Privacy Policy

Last updated: [DATE]

1. Controller

[COMPANY_NAME], [ADDRESS], [COUNTRY] ("dunpai", "we", "us"). Contact: privacy@dunpai.eu

2. What We Process

As a data processor, dunpai processes personal data contained in API requests on behalf of our customers (the data controllers). This includes:

• PII in prompts: Email addresses, phone numbers, IBANs, credit card numbers, tax IDs, IP addresses, dates, postal codes. These are detected, replaced with tokens, and never sent to the LLM. The token-to-value mapping exists in memory only for the duration of the request.
• Audit metadata: Request timestamps, PII type counts (not values), model used, token counts, latency. No raw prompt or response content is stored.
• BLAKE3 hashes of PII values: One-way hashes stored for DSAR lookups. These cannot be reversed to recover the original data.
• Account data: Tenant name, API key hash (not the key itself), configuration preferences.

3. Legal Basis

We process data based on:

• Contract performance (Art. 6(1)(b) GDPR) — processing necessary to provide the service.
• Legitimate interest (Art. 6(1)(f) GDPR) — audit logging for security and compliance.

4. Data Location

All data is processed and stored exclusively within the European Union, on Hetzner infrastructure in Germany. No data is transferred outside the EU/EEA. We do not use US-based subprocessors.

5. Retention

Audit logs are retained for the period configured by each tenant (default: 90 days), then automatically deleted. Account data is retained for the duration of the service agreement.

6. Your Rights

Under GDPR, you have the right to access, rectify, erase, restrict processing, data portability, and object to processing. Contact privacy@dunpai.eu.

7. Data Processing Agreement

Customers using dunpai as a data processor should sign our Data Processing Agreement.

8. Subprocessors

• Hetzner Online GmbH — Infrastructure hosting (Falkenstein/Nuremberg, Germany)

9. Contact

privacy@dunpai.eu