OMNI

Legal

Privacy Policy

A privacy policy for a product that runs on accounts, API traffic, telemetry, billing workflows, and support operations. It explains what data we collect, why we collect it, and how we handle it.

Terms of ServiceStatus
Last updated March 19, 2026
Focused on account, API, telemetry, and support data
No sale of personal data

Overview

This policy explains what personal data we collect, how we use it, and how we handle it across secapi.ai.

This Privacy Policy applies to secapi.ai, api.secapi.ai, docs.secapi.ai, OMNI Datastream, related SDKs, hosted tools, support interactions, and other services that link to this policy. It covers personal data we collect directly from you, automatically from your use of the service, and from service providers or business partners that help us operate the platform.

  • Last updated March 19, 2026.
  • This policy is designed for a product that operates through web traffic, API requests, account usage, and support workflows.
  • If a separate agreement or a product-specific notice applies to a service, that agreement or notice may supplement this policy.

What we collect

We collect account details, billing details, usage telemetry, device data, and support information needed to run the service.

The exact data we collect depends on how you use secapi.ai, but it generally falls into a few categories tied to account administration, service delivery, security, analytics, and support.

  • Account and contact data, such as your name, email address, organization, plan details, and account preferences.
  • Billing and transaction data, such as subscription status, invoices, payment status, and limited payment-related metadata from billing processors.
  • API and product usage data, such as request timestamps, endpoints, query parameters, response sizes, trace or request IDs, error logs, rate-limit activity, and feature usage.
  • Device, browser, and network data, such as IP address, user agent, approximate location inferred from IP, cookies, local storage, and performance diagnostics.
  • Support and communications data, such as emails, chat transcripts, bug reports, attachments, and feedback you send us.

How we use data

We use personal data to deliver the product, secure it, improve it, and communicate with you about it.

We use personal data to create and manage accounts, authenticate users, process payments, respond to support requests, analyze performance, detect abuse, investigate incidents, improve reliability, and communicate about service updates, legal notices, and relevant product information.

  • Service delivery, including authentication, billing, rate limiting, API access, and customer support.
  • Security, fraud prevention, abuse detection, incident response, and enforcement of our terms and usage restrictions.
  • Product analytics, debugging, capacity planning, and performance monitoring.
  • Communications about onboarding, account activity, support, renewals, changes to the service, and other operational notices.

Legal bases

Where required by law, we rely on contract, legitimate interests, legal obligations, and consent as our bases for processing.

Depending on your location and the context, we process personal data because it is necessary to provide the service you requested, because we have legitimate interests in operating and securing the platform, because we must comply with legal obligations, or because you gave us consent.

  • You may withdraw consent where processing depends on consent, but that does not affect earlier lawful processing.
  • Some uses of the service may not be possible if key data is withheld or deleted while the account remains active.

Sharing

We share personal data only with service providers, affiliates, legal authorities, and transaction counterparties when necessary.

We do not sell personal data. We may share personal data with subprocessors and service providers that help us operate the platform, including providers for hosting, infrastructure, observability, analytics, billing, communications, and support. We may also disclose data when required by law, to protect rights and safety, or in connection with a merger, financing, acquisition, reorganization, or sale of assets.

  • Service providers may process personal data only on our instructions and for the services they provide to us, subject to appropriate contractual safeguards.
  • If we disclose data for legal or compliance reasons, we do so only when we reasonably believe the disclosure is required or appropriate.
  • If ownership of the service changes, personal data may transfer as part of that transaction, subject to this policy or a replacement notice.

International transfers

Your data may be processed in countries other than the one where you live, with safeguards where required.

secapi.ai may use service providers and infrastructure in multiple countries. If personal data is transferred across borders, we take steps designed to ensure appropriate safeguards are in place, which may include contractual commitments, security controls, and other lawful transfer mechanisms.

  • By using the service, you understand that your data may be processed in jurisdictions that have different data-protection rules than your home jurisdiction.
  • Where required, we will use transfer safeguards designed to protect personal data during international processing.

Retention

We retain personal data for as long as needed to operate the service, meet legal obligations, and resolve disputes.

Retention periods depend on the type of data and the reason we collected it. We generally keep account, billing, usage, and support information for as long as your account remains active and for a reasonable period afterward to comply with legal obligations, resolve disputes, enforce agreements, prevent abuse, and maintain business records.

  • Operational logs and telemetry may be retained for shorter periods tied to security, debugging, abuse prevention, and service analytics.
  • We may retain de-identified or aggregated information that no longer identifies you.
  • When we no longer need personal data, we will delete it or de-identify it, subject to backup retention, legal requirements, and technical constraints.

Cookies and similar technologies

We may use cookies, local storage, and similar technologies for sessions, security, preferences, and analytics.

Like most online services, secapi.ai may use cookies and similar technologies to keep you signed in, remember preferences, measure usage, improve reliability, and understand how the site and docs are used.

  • If you block all cookies or storage technologies, parts of the service may not function correctly.
  • Browser controls may let you remove or limit cookies, though some features may degrade if you do so.

Your rights

Depending on where you live, you may have rights to access, correct, delete, or restrict the use of your personal data.

Applicable privacy laws may give you rights to request access to the personal data we hold about you, ask that data be corrected or deleted, object to or restrict certain processing, or request a portable copy of certain data. We will respond to valid requests as required by applicable law.

  • We may need to verify your identity before fulfilling a request.
  • Some data may need to be retained for security, legal, billing, or contractual reasons even if you request deletion.
  • You may opt out of non-essential marketing communications by using the unsubscribe mechanism in the message or by updating your account preferences where available.

Security and children

We use reasonable safeguards, but no system is perfectly secure, and the service is not directed to children.

We use administrative, technical, and organizational measures designed to protect personal data, but no method of transmission or storage is completely secure. secapi.ai is not directed to children, and we do not knowingly collect personal data from children in connection with the service.

  • If you believe your account or personal data has been exposed, contact us promptly through the support channels listed on secapi.ai.
  • If we learn that we have collected personal data from a child in violation of applicable law, we will take steps to delete it.

Changes and contact

We may update this policy, and privacy questions should come through the contact channels on secapi.ai.

We may update this Privacy Policy from time to time to reflect changes in the service, legal requirements, or our data practices. If we make a material change, we will update the effective date on this page and may provide additional notice where appropriate.

  • Continued use of the service after an updated policy becomes effective means the updated policy applies to your ongoing use, subject to applicable law.
  • Questions or requests related to this policy can be sent through the support or contact channels made available on secapi.ai.