Legal

Privacy Policy

Aperture (“Aperture,” “we,” “us”) operates the transaction network for the AI agent economy. This Privacy Policy explains what information we collect, how we use it, and the choices you have. It applies to our website, console, APIs, and the Foundry runtime.

1. Information we collect

Account information

Name, work email, organization, and authentication identifiers when you create an account or sign in with a third-party provider such as Google or GitHub.

Usage data

API requests, models and endpoints called, request and response metadata, timestamps, IP address, and device or client information. We use this to operate, meter, secure, and improve the service.

Payment data

Billing details processed by our payment partners (for example, card data via Stripe or on-chain settlement via Circle). We do not store full card numbers. Wallet addresses and settlement receipts may be retained for accounting and compliance.

Agent and content data

Prompts, configurations, and payloads your agents send through Aperture. We process this content to route requests to the providers you select. Provider terms also apply to content they receive.

2. How we use information

  • Provide, maintain, and secure the gateway, marketplace, payments, and Foundry.
  • Meter usage, calculate fees, and prevent fraud and abuse.
  • Enforce budgets, rate limits, and acceptable-use policies.
  • Communicate about your account, security, and product updates.
  • Comply with legal, tax, and regulatory obligations.

3. Sharing and disclosure

We share data with: capability providers you route to (LLMs, APIs, skills); payment processors and settlement networks; infrastructure and analytics vendors acting as our processors; and authorities where required by law. We do not sell your personal information.

4. Data retention

We retain account and billing records for as long as your account is active and as required for legal and accounting purposes. Request metadata is retained on a rolling window; configurable retention is available on Enterprise plans.

5. Security

We use encryption in transit and at rest, scoped API keys, and least-privilege access controls. No system is perfectly secure — keep your APERTURE_API_KEY secret and rotate it if exposed.

6. Your rights

Depending on your location (including under GDPR and CCPA/CPRA), you may have rights to access, correct, delete, port, or restrict processing of your personal data, and to object to certain processing. To exercise these rights, contact us at the address below.

7. International transfers

We may process data in countries other than your own. Where required, we rely on appropriate safeguards such as Standard Contractual Clauses for cross-border transfers.

8. Children's privacy

Aperture is not directed to individuals under 18, and we do not knowingly collect their data.

9. Changes to this policy

We may update this policy from time to time. Material changes will be posted here with a new “Last updated” date.

10. Contact

Questions about privacy? Email [email protected].