Privacy Policy

Welcome to AnySolver. This Privacy Policy ("Policy") explains how AnySolver ("Company", "we", "us", "our") collects, uses, stores, and protects your personal information when you use our website, API, and related services (collectively, the "Service").

We are committed to protecting your privacy and handling your data in an open and transparent manner. This Policy should be read together with our Terms of Service.

By using our Service, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with our practices, please do not use the Service.

AnySolver is the data controller responsible for your personal data. We are based in Europe and our servers are located in Germany, ensuring your data is processed within the European Economic Area (EEA) and subject to strong data protection laws.

For any privacy-related inquiries, you can contact us at:

• Privacy Inquiries: [email protected]
• General Support: [email protected]

3.1. Account Information

When you create an account, we collect:

• Email address — Required for account creation, authentication, and communication
• Name — For account identification and personalization
• Profile image — Optional, if you choose to upload one or sign in via OAuth

3.2. Authentication & Session Data

To secure your account and sessions, we collect:

• IP address — For security, fraud prevention, and session management
• User agent — Browser and device information for session security
• Session tokens — Encrypted tokens to maintain your login state

3.3. API Usage Data

When you use our API, we collect:

• API keys — Identifiers you create to access our service
• Task requests — The data you submit for processing (temporarily stored)
• Task metadata — Task type, provider used, timestamps, and status
• Usage statistics — Request counts, success rates, and timing data

3.4. Payment Information

When you make deposits, we collect:

• Transaction records — Amount, currency, payment method, and timestamps
• Balance history — Credit additions, usage deductions, and refunds

We do NOT store full payment card details. Payment processing is handled by third-party payment providers who have their own privacy policies.

3.5. Communication Data

When you communicate with us, we may collect:

• Email correspondence and support requests
• Feedback and survey responses
• Newsletter subscription preferences

3.6. Automatically Collected Information

We use Cloudflare for website performance and security. Cloudflare collects anonymous, aggregated analytics data that does not personally identify you. This includes general traffic patterns, page views, and security-related metrics.

We use your personal information for the following purposes:

4.1. Service Provision

• Creating and managing your account
• Processing and routing your API requests
• Managing your balance and processing payments
• Providing customer support

4.2. Security & Fraud Prevention

• Detecting and preventing unauthorized access
• Identifying fraudulent or abusive behavior
• Enforcing our Terms of Service
• Protecting the security of our infrastructure

4.3. Communication

• Sending transactional emails (account verification, password resets, billing notifications)
• Sending service updates and important announcements
• Sending promotional content and newsletters (with your consent)
• Responding to your inquiries and support requests

4.4. Service Improvement

• Analyzing usage patterns to improve our service
• Developing new features and functionality
• Optimizing routing algorithms and provider selection

Under the General Data Protection Regulation (GDPR), we process your personal data based on the following legal grounds pursuant to Article 6(1) GDPR:

5.1. Contract Performance (Art. 6(1)(b) GDPR)

Processing necessary to fulfill our contract with you, including account management, service provision, API request routing, and payment processing.

5.2. Legitimate Interests (Art. 6(1)(f) GDPR)

Processing necessary for our legitimate business interests, where these interests do not override your fundamental rights. This includes:

• Fraud prevention and security monitoring
• Service improvement and analytics
• Ensuring stable and secure website operation via Cloudflare
• Protecting our legal rights and interests

5.3. Consent (Art. 6(1)(a) GDPR)

Processing based on your explicit consent, such as receiving marketing communications and newsletters. You can withdraw consent at any time by contacting us or using unsubscribe links in our emails. Withdrawal of consent does not affect the lawfulness of processing carried out before the withdrawal.

5.4. Legal Obligations (Art. 6(1)(c) GDPR)

Processing necessary to comply with legal obligations, such as tax reporting, responding to lawful requests from authorities, or maintaining records as required by law.

We do not sell your personal data. We share your information only in the following limited circumstances:

6.1. CAPTCHA Solving Providers

When you submit tasks through our API, the task data is forwarded to your selected third-party CAPTCHA solving provider. Each provider has their own privacy policy governing how they handle this data. We recommend reviewing the privacy policies of the providers you use.

6.2. Payment Processors

We use third-party payment processors to handle deposits. These processors receive the information necessary to complete your transaction. We do not have access to your full payment card details.

6.3. Email Service Provider

We use Resend to manage email delivery and mailing lists. Your email address and name are shared with Resend to facilitate email communications.

6.4. Infrastructure Providers

• Cloudflare — For CDN, DDoS protection, and security services
• Hosting providers — For server infrastructure (located in Germany)

6.5. AI Service Provider

Our documentation AI assistant uses OpenRouter for language model processing. Conversations with the AI assistant are processed in real-time and are not stored or logged by AnySolver.

6.6. Legal Requirements

We may disclose your information if required by law, court order, or governmental request.

We use a minimal set of cookies necessary for the operation and security of our Service:

7.1. Essential Cookies

• Authentication cookies — To maintain your logged-in session
• Security cookies — For CSRF protection and secure form submissions

7.2. Cloudflare Cookies

• Bot protection cookies — To distinguish humans from automated traffic and protect against attacks
• Performance cookies — To optimize content delivery

7.3. Web Analytics

We use Cloudflare Web Analytics, a privacy-focused analytics tool that does not use cookies and does not collect personal data. It only gathers anonymous, aggregated information such as page views, browser types, and screen resolutions to help us improve our Service. For more information, see Cloudflare's Privacy Policy.

7.4. Managing Cookies

You can control cookies through your browser settings. Most browsers allow you to block or delete cookies. However, please note that disabling essential cookies may prevent you from using certain features of our Service, such as staying logged in.

To learn how to manage cookies in your browser, consult your browser's help documentation or visit aboutcookies.org.

7.5. Do Not Track (DNT)

Some browsers offer a "Do Not Track" (DNT) feature that sends a signal to websites requesting that your browsing activity not be tracked. Since we do not engage in cross-site tracking or use advertising cookies, our practices remain the same regardless of DNT settings.

We retain your data for different periods depending on the type of information:

Account Deletion

When you request account deletion, we anonymize all personal data and sensitive information. We retain only anonymized, aggregated numerical data for analytics purposes that cannot be used to identify you.

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction:

9.1. SSL/TLS Encryption

For security reasons and to protect the transmission of confidential content, our website uses SSL/TLS encryption. You can recognize an encrypted connection by the "https://" in your browser's address bar and the lock icon. When SSL/TLS encryption is activated, data you transmit to us cannot be read by third parties.

9.2. Security Measures

• Encryption of all data in transit using TLS 1.3
• Encryption of sensitive data at rest
• Secure password hashing using industry-standard algorithms (bcrypt/argon2)
• Regular security assessments and updates
• Strict access controls and authentication for all systems
• DDoS protection and Web Application Firewall via Cloudflare
• Servers located in Germany with strong physical security measures
• Regular backups with encrypted storage

While we strive to protect your personal data using industry best practices, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security but are committed to promptly addressing any security incidents.

Under the GDPR and other applicable data protection laws, you have the following rights regarding your personal data:

10.1. Right of Access (Art. 15 GDPR)

You can request a copy of the personal data we hold about you.

10.2. Right to Rectification (Art. 16 GDPR)

You can update or correct your account information directly in your dashboard settings, or contact us for assistance.

10.3. Right to Erasure (Art. 17 GDPR)

You can request deletion of your account and personal data. To request account deletion, visit your account settings or contact us at [email protected].

10.4. Right to Restrict Processing (Art. 18 GDPR)

You can request that we limit how we use your data in certain circumstances.

10.5. Right to Data Portability (Art. 20 GDPR)

You can request your data in a structured, machine-readable format by contacting us.

10.6. Right to Object (Art. 21 GDPR)

You can object to processing based on legitimate interests or for direct marketing purposes at any time.

10.7. Right to Withdraw Consent

Where processing is based on consent, you can withdraw consent at any time without affecting the lawfulness of prior processing.

10.8. Right to Lodge a Complaint (Art. 77 GDPR)

You have the right to lodge a complaint with a supervisory authority, in particular in the EU Member State of your habitual residence, place of work, or place of the alleged infringement. A list of EU data protection authorities and their contact details can be found at edpb.europa.eu.

Our primary servers are located in Germany, within the European Economic Area (EEA). Your personal data is primarily processed within the EEA, which provides strong data protection under the GDPR.

11.1. Transfers Outside the EEA

Some of our service providers (such as email delivery, AI services) may process data outside the EEA, including in the United States. When data is transferred outside the EEA, we ensure appropriate safeguards are in place pursuant to Chapter V of the GDPR:

• Standard Contractual Clauses (SCCs) — EU Commission-approved contractual protections for international transfers
• Adequacy decisions — Transfers to countries the EU has determined provide adequate data protection
• Other approved mechanisms — Such as binding corporate rules where applicable

11.2. Third-Party Provider Locations

Third-party CAPTCHA solving providers you choose to use may be located in various jurisdictions worldwide. By selecting a provider, you acknowledge that your task data will be processed according to that provider's location and their own privacy policies. We recommend reviewing the privacy policies of the providers you use.

Our Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children under 18. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at [email protected].

If we discover that we have collected personal information from a child under 18, we will take steps to delete that information as quickly as possible.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or for other operational reasons.

When we make changes, we will update the "Last Updated" date at the top of this page. For significant changes, we may provide additional notice, such as an email notification or a prominent notice on our website.

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your data. Your continued use of the Service after any changes indicates your acceptance of the updated Policy.

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

• Privacy Inquiries: [email protected]
• General Support: [email protected]
• Legal Inquiries: [email protected]

Response Timeframes

We commit to the following response times for privacy-related inquiries:

• Initial acknowledgment: Within 7 business days
• Substantive response: Within 30 days (as required by GDPR)
• Complex requests: Up to 60 days with prior notification if additional time is needed