Privacy Policy

ttttt.ai is a team-oriented AI API gateway. We collect the information needed to create accounts, manage organizations, issue API keys, process payments, route requests to upstream model providers, and maintain billing and audit records.

When you sign up or join an organization, we may collect your name, email address, login method, organization membership, role, and account preferences.

When your organization uses the gateway, we record operational and billing data such as API key id, organization id, user id, model, timestamps, token counts, latency, cost, status, and related audit metadata. We may also process prompts, attachments, and model outputs as needed to route a request and return the response.

To fulfill a request, ttttt.ai sends the relevant request payload to the selected upstream AI provider or channel configured for that model. Your use of those providers is also subject to their own terms and privacy practices.

If you buy credits, payment processing is handled by Stripe. We store payment records, credit ledger entries, invoices or receipts, and related organization billing history needed to reconcile balances and support refunds, fraud review, and accounting.

If you contact us, submit a ticket, or receive service emails, we process the information in those communications to respond to you, operate the service, and keep an internal support history.

We use information to authenticate users, operate the gateway, enforce rate limits and access controls, provide dashboards and analytics, process billing, prevent abuse, investigate incidents, send service communications, and improve reliability.

We share information with service providers that help us operate the product, such as hosting, email, payment, analytics, and upstream inference providers. We may also disclose information when required by law, to protect the service or users, or as part of a corporate transaction.

We retain account, billing, usage, and audit records for as long as needed to operate the service, comply with legal obligations, resolve disputes, and maintain the integrity of balances, invoices, and security investigations. Some records may remain after account deletion if they are required for these purposes.

We use reasonable technical and organizational measures to protect information, but no system can guarantee absolute security. You are responsible for safeguarding your credentials and keeping API keys out of unintended hands.

You can manage certain account details from the product, and organization admins can manage billing and team settings. If you need access, correction, or deletion support beyond the product controls, contact us at [email protected].

We may update this Privacy Policy from time to time. Material changes will be posted on this page with a revised effective date.