PulseNeko Bridge Privacy Policy

Version

• Current: v1.0
• Effective Date: 2026-05-16
• Last Revision: 2026-05-16

English version pending

The authoritative version of the PulseNeko Bridge Privacy Policy is the
Simplified Chinese version. An English translation is in preparation.

In case of any inconsistency between a future English translation and the Chinese
version, the Chinese version prevails until a notarized English version is published.

One-line Summary

Bridge does not log prompt bodies or response bodies. We retain only the metadata
strictly required for billing and abuse prevention. Full breakdown in
§2 of the Chinese version.

What We Don't Collect (Highlights)

• No prompt body — your messages.content / prompt field is forwarded to upstream and never persisted
• No response body — SSE streams are byte-passed; we do not buffer or copy
• No marketing tracking — zero GA, Mixpanel, Facebook Pixel, third-party cookies
• No model training on your data — neither by Bridge nor sold to third parties

What We Do Collect (Highlights)

• Account: email, display name, password hash (bcrypt/argon2)
• Request metadata: request_id, timestamp, model, input_tokens, output_tokens, masked IP, UA
• Payment metadata via processors (last 4 digits only — never full card numbers)

Your Rights

We honor the strictest combination of GDPR / CCPA / PIPL / Hong Kong PDPO:

• Access & portability (one-click JSON export)
• Correction
• Deletion / account closure (90-day grace, then hard delete)
• Withdraw consent
• Object to processing
• 30-day DSR response SLA — submit to privacy@pulseneko.com

Contact

• Privacy / DSR — privacy@pulseneko.com
• Security disclosures — security@pulseneko.com
• Data Protection Officer — dpo@pulseneko.com
• Legal — legal@pulseneko.com

Related

• Terms of Service
• About Bridge
• Full Chinese Policy