Last updated: February 10, 2026
1. Scope
This policy explains how APIPlotter handles information when you use the website and testing features.
2. Data you submit
If you submit feedback, we store your submitted name, comment, timestamp, and request IP address in a server text log so testers and operators can review product feedback.
3. API data handling
APIPlotter does not persist your API response payloads in backend storage. The app fetches your API JSON to render charts for your session and displays chart results in your browser.
4. Session settings
Endpoint settings and authentication values entered in the app are session-scoped for testing and are cleared for new public sessions.
5. Cookies
We use an essential session cookie (`apiplotter_sid`) required to run core functionality. We currently do not use advertising cookies.
6. Security
We apply standard web security controls (including HTTPS and header protections) and access controls appropriate for a public testing service.
7. Retention
Feedback log entries are retained until removed by the service operator. Session-scoped app configuration is temporary.
8. Third-party APIs
When you configure an endpoint, requests are sent to the third-party API you selected. Their privacy and security practices are governed by their own policies.
9. Contact
For privacy questions, contact the APIPlotter operator through the in-app feedback channel.