Privacy policy
Effective: July 11, 2026
This page explains what Vynaris collects about you, why, and what we do — and don't do — with it. We built Vynaris on "radical cost transparency," and we want this policy to be just as plain.
The short version
- Metadata-only keys store request details such as model, tokens, cost, and latency. Keys with transcript capture also store the full request and response for debugging.
- Your prompts and completions pass through to the model provider that serves the request.
- We do not train on your content. Some providers may retain or use it only when you enable that option for a key.
- Payments go through Dodo Payments — we never see your card number.
What we collect
- Account info: your email address, and an identifier from your auth provider if you sign up with GitHub or Google.
- Request metadata: which model you used, token counts, cost, latency, timestamp, and the prefix of the API key used (not the full key).
- IP address, kept for abuse prevention (for example, detecting free-credit farming across accounts).
Prompt and completion content
When you send a request through Vynaris, the prompt and the model's response pass through to the third-party inference provider that serves it. Those providers have their own privacy policies governing how they handle that content, and we'd encourage you to review them if you're sending sensitive data.
Each API key starts with metadata-only routing. This excludes deployments we have marked as potentially retaining or using prompt and completion content. You can enable more providers for an individual key to unlock more models and potentially lower prices. The provider's own terms then govern its use of that content, including any product-improvement or model-training use it permits. This setting does not currently constrain processing region, so don't send content that must not cross regional boundaries.
For keys with transcript capture enabled, Vynaris stores the complete request and response payload—including messages, system prompts, tool definitions and calls, generation parameters, streamed response chunks, provider errors, and routing metadata. We use this content for dashboard debugging, quality-refund review, evaluation, and improving the routing system. Turning the option off stops future transcript capture. Previously captured transcripts remain until the account is deleted or you ask us to delete them.
Vynaris does not train models on your prompt or completion content. A third-party provider may do so only for keys where you explicitly allow provider data collection.
What we don't do
- We don't sell your personal data.
- We don't run ads or share your data with advertisers.
- We don't use third-party tracking cookies. The only cookies we set are for your session and CSRF protection. If we ever add analytics, we'll update this policy first.
Payments
Payments are handled by Dodo Payments, our payment processor and merchant of record. Your card details go directly to them — we never see or store your card number.
Emails
We send transactional email only: email verification, payment receipts, and low-balance warnings. Where the law allows it, you can unsubscribe from non-essential notices; we'll still need to send you account-critical messages like receipts.
Data retention and deletion
We keep metadata-only request logs for billing accuracy and audit purposes. For keys with transcript capture enabled, we also keep captured transcripts until the account is deleted or you ask us to delete them. Turning the option off stops future capture but does not erase existing transcripts. You can ask us to delete your account and associated data by emailing us — we'll do so promptly, except where we're required to retain billing records for legal or accounting reasons.
Security
We encrypt data in transit and store API keys hashed, not in plain text. No system is perfectly secure, and we don't claim any particular certification — but we take reasonable, standard precautions to protect your data.
Exporting your data
You can export your request history and account data as a CSV from your dashboard at any time.
Regional privacy rights
Depending on where you live, you may have rights over your personal data, such as access, correction, or deletion. Email us at [email protected] and we'll do our best to honor requests that apply to you.
Where your data is processed
Vynaris's servers are located in the United States, and that's where your account and request metadata are processed and stored. Opted-in transcripts are stored there too. When you route a request to a model provider, your prompt is also processed wherever that provider operates. If you're outside the US, your data will cross borders to reach our servers and the upstream providers.
Contact
Questions about this policy, or a request about your data? Email [email protected].