Privacy Policy

1. Introduction

Wag-Tail AI Gateway, operated by StarToken Pty Ltd ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI gateway service, whether through our website, API, or related services.

By using Wag-Tail AI Gateway, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Information You Provide Directly

• Account Information: Email address, name, organization details when you register
• Configuration Data: API configurations, routing rules, and system settings
• Communication Data: Messages you send to our support team
• Payment Information: Billing details for Advanced Edition subscriptions (processed by third-party payment processors)

2.2 Information Collected Automatically

• Usage Data: API request patterns, response times, error rates, and system performance metrics
• Log Data: IP addresses, timestamps, request headers, and system events
• Technical Data: Browser type, operating system, and device information when accessing our website
• Telemetry Data: Gateway performance metrics and operational statistics

2.3 Data Processed Through Our Gateway

3. How We Use Your Information

3.1 Service Provision

• Route API requests to appropriate LLM providers
• Implement failover and load balancing
• Apply security plugins and PII protection
• Provide semantic caching when configured
• Generate usage analytics and billing information

3.2 Service Improvement

• Monitor system performance and reliability
• Identify and resolve technical issues
• Develop new features and enhancements
• Optimize routing algorithms and performance

3.3 Security and Compliance

• Detect and prevent fraudulent activity
• Enforce rate limits and usage policies
• Comply with legal obligations
• Protect against security threats

4. Information Sharing and Disclosure

4.1 Third-Party LLM Providers

When you make API requests through our gateway, your prompts and data are forwarded to the configured LLM providers (OpenAI, Anthropic, Google, Azure, etc.) according to your routing configuration. Each provider has their own privacy policies governing data use.

4.2 Service Providers

We may share information with trusted third-party service providers who assist us in:

• Cloud infrastructure and hosting (AWS, Google Cloud, Azure)
• Payment processing
• Customer support and communication
• Analytics and monitoring

4.3 Legal Requirements

We may disclose your information when required by law, regulation, legal process, or governmental request, or to protect our rights, property, or safety.

4.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

5. Data Security

5.2 Data Retention

• Logs and Metrics: Retained for 90 days for operational purposes
• Account Information: Retained while your account is active
• Cached Data: Automatically expires based on your cache configuration (default: 24 hours)
• Billing Records: Retained as required by law and accounting standards

6. Your Privacy Rights

6.1 Access and Control

You have the right to:

• Access your personal information we have collected
• Correct inaccurate or incomplete information
• Delete your account and associated data
• Export your configuration and usage data
• Opt-out of non-essential communications

6.2 Data Portability

You can export your configuration data, usage statistics, and account information in standard formats through our API or dashboard.

6.3 Exercising Your Rights

To exercise these rights, contact us at privacy@wag-tail.com. We will respond within 30 days of receiving your request.

7. Regional Privacy Laws

7.1 GDPR (European Union)

If you are located in the EU, we process your data under the following legal bases:

• Contractual Necessity: To provide our services
• Legitimate Interest: For security, analytics, and service improvement
• Consent: For marketing communications (where required)

7.2 CCPA (California)

California residents have additional rights under the CCPA, including the right to know about personal information collection and the right to request deletion.

7.3 International Transfers

We may transfer your data internationally. When we do, we ensure adequate protections are in place through appropriate safeguards.

8. Cookies and Tracking Technologies

8.1 Essential Cookies

We use essential cookies for authentication, security, and basic functionality. These cannot be disabled.

8.2 Analytics Cookies

We use analytics cookies to understand how our service is used and to improve performance. You can opt-out of these through your browser settings.

8.3 Managing Cookies

You can control cookies through your browser settings. Note that disabling certain cookies may affect functionality.

9. Children's Privacy

Our service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children under 18. If we become aware that we have collected such information, we will take steps to delete it promptly.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

• Posting the updated policy on our website
• Sending an email notification to registered users
• Displaying a notice in our dashboard

Your continued use of our service after changes become effective constitutes acceptance of the updated policy.

11. Contact Information