Privacy Policy
Last updated / Effective date: July 14, 2026
Operator: 半页酥 (byesu) · Contact: bysu721@gmail.com
This Privacy Policy describes how 半页酥 (byesu) ("we", "us") handles information in connection with byesu.com and its related subdomains and APIs (the "Service"), an API gateway and aggregation platform providing access to third-party AI models.
1. Data We Collect
- Account data: email address, authentication identifiers, and (if you sign in via OAuth) the basic profile your provider returns.
- Usage metadata: timestamps, model requested, token usage, status codes, IP address, and similar logs needed to operate, secure, and bill the Service.
- Payment data: processed by third-party payment providers; we store order records (amount, currency, status), not your full card or wallet details. Cryptocurrency top-ups (e.g., USDT) settle on public blockchains, where transactions are inherently public and permanent; we record the transaction hash and amount to credit your balance.
- Request content: transmitted to the relevant upstream model provider to fulfill your request. We do not use it to train models and do not sell it. Once forwarded, that content is also subject to the terms and privacy practices of the relevant upstream provider; please review those policies before sending sensitive content.
2. How We Use Data
To provide and maintain the Service, authenticate you, meter and bill usage, ensure security and prevent abuse, provide support, and comply with law. Where the GDPR or similar data protection law applies, our legal bases for processing are: performance of a contract (providing the Service to you), legitimate interests (such as security and abuse prevention), compliance with legal obligations, and, in specific cases, your consent.
3. Sharing
We share data only with: (a) upstream model providers, to process your requests; (b) payment and infrastructure providers, to operate the Service; and (c) authorities, where legally required. We do not sell your personal data, do not use your content to train models, and do not use it for advertising or profiling.
4. International Transfers
Upstream model providers and infrastructure may be located outside your country, so your data may be transferred and processed internationally. Where required, we rely on appropriate safeguards (e.g., Standard Contractual Clauses).
5. Retention
We keep data only as long as needed for the purposes above or as required by law, then delete or anonymize it. Billing and transaction records may be retained longer where required for accounting, dispute resolution, or legal obligations.
6. Security
We use encryption in transit, access controls, and other safeguards. No method is 100% secure; please also protect your own API keys and redact sensitive inputs.
7. Your Rights
Subject to applicable law (including the GDPR for the EU/EEA/UK and the CCPA/CPRA for California), you may request access, correction, deletion, portability, restriction, or objection, and you may withdraw consent. We do not sell personal information. To exercise these rights, contact us at bysu721@gmail.com; we will respond within the timeframe required by applicable law. If you are located in the EU/EEA or the UK, you also have the right to lodge a complaint with your local data protection supervisory authority.
8. Cookies
We use strictly necessary cookies for login/session and security. We do not use them to sell your data, and we do not use third-party advertising or cross-site tracking cookies.
9. Children
The Service is not intended for anyone under 18; we do not knowingly collect their data.
10. Changes
We may update this Policy and will post the new effective date. Material changes may require renewed consent.
Contact
Privacy questions and rights requests: bysu721@gmail.com
