Privacy policy

eighty6data ("we," "us," or "our") respects your privacy. This Privacy Policy describes how we collect, use, disclose, and protect information when you use our websites (such as eighty6data.com), accounts, subscription services, REST API, and related features (collectively, the "Service").

If you do not agree with this Policy, please do not use the Service.

Depending on how you use the Service, we may collect:

• Account information: for example, email address and password hash when you register; we do not store plaintext passwords.
• Billing information: subscription plans and payment processing are handled by Stripe. We receive limited billing metadata (for example, customer identifiers, subscription status, and plan) from Stripe rather than full card numbers, which Stripe processes according to its policies.
• API and product usage: API requests authenticated with your key, approximate timestamps, endpoints called, and data necessary to enforce rate limits, quotas, security, and abuse prevention.
• Technical data: IP address, browser or client type, device identifiers where applicable, and diagnostic logs needed to operate and secure the Service.
• Communications: messages you send to support and related correspondence.
• Cookies and similar technologies: on our websites, we may use cookies or local storage for session management, preferences, and (if enabled) analytics—see below.

We use information to:

• Provide, maintain, and improve the Service (including the explorer, API, documentation, and caching).
• Authenticate users, issue and revoke API keys, and enforce subscription entitlements and technical limits.
• Process payments and manage subscriptions through Stripe.
• Detect, prevent, and respond to fraud, abuse, security incidents, and illegal activity.
• Communicate with you about the Service, security, and policy updates.
• Comply with legal obligations and enforce our Terms of Service.
• Analyze aggregate or de-identified usage to understand product performance (we do not sell your personal information as "selling" is defined under the CCPA).

If the GDPR or similar law applies, we rely on: performance of a contract (providing the Service you request); legitimate interests (security, product improvement, and fraud prevention, balanced against your rights); legal obligation; and, where required, your consent (for example, non-essential cookies where applicable).

We share information with service providers who process it on our behalf under contractual obligations, including:

• Stripe, for payments and subscription management.
• Hosting and infrastructure providers (for example, cloud platforms that run our website and API).
• Email or customer communication tools, if we use them for transactional or support messages.

We do not sell your personal information for money. We do not share personal information with third parties for their own independent marketing purposes without your consent.

We retain information for as long as your account is active and for a reasonable period afterward to resolve disputes, enforce agreements, and meet legal requirements. Technical logs may be retained for shorter rolling periods unless needed for security investigations.

We implement administrative, technical, and organizational measures designed to protect information appropriate to the risk. No method of transmission or storage is completely secure; we cannot guarantee absolute security.

Account: you may review and update certain account details through the Service. You may request account deletion subject to legal and billing record-keeping needs.

Marketing: if we send promotional emails, you can opt out using the unsubscribe link or through the contact options we provide in the Service.

If you are a California resident, you may have the right to request access to, deletion of, or correction of personal information we hold about you, and to limit certain uses of sensitive personal information if we process any such categories. You may designate an authorized agent under applicable rules.

We will not discriminate against you for exercising privacy rights. To submit a request, use the contact options described in the Contact us section of this Policy. We may verify your request before responding.

Where the GDPR or UK GDPR applies, you may have the right to access, rectify, erase, restrict processing, data portability, and object to certain processing. You may lodge a complaint with your local supervisory authority.

We operate primarily in the United States. If we transfer personal information from the EEA, UK, or Switzerland to the United States or other countries, we use appropriate safeguards such as standard contractual clauses where required.

The Service is not directed to children under sixteen (16). We do not knowingly collect personal information from children. If you believe we have, reach us through the contact options in the Contact us section of this Policy and we will take appropriate steps to delete it.

Our Service may link to third-party sites (for example, our blog at readeighty6.com or documentation hosts). Their privacy practices are governed by their own policies.

We may update this Privacy Policy from time to time. We will post the revised policy on the Service and update the "Last updated" date. For material changes, we will provide additional notice where appropriate.

Privacy questions and requests: use the contact or support channels we make available through the Service (for example, in-product links or account settings), when we offer them. We may add or change contact methods over time.