Privacy Policy

We collect information to operate and improve our Services:

• Account Information: Name, email address, billing details, and account credentials. 
• Payment Information: Credit card or other payment details processed securely by third-party payment providers. 
• Usage Data: Information about how you interact with our Services, including logs, queries, job requests, and resource utilization. 
• Technical Data: IP address, browser type, device identifiers, and operating system. 
• Cookies and Tracking: We use cookies and similar technologies to improve functionality and analyze usage. 
• Metadata: We may log metadata such as token counts, latency, model used, and timestamps for operational and billing purposes. Metadata is not stored with prompt/response content.

We use collected information to:

• Provide and maintain our Services. 
• Process payments and manage billing. 
• Monitor and improve system performance, security, and reliability. 
• Analyze usage trends and optimize infrastructure. 
• Comply with legal obligations. 
• Communicate with you regarding updates, support, and account-related matters. 
• IonStream does not use customer model queries or workloads for training or resale purposes.

• IonStream does not log or retain prompts, responses, or inference results. 
• Metadata required for billing and operational purposes is retained as necessary to provide Services and meet contractual obligations. 
• Billing records may be retained for up to 7 years to comply with tax and accounting obligations. 
• Metadata logs may be retained for up to 12 months for operational purposes unless required longer for legal or compliance reasons. 
• No model training is performed on customer data. 

We may share information in the following ways:

• Service Providers: With trusted vendors who help us deliver our Services (e.g., hosting, payments, analytics). 
• Legal Compliance: To comply with applicable law, regulation, or legal process. 
• Business Transfers: In connection with a merger, acquisition, or sale of assets.
  We do not sell your personal information. 

Depending on your location, you may have rights under GDPR (European Union/EEA), CCPA/CPRA (California), and other applicable data protection laws. These rights may include:

• Access: Request a copy of the data we hold about you. 
• Correction: Request correction of inaccurate or incomplete data. 
• Deletion: Request deletion of your personal data, subject to legal or contractual obligations. 
• Opt-Out: Under CCPA, opt-out of the “sale” or “sharing” of personal information. 
• Portability: Request transfer of your data in a machine-readable format. 
• To exercise these rights, contact us at [email protected]. IonStream will work with our customers and integration partners to honor valid requests.

We implement industry-standard technical, administrative, and physical safeguards to protect data against unauthorized access, loss, or misuse. These include: 

• Encryption of data in transit at ingress and egress. 
• Encryption of storage volumes where supported. 
• Role-based access controls to limit system access to authorized personnel. 
• Continuous infrastructure monitoring for uptime and anomalous activity.
  Internal cluster traffic is secured through controlled environments, though not encrypted end-to-end within the cluster. However, no system is 100% secure, and we cannot guarantee absolute security.

IonStream is committed to ensuring enterprise-grade trust:

• IonStream does not retain or inspect model input/output. 
• Data is processed in a multi-tenant cluster environment with logical separation between workloads. 
• Customers retain control over the lifecycle of their data, including deletion requests. 
• Infrastructure and operational controls follow industry best practices, with alignment to frameworks such as NIST and CIS benchmarks, and a roadmap toward additional certifications. 

IonStream provides GPU infrastructure directly. If you access our Services through a third-party platform (such as model routing or inference providers), their privacy policies also apply. IonStream does not control how third parties handle your data, but we will cooperate with customers and partners to support data handling preferences.

IonStream’s infrastructure is primarily located in the United States. Where personal data is transferred outside the United States, we rely on safeguards such as Standard Contractual Clauses (SCCs) or other legally recognized mechanisms to ensure adequate protection.

We use cookies and similar technologies to:

• Enable essential functionality. 
• Analyze usage and improve Services. 
• Support authentication and security.
  You may control cookie preferences through your browser, though some functionality may be limited.

Our Services are not directed at individuals under the age of 18. We do not knowingly collect personal information from minors.

We may update this Privacy Policy periodically. Changes will be posted on this page with a revised “Last Updated” date.

If you have questions or concerns about this Privacy Policy or your data, please contact us at:
IonStream.ai
Email: [email protected]
Address: 9950 Woodloch Forest Drive Suite 1345 The Woodlands, TX 77380-4251