Skip to content

Privacy Policy

Last updated: 2026-04-16

1. Data We Collect at Sign-up

  • Email address (used for login, receipts, and service notices).
  • A hash of your password (we use Argon2id; we never store the plaintext password).

2. Data We Collect During Use

When you route requests through ModelRelay we record metadata about each request:

  • Your user id, the API key id used, and the timestamp of the request.
  • The model name, token counts (input and output), latency, and success or error status.

We do not persist the bodies of your requests or the responses returned to you. Request and response payloads are forwarded between your application, our relay, and the selected provider or worker, and are not retained after the request completes.

3. Payment Information

Billing is handled by Stripe. ModelRelay stores only a Stripe customer id and the current subscription state. We never see or store full card numbers.

4. Cookies

We use a single session cookie to keep you logged in. It is marked HttpOnly, Secure, and SameSite=Lax. We do not use third-party analytics cookies, advertising trackers, or cross-site tracking.

5. API Keys

API keys you generate in your dashboard are stored as raw values so that they can be redisplayed to you. Treat your API keys like passwords; do not share or embed them in untrusted clients. You can revoke and rotate keys at any time from the dashboard.

6. How We Use Your Data

  • To operate, monitor, and improve the Service.
  • To enforce per-account rate limits and prevent abuse.
  • To send essential service emails (receipts, security notices, incident communications).
  • To comply with legal obligations.

7. Data Sharing

We share request metadata only with the parties necessary to fulfill each request:

  • The LLM provider(s) you route to (for example, OpenAI, Anthropic, or your own workers).
  • Stripe, for subscription billing.

We do not sell personal data, and we do not share it with advertisers.

8. Retention

  • Account data is retained while your account is active.
  • On account deletion, account data is removed within 30 days, except where retention is required by law.
  • Per-request usage metadata is retained for up to 90 days, then deleted or aggregated.

9. Security

Passwords are hashed with Argon2id. Traffic to ModelRelay is served over TLS. Internal access to production databases is limited to operators who need it. No system is perfectly secure, but we take reasonable measures to protect your data.

10. Your Rights

You can access, export, or delete your account data by emailing support@modelrelay.io. We will respond within a reasonable timeframe and in accordance with applicable law.

11. Children

ModelRelay is not directed to children under 13, and we do not knowingly collect personal information from them.

12. Jurisdiction

ModelRelay is operated from the United States and your data is processed on infrastructure located in the United States.

13. Changes to This Policy

We may update this Privacy Policy over time. Material changes will be announced by email to the address on your account before they take effect.

14. Contact

If you have questions, email support@modelrelay.io.