Claude Opus 4.8 is now live — 1M context, reasoning, and multimodal input.Try it now >
RouterHubLoginGet API Access
Privacy Policy

RouterHub — Operated by ARCTIC AI PTE. LTD.

Last Updated: Jun 5, 2026

ARCTIC AI PTE. LTD., a company incorporated in Singapore ("RouterHub", "we", "us", or "our") respects your privacy and is committed to protecting it through our compliance with this Privacy Policy. This Privacy Policy describes our policies regarding the collection, use, and disclosure of personal data and the choices you have associated with that information. Capitalized terms used but not defined in this Privacy Policy have the meaning given to them in our Terms of Service.

This Privacy Policy applies to all personal data collected through any written, electronic, or oral communications, as you:

Access the website located at https://routerhub.ai/ and all corresponding webpages and websites that link to this Privacy Policy (the "Site");

Interact with applications on third-party websites and services, if those applications include links to this Privacy Policy;

Utilize our API services and platform (the "Service").

Before using our Site and Service, please carefully read our Terms of Service and this Privacy Policy. By using this Site or Service, you consent to the collection and use of your personal data in accordance with this Privacy Policy and our Terms of Service. If you do not feel comfortable with any part of this Privacy Policy or our Terms of Service, you should not use or access our Site or Service.

We may update this Privacy Policy from time to time. For any changes that materially modify the Customer’s rights or obligations, including material changes to how we collect, use, or disclose personal data or changes that materially impact privacy rights, we will provide thirty (30) days’ advance notice via email or in-product notification. We may also post the updated Privacy Policy on our Site, and the "Last Updated" date at the top of this Privacy Policy indicates when it was last revised. Your continued use of the Site or Service following receipt of notice constitutes consent to the changes. If you do not agree, you must stop using the Site and Service.

1. Our Core Data Principle: Pass-Through Architecture

RouterHub is designed as a transparent pass-through routing platform. We route your AI inference requests directly to upstream model providers (such as Azure OpenAI, AWS Bedrock, Google Cloud Vertex AI, and others) and stream the responses back to you in real time. Our core data commitments are:

No Storage of Prompts or Completions. We do not store, log, cache, or persistently retain the content of your API Inputs (prompts) or Outputs (completions). All inference requests pass through our systems transiently in memory and are not written to any persistent storage.

No Training on Customer Data. We will never use your Inputs, Outputs, Derived Feature Metadata, or any other customer content to train, fine-tune, or improve any AI or machine learning models, whether our own or any third party's.

Billing and Derived Feature Metadata Only — De-identified or Aggregated. The only data we retain from API transactions is (a) metadata strictly necessary for billing and usage accounting, including token counts, model identifiers, timestamps, and request status codes, and (b) non-content Derived Feature Metadata described in Section 2.3. Billing metadata and Derived Feature Metadata are stored in de-identified or aggregated form, or at the Customer/account level where necessary for account administration, security, abuse prevention, Customer-requested analytics, or reporting, and cannot be used to reconstruct the content of any specific request.

Transient In-Memory Processing. During routing, request and response data exists only in volatile memory for the minimum duration required to complete the API call and to generate non-content Derived Feature Metadata described in Section 2.3. Once the response is delivered to you and any transient classification step is complete, no API content remains on our infrastructure.

We do not control, and are not responsible for, upstream AI model providers' handling of your Inputs or Outputs, including any use for model training. To understand how your Inputs are used by specific AI models, please check the terms and privacy policies of the applicable upstream providers.

2. Collection of Personal Data

We collect personal data when you use our Site and our Service. Personal data is any information that relates to you, identifies you personally, or could be used to identify you, including but not limited to: your name, mailing address, email address, and telephone number.

2.1 Personal Data You Voluntarily Provide to Us

The personal data we collect from you may include:

Information that you provide by filling in forms on our Site or Service, including information provided at the time of registering and creating an account, such as your name, company name, email address, and contact details.

Billing and payment information, including credit card or other payment details, processed through our third-party payment service providers.

Records and copies of your correspondence (including email addresses), if you contact us.

Your responses to surveys that we might ask you to complete for internal purposes.

Details of transactions you carry out through our Site, including credits purchases and usage records.

2.2 Billing and Usage Metadata

For each API transaction processed through our Service, we collect and retain the following billing metadata in de-identified form for billing and usage accounting purposes:

Timestamps of API requests.

Model identifiers (which AI model was called).

Token counts (input tokens and output tokens).

Request status codes (success, error, timeout).

We expressly do not retain the content of prompts or completions, or any content-bearing fields derived from prompts or completions.

2.3 Derived Feature Metadata and Input Categorization

RouterHub may process API Inputs transiently in volatile memory to generate non-content metadata about API requests ("Derived Feature Metadata") for internal analytics, service reliability, routing optimization, abuse prevention, billing/account administration, Customer-requested reporting, and product planning. Derived Feature Metadata may include task category, category source, language, prompt length bucket, boolean indicators of whether a request appears to contain code, mathematical notation, or URLs, turn number, categorizer version, and Customer-provided tags or headers such as X-Task-Category or X-Tenant-Tag.

Derived Feature Metadata does not include raw prompts, completions, reversible hashes, embeddings or vectors intended to reconstruct content, or content-bearing fields. We do not retain API Inputs or Outputs to generate this metadata.

Customers are responsible for values they provide in custom headers or tags and should not include personal data, sensitive data, confidential content, or raw prompt/completion content in those values unless legally permitted and appropriate under their agreements with us.

2.4 Personal Data Collected Automatically

As you navigate through and interact with our Site or Service, we may use automatic data collection technologies to collect certain information about your device, browsing actions, and patterns, including:

Details of your visits to our Site, including traffic data, location data, log files, pages you view, and other communication data and resources that you access and use on the Site.

Information about your computer and internet connection, including your IP address, operating system and browser type, time zone setting, and other unique personal or online identifiers.

Information about your preferences to make your use of the Site more productive, via the use of Cookies.

2.5 Cookies and Other Tracking Technologies

We may use cookies, embedded scripts, and other similar tracking technologies ("Tracking Technologies") to collect additional personal data automatically as you interact with the Site and to personalize your experience. These technologies help us recognize you, customize or personalize your experience, and analyze the use of our Service.

The following types of cookies are used on our Site:

Strictly Necessary Cookies. These cookies are essential to enable you to use our Site. For example, they allow you to access secure areas. This category of cookies cannot be disabled.

Functional or Preference Cookies. We use functional cookies to remember your choices and provide you with enhanced features and personalized content. While these cookies can be disabled, this may result in reduced functionality.

Performance or Analytic Cookies. These cookies collect passive information about how you use our Site, including pages visited and links clicked. We use this information to improve and optimize our Site and Services. You may choose to disable these cookies.

Your browser may provide you with the option to refuse some or all browser cookies. You can find more information about how to change your browser cookie settings at https://www.allaboutcookies.org/.

2.6 Analytics

We may use third-party analytics services (such as Google Analytics) to monitor and analyze the use of our Site. Google Analytics is a web analytics service offered by Google LLC that tracks and reports Site traffic. For more information on Google's privacy practices, please visit: https://policies.google.com/privacy. You may opt out of Google Analytics by installing the Google Analytics Opt-out Browser Add-on, available at: https://tools.google.com/dlpage/gaoptout.

3. How We Use Your Personal Data

We will only use your personal data as described in this Privacy Policy or as disclosed to you prior to such processing taking place. The purposes for which we may use your personal data include:

Providing the Service, including routing API requests and streaming responses.

Managing your account and providing customer support.

Calculating usage charges, generating invoices, and processing payments.

Generating and using non-content Derived Feature Metadata for internal analytics, service reliability, routing optimization, abuse prevention, billing/account administration, product planning, and Customer-requested reporting, without retaining API Inputs or Outputs.

Providing you with notices about your account, including billing alerts and service updates.

Notifying you about changes to our Site, our policies, terms, or any products or services we offer.

Sending you marketing and promotional emails (with your consent; you may opt out at any time).

Responding to your questions or other requests.

Preparing aggregate, statistical information from Site usage, account activity, retained billing metadata, and non-content Derived Feature Metadata as permitted by this Privacy Policy and the Terms of Service, using de-identified or aggregated data only.

Determining which non-content Site and account features users like best to help us operate, enhance, and improve our Service.

Keeping you secure and safe while using our Site, including processing your personal data to combat spam, malware, malicious activities, or security risks.

Maintaining legal and regulatory compliance.

Enforcing compliance with our Terms of Service and other policies.

Investigating and preventing fraud, abuse, and violations of our Terms of Service.

Protecting you, others, and our business.

3.1 Aggregated and De-identified Information

We may process personal data in an aggregated or de-identified form only as consistent with the data-retention limits above and the Terms of Service, including:

Preparing aggregated, de-identified usage summaries from retained billing metadata and Derived Feature Metadata (e.g., model identifiers, token volume trends, timestamps, request status code patterns, task categories, language, length buckets, boolean content-shape indicators, and categorizer version) for billing reconciliation, account administration, service reliability, routing optimization, and product planning. This analysis never involves the retained content of your API requests or responses.

Sharing aggregated, de-identified statistics about Site usage, account activity, retained billing metadata, or Derived Feature Metadata with our affiliates, subsidiaries, partners, and service providers for internal business purposes, subject to the data-retention limits in this Privacy Policy and the Terms of Service. We do not publicly disclose Customer-specific API transaction metrics or Derived Feature Metadata unless the Customer has agreed otherwise.

4. How We Share and Disclose Your Personal Data

We may share or disclose your personal data only in the following limited circumstances:

Upstream AI Model Providers. When you make an API request through RouterHub, the content of your request is transmitted to the selected upstream provider in real time. RouterHub does not retain a copy of this content. Each upstream provider's handling of your data is governed by their own terms of service and privacy policies. We encourage you to review the applicable provider's data policies.

Payment Processors. We share necessary billing information with our third-party payment processors to facilitate transactions. These processors are contractually bound to use your data only for payment processing purposes.

Service Providers. We may employ other companies and individuals to facilitate our Site and Service, provide the Service on our behalf, or assist us in analyzing how our Site and Service are used. These Service Providers have access to your personal data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.

Affiliates and Corporate Partners. We may share your personal data with our subsidiaries, affiliates, and partners.

Corporate Transactions. To a buyer or other successor in the event of a merger, divestiture, restructuring, reorganization, dissolution, or sale or transfer of some or all of our assets, in which personal data held by us is among the assets transferred.

Analytics. We may share aggregated, de-identified information about Site usage, account activity, retained billing metadata, or Derived Feature Metadata with our affiliates, subsidiaries, partners, and service providers for internal analytics, subject to the data-retention limits in this Privacy Policy and the Terms of Service. We do not publicly disclose Customer-specific API transaction metrics or Derived Feature Metadata unless the Customer has agreed otherwise.

Consent. We may disclose your personal data for any purpose with your consent.

As Required by Law. We may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements. We will preserve and disclose information to law enforcement agencies or others if required to do so by law or in the good-faith belief that such disclosure is reasonably necessary to: (a) comply with legal or regulatory process; (b) enforce our Terms of Service and other policies; (c) respond to claims that any content violates the rights of third parties; or (d) protect the rights, property, or personal safety of RouterHub, its employees, its users, its clients, and the public.

We do not sell your personal data. We do not share your personal data with third parties for their own direct marketing purposes.

5. Upstream AI Model Provider Data Policies

RouterHub aggregates AI inference services from multiple cloud providers. When your API request is routed to an upstream provider, that provider's own data handling policies apply to the processing of your request content. RouterHub selects enterprise-grade provider configurations that generally include no use of customer data for model training, zero or minimal data retention for inference requests, and encryption in transit and at rest.

However, RouterHub does not control and cannot guarantee the data practices of upstream providers. We recommend that customers review the terms and data processing agreements of providers including but not limited to: Microsoft Azure / Azure OpenAI Service, Amazon Web Services / AWS Bedrock, Google Cloud Platform / Vertex AI, and other providers as may be added to our platform.

Where possible, we route requests through provider configurations that offer zero data retention (ZDR) policies. Customers who have specific data residency or retention requirements should contact us at privacy@routerhub.ai to discuss available routing options.

6. Data Security

We implement and maintain physical, technical, and administrative security measures designed to protect your data from accidental loss and from unauthorized access, use, alteration, and disclosure. These measures include:

Encryption. All data transmitted between your systems and RouterHub, and between RouterHub and upstream providers, is encrypted in transit using TLS 1.2 or higher. Stored billing and account data is encrypted at rest.

Access Controls. Access to customer data is restricted to authorized personnel on a need-to-know basis, with multi-factor authentication and role-based access controls.

Infrastructure Security. Our infrastructure is hosted on enterprise-grade cloud platforms with industry-standard security certifications, network isolation, and continuous monitoring.

De-identification of Billing Data and Derived Feature Metadata. Billing metadata and Derived Feature Metadata are stored in de-identified or aggregated form, with content-bearing fields stripped before persistence. They cannot be used to reconstruct request content.

The safety and security of your information also depends on you. Where we have given you (or where you have chosen) a password for access to certain parts of our Site, you are responsible for keeping this password confidential. You should not share your password with anyone.

Unfortunately, the transmission of information via the internet is not completely secure. Although we do our best to protect your personal data, we cannot guarantee the security of your personal data transmitted to our Site. Any transmission of personal data is at your own risk. We are not responsible for circumvention of any privacy settings or security measures contained on the Site.

7. Data Retention

API Content (Prompts and Completions): Not retained. API content exists only in volatile memory during real-time processing and is not persisted to any storage system.

Billing Metadata: Retained in de-identified form for the minimum period required by applicable tax and accounting regulations (typically 5–7 years from the date of transaction), or as otherwise required by law.

Derived Feature Metadata: Retained in de-identified or aggregated form, or at the Customer/account level where necessary for account administration, reporting, security, abuse prevention, or Customer-requested analytics, for no longer than twelve (12) months unless a longer period is required by law, necessary to resolve disputes or enforce agreements, or requested by the Customer under an applicable agreement. Derived Feature Metadata does not include API Inputs, Outputs, prompt or completion text, reversible hashes, embeddings, or content-bearing fields.

Account Information: Retained for the duration of your active account and for a reasonable period thereafter to comply with legal obligations, resolve disputes, and enforce our agreements.

Server Access Logs: Security and debugging logs for the Site and Service, excluding API Inputs and Outputs, are retained for a maximum of 90 days for security monitoring and debugging purposes, after which they are automatically purged.

When personal data is no longer required, we and our service providers will perform the necessary procedures for destroying, deleting, erasing, or converting it into an anonymous form as permitted or required by applicable laws.

8. Your Rights and Choices

8.1 Marketing Communications

If you do not wish to receive promotional or marketing communications from us, you can opt out by sending an email to privacy@routerhub.ai or by following the "unsubscribe" instructions included in such messages. This opt-out does not apply to transactional or Service-related communications.

8.2 Keeping Your Personal Data Accurate and Deletion

You can review and change your personal data by logging into the Site and visiting your account profile page. You may also send us an email at privacy@routerhub.ai to request access to, or to correct, any personal data that you have provided to us.

If you no longer wish to use our Service, or no longer wish to have your personal data be processed, you may request to delete your account and the information in your account by emailing us at privacy@routerhub.ai. When your account is deleted, all associated personal data is deleted, unless we are required to maintain it for regulatory and compliance purposes or for a legal or business necessity.

8.3 Rights Regarding Your Personal Data

Depending on where you live and the laws that apply in your jurisdiction, you may have certain rights regarding your personal data. While we strive to comply with all applicable laws, we may decline a request if we have a lawful reason for doing so. To exercise your rights, you or your authorized agent may submit a request by email at privacy@routerhub.ai. We may request additional information to verify your identity before processing your request.

Right to Know. You have the right to know what personal data RouterHub processes about you, including categories, sources, purposes, and third-party disclosures.

Access and Data Portability. You have the right to request a copy of the personal data we process about you, subject to certain exceptions. You may also have the right to export your information.

Deletion. You have the right to request that we delete personal data we have collected from you, subject to certain exceptions.

Correction. You have the right to request that we correct inaccurate personal data we have retained about you.

Objection. You have the right to object to processing of your personal data, subject to certain exceptions.

Restriction. You have the right to restrict our processing of personal data in certain circumstances.

Withdrawal of Consent. Where our processing is based on your consent, you have the right to withdraw consent at any time, without affecting the lawfulness of processing based on consent provided before your withdrawal.

Non-Discrimination. We will not discriminate against you for exercising any of your privacy rights.

Sale of Personal Data. We do not "sell" your personal data as that term is defined by applicable laws and regulations.

9. Integration of Third-Party Platforms and Services

The Site may be linked to, rely on, and be integrated with websites, applications, interfaces, services, and platforms operated by other companies, including upstream AI model providers and third-party services. We are not responsible for the privacy practices of such third parties. Once you leave this Site via a link or access a third-party service, you should check applicable privacy policies to determine how related companies process personal data they may collect about you. This Privacy Policy applies solely to information collected by RouterHub.

10. Eligibility

Our Service is intended for business and enterprise use. This Site is offered and available to users who are 18 years of age or older and who have the legal capacity to form a binding contract. By using the Site, you represent and warrant that you meet these requirements. If you do not meet these requirements, you must not access or use our Site or Service.

11. International Data Transfers

RouterHub is operated by ARCTIC AI PTE. LTD., a Singapore-based company. Your personal data may be transferred to our servers in Singapore or other countries where our upstream providers and infrastructure are located.

When information is transferred outside the European Economic Area ("EEA") or the United Kingdom, we ensure it benefits from adequate legal protection by relying on: (1) adequacy decisions from the European Commission under Article 45 of the GDPR; and/or (2) standard contractual clauses approved by the European Commission under Article 46 of the GDPR.

By using our Service, you acknowledge and consent to the transfer and processing of your personal data in these jurisdictions. We ensure that appropriate safeguards are in place to protect your data in accordance with this Privacy Policy and applicable law.

12. Governing Law

This Privacy Policy is governed by the laws of Singapore, without regard to conflict of law principles. Except where applicable data protection laws provide non-waivable rights, complaint mechanisms, or regulatory remedies, any dispute arising out of or relating to this Privacy Policy is subject to the dispute resolution provisions in the Terms of Service, including binding arbitration administered by the Singapore International Arbitration Centre (SIAC) in Singapore.

13. Additional U.S. State Disclosures and Legal Bases for Processing Under the GDPR

The GDPR and certain U.S. state privacy laws (including the California Consumer Privacy Act / California Privacy Rights Act, and similar laws in other states) require specific disclosures. The information below provides additional details about the categories of personal data we collect and how we use and disclose that information.

13.1 Categories of Personal Data

We collect the following categories of information, as described above:

Identifiers, such as your name, company name, contact details, IP address, and other device identifiers.

Commercial information, such as your transaction and billing history.

Network activity information, such as how you interact with our Service, including pages viewed and links clicked.

Inferences and non-content derived feature information, such as task categories, category source, language, length buckets, boolean content-shape indicators, turn number, categorizer version, and Customer-provided task or tenant tags.

Communication information, such as your contact information when you send us email.

Geolocation data, such as the general area from which your device accesses our Service based on your IP address.

Your account credentials.

13.2 Use of Personal Data

We use this information for the following purposes, as described above:

Provide, analyze, and maintain our Service. Legal basis: performance of a contract with you.

Generate and analyze non-content Derived Feature Metadata and prepare aggregated billing, account, reliability, routing, and product-planning reports, without retaining API Inputs or Outputs. Legal basis: legitimate interest and performance of a contract.

Communicate with you, including to send you information about our Service and events. Legal basis: your consent.

Prevent fraud, illegal activity, or misuses of our Service, and protect the security of our systems. Legal basis: legitimate interest and legal obligation.

Comply with legal obligations and protect rights, privacy, safety, or property. Legal basis: legitimate interest and legal obligation.

13.3 Disclosure of Personal Data

We may disclose this information in the following circumstances, as described above:

Upstream AI model providers, to process your API requests.

Vendors, service providers, and affiliates, to process in accordance with our instructions.

Payment processors, to facilitate billing transactions.

Government authorities or other third parties, for the legal reasons described above.

Parties involved in corporate transactions.

13.4 California Residents (CCPA/CPRA)

If you are a California resident, you may have additional rights including the right to know, the right to delete, the right to correct, the right to opt out of the sale or sharing of personal information, and the right to non-discrimination. We do not sell or share your personal information as defined under the CCPA/CPRA. To exercise any of these rights, please contact us at privacy@routerhub.ai.

13.5 Data Processing Agreement

Enterprise customers who require a Data Processing Agreement (DPA) in compliance with the GDPR or other applicable data protection regulations may request one by contacting us at legal@routerhub.ai.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. For any changes that materially modify the Customer’s rights or obligations, including material changes to how we collect, use, or disclose personal data or changes that materially impact privacy rights, we will provide thirty (30) days’ advance notice via email or in-product notification. We may also post the updated Privacy Policy on our Site, and the "Last Updated" date at the top of this Privacy Policy indicates when it was last revised. Your continued use of the Service following receipt of notice constitutes consent to the changes. If you do not agree, you must stop using the Service.

15. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

ARCTIC AI PTE. LTD.

Country of Incorporation: Singapore

Email: privacy@routerhub.ai

Website: https://routerhub.ai/

For data protection or privacy-specific inquiries, you may also contact our Data Protection Officer at: dpo@routerhub.ai.