Privacy Policy
Last updated: April 3, 2026
What we collect
When you create an account, we collect your email address. When you make API calls through Prism, we log usage metadata: timestamps, token counts (input and output), which model was used, which provider handled the request, cost, and latency. This metadata helps us provide usage dashboards and accurate billing.
What we do NOT collect
We do not collect, log, or store the content of your prompts or the content of AI responses. Your messages pass through Prism to the AI provider and back to you. We never inspect, save, or use your prompt or response content for any purpose, including training.
Session memory
If you use session memory, conversation history is stored in Redis with a 30-minute time-to-live. Sessions are automatically deleted after 30 minutes of inactivity. Session data is never used for training, analytics, or any purpose beyond serving your active conversation. You can delete a session at any time via the API.
API keys
API keys are stored as SHA-256 hashes. We never store your raw API key after the initial creation. The plain text key is shown to you exactly once.
Payments
Payment processing is handled by Razorpay and Stripe. We never store your credit card numbers, bank details, or other payment credentials. We only store transaction references (payment IDs, amounts, and status) for billing records.
Data retention
Usage logs are retained for 90 days, then automatically deleted. Account data (email, balance, settings) is retained until you request deletion. You can request complete account deletion by contacting us.
Third-party providers
When you make API calls, your prompts are sent to the AI provider selected by Prism (Anthropic, OpenAI, or Google). Each provider has their own privacy policy and data handling practices. Prism does not control how providers handle your data once it reaches them.
Contact
For privacy questions or data deletion requests, email us at privacy@ssimplifi.ai.