Privacy Policy

01Overview

This Privacy Policy explains what information Scout collects when you use the API and website, how that information is used, and the choices you have. We aim to collect only what we need to run the Service well.

02Information we collect

We collect the following categories of information:

• >Account information - the name, email address, and organisation details you provide when you sign up.
• >Request data - the queries, URLs, schemas, and other inputs you send to the API, and the results returned for them.
• >Usage data - credit consumption, endpoint and timestamp of calls, and aggregate performance metrics.
• >Technical data - IP address, request headers, and similar metadata sent automatically by your client.

03How we use information

We use the information we collect to operate, secure, and improve the Service: to authenticate requests, meter credits and bill accurately, diagnose errors, prevent abuse, and understand how the Service is used in aggregate. We also use your contact details to send service-related communications.

04API requests and content

Request inputs and results are processed to fulfil your call and may be retained briefly to operate caching, debugging, and abuse-prevention systems. We do not sell your request data, and we do not use the content of your requests to build advertising profiles. Web content returned by the Service originates from third-party publishers and is relayed to you as-is.

05Data retention

We retain account information for as long as your account is active and as needed to comply with legal obligations. Request and usage data is retained for a limited operational window and then deleted or aggregated. You may request deletion of your account data as described below.

06Service providers and subprocessors

We rely on a small set of trusted providers to run the Service - including cloud hosting and infrastructure, and a large-language-model provider used to power the research, structured-extraction, and chat endpoints. These providers process data only to deliver their part of the Service and are bound by confidentiality and data-protection obligations.

07Security

We use reasonable technical and organisational measures to protect information, including encryption in transit and hashing of API keys at rest. No method of transmission or storage is perfectly secure, but we work to protect your data and to respond promptly to any incident.

08International transfers

The Service and its providers may process data in countries other than your own. Where information is transferred across borders, we take steps to ensure it remains protected in line with this policy and applicable law.

09Your rights

Depending on your location, you may have the right to access, correct, export, or delete your personal information, and to object to or restrict certain processing. To exercise these rights, contact us at the address below and we will respond within a reasonable time.

10Children

The Service is not directed to children and is intended for use by developers and organisations. We do not knowingly collect personal information from children.

11Changes to this policy

We may update this policy as the Service evolves. When we make material changes, we will update the date below and, where appropriate, provide additional notice.

12Contact

Privacy questions and requests can be sent to team@enrich.so.