This Privacy Policy explains how Reinforce42 / monkey ("we," "us," "our") collects, uses, discloses, and protects personal information when you use reinforce42.com and our API (the "Service"). We are based in Carlsbad, California, and serve customers in the United States. This Policy is designed to comply with the California Consumer Privacy Act as amended by the California Privacy Rights Act ("CCPA/CPRA") and CalOPPA.
Ad attribution. If you arrive from an ad, we store the ad platform's click identifier (e.g. gclid) in your browser's local storage and on our own server alongside your order, to measure which ads work. This is first-party only — no third-party trackers, pixels, or scripts run on this site, and we never share your identity with ad platforms.
| Category | Examples | Source |
|---|---|---|
| Account & contact | email address, API key metadata | you |
| Payment | billing tokens, last-4, transaction records (full card handled by Stripe, not us) | you, via Stripe |
| Usage & logs | requests, tokens/seconds used, model, timestamps, cost, IP address and approximate location (city/region) for security and abuse prevention | automatic |
| Inputs & Outputs | prompts, images, audio, files you submit, and the content generated for you | you / the Service |
| Device & local storage | essential browser localStorage (your API key for the portal, theme). We do not use advertising or cross-site tracking cookies. | automatic |
We do not sell your personal information and do not "share" it for cross-context behavioral advertising. We disclose personal information only to:
We process your Inputs solely to generate Outputs and provide the Service. We do not use your Inputs or Outputs to train or fine-tune models, and they are never transmitted to a third-party AI provider — all inference runs on hardware we own and operate. Inputs, Outputs, and generated media are retained transiently to deliver and, for media, to make results downloadable (currently up to 14 days), then deleted, except where we must retain records for legal, billing, or safety reasons.
We retain personal information only as long as necessary for the purposes above: account and billing records for as long as your account is active and as required by law; usage/request logs for up to 90 days; generated media for up to 14 days. We then delete or de-identify it.
We use technical and organizational safeguards including encryption in transit (HTTPS), API-key authentication, network isolation (private hardware behind localhost-bound tunnels), access controls, firewalls, and monitoring. No method of transmission or storage is 100% secure; we cannot guarantee absolute security.
If you are a California resident, you have the right to:
To exercise a right, email privacy@reinforce42.com from your account email. We will verify your request and respond within the timeframes required by law. You may use an authorized agent.
The Service is not directed to children and is intended for users 18 and older. We do not knowingly collect personal information from anyone under 18 (or under 13 in any event). If you believe a child provided us information, contact us and we will delete it.
We do not use advertising or cross-site tracking cookies and do not respond to "Do Not Track" signals differently because we do not track you across sites. See our Cookie Policy for the essential local storage we use.
We may update this Policy; the "Last updated" date will change and material changes will be posted here. Contact us at Reinforce42, Carlsbad, California — privacy@reinforce42.com.