Privacy Policy
This Privacy Policy explains how we collect, use, and disclose information when you use Ambient's website, APIs, models, and related services (collectively, the "Services"), including when requests are routed to Ambient through third-party platforms (for example, OpenRouter).
1. The short version (our core commitments)
Zero content retention for API requests
Ambient does not log, store, or retain inference request or response content from API traffic, including prompts/inputs, files/attachments, tool payloads, or model outputs. Content is processed only transiently to generate and return a response.
No training or secondary use of content
Content submitted to the Services is not used to train, fine-tune, evaluate, or improve models, and is not used for advertising, profiling, or analytics. We process content only to deliver the Services (i.e., generate outputs and return them).
Chat Data is stored only when you choose to store it
Ambient can support a chat/interface experience where you opt in to storing conversation history ("Chat Data").
- Default: Chat Data is not stored unless you choose to save it.
- Deletion: You can delete individual chats in the interface at any time. You can also request bulk deletion (including account-level data removal) by emailing [email protected]. Once deleted, the data is not retained, except for limited legal/backup exceptions described below.
Important: If you use Ambient via a third party (e.g., OpenRouter), that third party may independently log/store your content under their own policies. This Privacy Policy covers Ambient's handling only.
2. Definitions
- "Content" means prompts/inputs, files/attachments, tool payloads, and outputs generated in response.
- "Chat Data" means conversation history or transcripts you choose to save in a user interface.
- "Non-content Operational Data" means data needed to operate the service that does not include Content (e.g., timestamps, request identifiers, status codes, usage totals, billing records, security events).
3. What we process
A. Content (processed transiently; not retained)
When you call the API or use the Services, Ambient processes Content only to produce the response.
- Retention: We do not store Content after the request is served.
- No logging: We do not write Content into application logs, analytics tools, tracing systems, or long-term storage.
B. Chat Data (stored only at your request)
If you use features that explicitly save chats, we will store the Chat Data you elect to save.
- Retention: Until you delete it (in-product) or request deletion ([email protected]), subject to Section 7.
C. Non-content Operational Data (limited)
We may collect and retain limited Non-content Operational Data, such as:
- Account data: email, authentication records, API keys/tokens (stored securely), account settings
- Billing data: invoices, receipts, payment status, tax records (as required)
- Security/abuse data: rate-limit events, suspected abuse signals, fraud prevention records
- Service reliability data: request timestamps, latency metrics, error codes, uptime metrics, aggregate usage totals
We design this data collection to avoid storing Content.
4. How we use information
We use information to:
- provide the Services (authenticate requests, route traffic, generate outputs, return responses)
- maintain reliability and security (detect abuse, prevent fraud, troubleshoot incidents)
- provide customer support (respond to inquiries)
- process payments and manage subscriptions (if applicable)
- comply with legal obligations
We do not use Content for training or model improvement, and we do not sell Content or personal data.
5. Cookies and similar technologies
Ambient may use essential cookies or similar technologies needed to operate the website and sign-in flows (e.g., session and security cookies). If we deploy optional analytics cookies in the future, we will provide appropriate notice and choices where required by law.
6. Sharing and disclosure
A. Content
Because Ambient does not retain Content from API requests, we do not disclose stored Content to third parties.
B. Service providers (subprocessors)
We may share Non-content Operational Data with vendors that help us operate the Services. We do not provide inference Content to these vendors, and we structure/configure our systems to avoid sending or storing inference Content with them.
Current key vendors:
- Cloudflare (security, network delivery)
- Stripe (payments)
- Sentry (error monitoring)
C. Legal, safety, and rights protection
We may disclose information if we believe in good faith it is necessary to:
- comply with law, regulation, or legal process
- protect the security, integrity, and rights of Ambient, our users, or others
- investigate fraud or abuse
Given our zero content retention approach for API inference traffic, our ability to produce Content in response to such requests is generally not possible because we do not store it.
7. Data retention
- API inference Content (prompts/inputs/files/outputs): Not retained after the request is served.
- Chat Data (only if saved): retained until deleted by you or upon your request.
- Non-content Operational Data: retained only as long as necessary for operations, security, billing, and legal compliance.
Backups and deletion finality: When you delete Chat Data (or request bulk deletion), we remove it from active systems. Residual copies may persist temporarily in encrypted backups for a limited period and are deleted as backups rotate. We do not restore deleted Chat Data except as needed for disaster recovery, and then only to the extent required to restore systems.
8. Security
We use technical and organizational safeguards designed to protect information, including encryption in transit, access controls, and least-privilege practices.
9. International users
We are a global service. If you access the Services from outside the jurisdiction where we operate, your information may be processed in other countries. Where required, we rely on appropriate transfer mechanisms for cross-border data transfers.
10. Your rights and choices
Depending on where you live, you may have rights to access, correct, delete, object to, or restrict certain processing of personal information.
Chat deletion controls:
- Self-serve: You can delete chats within the interface.
- Bulk deletion / account removal: Email [email protected] with your request.
11. Children
The Services are not directed to children under 13 (or the applicable age of digital consent where you live). We do not knowingly collect personal information from children.
12. Changes to this policy
We may update this Privacy Policy from time to time. We will update the Effective Date and provide additional notice if required by law.
13. Contact
For privacy questions or requests (including deletion requests): [email protected]
Website: ambient.xyz
Docs: docs.ambient.xyz