Privacy Policy
Last updated: April 2026
This Privacy Policy describes how AgentShare (agentshare.dev) collects, uses, and protects information when you use our DeFi and commerce API, MCP endpoints, website, and related services. We are committed to transparency about our data practices.
1. Information We Collect
We collect the following categories of information:
- Account information: Name and email address when you register or request an API key.
- Technical data: IP address, User-Agent string (truncated), and request metadata for abuse prevention and service monitoring.
- API usage logs: Endpoint called, HTTP method, query parameters (e.g., search keywords), response status, and response time. We use these to enforce rate limits, prevent abuse, and improve service quality.
- API keys: When you create an API key, we store a hashed version for authentication. We do not store or log the raw key value. API keys are required for AI agents and integrations to access our endpoints.
- Payment information: When you pay via PayPal, we receive transaction identifiers and payment status. We do not store credit card numbers or full payment credentials. PayPal handles all payment processing; card data never passes through our servers.
- Cookies and similar technologies: We use cookies for session management (e.g., admin login), analytics, and to support AI agent workflows. See Section 5 for details.
2. How We Collect Information
Information is collected through:
- Registration forms: When you sign up or request an API key.
- Server logs: Automatically when you access our website or API.
- Cookies: Stored in your browser when you visit our site.
- Third-party services: Google Analytics (if enabled) for usage trends; OpenAI API when our systems use AI-powered features (e.g., ScrapeGraphAI or similar tools) for data processing.
3. Purpose of Use
We use your information to:
- Provide and manage your API account and access.
- Process payments and manage subscriptions.
- Improve data quality, service reliability, and user experience.
- Analyze usage trends and optimize our infrastructure.
- Enforce rate limits and prevent abuse or unauthorized access.
- Comply with legal obligations.
4. Sharing of Information
We may share information with:
- Payment processors (PayPal, VNPay): To process transactions. They have their own privacy policies.
- AI/ML providers (e.g., OpenAI): When our systems use AI tools for data processing or improvement. Data shared is limited to what is necessary for the service.
- Legal authorities: When required by law, court order, or to protect our rights and safety.
We do not sell, rent, or share your personal data with third parties for marketing purposes.
5. Cookies and AI Agents
We use the following types of cookies:
- Session cookies: Required for admin login and dashboard. They expire when you close your browser.
- Analytics cookies: To understand how visitors use our site (e.g., page views, referral sources). You can opt out via your browser settings or analytics opt-out tools.
- Preference cookies: To remember your settings (e.g., language, theme) when applicable.
API Key and AI Agents: Our API is designed for AI agents and automation. When an AI agent calls our API, it sends an API key in the X-API-Key header. We authenticate the key and log request metadata (endpoint, status, timing) for monitoring and abuse prevention. We do not log or store the raw API key. AI agents may also receive cookies or session tokens when interacting with our web interface; these follow the same retention and security practices as other cookies.
Managing cookies: You can disable or delete cookies via your browser settings. Note that disabling session cookies may prevent you from using the admin dashboard.
Google Analytics 4 (GA4)
We use Google Analytics 4 on agentshare.dev to understand aggregated traffic: pages viewed, session duration, device category, and coarse geographic location (for example country or city where GA reports it). We use this information to improve the service and to identify patterns consistent with automated or abusive access so we can protect infrastructure and quality of service for human users and legitimate agents.
- Behavioral signals: We may record custom events such as very short sessions without engagement, or traffic with characteristics that suggest non-human clients. These signals are aggregated and are not used to “name” individuals.
- Data minimization: We configure GA4 retention to the shortest practical period (target: 2 months) where product settings allow. Google’s own retention and processing apply in addition; see Google’s documentation.
- No sale of personal data: We do not sell analytics data. Google processes data as a service provider under its terms.
6. Affiliate Disclosure
AgentShare is an affiliate partner of Amazon, eBay, AliExpress, and other programmes we operate under (e.g. Accesstrade partner links where applicable). Product URLs in our API responses may include affiliate tracking links. When users make purchases through these links, we may receive a commission. This does not affect the price you pay. Our affiliate relationships do not influence the order or ranking of results. For more details, see our Terms of Service.
7. Data Retention
We retain:
- Account data for as long as your account is active.
- API request logs for operational and analytics purposes (typically up to 90 days, unless required for legal or security reasons).
- Google Analytics data according to the retention settings above (we aim for about 2 months in GA4 where configurable).
- Payment records as required for accounting and tax compliance.
You may request deletion of your data by contacting us.
8. Your Rights
You have the right to:
- Access: Request a copy of the personal data we hold about you.
- Correction: Request correction of inaccurate or incomplete data.
- Deletion: Request deletion of your personal data, subject to legal retention requirements.
- Opt-out: Opt out of marketing communications (if any) and limit analytics cookies.
To exercise these rights, contact us at [email protected]. We will respond within a reasonable timeframe.
9. Security
We use industry-standard practices to protect your data: API keys are hashed and never stored in plain text; request logs exclude sensitive headers; and we use HTTPS for all communications. You are responsible for keeping your API key secure and not sharing it with unauthorized parties.
10. Third-Party Data Sources
Our API aggregates data from Meteora and other DeFi upstreams (pool metrics, public on-chain/market APIs) for primary DeFi routes, and product/price data from AliExpress (official integration), Accesstrade and partner feeds where configured for commerce routes. When you use commerce search, your queries may be forwarded to these partners to fetch results. Please refer to their respective privacy policies for how they handle data.
11. Changes to This Policy
We may update this Privacy Policy from time to time. The "Last updated" date at the top reflects the most recent revision. Material changes will be communicated via email (if provided) or by posting a notice on our website. Continued use of our services after changes constitutes acceptance of the updated policy.
12. Contact
For privacy-related inquiries:
- Email: [email protected]
- Contact page: Contact
✨ MCP-ready