This policy is written for the public self-service API. It should be reviewed by qualified counsel before broad commercial launch or if the service changes materially.
Who we are
WaitTime Intelligence API is provided through TermiGPT.tech. We provide API services for wait-time prediction, customer API keys, quota tracking, billing workflows, and related support.
Data we collect
- Account data, such as email address, name, company, API key name, plan, and account status.
- API key metadata, including hashed API keys, prefixes, creation status, revocation status, and recovery tokens.
- Usage data, such as endpoint paths, request counts, quota period, timestamps, and operational logs.
- Submitted wait-time reports, including place ID, wait minutes, crowd level, source, and timestamp.
- Billing data from Stripe, such as customer ID, subscription ID, subscription status, and plan metadata.
- Support communications sent to support@termigpt.tech.
We do not store full payment card numbers. Card processing is handled by Stripe.
How we use data
- Provide API access, authentication, quotas, usage visibility, and account recovery.
- Process subscriptions, plan changes, billing status, and payment-related support.
- Protect the service against abuse, rate-limit misuse, diagnose incidents, and improve reliability.
- Respond to support, privacy, billing, and security requests.
- Improve prediction quality, documentation, and customer workflows.
- Meet legal, tax, accounting, security, and compliance obligations.
Legal bases for EU and UK users
Where EU or UK data protection law applies, we rely on contract performance to provide the API, legitimate interests to secure and improve the service, legal obligations for required records, and consent where a specific optional activity requires it.
Sharing and processors
We share data only as needed to operate the service. Categories of recipients may include hosting providers, database and infrastructure providers, email providers, Stripe for billing, support tooling, professional advisors, and authorities where legally required.
Retention
We keep account and billing records while the account is active and for a reasonable period afterward where needed for support, security, accounting, dispute handling, or legal obligations. API usage logs and reports are retained for operational analytics and quota enforcement. Recovery tokens are short-lived and are invalidated after use or expiry.
Security
We use measures such as hashed API keys, TLS in production, access controls, limited owner endpoints, backups, and operational monitoring. No internet service can be guaranteed perfectly secure, so customers should avoid sending unnecessary personal data in API requests.
Your rights
Depending on where you live, you may have rights to access, correct, delete, export, restrict, or object to processing of your personal data. You may also have the right to withdraw consent and lodge a complaint with a data protection authority. Email requests to support@termigpt.tech.
International transfers
The service and its vendors may process data in countries other than where you live. Where required, we use appropriate safeguards for cross-border data transfers.
Cookies and local browser storage
The public site may use browser storage for convenience features, such as keeping an API key available during the current browser session. Do not use shared devices for sensitive API-key work.
Children
The service is intended for developers and businesses. It is not directed to children, and we do not knowingly collect personal data from children.
Changes
We may update this policy as the service changes. Material updates will be reflected by changing the date at the top of this page.