Privacy Policy

Last Updated: January 15, 2025
GDPR & CCPA Compliant

1. Introduction

Welcome to DenayRestAPI's Privacy Policy. We are committed to protecting your privacy and ensuring the security of your personal information. This policy describes how we collect, use, and safeguard your data when you use our REST API services.

Important Notice

By accessing or using DenayRestAPI services, you agree to this Privacy Policy. If you do not agree with our policies and practices, please do not use our services.

Company

DenayRestAPI Inc., a technology company specializing in REST API solutions.

Jurisdiction

Operating globally with compliance to international data protection standards.

2. Information We Collect

We collect various types of information to provide and improve our services. This includes data you provide directly and data collected automatically.

Personal Information

  • Full name and username for account identification
  • Email address for communication and verification
  • Phone number for two-factor authentication (optional)
  • Company name and business information (for enterprise accounts)

Technical Data

  • IP address and geographic location data
  • Device type, operating system, and browser information
  • API usage patterns and request logs
  • Session timestamps and duration data

Usage Data

  • Pages visited and features accessed
  • Time spent on our platform
  • API endpoints called and response times
  • Error logs and debugging information

3. How We Use Your Data

We use the information we collect for various purposes to provide you with the best possible service experience.

Service Delivery

Process API requests, authenticate users, and maintain your account

Security

Detect fraud, prevent abuse, and protect against unauthorized access

Improvement

Analyze usage patterns to enhance API performance and features

Communication

Send important updates, notifications, and technical alerts

Compliance

Meet legal obligations and respond to valid legal requests

Support

Provide technical assistance and resolve customer issues

Our Commitment

We will never sell your personal data to third parties. Your information is used solely for the purposes outlined in this policy.

4. Data Sharing & Disclosure

We may share your information in specific circumstances to provide our services and comply with legal requirements.

We Share Data With:

  • Service providers who assist in hosting, analytics, and customer support
  • Legal authorities when required by law or to protect our rights
  • Business partners with your consent for integrated services

We Never Share:

  • Your API keys or authentication credentials
  • Personal data for marketing purposes without consent
  • Sensitive business data with competitors

Important Note

In the event of a merger, acquisition, or sale of assets, your data may be transferred. We will notify you of any such changes.

5. Data Security

We implement industry-standard security measures to protect your data from unauthorized access, alteration, or destruction.

Encryption

All data is encrypted in transit (TLS 1.3) and at rest (AES-256)

Access Control

Role-based access with multi-factor authentication

Secure Infrastructure

Hosted on ISO 27001 certified cloud providers

Regular Audits

Third-party security assessments and penetration testing

Incident Response

24/7 monitoring with rapid response protocols

Data Backup

Regular backups with geographic redundancy

Security Certifications

SOC 2 Type II
ISO 27001
GDPR Compliant
CCPA Compliant
HIPAA Ready

6. Your Rights

You have specific rights regarding your personal data. We are committed to facilitating the exercise of these rights.

Right to Access

Request a copy of your personal data

Right to Rectification

Correct inaccurate or incomplete data

Right to Erasure

Request deletion of your personal data

Right to Portability

Receive your data in a machine-readable format

Right to Restriction

Limit how we process your data

Right to Object

Object to certain processing activities

How to Exercise Your Rights

Contact us at privacy@denayrestapi.com or through your account dashboard. We will respond within 30 days.

7. Cookies & Tracking

We use cookies and similar tracking technologies to enhance your experience and analyze usage patterns.

Cookie TypePurposeDuration
EssentialAuthentication and securitySession
FunctionalRemember preferences and settings1 Year
AnalyticsUnderstand usage patterns2 Years
MarketingPersonalized advertisements90 Days

Managing Cookies

You can control cookies through your browser settings. Note that disabling certain cookies may affect functionality.

8. Third-Party Services

Our services may integrate with third-party services. Each third party has its own privacy practices, and we encourage you to review their policies.

Cloud Infrastructure

AWS, Google Cloud, Azure

Analytics

Google Analytics, Mixpanel

Payment Processing

Stripe, PayPal

Communication

SendGrid, Twilio

External Links

Our platform may contain links to external websites. We are not responsible for the privacy practices of these sites.

9. Children's Privacy

Age Restriction

DenayRestAPI services are not intended for individuals under the age of 16. We do not knowingly collect personal data from children.

Our Policies Include:

  • Age verification during registration process
  • Immediate deletion of data if we discover it belongs to a minor
  • Parent/guardian notification process if applicable
  • Compliance with COPPA and similar regulations

Concerned Parent or Guardian?

If you believe your child has provided us with personal information, please contact us immediately at privacy@denayrestapi.com.

10. International Data Transfers

As a global service provider, we may transfer your data across international borders. We ensure appropriate safeguards are in place.

🇪🇺

European Union

GDPR

🇺🇸

United States

CCPA

🇬🇧

United Kingdom

UK GDPR

Transfer Mechanisms We Use:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • EU-US Data Privacy Framework certification
  • Binding Corporate Rules for intra-group transfers
  • Adequacy decisions where applicable

11. Data Retention

We retain your personal data for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law.

Retention Periods:

Account Data
Duration of account + 30 days
API Logs
90 days
Billing Records
7 years (legal requirement)
Support Tickets
3 years
Marketing Data
Until consent withdrawn

Data Deletion

Upon account deletion, we anonymize or securely delete your personal data within 30 days, except where retention is required by law.

12. Policy Updates

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements.

Email Notifications

We will notify you via email for significant changes to this policy.

In-App Alerts

Important updates will be displayed in your dashboard.

Version History

Current: v3.2
v3.2January 15, 2025
v3.1November 20, 2024
v3.0September 1, 2024

13. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us through any of the following channels.

Email

Privacy: privacy@denayrestapi.com

Support: support@denayrestapi.com

Legal: legal@denayrestapi.com

Mailing Address

DenayRestAPI Inc.

1234 API Boulevard

Tech City, TC 12345

United States

Data Protection Officer (DPO)

Dr. Sarah Chen

Certified Data Protection Officer

Email: dpo@denayrestapi.com

Phone: +1 (555) 123-4567

Response Times

General Inquiries

48 hours

Data Requests

30 days

Urgent Security

24 hours