Privacy

Last updated 2026-04-15. Short version: we route API calls, we bill per call, we do not sell your data.

What we collect

• Account: email + hashed password or OAuth identifier.
• Gateway traffic metadata: catalog_id called, timestamp, HTTP status, response size, latency. We need this for metering and debugging.
• Upstream credentials you bring: encrypted at rest, used only to proxy YOUR call to the upstream you chose. Not logged, not sold, not inspected.
• Request/response bodies: NOT stored by default. If you opt in to request-logging for debugging, retention is 24h then auto-purged.

What we don't do

• We don't sell data to anyone. Ever.
• We don't train models on your traffic.
• We don't share credentials between customers.
• We don't read response bodies unless you explicitly enable per-request logging.

Where data lives

Supabase (Postgres) hosted in us-east. Gateway runtime at Fly.io in iad. Stripe handles payment data — we never see full card numbers.

Your rights

Email privacy@treecommand.ai to export or delete your account. We respond within 7 days.

Cookies

Session cookies only. No third-party trackers on the product surface.

Changes

We'll post material changes here with a new "Last updated" date. Continued use = acceptance.