← Back to ProxyLLM

Privacy Policy

Last updated: April 10, 2026

1. Overview

ProxyLLM is operated by Sysdev TechStrategy & Consulting. This Privacy Policy explains how we collect, use, and protect your information when you use our API proxy service, dashboard, and website.

2. Information We Collect

Account Information

When you sign up via Clerk (our authentication provider), we receive your email address, name, and a unique user identifier. We do not store passwords — authentication is handled entirely by Clerk.

API Request Logs

We log metadata for each proxied request: model used, token count, cost, latency, cache hit/miss status, and optional feature tags you provide via the x-proxyllm-tag header. We do not log the content of your prompts or LLM responses.

Cached Responses

To provide semantic caching, we store hashed representations of your prompts and the corresponding LLM responses in Redis, scoped to your workspace. Cached entries automatically expire based on your plan tier (24–168 hours).

Payment Information

Payment processing is handled by Stripe. We do not store credit card numbers or payment details on our servers. We receive and store your Stripe customer ID and subscription status.

3. How We Use Your Information

  • To provide and operate the Service (proxying, caching, routing)
  • To display usage analytics and cost data in your dashboard
  • To enforce plan-based rate limits and quotas
  • To process billing and manage subscriptions
  • To send transactional emails (billing alerts, usage warnings)
  • To improve the Service and fix issues

4. Data Storage and Security

  • All data is stored on Railway-managed PostgreSQL and Redis instances
  • Database connections use TLS encryption in production
  • Databases are not publicly accessible — internal network only
  • API keys are compared using timing-safe algorithms to prevent side-channel attacks
  • All API communication is over HTTPS (TLS 1.2+)
  • The proxy server runs as a non-root user in a hardened Docker container

5. Third-Party Services

We use the following third-party services:

  • Clerk — Authentication and user management
  • Stripe — Payment processing and subscription billing
  • Railway — Server, database, and cache hosting
  • Vercel — Dashboard and landing page hosting
  • OpenAI / OpenRouter — LLM providers (your requests are forwarded to these)

Each service has its own privacy policy. We recommend reviewing them.

6. Data Retention

  • Request logs: Retained per your plan (Free: 7 days, Pro: 30 days, Scale: 90 days), then automatically deleted
  • Cache entries: Automatically expire (Free: 24h, Pro: 72h, Scale: 168h)
  • Account data: Retained while your account is active. Contact us to request deletion.

7. Your Rights

You have the right to:

  • Access the data we store about you
  • Request correction of inaccurate data
  • Request deletion of your account and associated data
  • Export your request logs via the dashboard API
  • Cancel your subscription at any time

To exercise these rights, contact us at contact@proxyllm.dev.

8. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or through the dashboard. Continued use of the Service after changes constitutes acceptance.

9. Contact

For questions about this Privacy Policy or your data, contact us at contact@proxyllm.dev.