Privacy Policy

LLMProxy operates the proxy service available at llmproxy.io. In this policy, "we", "us", and "LLMProxy" refer to the operator of that service, acting as the data controller for the personal data described below. This policy explains what we collect, why, and the rights you have over it.

To create and maintain your account we store your email address and a hashed password. We never store passwords in plain text — they are protected with a one-way cryptographic hash.

Payments are handled by third-party payment processors. We do not store full card numbers on our systems. We keep the minimal billing records needed to operate the service, issue invoices, and meet legal accounting obligations.

We keep minimal technical logs — such as authentication events, request metadata, and error traces — to run the service securely and prevent abuse. Critically, we do not log the contents of your proxy traffic: we do not record, inspect, or retain the pages, payloads, or destinations you fetch through the network.

We process the data above to provide and maintain the service, handle billing and invoicing, deliver support, and protect the platform through security and anti-abuse measures. We do not use your data for advertising or profiling.

Where the GDPR applies, we rely on: performance of a contract (to provide the service you sign up for); our legitimate interests (to secure the platform, prevent abuse, and operate our business); and consent where specifically requested. You can withdraw consent at any time without affecting prior processing.

We use only essential and session cookies needed to sign you in and keep the application working. We do not use advertising or third-party tracking cookies.

We share data only with the processors required to run the service: payment processors for billing and infrastructure providers for hosting. These providers act on our instructions under data-processing agreements. We do not sell your personal data to anyone.

We keep account and billing data for as long as your account is active and for any period required to meet legal, tax, or accounting obligations. Technical logs are kept for a limited period for security and then deleted or anonymized. When data is no longer needed, we delete it.

Subject to applicable law, you can request access to your personal data, correction or deletion of it, and you can object to or restrict certain processing. To exercise any of these rights, reach us through the in-app support channel described below.

We protect data in transit and at rest with encryption, store passwords only as one-way hashes, and apply access controls and anti-abuse monitoring across the platform. No system is perfectly secure, but we work to keep these safeguards current.

For any privacy question or request, contact us through the in-app support ticket system. See our Terms of Service for the rules governing use of the service.