Privacy Policy
How Apier handles personal data under GDPR Articles 13 and 14. For machine-readable data-sovereignty signals see /trust and /.well-known/data-sovereignty. The lawyer-reviewed source-of-truth lives in docs/legal/privacy-policy.md in the apier source repository.
0. Legal framework
LEGAL TEXT PENDING — PR-063 §legal-framework
1. Who we are
LEGAL TEXT PENDING — PR-063 §who-we-are
2. Scope
LEGAL TEXT PENDING — PR-063 §scope
3. Data we collect and why
LEGAL TEXT PENDING — PR-063 §data-collected
4. Retention
LEGAL TEXT PENDING — PR-063 §retention
5. Subprocessors
LEGAL TEXT PENDING — PR-063 §subprocessors
No external LLM processes customer data during the build phase (CLAUDE.md Rule 13). If this changes the provider will be listed in the subprocessor table above and this statement will be removed.
6. International transfers
LEGAL TEXT PENDING — PR-063 §international-transfers
7. Your rights
LEGAL TEXT PENDING — PR-063 §your-rights
To exercise your GDPR rights programmatically, submit a Data Subject Request to POST /api/v1/privacy/dsr. The endpoint is live (PR-028 merged 2026-04-26).
8. How to complain
LEGAL TEXT PENDING — PR-063 §complaint
9. Automated decision-making
LEGAL TEXT PENDING — PR-063 §automated-decision-making
11. Security
LEGAL TEXT PENDING — PR-063 §security
12. Children
LEGAL TEXT PENDING — PR-063 §children
13. Indirect collection (Article 14)
LEGAL TEXT PENDING — PR-063 §indirect-collection
14. Changes
LEGAL TEXT PENDING — PR-063 §changes
15. Contact
LEGAL TEXT PENDING — PR-063 §contact
16. Marketing communications
LEGAL TEXT PENDING — PR-063 §marketing-communications
17. Governing law and jurisdiction
LEGAL TEXT PENDING — PR-063 §governing-law
Last updated: 2026-05-16. Source-of-truth: docs/legal/privacy-policy.md.