Privacy Policy

1. Information We Collect

We collect information you provide directly, such as account details, support messages, plan or billing information, redemption codes, and API key names or metadata you create in the dashboard.

We also collect technical information needed to operate the service, including IP address, browser or client user agent, request timestamps, approximate region, device and network diagnostics, and security events.

2. API Usage Data

To operate usage limits, abuse prevention, dashboards, and billing, we process API metadata such as API key identifiers, model name, request counts, token counts, rate-limit events, errors, and timing data.

We do not need to store full prompts or completions to calculate standard token usage. If request content is temporarily processed or logged during debugging, we limit access to operational staff and remove it when it is no longer needed.

3. Discord Login

If you sign in with Discord, we may receive your Discord user ID, username, global display name, avatar, OAuth scopes, guild membership status, and verification status. We use this data to verify accounts, associate API keys with Discord users, prevent duplicate free-tier keys, and support server-based verification.

4. How We Use Information

We use collected information to provide the website and API, issue and manage API keys, enforce token-per-day and rate limits, process paid plans, detect abuse or outages, improve reliability, respond to support requests, and comply with legal or security obligations.

5. Cookies and Local Storage

We use cookies, server-side sessions, and browser local storage to keep you signed in, remember theme preferences, operate dashboard sessions, and protect forms or login flows. You can clear cookies or local storage in your browser, but some dashboard features may stop working until you sign in again.

6. Sharing and Providers

We may share limited data with infrastructure providers, payment or support tools, Discord, security services, and model providers where needed to deliver the service. API requests may be routed to third-party model providers depending on the model selected and provider availability.

We do not sell your personal information. We may disclose information if required by law, to protect the service, or to investigate abuse, fraud, or security incidents.

7. Retention

We keep account, key, usage, and security records for as long as needed to provide the service, maintain accurate limits and billing, resolve disputes, audit abuse, and meet legal requirements. We may retain aggregated or de-identified usage statistics for reliability and planning.

8. Security

We use administrative, technical, and operational safeguards intended to protect your information, including access controls, rate limiting, logging, hashed API key storage where supported, and security monitoring. No system is completely secure, so you should protect your API keys and notify us immediately if you suspect unauthorized use.

9. Your Choices

You may request access, correction, or deletion of personal information by contacting us. We may need to keep certain operational records where required for security, billing, fraud prevention, or legal compliance.

You can revoke or rotate API keys from supported dashboards or by contacting support. If you disconnect Discord or leave the verification server, some free-tier access may be disabled according to our service rules.

10. Children

Naxios is not intended for children under 13. If you believe a child provided personal information to us, contact us so we can review and remove it where appropriate.

11. Changes

We may update this Privacy Policy from time to time. The "Last updated" date shows when the latest version became effective. Continued use of the service after an update means you accept the revised policy.

12. Contact

For privacy questions or requests, contact us at [email protected]. You can also open a support ticket through our Discord server.