Privacy Policy

Last Updated: December 22, 2025

1. Introduction

RouteTokens (R9S) (“we”, “us”, or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI API gateway services.

By using our Service, you consent to the data practices described in this policy. If you do not agree with the practices described herein, please do not use our Service.

2. Information We Collect

We collect information in various ways to provide and improve our Service:

Information You Provide

Account information: name, email address, and payment details when you register
Communications: information you provide when contacting our support team
API usage: prompts and queries sent through our API (subject to your logging preferences)

Information Collected Automatically

Device information: IP address, browser type, operating system
Usage data: API call timestamps, response times, token counts
Log data: server logs for security and performance monitoring

3. How We Use Your Information

We use the information we collect for the following purposes:

To provide, maintain, and improve our Service
To process transactions and send related information
To respond to your comments, questions, and support requests
To monitor and analyze usage patterns and trends
To detect, prevent, and address technical issues and security threats
To comply with legal obligations and enforce our terms

4. Enterprise Data Logging

For enterprise customers with specific compliance, auditing, or operational requirements, we offer optional data logging capabilities. When enabled at the request of enterprise users, we may log API requests and responses including prompts and outputs.

Enterprise data logging is governed by separate enterprise agreements and is only activated upon explicit customer request. Logged data is stored securely and access is strictly controlled according to customer specifications.

We implement industry best practices for data protection, including encryption at rest and in transit, access controls, and regular security audits to ensure the highest level of data security for enterprise customers.

We may share your information in the following circumstances:

With third-party AI model providers to fulfill your API requests (prompts are sent to the selected model provider)
With service providers who assist in operating our Service (payment processors, cloud infrastructure)
To comply with legal obligations, court orders, or government requests
In connection with a merger, acquisition, or sale of assets

We do not sell your personal data to third parties. We do not use your prompts or API data to train AI models.

6. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience:

Essential Cookies: Required for the Service to function properly. These cannot be disabled.
Functional Cookies: Remember your preferences and settings. You can disable these in your browser.
Analytics Cookies: Help us understand how visitors interact with our Service. These are optional.

You can manage cookie preferences through your browser settings. Note that disabling certain cookies may affect the functionality of our Service.

7. Data Security

We implement robust security measures to protect your information, including encryption in transit (TLS/SSL) and at rest, access controls, regular security assessments, and secure infrastructure hosted on reputable cloud providers.

While we strive to protect your personal information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security but are committed to maintaining industry-standard protections.

8. Data Retention

We retain your personal information for as long as necessary to provide the Service and fulfill the purposes described in this policy. Account information is retained while your account is active and for a reasonable period thereafter.

API usage logs are retained according to our standard retention schedules unless enterprise agreements specify otherwise. Upon account deletion, we will delete or anonymize your data within a reasonable timeframe, except where retention is required by law.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from your jurisdiction.

When we transfer data internationally, we implement appropriate safeguards such as standard contractual clauses or rely on adequacy decisions to ensure your data remains protected.

10. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

Access: Request a copy of the personal data we hold about you
Correction: Request correction of inaccurate or incomplete data
Deletion: Request deletion of your personal data
Portability: Request a copy of your data in a portable format
Opt-out: Unsubscribe from marketing communications at any time

To exercise these rights, please contact us at the email address provided below. We will respond to your request within the timeframe required by applicable law.

11. Children’s Privacy

Our Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the “Last Updated” date. Your continued use of the Service after changes are posted constitutes acceptance of the revised policy.

13. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

Email: support@r9s.ai