Privacy Policy

1. Overview

Welcome to NavyAI. We take your privacy seriously and are committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI model API service.

By using NavyAI, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 API Usage Data

When you use our API, we collect:

API key usage and authentication data
Token consumption and usage statistics
Request timestamps and frequency
Model selections and endpoint interactions
Request and response sizes (but not content)

2.2 Account Information

For users who create API keys through our Discord bot:

Discord username and user ID
API key name and description (if provided)
Account creation date and last activity
Subscription plan information

2.3 Technical Data

We automatically collect certain technical information:

IP addresses (for rate limiting and security)
Request headers and user agent strings
Error logs and debugging information
Performance metrics and latency data

2.4 What We Don't Collect

We do NOT store or log:

The actual content of your API requests (prompts, messages)
Generated responses from AI models
Images, audio files, or other media you process
Personal data contained within your API requests

3. How We Use Your Information

We use the collected information for:

Service Provision: Authenticating API requests and routing them to appropriate AI models
Usage Tracking: Monitoring token consumption to enforce plan limits
Security: Detecting and preventing abuse, fraud, or unauthorized access
Performance: Optimizing API response times and reliability
Support: Responding to user inquiries and troubleshooting issues
Analytics: Understanding usage patterns to improve our service
Compliance: Meeting legal obligations and enforcing our Terms of Service

4. Data Retention

We retain different types of data for different periods:

API Keys: Stored indefinitely while your account is active
Usage Statistics: Retained for up to 90 days for analytics
Request Logs: Kept for 30 days for debugging and security
Security Logs: Maintained for 6 months for incident investigation
Deleted Accounts: Anonymized data may be retained for statistical purposes

Daily token usage is automatically reset at midnight UTC to ensure fair access for all users.

5. Security Measures

We implement robust security measures to protect your data:

Encryption: All API communications use TLS/SSL encryption
Access Control: API keys are hashed and stored securely
Rate Limiting: Automated systems prevent abuse and DDoS attacks
Monitoring: 24/7 monitoring for suspicious activities
Infrastructure: Secure cloud infrastructure with regular security audits
Proxy Protection: Advanced proxy systems to protect upstream providers

While we strive to protect your information, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security.

6. Third-Party Services

6.1 AI Model Providers

NavyAI acts as a proxy to various AI providers. When you make requests:

Your prompts and data are forwarded to the selected model provider
Each provider has their own privacy policy and data handling practices
We do not control how these providers process your data
Providers include: OpenAI, Google, Anthropic, Mistral, and others

6.2 Infrastructure Providers

We use third-party services for:

Cloudflare: CDN and DDoS protection
Discord: User authentication and API key generation
Cloud Hosting: Server infrastructure and data storage

6.3 Data Sharing

We do NOT:

Sell your personal information to third parties
Share your API usage data with other users
Use your API requests for training AI models
Provide your data to advertisers

7. Your Rights

You have the right to:

Access: Request a copy of the data we hold about you
Correction: Update or correct your account information
Deletion: Request deletion of your account and associated data
Portability: Export your usage statistics and account data
Restriction: Limit how we process your information
Objection: Object to certain types of data processing

7.1 Data Export

You can request an export of your data by contacting us through Discord. We'll provide:

Account information and settings
API usage statistics
Token consumption history
Active API keys (hashed)

7.2 Account Deletion

To delete your account:

Contact us through our Discord server
All API keys will be immediately revoked
Usage data will be anonymized or deleted within 30 days
Some data may be retained for legal compliance

8. Contact Information

If you have questions, concerns, or requests regarding this Privacy Policy or your data:

Primary Contact

Discord: Join our server at discord.api.navy
Support Channel: Use the #support channel and open a ticket
Response Time: We aim to respond within 24 hours

Data Protection Inquiries

For formal data protection requests or to exercise your rights, please:

Include your API key name or Discord username
Clearly state your request (access, deletion, etc.)
Allow up to 30 days for complex requests

9. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last updated" date.

Significant changes will be announced through:

Discord announcements channel
API dashboard notifications (if applicable)
Email notifications for major changes (if email provided)

Continued use of NavyAI after policy updates constitutes acceptance of the changes.

10. Additional Information

10.1 Children's Privacy

NavyAI is not intended for users under 18 years of age. We do not knowingly collect personal information from children.

10.2 International Data Transfers

Your data may be processed in countries other than your own. We ensure appropriate safeguards are in place for international transfers.

10.3 California Privacy Rights

California residents have additional rights under the CCPA. Contact us to exercise these rights.

10.4 EU/UK Data Protection

For users in the EU/UK, we comply with GDPR requirements. You have additional rights regarding your personal data.