
• Law enforcement or authorities when required by law
• Third parties only with your explicit consent

You have the right to:

• Request access to the data we collected from your API usage
• Request correction or deletion of your usage logs
• Object to or restrict certain types of processing

We use IP-based rate limiting and temporary tracking to:

• Ensure fair usage of the public API
• Prevent overload and maintain service availability
• Identify and block malicious traffic

These identifiers are stored temporarily and automatically deleted after 30 days.

API request logs are retained for a maximum of 30 days for security and performance monitoring, unless a longer period is required by law.

Our public API is not intended for use by children under 13. We do not knowingly collect data from children. Any such data will be deleted immediately upon discovery.

We may update this Privacy Policy periodically. Changes will be published on this page with an updated "Last updated" date.