Back to Home

Privacy Policy for API Angel

Effective Date: February 26, 2026

This Privacy Policy describes how NGGM Consulting, doing business as API Angel ("We," "Us," or "Our"), collects, uses, shares, and protects your personal information when you access or use our website www.api-angel.com (the "Website") and our services (the "Service"). We are committed to protecting your privacy and complying with applicable data protection laws, including the General Data Protection Regulation (GDPR) as we are a French-based company.

By using the Website or Service, you consent to the practices described in this Privacy Policy. If you do not agree, please do not use the Website or Service.

1. Information We Collect

We collect the following types of information:

• Personal Information: When you create an account, purchase a license, or contact us, we may collect your name, email address, billing address, and payment information (processed securely via Stripe). We do not store your full payment card details.
• Usage Data: Automatically collected information such as your IP address, browser type, device information, pages visited, time spent on pages, and interactions with the Service (e.g., API usage logs for monitoring compliance).
• Other Information: Any data you voluntarily provide, such as feedback or support requests.

We do not collect sensitive personal data (e.g., racial or ethnic origin, health data) and do not use cookies, web beacons, and similar technologies.

2. How We Use Your Information

We use your information for the following purposes:

• To provide and maintain the Service, including processing payments via Stripe and granting access to licensed features.
• To communicate with you, such as sending confirmation emails, updates, newsletters, or responding to inquiries (via email or other electronic means).
• To monitor and analyze usage to improve the Service, detect fraud, and ensure compliance with our EULA (e.g., preventing illegal use).
• To comply with legal obligations, enforce our terms, or protect our rights, users, or third parties.
• For marketing purposes, with your consent, such as promoting new features (you can opt out at any time).

We process your data based on legal grounds such as your consent, contract performance (e.g., providing the Service), or legitimate interests (e.g., security).

3. Sharing Your Information (Recipients)

We may share your information with:

• Service Providers: Third parties like Stripe for payment processing, cloud hosting providers (e.g., AWS or similar, located in the EU where possible), and analytics tools (e.g., Google Analytics) to support our operations. These providers are bound by data protection agreements.
• Legal and Regulatory Authorities: If required by law, subpoena, or to respond to government requests, or to protect against harm.
• Business Transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred to the new entity.
• Affiliates: Within NGGM Consulting for internal administrative purposes.

We do not sell your personal information to third parties. For international transfers outside the EEA, we use Standard Contractual Clauses or other GDPR-approved mechanisms to ensure adequate protection.

4. Method of Communication

We primarily communicate via email for account-related matters, updates, and support. You may also receive notifications through the Service interface. For marketing communications, we obtain your explicit consent and provide an unsubscribe option in every email. If you contact us, we respond using the method you used or via email.

5. Security Measures

We implement reasonable technical, administrative, and physical security measures to protect your information from unauthorized access, loss, misuse, or alteration, including:

• Encryption of data in transit (e.g., HTTPS) and at rest where appropriate.
• Access controls, firewalls, and regular security audits.
• Secure payment processing via Stripe, which is PCI DSS compliant.
• Employee training on data protection and limited access to personal data on a need-to-know basis.

Despite these measures, no system is completely secure. We cannot guarantee absolute security but will notify you and authorities of any data breaches as required by law (e.g., within 72 hours under GDPR).

6. Your Rights

Under GDPR and other applicable laws, you have rights regarding your data, including:

• Access: Request a copy of your data.
• Rectification: Correct inaccurate data.
• Erasure: Request deletion (subject to legal obligations).
• Restriction: Limit processing in certain cases.
• Portability: Receive your data in a structured format.
• Objection: Object to processing based on legitimate interests or for marketing.
• Withdraw Consent: At any time, without affecting prior processing.

To exercise these rights, contact us at contact@api-angel.com. We respond within one month (extendable if complex). You also have the right to lodge a complaint with a supervisory authority (e.g., CNIL in France).

7. Data Retention

We retain your personal information only as long as necessary for the purposes outlined (e.g., account data for the duration of your subscription plus legal retention periods, typically 5-10 years for financial records). Usage data may be anonymized and retained indefinitely for analytics.

8. Children's Privacy

The Service is not intended for children under 18. We do not knowingly collect data from children. If we become aware of such data, we will delete it.

9. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on the Website with the updated effective date. Your continued use constitutes acceptance. For significant changes, we may notify you via email.

10. Contact Us

For questions about this Privacy Policy or your data, contact:

NGGM Consulting (API Angel)
7 RUE AUGUSTE RODIN 28630 LE COUDRAY, FRANCE
contact@api-angel.com

This Privacy Policy is governed by French law, in accordance with our EULA.