Legal

Privacy Policy

Last updated: April 11, 2026

1. Introduction

Salvia ("we", "us", or "our") operates the Salvia API platform accessible at salvia.dev. This Privacy Policy explains how we collect, use, and protect information when you use our services. By using Salvia, you agree to the practices described in this policy.

2. Information We Collect

We collect the following categories of information:

  • Account information — name, email address, and password when you register.
  • API usage data — request timestamps, endpoint accessed, response times, and error rates.
  • Request payload data — the text and parameters submitted to our API endpoints.
  • Billing information — handled securely by Stripe. We do not store your payment card details.

3. Use of API Data for Model Training

By using the Salvia API, you acknowledge and agree that data submitted through API requests — including input text and associated metadata — may be retained and used by Salvia for the following purposes:

  • Improving the accuracy and performance of existing models.
  • Training new machine learning models and developing new features.
  • Internal research, evaluation, and quality assurance.

We will not associate retained API data with your personal identity when used for model training. If you require a data processing agreement or wish to opt out of data retention for training purposes, please contact us at privacy@salvia.dev.

4. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the Salvia platform.
  • Authenticate your identity and manage your account.
  • Track and enforce API usage limits based on your plan.
  • Send service-related communications such as billing receipts and downtime notices.
  • Detect and prevent fraud or abuse of the platform.

5. Data Sharing

We do not sell your personal data. We may share data with trusted third-party service providers (such as Stripe for billing and Supabase for infrastructure) solely to operate the platform. These providers are contractually obligated to handle data securely and only for the purposes we specify.

6. Data Retention

We retain account data for as long as your account is active. API request logs are retained for up to 90 days for operational purposes. You may request deletion of your account and associated data at any time by contacting us.

7. Security

We take reasonable technical and organisational measures to protect your data. API keys are hashed at rest. All data in transit is encrypted via TLS. However, no system is completely secure and we cannot guarantee absolute security.

8. Your Rights

Depending on your jurisdiction, you may have the right to access, correct, or delete your personal data, or to object to certain processing activities. To exercise any of these rights, contact us at privacy@salvia.dev.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by updating the "Last updated" date at the top of this page. Continued use of the service after changes constitutes your acceptance of the revised policy.

10. Contact

For any privacy-related questions, contact us at privacy@salvia.dev.