Privacy Policy
Last updated: 8 June 2026
1. Information we collect
We collect information you provide directly (such as your name, email and password), data generated through your use of the Service (such as API usage metrics and audit logs), and technical data (such as IP address and user agent).
2. How we use your information
- To provide, maintain and improve the Service.
- To authenticate you and secure your account.
- To send transactional emails such as verification and password resets.
- To monitor usage against plan limits and prevent abuse.
3. Data security
Passwords are hashed using bcrypt. We apply input sanitisation, rate limiting and hardened security headers. Refresh tokens are stored as one-way hashes and access tokens are short-lived.
4. Cookies
We use a single secure, httpOnly cookie to store your refresh token for session continuity. We do not use third-party advertising cookies.
5. Data retention
We retain account data for as long as your account is active. When you delete your account, your data is marked for deletion and removed in accordance with our retention schedule.
6. Your rights
Depending on your jurisdiction, you may have the right to access, correct, export or delete your personal data. You can manage most of this directly from your dashboard or by contacting us.
7. Third-party processors
We use trusted infrastructure and email providers to operate the Service. These processors are bound by data protection agreements.
8. Contact
For privacy enquiries, email privacy@arterias.fr.