Data Security Commitment
Mixroute Api takes user data security seriously with multiple protection measures. We’re committed to providing secure, reliable AI services.Core Security Measures
End-to-End Encryption
TLS 1.3 Encryption
All data transmission uses TLS 1.3 protocol encryption:
- End-to-end encryption from user to server
- Prevents data interception or tampering
- Latest encryption standard for strongest protection
Minimal Data Storage
Relay Platform AdvantageAs a relay platform, Mixroute Api:
- Doesn’t store request content: No saving of API request inputs/outputs
- Can’t view user data: Technical team cannot access conversation content
- Immediate deletion: Content cleared after processing
- Privacy first: Maximum user privacy protection
Limited Logging
Basic Log Scope We only log essential information for billing and troubleshooting:- Timestamps: For log analysis and debugging
- Token counts: Input and output token counts
- Model name: For billing and statistics
- Response status: Success or error states
- ❌ User input text
- ❌ AI output responses
- ❌ Conversation content
- ❌ Images or file content
- ❌ Personal identity information
Short-term Log Retention
Log Retention Period
Retention: Only 7 daysReasons:
- Data security: Reduce data breach risk
- Privacy protection: Minimal data retention
- Resource optimization: Minimize storage costs
- Compliance: Meet data protection regulations
Access Control
Strict Permission Management
Authorized Access Only- Least privilege: Only authorized personnel can access logs
- Anonymization: Log data is anonymized
- Necessity review: Access only when necessary (e.g., troubleshooting)
- Audit trail: Complete audit logs for all access
Technical Team Management
- Background checks: Thorough personnel vetting
- NDAs: Strict data confidentiality agreements
- Regular training: Data security and privacy training
- Permission rotation: Regular access review and rotation
Security Framework
Regular Security Audits
Compliance
Regulatory Commitment- Data protection laws: Strict GDPR, PIPL compliance
- Industry standards: AI service security standards
- International standards: ISO 27001 reference
- Regulatory requirements: Cooperation with authorities
Security Best Practices
User Recommendations
API Key Management
- Use environment variables for sensitive info
- Don’t hardcode Keys in code
- Rotate API Keys regularly
Sensitive Data Handling
- Avoid sensitive personal info in requests
- Use anonymized data for testing
- Handle confidential content carefully
Network Security
- Use HTTPS for API access
- Use service in secure network environments
- Keep client software updated
Platform Protections
- Multi-layer defense: Multiple security measures deployed
- Real-time monitoring: 24/7 security monitoring and threat detection
- Incident response: Complete security incident response mechanism
- Backup & recovery: Regular backups and disaster recovery drills
Transparency Commitment
Security Incident Notification
If a security event may affect user data, we commit to:- Timely notification: Within 24 hours of discovery
- Detailed explanation: Event details and scope
- Remediation: Steps taken to address the issue
- Prevention: Future prevention measures
Support
For data security questions, contact us:Technical Support
Email: support@mixroute.ioTopics:
- Data security policy
- Privacy protection measures
- Security best practices
- Security incident reporting
We continuously improve security measures to provide safer, more reliable AI services.