Security
Security and data handling
A factual summary of stored data, retention practices, and security contact information.
Data we store
We store only what is needed to operate the API and accounts.
Account email
- Why
- Authentication and account access
- Stored
- Yes
- Retention
- Until account deletion
API usage metadata (model, tokens, latency, cost)
- Why
- Billing, usage analytics, reliability
- Stored
- Yes
- Retention
- No automatic TTL
Prompt/response content
- Why
- Processed to generate responses
- Stored
- No
- Retention
- Not stored
Password reset IP address
- Why
- Security for password reset requests
- Stored
- Yespassword reset only
- Retention
- No automatic TTL
App attribution (normalized URL/name)
- Why
- Attribute usage to an app/source
- Stored
- Yes
- Retention
- No automatic TTL
Retention and logs
How long we keep data and what appears in infrastructure logs.
Infrastructure request logs may include IP address and user agent; auth headers and cookies are redacted.
Log retention depends on the deployment’s log storage configuration.
Security contact
For security reports or questions, email us.
Security contact: support@gonkagate.com
Policies and legal
Privacy and legal terms for GonkaGate.
