Privacy Policy

1. Introduction

This Privacy Policy describes how SilverAI ("we", "us", "our") collects, uses, and protects your personal information when you use the SnapAPI.AI platform, website (snapapi.ai), API services, and all related services (collectively, the "Service").

By using the Service, you consent to the data practices described in this policy.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

• Email address
• Display name (if provided)
• Authentication credentials (securely hashed, never stored in plain text)

2.2 Payment Information

All payment processing is handled by Creem (creem.io), our Merchant of Record. We do not collect or store your credit card numbers, bank account details, or other financial payment information. From Creem, we receive only:

• Creem customer ID
• Transaction IDs and purchase amounts
• Credit package purchased
• Payment status (completed, refunded, etc.)

2.3 API Usage Data

When you use our API, we collect:

• API request timestamps
• Endpoints and models called
• Response status codes
• Credits consumed per request
• Error logs for debugging

2.4 Input and Output Data

When you make API requests, your input data (such as images, text prompts, or other content) is transmitted to third-party AI model providers for processing. Please see Section 5 for details on how this data is handled.

2.5 Technical Data

We automatically collect:

• IP addresses
• Browser type and version
• Device information
• Pages visited and interactions on our website
• Cookies and similar technologies for session management

3. How We Use Your Information

We use your information for the following purposes:

• Service delivery: Processing your API requests and managing your account
• Credit management: Tracking your credit balance and usage
• Billing: Recording transactions and generating usage reports
• Security: Detecting and preventing fraud, abuse, and unauthorized access
• Support: Responding to your inquiries and resolving issues
• Improvement: Analyzing usage patterns to improve the Service (in aggregate, anonymized form)
• Communication: Sending service-related notifications, updates, and security alerts

4. Legal Basis for Processing

We process your personal data based on the following legal grounds:

• Contract performance: Processing necessary to provide the Service you have requested
• Legitimate interests: Security, fraud prevention, and service improvement
• Consent: Where you have explicitly consented to specific data processing
• Legal obligations: Compliance with applicable laws and regulations

5. API Data Processing

5.1 How Input Data is Processed

When you submit data through our API (images, text prompts, etc.), this data is:

• Transmitted securely (TLS encryption) to the appropriate third-party AI model provider
• Processed by the model provider to generate the requested output
• Returned to you through our API

5.2 Data Retention

• Input and output data: We do not permanently store the content of your API requests or responses. Data is processed transiently and not retained after the request is completed.
• API logs: Request metadata (timestamps, model used, credits consumed, status codes) is retained for 90 days for debugging and usage tracking purposes.
• We do not use your input or output data to train AI models.

5.3 Third-Party Model Providers

Your input data is shared with third-party AI model providers solely to fulfill your API requests. Each model provider has its own data processing policies. We select providers that maintain appropriate data protection standards, but we recommend reviewing individual model provider policies for specific data handling practices.

6. Payment Data and Creem

Creem acts as our Merchant of Record and independently collects and processes your payment information. This includes:

• Payment card or method details
• Billing address
• Tax identification (where applicable)

Creem's data practices are governed by their own privacy policy, available at creem.io. We encourage you to review it. SnapAPI.AI only receives limited transaction metadata from Creem as described in Section 2.2.

7. Data Sharing and Third Parties

We share your data with the following categories of third parties:

• AI model providers: Input data necessary to process your API requests
• Creem: Payment processing and tax compliance
• Firebase/Google: Authentication services
• Cloud infrastructure providers: Hosting and data storage

We do not sell your personal data to third parties.

We may disclose your information if required by law, legal process, or government request, or to protect the rights, property, or safety of SnapAPI.AI, our users, or others.

8. Data Security

We implement appropriate technical and organizational measures to protect your data:

• Encryption in transit: All data is transmitted using TLS/HTTPS
• API key security: Keys are hashed and stored securely
• Access controls: Strict internal access policies for personnel
• Infrastructure security: Industry-standard cloud security practices
• Monitoring: Continuous monitoring for unauthorized access attempts

While we strive to protect your data, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

9. Data Retention

We retain your data for the following periods:

• Account data: While your account is active, plus 30 days after account deletion
• API usage logs: 90 days
• Transaction records: As required by applicable tax and legal obligations (typically 5-7 years)
• Credits: Non-expiring while your account remains active

After the retention period, data is securely deleted or anonymized.

10. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

• Access: Request a copy of the personal data we hold about you
• Correction: Request correction of inaccurate or incomplete data
• Deletion: Request deletion of your personal data
• Portability: Request your data in a structured, machine-readable format
• Objection: Object to processing based on legitimate interests
• Restriction: Request restriction of processing in certain circumstances
• Withdrawal of consent: Withdraw consent where processing is based on consent

To exercise any of these rights, contact us at support@silverai.com. We will respond to your request within 30 days.

11. Cookies

We use cookies and similar technologies for:

• Essential cookies: Session management, authentication, and security
• Analytics cookies: Understanding how users interact with our website (in aggregate)

We do not use third-party advertising or tracking cookies. You can control cookies through your browser settings, but disabling essential cookies may affect your ability to use the Service.

12. Children's Privacy

The Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child under 18, we will take steps to delete that information promptly. If you believe a child has provided us with personal data, please contact us at support@silverai.com.

13. International Data Transfers

Your data may be processed in jurisdictions outside your country of residence due to our use of cloud infrastructure and third-party AI model providers. Where data is transferred internationally, we ensure appropriate safeguards are in place to protect your data in accordance with applicable data protection laws.

14. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or through a notice on the Service. The "Last updated" date at the top of this page indicates when the policy was last revised. Your continued use of the Service after changes take effect constitutes acceptance of the updated policy.

15. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

• Email: support@silverai.com
• Website: snapapi.ai