Privacy Policy

Effective: February 1, 2026

1. Introduction

AppXen ("we," "us," "our") operates the AppXen platform, including appxen.ai, console.appxen.ai, and api.appxen.ai. This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our Services.

By using our Services, you consent to the practices described in this policy. If you do not agree, please do not use the Services.

2. Information We Collect

Account Information

When you register, we collect your email address, name (if provided), and authentication credentials. For AWS Marketplace customers, we also receive your AWS Account ID as part of the subscription process.

Usage and Analytics Data

We collect data about how you use the Services, including API request counts, server hours consumed, endpoint usage patterns, error rates, and performance metrics. This data is used for billing, service improvement, and operational monitoring.

Payment Information

For Stripe subscribers, payment details (credit card numbers, billing addresses) are collected and processed directly by Stripe. We do not store your full payment card details on our servers. For AWS Marketplace subscribers, billing is handled entirely through AWS.

Technical Data

We may collect IP addresses, browser type, device information, and access timestamps when you interact with our website and APIs. This is used for security, abuse prevention, and diagnostics.

3. How We Use Your Information

We use collected information for the following purposes:

  • Service Delivery — Providing, operating, and maintaining the Services
  • Billing — Calculating usage, generating invoices, and processing payments
  • Support — Responding to your requests and troubleshooting issues
  • Security — Detecting and preventing fraud, abuse, and unauthorized access
  • Improvement — Analyzing usage patterns to improve and develop new features
  • Communication — Sending service-related notices, updates, and security alerts

4. Data Sharing

We do not sell your personal information to third parties. We share data only with:

  • Stripe — For payment processing (for direct subscribers)
  • Amazon Web Services — For infrastructure hosting, metering, and billing (for all customers; additionally for Marketplace subscription management for AWS Marketplace subscribers)

We may also disclose information if required by law, legal process, or government request, or to protect the rights, safety, or property of AppXen, our users, or the public.

5. Data Security

We implement industry-standard security measures to protect your data:

  • Encryption in transit (TLS 1.2+) for all API and web traffic
  • Encryption at rest for all stored data
  • VPC isolation with private subnets for backend services
  • Least-privilege access controls
  • Structured audit logging and monitoring

No method of transmission or storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

6. Data Retention and Deletion

We retain your account data for as long as your account is active. Usage and billing data is retained for the period required for billing reconciliation and legal compliance (typically up to 7 years for financial records).

Upon account termination, we make your data available for export for 30 days. After that period, personal data is deleted or anonymized, except where retention is required by law.

7. Cookies and Tracking

Our website uses minimal cookies necessary for service operation:

  • Session cookies — To maintain your authenticated session in the Console
  • Preference cookies — To remember your settings

We do not use third-party advertising trackers. We may use privacy-respecting analytics to understand aggregate usage patterns.

8. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Access — Request a copy of the personal data we hold about you
  • Correction — Request correction of inaccurate or incomplete data
  • Deletion — Request deletion of your personal data, subject to legal retention requirements
  • Export — Request your data in a portable, machine-readable format
  • Objection — Object to certain types of data processing

To exercise any of these rights, contact us at contact@appxen.ai. We will respond within 30 days.

9. International Data Transfers

Our Services are hosted on AWS infrastructure in the United States (us-east-1 region). By using the Services, you consent to the transfer and processing of your data in the United States. We rely on AWS's compliance frameworks (including SOC 2 and ISO 27001 certifications) for data protection.

10. Children's Privacy

The Services are not directed to individuals under 16 years of age. We do not knowingly collect personal information from children. If we learn that we have collected data from a child under 16, we will take steps to delete it promptly.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the "Effective" date. Your continued use of the Services after changes take effect constitutes acceptance of the revised policy.

12. Contact

If you have questions or concerns about this Privacy Policy, contact us at:

AppXen
Email: contact@appxen.ai
Web: appxen.ai