Privacy Policy
Effective date: 1 June 2026
Last reviewed by counsel: 1 June 2026
1. Who We Are
SovereignEG ("we", "us") operates an AI inference API for customers in Egypt and the broader MENA region. This policy explains how we collect, use, and protect your information.
2. Information We Collect
| Category | What | Why |
|---|---|---|
| Account information | Email, organization name, hashed password | Authentication, billing, support |
| API usage metadata | Model, token count, latency, status code, timestamp | Billing, quota enforcement, service improvement |
| Payment information | Credit balance, transaction history (EGP amounts) | Billing |
| Technical logs | IP address, request ID, user agent | Security, debugging |
What We Do NOT Collect or Store
- Prompt content — your messages to the model are processed in memory and never persisted.
- Completion content — model outputs are streamed to you and never stored.
- Training data — we do not use your inputs or outputs to train or fine-tune models.
3. How We Use Your Information
- To provide and bill for the Service
- To enforce rate limits and quotas
- To detect and prevent abuse
- To communicate service updates and security notices
4. Data Retention
| Data | Retention |
|---|---|
| Account data | Until account deletion + 30-day grace period |
| Usage metadata | 90 days (aggregated snapshots retained longer) |
| API keys | Revoked keys are soft-deleted; hard-deleted after 30 days |
| Logs | 30 days |
5. Data Location
Account records and usage metadata are stored in our application infrastructure. Standard inference requests may be routed to vetted upstream model providers as required to operate the Service; dedicated Egypt-hosted deployments are available on request for regulated workloads. See Sub-processors for current third-party services.
6. Sub-processors
See our Sub-processor List for current third-party services. We notify customers at least 30 days before adding a new sub-processor.
7. Your Rights
You may:
- Access your data via the API (
/v1/usage,/v1/credits) - Request data export by emailing support@sovereigneg.com
- Request account deletion
- Withdraw consent (by closing your account)
8. Security
See our Security & operations page for our security posture, threat model, and vulnerability reporting process.
9. Cookies
See our Cookie Policy. We use httpOnly session cookies for authentication only — no tracking or advertising cookies.
10. Changes
Material changes will be communicated via email or dashboard notice at least 30 days before taking effect.
11. Contact
Privacy questions: support@sovereigneg.com