Privacy Policy
Last updated: May 19, 2026
1. Information We Collect
Account Information
When you register, we collect:
- Username and email address
- Account credentials (hashed password)
- Billing information (cryptocurrency wallet addresses for deposits)
Usage Data
To provide the service, we automatically collect:
- API call records (model used, tokens consumed, timestamps)
- IP addresses associated with API requests
- HTTP headers and request metadata
- Device and browser information (from web access)
Important: We do not store the content of your AI prompts or completions beyond what is required for billing reconciliation and abuse detection (typically 30 days).
2. How We Use Your Information
- To create and manage your account
- To process payments and issue invoices
- To deliver API responses and track usage
- To detect and prevent fraud, abuse, or violations of Terms of Service
- To send transactional emails (verification, alerts, support responses)
- To improve our platform and services
3. Data Sharing
We do not sell, rent, or trade your personal data. Your information may be shared with:
- AI model providers (e.g., OpenAI, DeepSeek, MiniMax) — solely for routing your API requests
- Payment processors — for cryptocurrency transaction verification
- Cloud infrastructure providers — our hosting providers (data centers)
- Law enforcement — when legally required
4. Data Retention
- Account data is retained until you delete your account
- API usage logs are retained for a minimum of 30 days for billing and abuse detection
- Cryptocurrency transaction records are retained for tax and accounting compliance as required by law
- Email communications are retained for 2 years for support and dispute resolution
5. Cookies & Tracking
We use minimal cookies:
- Session cookies — required for authentication when you log in
- Analytics — we use Cloudflare Analytics (no third-party tracking cookies)
- No advertising cookies — we do not run ads and do not use ad trackers
6. Data Security
We implement industry-standard security measures including:
- TLS encryption for all data in transit (HTTPS)
- Hashed passwords (bcrypt)
- Access controls and least-privilege principles
- Regular security reviews and updates
No method of transmission over the internet is 100% secure. We cannot guarantee absolute security, but we are committed to maintaining appropriate technical and organizational measures.
7. Your Rights
Depending on your jurisdiction, you may have the right to:
- Access — request a copy of your personal data
- Correction — request correction of inaccurate data
- Deletion — request deletion of your account and associated data
- Portability — request your data in a machine-readable format
- Objection — object to certain processing activities
To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.
8. Children's Privacy
Our service is not intended for individuals under 18 years of age. We do not knowingly collect personal data from minors. If we become aware that a minor's data has been collected, we will delete it promptly.
9. International Transfers
Your data may be processed in countries outside your own, including outside the European Economic Area (EEA). Where data is transferred internationally, we ensure appropriate safeguards are in place (e.g., standard contractual clauses).
10. Third-Party Links
Our platform may contain links to third-party websites. This Privacy Policy applies only to Shaibar. We are not responsible for the privacy practices of third-party sites — please review their privacy policies independently.
11. Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be communicated via email or a prominent notice on our website. Continued use of our service after changes constitutes acceptance of the updated policy.
12. Contact
For privacy-related questions, data export requests, or to delete your account: