PRIVACY POLICY

MagicAPI Inc (doing business as "Noveum.ai", "API.market", "BridgeML" or "we" or "us" or "our") respects the privacy of everyone ("Sites' visitor" "user" or "you") that uses our website at https://api.market, as well as other device or online applications related or connected thereto (collectively, the "Sites").

The following Privacy Notice ("Privacy Notice") is designed to inform you, as a user of the Sites, about the types of personal information that we may gather about or collect from you in connection with your use of the Sites. It also is intended to explain the conditions under which we use and disclose that personal information, and your rights in relation to that personal information.

The Sites are hosted in the United States and are subject to U.S. state and federal law. If you are accessing our Sites from other jurisdictions, please be advised that you are transferring your personal information to us in the United States, and by using our Sites, you are agreeing to that transfer and use of your personal information in accordance with this Privacy Notice. You also agree to abide to the applicable laws of the State of California and U.S. federal law concerning your use of the Sites and your agreements with us. If your use of the Sites would be unlawful in your jurisdiction, please do not use the Sites.

Company Information

MagicAPI Inc (dba Noveum.ai)
548 Market St PMB 49761
San Francisco, CA 94104-5401
Email: [email protected] or [email protected]
Phone: +1 (415) 792-0933

Noveum.ai gathers personal information from users of the Sites. When you browse our Sites, subscribe to our services or contact us through various social or web forms you are voluntarily sharing personal information with us. This personal information also includes various data that we collect automatically. This may be the user's Internet Protocol (IP) address, operating system, browser type and the locations of the Sites the user views right before arriving at, while navigating and immediately after leaving the Sites. It may also include various technical aspects of user's computer or browser and users browsing habits that are collected through cookies. Noveum.ai may analyze various mentioned personal information gathered from or about users to help Noveum.ai better understand how the Sites are used and how to make them better. By identifying patterns and trends in usage, Noveum.ai is able to better design the Sites to improve users' experiences, both in terms of content and ease of use. From time to time, Noveum.ai may also release the anonymized information gathered from the users in the aggregate, such as by publishing a report on trends in the usage of the Sites.

When we believe disclosure is appropriate, we may disclose your information to help investigate, prevent or take other action regarding illegal activity, suspected fraud or other wrongdoing; to protect and defend the rights, property or safety of Noveum.ai, our users, our employees or others; to comply with applicable law or cooperate with law enforcement; to enforce our Terms of Use or other agreements or policies, in response to a subpoena or similar investigative demand, a court order or a request for cooperation from a law enforcement or other government agency; to establish or exercise our legal rights; to defend against legal claims; or as otherwise required by law. In such cases, we may raise or waive any legal objection or right available to us. We will notify you if permitted before undertaking such disclosures.

Noveum.ai reserves the right to transfer all information in its possession to a successor organization in the event of a merger, acquisition, bankruptcy or other sale of all or a portion of Noveum.ai's assets. Other than to the extent ordered by a bankruptcy or other court, the use and disclosure of all transferred information will be subject to this Privacy Notice, or to a new privacy notice if you are given notice of that new privacy notice and are given an opportunity to affirmatively opt-out of it.

We Do Not Sell Your Data

Noveum.ai does not sell, rent, or trade your personal information to any third party for any purpose, including marketing, advertising, or data brokerage. We have never sold personal information and will not do so in the future. Your data is used solely to operate, improve, and secure the API.market platform and to fulfill our obligations to you.

API.market is a marketplace where some APIs are made by third-party API sellers and some AI models and APIs are made in-house. It is important to understand how your data is handled when using these services:

API Proxy Logging (All APIs)

All API calls made through API.market are routed through our proxy infrastructure. For every API call — whether to a third-party or in-house API — we log the full request and response data (including headers, bodies, and metadata such as timestamps, latency, status codes, and IP addresses). This logging is essential for billing accuracy, usage tracking, debugging, abuse prevention, and service improvement.

Request and response bodies are automatically purged after a limited retention period (typically 30 days, subject to change). After purging, we retain only metadata — including timestamps, endpoint paths, status codes, latency, request size, and billing-related information — for as long as necessary for billing, analytics, compliance, and dispute resolution.

Third-Party API Providers

When you call an API on API.market that is provided by a third-party seller, our proxy will forward your request to the third-party API provider. This means that your request data and the resulting response may also be visible to these third parties. This data may include content you submit for processing (such as images, text, or other data), your IP address, and other technical information necessary for the API to function properly.

We do not share your email address or other account information with third-party API providers unless you have explicitly requested us to do so or it is necessary for the specific functionality you have requested. Your account credentials used to access API.market remain secure with us.

In-House APIs and Services

For APIs that are managed and hosted by MagicAPI Inc (Noveum.ai), including those under the brands MagicAPI, BridgeML, and Noveum.ai, your data remains on our servers. We implement strict data protection measures and retention policies for this data:

• All user-submitted content such as images, videos, and other media processed through our in-house APIs is automatically deleted after 48 hours.
• We retain metadata including request and response logs, latency information, and usage statistics for billing, service improvement, and troubleshooting purposes.
• You may request the deletion of all your data, including logs, by contacting us at [email protected].

By signing up for an account on API.market, you are enrolling in our email service. We may send you various types of emails including:

• Transactional emails related to your account, purchases, and API usage
• Service updates and announcements
• Security notifications
• Promotional emails about new APIs, features, or special offers

You can manage your email preferences or unsubscribe from promotional emails at any time by:

• Clicking the "unsubscribe" or "manage preferences" link in any email we send
• Updating your communication preferences in your account settings
• Contacting us at [email protected]

Please note that even if you opt out of promotional emails, we will still send you important transactional emails that are necessary for the administration and use of your account.

Our account creation process includes a mandatory email verification step using a one-time password (OTP) sent to your email address. This verification process serves as explicit double opt-in consent for receiving communications from API.market. By verifying your email through the OTP process, you are confirming that you are the owner of the email address and that you consent to receiving emails from us as described above. This double opt-in approach helps us comply with email privacy regulations and ensures that you have intentionally subscribed to our communications. Your consent can be withdrawn at any time through the methods described above.

A "Cookie" is a string of information which assigns you a unique identification that a website stores on a user's computer, and that the user's browser provides to the website each time the user submits a query to the website. We use cookies on the Sites to keep track of services you have used, to record registration information regarding your login name and password, to record your user preferences, to keep you logged into the Sites and to facilitate purchase procedures. Noveum.ai also uses Cookies to track the pages that users visit during each of the Sites' sessions, both to help Noveum.ai improve users' experiences and to help Noveum.ai understand how the Sites is being used. As with other personal information gathered from users of the Sites, Noveum.ai analyzes and discloses in aggregated form information gathered using Cookies, so as to help Noveum.ai, its partners and others better understand how the Sites is being used. SITES' USERS WHO DO NOT WISH TO HAVE COOKIES PLACED ON THEIR COMPUTERS SHOULD SET THEIR BROWSERS TO REFUSE COOKIES BEFORE ACCESSING THE SITES, WITH THE UNDERSTANDING THAT CERTAIN FEATURES OF THE SITES MAY NOT FUNCTION PROPERLY WITHOUT THE AID OF COOKIES. SITES' USERS WHO REFUSE COOKIES ASSUME ALL RESPONSIBILITY FOR ANY RESULTING LOSS OF FUNCTIONALITY.

Noveum.ai currently uses the following cookies and tracking technologies on the Sites:

• Strictly Necessary Cookies: Session Cookies are essential for the operation of the website — they enable users to log in and access secure areas of the site. The website cannot function properly without these cookies. Security Cookies help enhance the security of the website and prevent unauthorized access or fraudulent activities.

• Performance and Analytics Cookies: Google Analytics cookies are used to collect information about how visitors use the website, such as the number of visitors, the source of traffic, and pages visited. Mixpanel is used for product analytics to understand user behavior, feature adoption, and improve the platform experience. Microsoft Clarity may be used for session replay and heatmap analytics to understand how users interact with the site. Sentry is used to identify and log errors for debugging purposes. CDN Cookies are essential for optimizing the delivery of static content, ensuring faster page loading times.

• Functional Cookies: Load Balancing Cookies are necessary to ensure proper distribution of traffic and maintain consistent user experiences. Cookie Consent Status tracks whether a user has accepted the use of cookies on the website to comply with relevant privacy regulations.

• Communication Tools: We use Intercom for in-app customer support chat and may use Customer.io for email communications and marketing automation. These services may place cookies or use similar technologies to identify you and provide personalized support.

General Provisions

Noveum.ai contractually prohibits its contractors, affiliates, vendors and suppliers from disclosing any personal information received from Noveum.ai, other than in accordance with this Privacy Notice. These third parties may include advertisers, providers of games, utilities, widgets and a variety of other third-party applications accessible through the Sites. Noveum.ai neither owns nor controls the third-party websites and applications accessible through the Sites. Thus, this Privacy Notice does not apply to personal information provided to or gathered by the third parties that operate them. Before visiting a third party, or using a third-party application, whether by means of a link on the Sites, directly through the Sites or otherwise, and before providing any personal information to any such third party, users should inform themselves of the privacy policies and practices (if any) of the third party responsible for those Sites or applications, and should take those steps necessary to, in those users' discretion, protect their privacy.

Analytics

We use third-party analytics vendors to help us understand how users interact with the Sites. These include Google Analytics (for web traffic analysis), Mixpanel (for product analytics and user behavior tracking), Microsoft Clarity (for session replay and heatmap analysis), and Sentry (for error tracking). The information collected may be used to analyze and track data, determine the popularity of certain content, and better understand online activity. If you do not want any personal information to be collected and used by Google Analytics, you can install an opt-out in your web browser (https://tools.google.com/dlpage/gaoptout/) and/or opt out from Google Analytics for Display Advertising or the Google Display Network by using Google's Ads Settings (www.google.com/settings/ads). You can manage your analytics preferences via the "Privacy settings" link in the footer of every page.

Social Media

We may use hyperlinks on the Sites which will redirect you to a social network if you click on the respective link. However, when you click on a social plug-in, such as Facebook's "Like" button or Twitter's "tweet" button that particular social network's plugin will be activated and your browser will directly connect to that provider's servers. If you do not use these buttons none of your data will be sent to the respective social network's plugin providers. To illustrate this further, imagine the scenario where you click on the Facebook's "Like" button on the Sites. Facebook will receive your IP address, the browser version and screen resolution, and the operating system of the device you have used to access the Sites. Settings regarding privacy protection can be found on the websites of these social networks and are not within our control.

We take the security of your personal information seriously and use reasonable electronic, personnel and physical measures to protect it from loss, theft, alteration or misuse. However, please be advised that even the best security measures cannot fully eliminate all risks. We cannot guarantee that only authorized persons will view your personal information. We are not responsible for third-party circumvention of any privacy settings or security measures.

We are dedicated to protect all personal information on the Sites as is necessary. However, you are responsible for maintaining the confidentiality of your personal information by keeping your password and computer/mobile device access confidential. If you have an account with Noveum.ai and believe someone has gained unauthorized access to it or your account please change your password as soon as possible. If you lose control of your account, you should notify us immediately.

We retain different types of data for different periods of time depending on the nature of the data and its purpose:

• Account Information: We retain your account information for as long as your account is active or as needed to provide you services. We may retain certain information even after you close your account if necessary to comply with legal obligations, resolve disputes, prevent fraud, enforce our agreements, or for other legitimate business purposes.
• API Request and Response Bodies: Full request and response bodies (including any user-submitted content such as images, text, files, and payloads) logged by our proxy are automatically purged after a limited retention period (typically 30 days). For our in-house APIs, user-submitted media content (images, videos) is deleted after 48 hours. For third-party APIs, the third-party provider's own retention policies also apply to data they receive.
• API Metadata (Retained Long-Term): After request/response bodies are purged, we retain metadata indefinitely for billing, analytics, compliance, and service improvement. This metadata includes: timestamps, API endpoint paths, HTTP status codes, response latency, request/response sizes, API key identifiers, IP addresses, and billing-related usage counts. This metadata does not contain the content of your API requests or responses.
• Communication Data: We retain records of our communications with you for customer service purposes and to document our compliance with regulatory requirements.

You can request deletion of your data at any time by contacting us at [email protected]. We will process such requests in accordance with applicable laws and our internal data retention policies.

If you reside in the European Union (EU), United Kingdom (UK), Switzerland, Norway, Lichtenstein, or Iceland, you have certain data protection rights under your local laws, including those provided by the General Data Protection Regulation (GDPR).

These rights may include:

• The right to access - You have the right to request copies of your personal data.

• The right to rectification - You have the right to request that we correct any information you believe is inaccurate. You also have the right to request that we complete information you believe is incomplete.

• The right to erasure - You have the right to request that we erase your personal data, under certain conditions.

• The right to restrict processing - You have the right to request that we restrict the processing of your personal data, under certain conditions.

• The right to object to processing - You have the right to object to our processing of your personal data, under certain conditions.

• The right to data portability - You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.

If Noveum.ai relies on your consent to process your personal information, you have the right to withdraw your consent at any time. However, please note that this will not alter the validity of the processing before its withdrawal.

For any data that is processed by third-party API providers, you may need to contact them directly to exercise your rights over data they control. We will provide information about these third parties upon request.

If you wish to exercise any of the mentioned rights please contact us by email at [email protected], or by referring to the contact details at the bottom of this Privacy Notice. Noveum.ai has 30 days to respond to your request.

If you are not satisfied with Noveum.ai's handling of your privacy concerns please note that you have the right to complain to your local data protection supervisory authority.

List of EU supervisory authorities: http://ec.europa.eu/justice/data-protection/bodies/authorities/index_en.htm

Switzerland supervisory authority: https://www.edoeb.admin.ch/edoeb/en/home.html.

If you have any questions or comments about your privacy rights, you may email us at [email protected].

California residents have certain rights regarding their personal information under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA) and other California privacy laws.

California Consumer Privacy Act Rights

California residents have the right to:

• Know what personal information is being collected about them
• Know whether their personal information is sold or disclosed and to whom
• Opt out of the sale of their personal information
• Access and request deletion of their personal information
• Not be discriminated against for exercising their privacy rights

Noveum.ai has not disclosed or sold any personal information to third parties for a business or commercial purpose in the preceding twelve (12) months. Noveum.ai will not sell personal information in the future belonging to Sites' visitors, users and other consumers.

If you are under 18 years of age

If you have registered account with Noveum.ai, you have the right to request the removal of unwanted personal information that you publicly post on our Sites. To request the removal of such information, please contact us using the contact information provided below. Make sure to include your account's email address and a statement that you reside in California.

"Shine the Light Law"

California Civil Code Section 1798.83, also known as the "Shine The Light" law, permits our users who are California residents to request and obtain from us, once a year and free of charge, personal information about the personal information (if any) we disclosed to third parties for direct marketing purposes in the preceding calendar year. If applicable, this personal information would include a list of the categories of the personal information that was shared and the names and addresses of all third parties with which we shared personal information in the immediately preceding calendar year. If you are a California resident and would like to make such a request, please submit your request in writing to the address listed below.

Noveum.ai's Sites and Services are intended for use only by persons who are at least eighteen (18) years of age. By accessing or using the Sites, you represent and warrant that you are at least 18 years old. We do not knowingly collect, maintain, process, or store personal information from individuals under the age of 18. Furthermore, we expressly prohibit users from utilizing our APIs, services, or platform to process, transmit, or store personal information of children under the age of 18.

Notwithstanding the foregoing, the Children's Online Privacy Protection Act ("COPPA") provides additional protections for children under 13 years of age. If we discover or have reason to believe that we have inadvertently collected personal information from a child under 13, we shall promptly: (i) delete such information from our records; and (ii) terminate any associated account. If you are a parent or legal guardian and believe your child under the age of 18 has provided us with personal information without appropriate consent, please contact us immediately at the address provided below to request deletion of such information.

Users found to be submitting, transmitting, or requesting processing of data pertaining to individuals under 18 years of age may have their accounts terminated and may be reported to appropriate regulatory authorities where required by applicable law. Noveum.ai reserves all legal rights and remedies in connection with violations of this section.

Noveum.ai is based in the United States and the information we collect is governed by U.S. law. If you are accessing the Sites from outside the United States, please be aware that information collected through the Sites may be transferred to, processed, stored, and used in the United States and other jurisdictions. Data protection laws in the United States and other jurisdictions may be different from those of your country of residence. Your use of the Sites or provision of any information therefore constitutes your consent to the transfer to and from, processing, usage, sharing, and storage of information about you in the U.S. and other jurisdictions as set out in this Privacy Notice.

For users in the European Economic Area (EEA), we comply with applicable data protection laws when transferring your personal information outside the EEA. We may transfer your personal information to countries that have been deemed to provide an adequate level of protection, or we may use specific contractual mechanisms approved by European authorities to ensure appropriate safeguards for your information.

Most web browsers and some mobile operating systems include a Do-Not-Track ("DNT") feature or setting you can activate to signal your privacy preference not to have data about your online browsing activities monitored and collected. Because there is not yet a common understanding of how to interpret the DNT signal, the Sites currently do not respond to DNT browser signals or mechanisms.

Disputes over privacy issues contained in this Privacy Notice will be governed by the law of the State of California. You also agree to abide by any limitation on damages contained in our Terms of Use, or other agreement that we have with you.

Noveum.ai may, in its sole discretion, change this Privacy Notice from time to time. Any and all changes to Noveum.ai's Privacy Notice will be reflected on this page and the date of the new version will be stated at the top of this Privacy Notice. Unless stated otherwise, our current Privacy Notice applies to all personal information that we have about you and your account. Users should regularly check this page for any changes to this Privacy Notice. Noveum.ai will always post new versions of the Privacy Notice on the Sites. However, Noveum.ai may, as determined in its discretion, decide to notify users of changes made to this Privacy Notice via email or otherwise. Accordingly, it is important that users always maintain and update their contact personal information.

If you have any questions regarding our Privacy Notice, please contact us at:

MagicAPI Inc (dba Noveum.ai)
548 Market St PMB 49761
San Francisco, CA 94104-5401
Email: [email protected] or [email protected]
Phone: +1 (415) 792-0933