Privacy Policy

Wire (openwire.sh) is operated by Anakin, Inc. (“Anakin,” “we,” “us”). This policy explains how we handle personal data when you use the Wire website, console, and API. It applies alongside the privacy practices of anakin.company, of which Wire is a product.

1. Information you provide

When you create an account we store your email, an optional display name, a password hash (only if you use credentials sign-in), and the OAuth identifier of any provider you link (e.g. Google). When you upgrade a plan, our payment processor stores your billing details; we retain only a customer reference, plan, and invoice metadata, never full card numbers.

2. Information collected automatically

Every API call is logged with a job ID, action ID, the parameters you sent, completion status, latency, and credits consumed. We also record standard request metadata (IP address, timestamp, and user agent) for security, abuse prevention, and billing. The console uses a small number of first-party cookies for authentication and preferences.

3. Saved credentials (Identities)

Cookies, OAuth tokens, and passwords you save as Identities are encrypted at rest with AES-256-GCM under per-environment keys. Engineers cannot read them. They are decrypted only on the request path of a call you initiate, and are never returned by the API or exposed to your model.

4. Information from third parties

If you sign in with Google we receive your email and basic profile from that provider, subject to the permissions you grant. We do not buy personal data from data brokers.

5. How we use information

• To operate the service: authenticate you, run your calls, and render Overview and Jobs in the console.
• To bill accurately and to prevent fraud and abuse.
• To provide support and respond to your requests.
• To improve reliability and performance using aggregated, non-identifying telemetry.
• To send essential service notices; marketing email is opt-in and you can unsubscribe at any time.

6. Legal basis (GDPR)

Where the GDPR applies, we process data to perform our contract with you (running the service and billing), to pursue legitimate interests (security, abuse prevention, product improvement), to comply with legal obligations, and on the basis of your consent where required (e.g. optional analytics).

7. How we share information

We do not sell personal data. We share it only with sub-processors who help us run the service, under contract and limited to what they need:

• Amazon Web Services: cloud hosting, storage, and key management.
• Stripe: payment processing and invoicing.
• Google: optional OAuth sign-in.
• Mixpanel: opt-in product analytics.

We may also disclose data to comply with the law or a valid legal request, or to protect the rights and safety of users and the public.

8. Data retention

Account and billing records are kept for as long as your account is active and as required for tax and legal purposes. Call logs are retained on a rolling window for operations and abuse detection. Scraped content cached for delivery expires within 24 hours.

9. Data security

All traffic is TLS 1.2+; secrets live in AWS Secrets Manager and KMS; database access is restricted to the application role. See our Security page for details.

10. Your rights

Subject to applicable law, you can request access to your data, correction, deletion, a portable copy, restriction of processing, or object to certain processing. Under the CCPA you may request the categories of data we hold and that we not “sell” or “share” your data, which we do not do. You can delete your account at any time from Settings; deletion cascades to your jobs, identities, API keys, and invoices, and backups are purged within 30 days.

11. International transfers

We operate in the United States and India. Where data is transferred across borders, we rely on appropriate safeguards such as the EU Standard Contractual Clauses.

12. Children

Wire is not directed to children and is not intended for anyone under 16. We do not knowingly collect data from children; if you believe a child has provided us data, contact us and we will delete it.

13. Changes

We may update this policy as the service evolves. Material changes will be announced in-product or by email, and the “last updated” date above will change.

14. Contact

Anakin, Inc. For privacy requests under the GDPR, CCPA, or other applicable law (or to reach our data protection contact), email support@anakin.io.