Search Documentation

Search for pages and headings in the documentation

Privacy Policy

Last updated: June 15, 2026

This Privacy Policy explains how LLBY LLC (“LLBY,” “we,” “us,” or “our”) collects, uses, and protects information when you use Liutong, our OpenAI-compatible API service.

Liutong is intended for organizational and business use. If you use Liutong through your employer, customer, or other organization, that organization may also control how your access is provisioned, monitored, and administered.

Information we collect

Access and account information

When access is provisioned, we may collect and store information needed to operate API access, including:

  • Team or application names.
  • API key prefixes.
  • API key descriptions provided by administrators.
  • Key status, creation time, revocation time, and last-used time.

Liutong API keys are not stored in plaintext. We store a SHA-256 hash of each key and a short prefix for display and administration.

API usage information

For service operation, abuse prevention, troubleshooting, and cost attribution, Liutong records request-level usage metadata, including:

  • Team name and internal API key identifier.
  • Model alias requested.
  • API endpoint used, such as chat completions or embeddings.
  • Prompt token count, completion token count, and total token count.
  • HTTP status code.
  • Request latency.
  • Timestamp.

Liutong’s application database does not store prompt text, embeddings input, model responses, IP addresses, user agents, or request headers as part of its request usage logs.

API request and response content

Liutong processes API request content, such as chat messages or embeddings input, to provide the service. This content is forwarded to upstream model infrastructure and providers as necessary to generate responses.

Liutong does not persist prompt text, embeddings input, or model response content in its application database. Upstream providers and infrastructure may process or log data according to their own terms, policies, and customer agreements.

Azure Marketplace provisioning information

If your organization uses Azure Marketplace or managed application provisioning, we may collect information needed to provision and rotate access, including:

  • Entra ID managed identity object ID (oid).
  • Entra tenant ID.
  • Azure resource ID.
  • Marketplace plan ID.
  • Associated Liutong API key identifier.
  • Provisioning and rotation timestamps.

Provisioning runtime logs may also include the managed identity object ID, tenant ID, plan ID, and Azure resource ID for security auditing and troubleshooting.

Communications

If you contact us for support, we collect the information you provide, such as your email address, organization, issue details, and any diagnostic information you choose to share.

How we use information

We use information to:

  • Provide, secure, monitor, and maintain Liutong.
  • Authenticate API requests and administer API keys.
  • Attribute usage and costs to teams, applications, organizations, or marketplace plans.
  • Detect, investigate, and prevent abuse, security incidents, and unauthorized access.
  • Troubleshoot service issues and improve reliability.
  • Respond to support requests.
  • Comply with legal, accounting, tax, and contractual obligations.

How we share information

We may share information:

  • With upstream model providers, cloud infrastructure providers, and service processors as needed to provide Liutong.
  • With your organization or its administrators for account administration, usage reporting, security, and billing or cost attribution.
  • When required by law, legal process, or to protect the rights, safety, and security of LLBY, our users, or others.
  • In connection with a business transaction such as a merger, acquisition, financing, or sale of assets.

We do not sell personal information.

Security

We use technical and organizational measures designed to protect Liutong and the information we process. These measures include hashed API key storage, separate administrative authentication, environment-based secret handling, and access controls around operational systems.

No method of transmission or storage is completely secure. You are responsible for protecting your API keys and for promptly notifying your administrator or LLBY if you believe a key has been exposed.

Retention

We retain information for as long as reasonably necessary to provide the service, administer accounts and keys, attribute usage and costs, maintain security, resolve disputes, and comply with legal obligations.

API keys can be revoked or rotated by administrators. Some records may remain in backups, audit logs, accounting records, or security logs for a limited period after deletion, revocation, or termination.

Your choices

Because Liutong is provided primarily through organizational enrollment, requests to access, correct, export, or delete information should generally be directed to your organization’s administrator. You may also contact us at support@llby.org.

We may need to verify your request and may refer organizational users back to the relevant account administrator where appropriate.

International processing

Liutong and its infrastructure providers may process information in the United States and other locations where we or our service providers operate. By using Liutong, you understand that information may be processed outside your country or region.

Children’s privacy

Liutong is not intended for children or for personal consumer use. Do not use Liutong if you are under the age required to enter into a binding agreement in your jurisdiction.

Changes to this policy

We may update this Privacy Policy from time to time. When we make changes, we will update the “Last updated” date above. Continued use of Liutong after an update means the updated policy applies to your use of the service.

Contact

For privacy questions or requests, contact LLBY LLC at support@llby.org.