Privacy Policy

Last Updated: April 9, 2026

At Ready API, we prioritize your privacy and the sovereignty of your data. This policy outlines how we handle your personal information and our strict commitment to AI ethics and security.

1. Data Residency (EU-Based Infrastructure)

All your personal data, including your email address and uploaded JSON files, is stored and processed exclusively on secured servers located within the European Union (Spain). We utilize a private Linux VPS infrastructure (STRATO) to ensure that your data remains under European legal jurisdiction and strict security standards.

2. Information We Collect and Purpose

We adhere to the principle of "Data Minimization." We only collect:

  • Email Address: Used solely for account identification, authentication, and communication regarding your service.
  • Registration IP Address: Stored at the time of sign-up as a legal record of your explicit consent to these terms.
  • User-Uploaded Content (JSON): Processed only to provide you with your private semantic search results.

3. Private AI & Zero-Training Commitment

Your data is processed using private AI models (snowflake-arctic-embed and mxbai-rerank) running directly on our local servers.

  • No Third-Party APIs: We do not send your data to external AI providers. All inference happens on our hardware.
  • Zero-Training Policy: We do not use your personal data, JSON files, or search history to train, improve, or fine-tune our AI models. Your information is used strictly to serve your own queries in real-time.

4. Multitenancy and Data Isolation

Our system is built with a "Privacy by Design" architecture. Your data is logically and mathematically isolated from other users. Metadata-level filtering ensures that only you can access the semantic search results derived from your uploaded files.

5. Data Retention and Your "Right to be Forgotten"

You retain full ownership and control over your data:

  • On-Demand Deletion: You can delete your uploaded JSON files at any time through the dashboard.
  • Account Termination: If you choose to delete your account, our system will execute a permanent purge of your email, all stored files, and their associated vector embeddings from our databases within 72 hours.

6. Security Measures

Access to the infrastructure is strictly limited to authorized administration. We implement industry-standard security protocols, including SSH-key authentication, database encryption, and secure HTTPS transmission, to protect your information against unauthorized access.

7. Contact Information

For any questions regarding your data or to exercise your rights under the GDPR, please contact: info@readyapi.net.