Legal
Privacy Policy
Last updated: 2026-05-25
This policy describes what we collect when you use TheRPC and what we do with it. We collect the minimum needed to run the service, and we never sell your data.
What we collect
Account data you provide (name, email, hashed password). Usage data (timestamps, methods called, response sizes, regions) needed to bill Compute Units and operate the network. Payment metadata from our payment processor. Diagnostic logs of API errors. We do not log request bodies or response bodies in normal operation.
Why we collect it
To authenticate you, route your requests, bill correctly, prevent abuse, and reach you with operational notices (incidents, billing, security).
Sub-processors
Hosting and edge: Cloudflare. Transactional email: Resend. Payments: CryptoCloud. Each sub-processor receives only what it needs to perform its function.
Retention
Account data is retained for the life of the account. Usage logs are retained for 90 days for billing and security review, then aggregated. Diagnostic logs are retained for 30 days. You can request deletion at any time.
Your rights
Request export or deletion of your data by writing to privacy@therpc.io. We respond within 30 days. EU and UK users have GDPR/UK-GDPR rights; California users have CCPA rights.
Changes to this policy
Material changes are announced by email to active accounts and shown on this page. The 'Last updated' date above always reflects the most recent revision.