Skip to content
AndiIndia
Legal

Privacy Policy

This Policy describes how AndiIndia handles information when you use our inference Services and the andiindia.in website.

Last updated: June 21, 2026

1. Introduction

This Privacy Policy explains how AndiIndia ("AndiIndia", "we", "us", or "our") collects, uses, discloses, retains, and protects information in connection with our AI inference services (the "Services") and the andiindia.in website (the "Site").

AndiIndia is the data fiduciary/controller responsible for personal data processed through the Site and for account and billing data. For inference requests submitted through a marketplace such as OpenRouter, we act as a data processor handling request content solely on behalf of, and under the instructions of, the party making the request.

By using the Services or the Site, you acknowledge that you have read and understood this Policy. If you do not agree with it, please do not use the Services.

2. Summary

  • We do not train, fine-tune, or evaluate models on your prompts or completions.
  • By default we do not retain prompt or completion content; minimal operational metadata is retained for up to 30 days unless a longer period is required by law.
  • We never sell, rent, or trade personal or customer data.
  • We serve inference from infrastructure located in India; certain supporting services may process limited metadata elsewhere.
  • You can exercise access, correction, and deletion rights by contacting us.

3. Information we process

We process the following categories of information:

  • Inference request data: the prompts, messages, and parameters you send to the Services, together with the generated completions. This content is processed transiently to produce a response and is not retained afterwards by default (see Section 6).
  • Account and contact information: where you contact us or establish a billing relationship, this may include your name, business name, email address, and correspondence.
  • Technical and usage metadata: timestamps, model identifier, request and response sizes, token counts, latency, status codes, coarse region, and truncated/derived network information used for reliability, billing reconciliation, and abuse prevention.
  • Website information: standard server logs and, where applicable, privacy-respecting analytics about how the Site is used. The Site does not rely on advertising cookies.

4. How we use information

We use information only for the following purposes:

  • To provide, operate, and maintain the Services and return inference results.
  • To monitor performance, reliability, capacity, and security.
  • To detect, investigate, and prevent fraud, abuse, and violations of our Terms.
  • To reconcile usage and process billing through the marketplace.
  • To respond to your enquiries and provide support.
  • To comply with applicable legal obligations and enforce our agreements.

5. No training on customer content

We do not use customer prompts, inputs, or completions to train, fine-tune, re-train, or evaluate any machine-learning model. Your content is processed in memory only as needed to serve a request and is not added to any training corpus, benchmark, or dataset.

6. Data retention

By default, prompt and completion content is not persisted to durable storage after a response is returned. The only exception is limited, temporary capture during active debugging or incident investigation, which is access-controlled and deleted promptly afterwards (within 7 days). We retain minimal operational metadata (described in Section 3) for up to 30 days, unless a longer period is required by law, after which it is deleted or aggregated into non-identifying statistics.

Account, billing, and correspondence records are retained for the duration of the relationship and for any further period required to meet legal, tax, accounting, or dispute-resolution obligations.

7. Disclosure of information

We do not sell, rent, or trade personal or customer data. We disclose information only in the limited circumstances below:

  • Subprocessors: infrastructure and hosting providers strictly necessary to operate the Services, bound by confidentiality and security obligations and prohibited from using the data for their own purposes.
  • Marketplace: where you reach our models through a marketplace such as OpenRouter, usage metadata necessary for routing and billing is exchanged with that marketplace under its own terms.
  • Legal and safety: where required by applicable law, regulation, legal process, or enforceable governmental request, or to protect the rights, safety, and security of our users, the public, or our Services.
  • Business transfers: in connection with a merger, acquisition, financing, or sale of assets, subject to the confidentiality protections of this Policy.

8. International data transfers

Inference is served from infrastructure located in India. Certain supporting services necessary to operate and protect the platform (such as DNS, content delivery, TLS termination, and monitoring), and activities such as support correspondence, may involve processing of limited metadata in other jurisdictions. Where information is processed across borders, we apply appropriate safeguards consistent with applicable law.

9. Data security

We apply administrative, technical, and organisational safeguards appropriate to the sensitivity of the information, including encryption of data in transit, access controls, the principle of least privilege, and monitoring. No method of transmission or storage is perfectly secure; while we work to protect information, we cannot guarantee absolute security.

10. Your rights

Subject to applicable law, including the Digital Personal Data Protection Act, 2023 (India) and, where relevant, the EU/UK General Data Protection Regulation, you may have the right to:

  • Access the personal data we hold about you and obtain information about its processing.
  • Request correction of inaccurate or incomplete personal data.
  • Request erasure of personal data, subject to legal retention obligations.
  • Withdraw consent where processing is based on consent.
  • Nominate another individual to exercise your rights in the event of death or incapacity (DPDP Act).
  • Lodge a grievance with us and, where available, with the relevant data protection authority.

11. Children

The Services are intended for businesses and developers and are not directed to children. We do not knowingly collect personal data from children. If you believe a child has provided us personal data, please contact us so we can take appropriate action.

12. Changes to this Policy

We may update this Policy from time to time as our Services and legal obligations evolve. Material changes will be reflected by updating the 'Last updated' date above and, where appropriate, by additional notice. Continued use of the Services after changes take effect constitutes acceptance of the updated Policy.

13. Grievances and contact

For privacy questions, to exercise your rights, or to raise a grievance, contact our privacy team at support@andiindia.in. We will acknowledge and respond to verified requests within a reasonable period and in accordance with applicable law.

See also our Data Policy for explicit retention details and our Terms of Service.