Privacy Policy

What we collect

RelionAPI collects the minimum data necessary to provide API intelligence. When you run a scan, only API surface metadata (endpoint paths, HTTP methods, vendor identifiers) is transmitted. Your source code never leaves your machine or CI runner.

Account data

We store your email address, name, and authentication identifiers provided by Clerk. If you subscribe to a paid plan, Stripe handles all payment processing — we do not store credit card numbers.

How we use your data

Your data is used solely to operate the RelionAPI service: detecting API changes, generating alerts, and displaying scan results. We do not sell your data or share it with third parties for advertising purposes.

Data retention

Scan data is retained according to your plan tier (7 days for Scout, 30 days for Sentinel). You can delete your account and all associated data at any time by contacting us.

Cookies & website analytics

On our public marketing pages we use PostHog (US-hosted) to understand how visitors use the site — page views, clicks, heatmaps, and session replays with all form input masked. Until you accept analytics cookies, only cookieless, anonymous usage data is collected and session replay stays off; if you decline, the analytics script does not load. We respect your browser's Do Not Track setting. The authenticated dashboard loads no behavioral analytics script.

Contact

For privacy questions, email hello@relionapi.com.

RelionAPI