Privacy Policy

RodiumAI ("we", "us", "our") operates an AI infrastructure platform at https://rodiumai.io. We are an early-stage startup in market validation and are not yet registered as a legal entity. We are committed to handling your personal data responsibly.

Privacy inquiries: legal@rodiumai.io

2.1 Account registration

When you create an account we collect: full name, email address, country of residence, and password (stored only as a cryptographic hash — never in plaintext). Optional: phone number and profile details you choose to provide.

2.2 Billing and payments

When you purchase RODI credits we collect transaction amounts, timestamps, country and local currency, payment method type, and operator or gateway reference numbers where applicable. We do not store full card numbers; regulated payment processors handle sensitive payment credentials.

2.2.1 Automated recharge (Mobile Money checkout) — When you pay through our integrated checkout, you are redirected to FedaPay, our payment aggregator. We receive confirmation metadata (amount, status, gateway reference) after payment. FedaPay and your chosen Mobile Money operator process wallet credentials on their own systems.

2.2.2 Manual recharge (where offered) — If you transfer funds to a displayed account and submit proof, we collect: sender name as shown on your mobile wallet, external transaction ID from your operator, and a screenshot or image of your payment proof. Proof images may show additional personal data visible on your phone screen (balances, phone numbers, third-party names). Authorized RodiumAI staff review proofs solely to validate or reject the recharge.

2.2.3 Promotional programs — When you redeem a promo code we store the code entered and credit applied. For referrals we store the referral code used and the link between referrer and referee accounts. These programs do not involve your API prompt content.

2.3 Usage and analytics

• API request metadata (timestamps, model slug, token counts, latency, RODI cost).
• RODI credit consumption per request.
• API key activity logs (key identifier, not the secret).
• Browser type, device type, and IP address for security and fraud prevention.
• Session data and cookies (see section 7).

We do not collect government ID numbers, biometrics, or sensitive categories (health, religion, political opinions) unless you voluntarily include them in support messages.

• Account management and authentication.
• Delivering the Services: API routing, RODI billing, usage dashboards.
• Transactional email (verification, team invites, recharge submitted/approved/rejected, low RODI balance, promo and referral credits credited).
• Security, fraud prevention, and abuse detection.
• Product analytics and platform improvement.
• Legal compliance where required.

We do not sell, rent, or trade your personal data to third parties for their marketing.

• Contractual necessity — to provide the Services you requested.
• Legitimate interest — security, fraud prevention, and improvement.
• Consent — where you opt in (e.g. marketing email).
• Legal obligation — where applicable law requires processing.

5.1 OpenRouter (routing partner)

At launch, chat completion requests to https://api.rodiumai.io/v1 are executed via OpenRouter (openrouter.ai), which routes your request to the underlying model provider. Your prompts and inputs are transmitted to OpenRouter and then to the selected provider. OpenRouter processes data under its own privacy policy: openrouter.ai/privacy

5.2 Underlying model providers

Depending on the model you select, your data may be processed by the original provider, including:

• OpenAI — openai.com/policies/privacy-policy
• Anthropic — anthropic.com/privacy
• Google — policies.google.com/privacy
• DeepSeek — deepseek.com/privacy
• MiniMax — minimax.io/privacy-policy

Our public catalogue currently lists models from these families only. RodiumAI does not control downstream provider retention; review each provider's policy before sending confidential data.

5.3 Payment processors and billing infrastructure

• FedaPay (fedapay.com) — Mobile Money collection and checkout; see FedaPay's privacy policy for how they handle payment data.
• Mobile Money operators (e.g. MTN, Orange, Wave, Airtel — depending on your selection) — process wallet transactions under their own terms.
• Cloudinary (cloudinary.com/privacy) — hosts payment proof images you upload for manual recharges and, where you choose, profile avatars.
• Authorized RodiumAI personnel — limited access to manual payment proofs and transaction records for validation, support, and fraud prevention.

5.4 Infrastructure

Cloud hosting, databases, and email delivery providers may process data on our behalf under appropriate agreements.

5.5 Legal disclosure

We may disclose personal data when required by law, court order, or governmental authority, or when necessary to protect rights, prevent fraud, or protect user safety.

• Account data: while your account is active, plus a reasonable period after closure.
• Transaction records: at least five (5) years for financial compliance.
• Manual payment proof images: retained for the same period as transaction records, or until a related dispute is closed, then deleted or anonymized where feasible.
• Pending manual recharge metadata: until the transaction is approved, rejected, or otherwise finalized.
• Usage metadata (no prompt content): up to twelve (12) months.
• Support communications: up to two (2) years.

When no longer needed, we delete or anonymize data securely.

We use cookies and similar technologies to maintain sessions, prevent fraud, and measure platform performance. Disabling some cookies may limit functionality. We do not use cookies for third-party advertising or cross-site tracking outside our platform.

• Password hashing with industry-standard algorithms.
• HTTPS/TLS for data in transit.
• API key encryption and access controls.
• Role-based access for internal operations.
• Audit logging of administrative actions.

No system is perfectly secure; we cannot guarantee absolute protection.

Depending on your jurisdiction you may have rights to access, rectify, erase, restrict, port, or object to processing of your personal data.

Contact legal@rodiumai.io to exercise these rights. We typically respond within 30 days.

The Services are not for anyone under 18. If you believe we collected a minor's data, contact legal@rodiumai.io and we will delete it promptly.

We may update this Policy. Material changes will be notified by email at least fourteen (14) days before they take effect. The effective date at the top reflects the latest version.

• Email: legal@rodiumai.io
• Website: https://rodiumai.io