Privacy Policy
This policy explains what data Basktre collects, why we collect it, and what we never touch.
1. Overview
Basktre ("we", "us", "our") operates an AI API gateway at basktre.dev. This Privacy Policy applies to all users of our website, API, and waitlist ("you").
By using Basktre, you agree to the practices described in this policy.
2. What we collect
We collect the minimum data needed to operate the service and process billing.
This includes account email, token counts, model used, request timestamps, and API key identifiers.
3. What we don't collect
Prompt text and model responses are never stored, logged, or retained by Basktre.
We also do not store IP address history, end-user identity, or browser fingerprints.
4. How we use data
Collected data is used for billing, request authentication, service communications, and abuse prevention.
We do not use your data for advertising, profiling, or model training.
5. Third parties
Requests are forwarded to model providers per routing logic, and their policies apply to processed content.
Payment processing is handled by a third-party processor; Basktre stores only minimal transaction metadata.
6. Data retention
Billing metadata is retained for 24 months to support disputes and compliance, then permanently deleted.
Account data is retained until account deletion, and then removed within 30 days.
7. Security
We use TLS in transit, encryption at rest for stored account data, and strict access controls.
If you discover a vulnerability, report it to security@basktre.dev.
8. Your rights
You may request access, correction, portability, objection, or deletion depending on your region.
To submit a request, contact privacy@basktre.dev.
10. Changes
Material policy updates are communicated to registered users before they take effect.
11. Contact
For privacy requests and legal matters, contact privacy@basktre.dev and legal@basktre.dev.