Privacy Policy
Last updated: 2026-05-11 · Version 1.0
Summary
Epithre does not log or persist the content of your API requests or responses. We store only billing metadata (token counts, timestamps, costs) — never your prompts, never the generated text, never the images.
What we collect
| Category | Examples | Retention |
|---|---|---|
| Account data | Email, hashed password, name (optional) | Account lifetime + 30 days |
| API keys | SHA-256 hash, prefix (first 12 chars), name, scopes | Account lifetime; revoked keys 90 days |
| Usage events | Timestamp, model, endpoint, token counts, cost, latency, HTTP status — no content | 90 days |
| Billing events | Topups, refunds, signup credits, adjustments | 7 years (tax/audit) |
| Audit log | Admin actions, key creation/revocation, suspensions | 365 days |
| Session data | JWT issued at login; stored in your browser localStorage | 24h (auto-expire) |
What we DO NOT collect
- The content of your prompts.
- The content of model responses (text, embeddings, images).
- Images you submit to
/v1/images/edits— these are forwarded to the inference backend and discarded after the response is returned. - Cookies for tracking, fingerprinting, or analytics. We use only a session JWT in localStorage.
- Third-party trackers, advertising IDs, or social plugins.
How we use data
- Account data — to authenticate you, contact you about your account, and prevent abuse.
- Usage data — to bill correctly and to detect/respond to abuse (e.g., rate-limit abusers, high-error patterns).
- Audit log — to detect unauthorized access and for compliance audits.
Third parties
Your prompts and outputs do flow through Epithre infrastructure (FastAPI gateway → backend inference servers in Jakarta data center). No third-party AI provider (OpenAI, Anthropic, Google, etc.) is in the request path. Our models are self-hosted.
For payment processing during the alpha period: we exchange invoices via email. Payment is via bank transfer or other methods you arrange directly with us — no payment processor sees your billing details unless you choose to use one. Stripe / Midtrans integration is planned for general availability.
Your rights
- Access — request a copy of your account data via hello@epithre.com.
- Deletion — request account deletion. We will erase your account and all linked data within 30 days, except where retention is required by law (billing records).
- Correction — change your email or name via support.
- Export — request your usage logs as CSV.
Data location
All servers physically located in Jakarta, Indonesia. We do not transfer data outside Indonesia.
Security
- All API and dashboard traffic is TLS 1.2+ encrypted.
- Passwords are hashed with Argon2id.
- API keys are stored as SHA-256 hashes (we cannot recover the original).
- Backend services are isolated on a private network (LAN-only inference endpoints).
No system is perfectly secure. If you discover a vulnerability, please email hello@epithre.com with subject "Security disclosure".
Changes
We will email you 14 days before any material change to this policy.