Privacy Policy

1. Introduction

Drgnflai.org ("we", "us", or "our") operates AgentCache.ai (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

We are committed to protecting your privacy and ensuring the security of your data. By using the Service, you agree to the collection and use of information in accordance with this Privacy Policy.

If you do not agree with this Privacy Policy, please do not access or use the Service.

2. Information We Collect

2.1 Personal Information

When you register for an account or use the Service, we may collect:

• Account Information: Email address, name, company name
• Billing Information: Payment card details (processed by Stripe, not stored by us)
• Communication Data: Information from your emails, support requests, or other communications with us

2.2 Technical Information

When you use the Service, we automatically collect:

• Usage Data: API request metadata (timestamps, response times, cache hit/miss status)
• Log Data: IP address, browser type, device information, referring URLs
• Cookies: Session cookies and analytics cookies (see our Cookie Policy)

2.3 Cached Content

The Service caches AI/LLM API requests and responses to provide caching functionality. This includes:

• LLM prompts (user messages sent to AI providers)
• LLM responses (AI-generated content)
• Model parameters (temperature, max tokens, etc.)

Important: We do NOT store your API keys for third-party LLM providers (OpenAI, Anthropic, etc.). We use deterministic SHA-256 hashing to generate cache keys without storing sensitive credentials.

3. How We Use Your Information

We use the collected information for:

• Service Delivery: Providing, maintaining, and improving the caching service
• Account Management: Creating and managing user accounts, authentication, and billing
• Analytics: Monitoring usage patterns, performance metrics, and service optimization
• Communication: Sending service updates, security alerts, and support messages
• Compliance: Meeting legal obligations and enforcing our Terms of Service
• Security: Detecting and preventing fraud, abuse, and security incidents

4. Data Storage and Security

4.1 Data Storage

Your data is stored in:

• Upstash Redis: Cached API responses (encrypted at rest and in transit)
• Neon PostgreSQL: Account information and billing records
• Seagate Lyve Cloud: Edge storage for distributed cache infrastructure
• Vercel Edge Network: Application infrastructure (global distribution)

4.2 Data Retention

We retain your data as follows:

• Cached Content: 7 days (default TTL, configurable per plan)
• Account Data: Duration of your account plus 90 days after deletion
• Billing Records: 7 years (as required by law)
• Logs: 30 days

4.3 Security Measures

We implement industry-standard security practices:

• TLS 1.3 encryption for all data in transit
• AES-256 encryption for data at rest
• SHA-256 hashing for cache key generation
• Multi-factor authentication (MFA) for admin access
• Regular security audits and penetration testing
• SOC 2 Type II compliance (in progress)

5. Data Sharing and Disclosure

5.1 Third-Party Service Providers

We share data with trusted service providers who assist in operating the Service:

• Stripe: Payment processing (PCI DSS compliant)
• Resend/SendGrid: Email delivery
• Upstash: Redis cache infrastructure
• Neon: Database hosting
• Vercel: Application hosting and edge infrastructure
• Seagate Lyve Cloud: Edge storage infrastructure

These providers are contractually obligated to protect your data and may only use it for the services they provide to us.

5.2 Legal Requirements

We may disclose your information if required to do so by law or in response to:

• Valid legal process (subpoenas, court orders, warrants)
• Government or regulatory requests
• Emergency situations involving danger of death or serious physical injury

5.3 Business Transfers

If we are involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you via email and/or prominent notice on our website prior to any such transfer.

6. Your Privacy Rights

6.1 Access and Portability

You have the right to:

• Request a copy of your personal data
• Export your cached data in a portable format
• Access your account information and usage statistics

6.2 Correction and Deletion

You have the right to:

• Update or correct your account information
• Request deletion of your account and associated data
• Opt out of marketing communications

To exercise these rights, contact us at privacy@agentcache.ai

6.3 GDPR Rights (EU Users)

If you are located in the European Economic Area (EEA), you have additional rights under GDPR:

• Right to restrict processing
• Right to object to processing
• Right to lodge a complaint with a supervisory authority
• Right to withdraw consent at any time

6.4 CCPA Rights (California Users)

California residents have the right to:

• Know what personal information is collected, used, shared, or sold
• Request deletion of personal information
• Opt out of the sale of personal information (we do not sell personal information)
• Non-discrimination for exercising CCPA rights

7. International Data Transfers

Your information may be transferred to and maintained on servers located outside of your state, province, country, or other governmental jurisdiction where data protection laws may differ.

If you are located outside the United States and choose to provide information to us, please note that we transfer the data, including Personal Information, to the United States and process it there.

We ensure appropriate safeguards are in place for international transfers, including:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• Data Processing Agreements (DPAs) with all service providers
• Compliance with applicable data transfer regulations

8. Children's Privacy

Our Service is not intended for individuals under the age of 18. We do not knowingly collect personally identifiable information from children under 18. If you are a parent or guardian and believe your child has provided us with Personal Information, please contact us immediately.

If we become aware that we have collected Personal Information from children under 18 without verification of parental consent, we will take steps to remove that information from our servers.

9. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to track activity on our Service and store certain information. For detailed information about our use of cookies, please see our Cookie Policy.

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service.

10. Do Not Track Signals

We do not currently respond to Do Not Track ("DNT") signals. Some third-party services we use may track your browsing activities over time and across different websites. You can set your browser to refuse tracking or alert you to such tracking.

11. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any material changes by:

• Posting the new Privacy Policy on this page
• Updating the "Last Updated" date at the top of this Privacy Policy
• Sending you an email notification at least 30 days before changes take effect

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

12. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us: