Legal
Privacy policy
Account, wallet and payment, encrypted body retention, audit, export, deletion, and cross-border processing rules.
Data we process
We process account profile data, authentication state, API key metadata, wallet and order records, FX quote snapshots, ledger entries, sessions, model-request metadata, notifications, and audit logs. Upstream credentials, supplier costs, internal scheduling records, and secret references are internal operational data and are not included in user-visible exports.
Request and response bodies
Full model request and response bodies are encrypted before durable storage and follow a 30-day retention policy. The database stores metadata and encrypted object references, and full bodies are removed by retention jobs.
Payment and wallet data
Wallet top-up orders record payment provider, payment status, merchant order id, provider transaction id, CNY amount, the FX rate shown at order creation, credited USD amount, refund status, and reconciliation state. Nodex does not store sensitive payment credentials beyond what is needed for reconciliation, refunds, and audit.
Retention, export, and deletion
Full bodies are retained for 30 days. Billing, ledger, payment, refund, audit, approval, pricing-rule, reconciliation, and security-event records are retained long term for operational and compliance needs. Generated user export files expire after 7 days unless a legal hold applies.
Security and cross-border processing
Gateway traffic is served through regional nodes shown on public product pages and in the console. Nodex uses API key hashing, encrypted object storage, separated key material, RBAC, audit logs, approval flows, and retention jobs to reduce risk, but no system can remove all operational risk.