Privacy policy
Effective: July 9, 2026
This page explains what Vynaris collects about you, why, and what we do — and don't do — with it. We built Vynaris on "radical cost transparency," and we want this policy to be just as plain.
The short version
- We collect your account info and request metadata (model, tokens, cost, latency) — not much else.
- Your prompts and completions pass through to the model provider that serves the request.
- We don't train on your content unless you explicitly opt in, and we never sell your data.
- Payments go through Dodo Payments — we never see your card number.
What we collect
- Account info: your email address, and an identifier from your auth provider if you sign up with GitHub or Google.
- Request metadata: which model you used, token counts, cost, latency, timestamp, and the prefix of the API key used (not the full key).
- IP address, kept for abuse prevention (for example, detecting free-credit farming across accounts).
Prompt and completion content
When you send a request through Vynaris, the prompt and the model's response pass through to the upstream provider that serves it — for example OpenRouter or the model host behind it. Those providers have their own privacy policies governing how they handle that content, and we'd encourage you to review them if you're sending sensitive data.
We do not train any model on your prompts or completions unless you explicitly opt in.
What we don't do
- We don't sell your personal data.
- We don't run ads or share your data with advertisers.
- We don't use third-party tracking cookies. The only cookies we set are for your session and CSRF protection. If we ever add analytics, we'll update this policy first.
Payments
Payments are handled by Dodo Payments, our payment processor and merchant of record. Your card details go directly to them — we never see or store your card number.
Emails
We send transactional email only: email verification, payment receipts, and low-balance warnings. Where the law allows it, you can unsubscribe from non-essential notices; we'll still need to send you account-critical messages like receipts.
Data retention and deletion
We keep request logs for billing accuracy and audit purposes. You can ask us to delete your account and associated data by emailing us — we'll do so promptly, except where we're required to retain billing records for legal or accounting reasons.
Security
We encrypt data in transit and store API keys hashed, not in plain text. No system is perfectly secure, and we don't claim any particular certification — but we take reasonable, standard precautions to protect your data.
Exporting your data
You can export your request history and account data as a CSV from your dashboard at any time.
Regional privacy rights
Depending on where you live, you may have rights over your personal data, such as access, correction, or deletion. Email us at [email protected] and we'll do our best to honor requests that apply to you.
Where your data is processed
Vynaris's servers are located in the United States, and that's where your account and request metadata are processed and stored. When you route a request to a model provider, your prompt is also processed wherever that provider operates. If you're outside the US, your data will cross borders to reach our servers and the upstream providers.
Contact
Questions about this policy, or a request about your data? Email [email protected].