Legal
Privacy Policy
This Privacy Policy explains how ImaRouter collects, uses, discloses, stores, and otherwise processes personal data in connection with the Services.
1. Overview
This Privacy Policy explains how ImaRouter collects, uses, stores, discloses, and otherwise processes information about individuals who access our website, APIs, dashboards, playgrounds, documentation, and related services.
This Privacy Policy applies to personal data we process as a controller for our own business operations. If you access ImaRouter through an enterprise account or other customer-controlled environment, certain personal data may be processed by us on behalf of that customer and subject to that customer's instructions or agreements.
2. Information We Collect
We collect information you provide directly to us, information we collect automatically when you use the Services, information we receive from third parties, and information we generate or infer in connection with operating the Services.
- Account and contact information, such as name, email address, company name, role, billing contact details, and support communications.
- API and service data, such as prompts, uploaded files, request metadata, routing selections, model usage logs, job identifiers, and output retrieval events.
- Technical information, such as IP address, browser type, device information, operating system, timestamps, referrers, network details, and application logs.
- Billing and transaction information, such as subscription tier, credit usage, invoices, payment status, tax information, and limited payment processor data.
- Information from integrations or third parties, such as identity provider data, fraud-prevention signals, or account verification information where applicable.
3. Information We Collect Automatically
When you use the Services, we and our service providers may automatically collect certain device, usage, and diagnostic information needed to operate and secure the Services.
This may include session identifiers, activity logs, latency records, feature usage, API consumption patterns, system traces, and cookie or similar technology data used for authentication, analytics, performance measurement, and product improvement.
4. How We Use Information
We use personal data to provide, operate, maintain, secure, support, bill, and improve the Services. We also use personal data to communicate with you, comply with legal obligations, enforce our agreements, and protect the Services, our users, and third parties.
- Create and manage accounts, organizations, workspaces, and API access.
- Route and process AI requests, including across third-party suppliers where applicable.
- Monitor service performance, availability, abuse, reliability, security incidents, and billing accuracy.
- Respond to support requests, technical notices, onboarding questions, and account communications.
- Provide invoices, usage reporting, fraud checks, credit controls, tax handling, and payment administration.
- Analyze usage trends, improve product features, and evaluate new infrastructure or supplier integrations.
- Send marketing communications where permitted by law and subject to your choices.
5. AI Inputs, Outputs, and Supplier Processing
When you submit prompts, media, files, references, or other inputs through ImaRouter, those materials may be processed by ImaRouter and by relevant third-party model suppliers in order to provide the requested output or service.
Because ImaRouter is a routing and integration layer, some requests may be sent to third-party infrastructure, model hosts, or service providers selected according to your chosen workflow, product settings, contractual arrangements, or system routing logic. You are responsible for ensuring that your use of the Services is lawful and that you have authority to submit the relevant content.
7. How We Disclose Information
We may disclose personal data to service providers, infrastructure partners, model suppliers, payment processors, professional advisors, enterprise customers, affiliates, and other parties as needed to operate the Services or comply with legal obligations.
- Service providers and contractors that support hosting, storage, analytics, communications, support, fraud prevention, observability, and payment processing.
- Third-party model or infrastructure providers when needed to fulfill a routed request or integrated service.
- Enterprise customers or team administrators who control an account, workspace, billing relationship, or organization environment you use.
- Regulators, courts, law enforcement, or other parties where disclosure is required by law or reasonably necessary to protect rights, safety, or the Services.
- Potential buyers, investors, or counterparties in connection with a merger, financing, acquisition, or corporate reorganization, subject to appropriate confidentiality protections.
8. Data Retention
We retain personal data for as long as reasonably necessary to provide the Services, maintain records, support customers, comply with legal obligations, resolve disputes, enforce agreements, and protect the Services.
Retention periods vary depending on the type of information, the account configuration, enterprise agreements, legal requirements, fraud or billing needs, and whether the data is needed for ongoing service operations.
9. International Data Transfers
ImaRouter and its service providers may process personal data in multiple countries. Where required, we take steps intended to support lawful transfers of personal data, such as contractual safeguards, organizational controls, or other legally recognized transfer mechanisms.
10. Your Choices and Privacy Rights
Depending on where you live and how you use the Services, you may have rights relating to access, correction, deletion, portability, objection, restriction, withdrawal of consent, or appeal of certain privacy decisions.
You may also manage account information, certain communications preferences, and some cookie settings directly through your browser, dashboard, or account controls where available.
- You may unsubscribe from marketing emails using the link in the message or by contacting us.
- You may request access to, correction of, or deletion of certain personal data, subject to legal exceptions and operational limitations.
- Enterprise users should note that some requests may need to be directed to the organization that controls the relevant workspace or account.
11. Security
We use administrative, technical, and organizational measures intended to protect personal data against unauthorized access, loss, misuse, alteration, or disclosure. No security measure is perfect, and we cannot guarantee absolute security.
12. Children's Privacy
The Services are not directed to children and are not intended for use by individuals who are not legally permitted to enter into these Terms or use the Services under applicable law. We do not knowingly collect personal data from children in violation of applicable law.
13. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. If we make material changes, we may provide notice through the Services, by email, through the dashboard, or by updating the effective date at the top of this Privacy Policy.
Your continued use of the Services after an updated Privacy Policy becomes effective means that the updated Privacy Policy will apply to your ongoing use of the Services.
14. Contact Us
If you have questions about this Privacy Policy, your privacy rights, data processing under an enterprise relationship, or a privacy-related request, please contact ImaRouter using the contact details listed on our website or in your applicable order form.