Privacy Policy for Metrika

1. Who We Are

Metrika is a REST API service that provides social media metrics.

The data controller responsible for your personal data is:

Metrika
Email: [email protected]

2. Information We Collect

We collect only the information necessary to operate the service.

Account Information

When you register for an account, we may collect:

• Email address
• Password (stored securely in hashed form)

Billing Information

Payments are processed by Stripe. We do not store full payment card information on our servers.

We may store limited billing-related information such as:

• Stripe customer ID
• Subscription ID
• Billing status
• Invoice references

API Usage Information

When you use the API, we may collect:

• API token identifiers
• Request timestamps
• Requested resources
• Rate limit usage
• IP address
• User agent information
• Error and diagnostic logs

Technical Information

We may automatically collect limited technical information necessary for security and reliability purposes, including server logs and request metadata.

3. How We Use Information

We use collected information to:

• Provide and maintain the API service
• Authenticate API requests
• Enforce rate limits and prevent abuse
• Process subscriptions and payments
• Monitor reliability and performance
• Detect security incidents
• Respond to support requests
• Comply with legal obligations

We do not sell personal data.

4. Legal Bases for Processing

If you are located in the European Economic Area (EEA) or United Kingdom, we process personal data under the following legal bases:

Contractual Necessity

To provide access to the API service, including authentication, billing, and account management.

Legitimate Interests

For security, fraud prevention, abuse detection, service monitoring, and operational reliability.

Legal Obligations

Where processing is required by applicable law.

5. Third-Party Services

We use trusted third-party providers to operate the service, including:

• Stripe for billing and payment processing
• Sentry for error monitoring and diagnostics

These providers may process personal data in accordance with their own privacy policies.

6. Data Retention

We retain personal data only for as long as necessary to:

• Provide the service
• Maintain account security
• Comply with legal obligations
• Resolve disputes
• Enforce agreements

We may retain server logs and billing records for security, operational, and legal purposes.

7. Data Security

We implement reasonable technical and organizational measures designed to protect personal data, including:

• HTTPS encryption
• Password hashing
• Access controls
• Infrastructure monitoring
• Rate limiting and abuse prevention

However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

8. International Data Transfers

Your information may be processed in countries outside your country of residence.

Where required, we use appropriate safeguards for international data transfers.

9. Your Rights

Depending on your location, you may have rights including:

• Access to your personal data
• Correction of inaccurate data
• Deletion of personal data
• Restriction of processing
• Objection to certain processing
• Data portability

To exercise your rights, contact:

[email protected]

You may also lodge a complaint with your local data protection authority.

10. Children's Privacy

Metrika is not intended for children under the age required by applicable law, and we do not knowingly collect personal data from children.

11. Changes to This Policy

We may update this Privacy Policy from time to time.

When changes are made, we will update the "Last updated" date above.

Continued use of the service after changes become effective constitutes acceptance of the updated policy.