Privacy Policy
Last updated: February 2026
1. Information We Collect
We collect information you provide when creating an account: email address, name, and password (hashed). We also collect API usage data (request counts, endpoints accessed) for rate limiting and analytics.
2. How We Use Your Information
- To provide and maintain the Service
- To manage your account and subscription
- To enforce rate limits and prevent abuse
- To communicate service updates and changes
3. Data Storage
Account data is stored in Cloudflare D1 (edge SQLite). API usage data is stored in ClickHouse. All data is encrypted in transit (TLS). We do not sell your personal information.
4. Cookies
We use localStorage for authentication tokens. We do not use tracking cookies or third-party analytics.
5. Third-Party Services
We use Stripe for payment processing. Stripe's privacy policy applies to payment data. We use Cloudflare for CDN and edge services.
6. Data Retention
Account data is retained while your account is active. Upon deletion, all personal data is removed within 30 days. API usage logs are retained for 90 days.
7. Your Rights
You may request data export or deletion at any time via your account settings or by emailing admin@ko.io. See also our GDPR page.