API SHIELDSecure your APIs
Back to Home

Privacy Policy

Effective Date: October 21, 2025

Last Updated: October 21, 2025

Welcome to API-Shield.com ("we", "us", "our"). We value your privacy and are committed to protecting your personal information. This Privacy Policy explains what data we collect, how we use it, and your rights regarding that information.

1. Information We Collect

a) Account Information

When you sign up for an API-Shield account, we collect:

  • Your name (optional)
  • Email address (for account access and communication)
  • Password (hashed and stored securely)

b) API Usage Data

When your app uses our API, we collect:

  • API key used
  • Request metadata (IP address, endpoint, timestamp, response time)
  • Email addresses or domains you check via the API (processed transiently, not stored)

c) Payment & Billing

For paid subscriptions, our payment processors (e.g., Stripe, Paddle, or Dodo Payments) may collect your billing details, card information, and country for tax compliance. We never store or process payment card data on our own servers.

d) Cookies & Analytics

We use limited cookies and analytics tools (like Plausible or Google Analytics) to understand site usage and improve performance. These do not track personally identifiable information.

2. How We Use Your Information

We use collected data to:

  • Operate and maintain the API service
  • Authenticate users and manage subscriptions
  • Monitor uptime, performance, and abuse
  • Communicate product updates or security notices
  • Improve accuracy and reliability of our data sources

We do not sell, rent, or trade user data to any third party.

3. Data Retention
  • API logs: retained for up to 30 days for debugging and abuse detection
  • Account data: retained while your account is active
  • Billing data: retained as required by law (usually 5–7 years for tax compliance)
4. Data Security

We use industry-standard security practices:

  • HTTPS everywhere
  • Hashed and salted passwords (Argon2)
  • Role-based access for internal staff
  • Encrypted backups for account and configuration data

If we ever experience a data breach, we will notify affected users promptly as required by law.

5. Your Rights

Depending on your jurisdiction, you may:

  • Request access to or deletion of your personal data
  • Update your account information
  • Revoke consent to communications at any time
  • Request data export (in a portable format)

To exercise these rights, email [email protected].

6. Third-Party Services

We use trusted providers to operate API-Shield:

  • Hosting: AWS, Cloudflare, or similar
  • Email: Postmark, SendGrid, or equivalent
  • Payments: Stripe, Paddle, or Dodo Payments

Each provider complies with GDPR or equivalent privacy standards.

7. International Transfers

Your data may be processed in data centers outside your country of residence. We ensure all transfers comply with EU/US data protection laws using standard contractual clauses.

8. Policy Updates

We may update this policy periodically. Any material changes will be communicated via email or dashboard notice.

9. Contact Us

For privacy concerns, email: [email protected]

or write to:

API-Shield.com, Privacy Team

[email protected]