PRIVACY POLICY

01 INFORMATION WE COLLECT

We believe in data minimization. We only collect the absolute minimum amount of data required to operate and secure our services.

• API Keys: We generate and store unique API keys to authenticate your requests. This key is linked to your usage quota.
• Server Logs: Like most internet services, our servers automatically log standard technical data such as the request endpoint, timestamp, and HTTP status code.
• IP Addresses: We temporarily log IP addresses strictly for security purposes (DDoS protection, rate limiting, and abuse detection). We do not use IP addresses for user tracking, marketing, or analytics profiling.
• Uploaded Content: Files (images) sent to our processing endpoints are temporarily cached in RAM or temporary storage for the duration of the process.

02 HOW WE USE YOUR INFORMATION

The information we collect is used solely for the following operational purposes:

• To provide, maintain, and improve the functionality of the API.
• To enforce usage limits (Rate Limiting) and prevent system abuse.
• To detect, prevent, and address technical issues or security breaches.
• To comply with legal obligations and enforce our Terms of Service.

We do not sell, trade, or rent your personal data to third parties.

03 CONTENT POLICY & ZERO TOLERANCE

Users are strictly prohibited from using SzyrineAPI to process, generate, or host:

• Child Sexual Abuse Material (CSAM).
• Non-Consensual Intimate Imagery (NCII).
• Gore, extreme violence, or promotion of self-harm.
• Content that promotes terrorism or illegal acts.

Our system employs automated content moderation tools (AI-based NSFW classification). Any detection of such content will result in the immediate and permanent termination of the API Key and IP ban, without prior warning. We reserve the right to report illegal activities to relevant authorities.

04 DATA RETENTION (THE 1-HOUR RULE)

To ensure user privacy and optimize server performance, we implement a strict automated data retention policy known as the "1-Hour Rule".

How it works:

• All files uploaded to our servers for processing (e.g., image upscaling, OCR, temporary hosting) are marked with a timestamp upon arrival.
• A server-side cron job runs periodically to check these timestamps.
• Any file older than 60 minutes (1 hour) is automatically and permanently deleted from our storage.
• Once deleted, data cannot be recovered. This process is automated and irreversible.

05 THIRD-PARTY SERVICES

SzyrineAPI acts as a gateway and aggregator for various AI and media tools. Some requests may be proxied through or processed by third-party providers (including but not limited to OpenAI, Anthropic, Stability AI, Pixnova, or Nano Banana) to deliver specific features.

While we strip metadata and anonymize requests where possible before forwarding them, data processed by these third parties is subject to their respective privacy policies. SzyrineAPI assumes no liability for the data handling practices of these external entities.

06 SECURITY MEASURES

We employ industry-standard security measures to protect your data, including:

• HTTPS/TLS Encryption: All data transmitted between your client and our API is encrypted in transit.
• Access Controls: Access to server infrastructure is restricted to authorized personnel only via SSH keys.
• Rate Limiting: To prevent DDoS attacks and brute-force attempts, we enforce strict rate limits on all endpoints.

07 CHANGES TO THIS POLICY

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date at the top of this policy. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.