Privacy Policy

Last updated: February 2025

Overview

OneRouter is committed to protecting your privacy. This policy explains how we collect, use, and safeguard your personal information when you use our service.

Information We Collect

Account information (email via Clerk authentication)
API keys and provider credentials (encrypted)
Usage data and analytics
IP addresses for security and rate limiting

How We Protect Your Data

Encryption

AES-256-GCM encryption at rest, TLS 1.3 in transit

Credentials

API keys hashed with SHA-256, never stored in plain text

Access Control

OAuth 2.0, role-based access, secure sessions

Data Sharing

We share transaction data with your chosen providers (Razorpay, PayPal, Twilio, Resend) to process requests. We never sell your personal data or share it with advertisers.

Your Rights

Access

Request a copy of your data

Delete

Request account deletion

Export

Download your data

Rectify

Correct inaccurate data

Data Retention

Transaction logs90 days

Error logs30 days

Account dataUntil deletion

Compliance

OneRouter complies with GDPR, CCPA, and India's DPDP Act.

We do not sell personal data. We process data only to provide our service.

Contact

For privacy questions, contact us at privacy@onerouter.com