Youyun API Privacy Policy
Last updated: July 3, 2026
Welcome to Youyun API (hereinafter referred to as "this platform" or "we"). This Policy explains how we collect, use, store, share, transfer, publicly disclose, and protect your personal information when providing websites, accounts, API gateway, model calls, billing, tickets, and related services through https://yycode.net.
If you do not agree with this Policy, please stop using this platform. By continuing to access, register for, or use this platform, you acknowledge that you have read and understood this Policy.
1. Scope of Application
This Policy applies to the following services:
- Website: https://yycode.net
- Console, login, registration, top-up, API Key management, call records, usage statistics, and related functions
- Supporting services such as documentation, customer support, tickets, notifications, risk control, and security audits
This Policy does not apply to third-party websites, third-party model providers, payment institutions, browser plugins, client tools, or other services not controlled by this platform. When you access or use third-party services, you should also read their privacy policies.
2. Information We Collect
To provide services, we may collect the following information:
2.1 Account and Identity Information
This includes phone number, email address, username, encrypted password digest, login status, third-party login authorization information, account role, account status, registration time, login time, invitation relationship, and real-name or enterprise verification materials (if applicable).
2.2 API and Model Call Information
This includes API Key, request time, request path, model name, group, multiplier, Token usage, billing amount, response status, error code, IP address, User-Agent, call source, concurrency status, risk-control hit records, log ID, and similar information.
Texts, images, code, files, Prompts, context, outputs, and other content you submit through APIs, the console, plugins, or clients will only be temporarily processed as necessary to complete request forwarding, model response return, and immediate error handling. Unless you actively submit related content through customer support, tickets, email, or other support channels, or laws, regulations, or regulatory requirements provide otherwise, we will not persistently store the Prompt, context, code, images, files, or model output body in customer API calls. Please do not submit personal sensitive information, trade secrets, or protected content of others that is unrelated to the purpose of use.
To protect service security and comply with laws, regulations, and upstream model service rules, this platform or upstream model providers may perform automated safety checks, sensitive-content identification, refusal responses, or interception processing on request content. Such processing is only used to determine in real time whether the request can continue to be processed or whether a result can be returned. Except for necessary call metadata, error codes, interception status, and risk-control records, we will not persistently store the Prompt, context, code, images, files, or model output body that was checked or intercepted.
2.3 Top-up, Order, and Transaction Information
This includes order number, top-up amount, payment channel, payment status, balance changes, invoice or refund application information, coupon codes, or gift quota records. Sensitive payment information such as payment accounts, bank cards, and payment passwords is usually processed directly by third-party payment institutions. We do not actively store complete payment credentials.
2.4 Device, Log, and Security Information
This includes IP address, browser type, system type, device identifier, access time, page path, Cookies, session identifier, exception logs, crash logs, network status, security verification records, and similar information.
2.5 Customer Support and Feedback Information
This includes contact information, issue descriptions, screenshots, logs, communication records, and processing results that you submit through customer support, tickets, email, or other channels.
3. How We Use Information
We use collected information for the following purposes:
- Create, verify, maintain, and protect your account
- Provide API gateway, model calls, console, documentation, statistics, top-up, and settlement functions
- Display call records, usage, balance, multipliers, prices, bills, and order status
- Handle customer support, troubleshooting, refunds, complaints, disputes, and security incidents
- Prevent fraud, abuse, attacks, illegal calls, abnormal concurrency, credential stuffing, fraudulent use, and other risks
- Send service notifications, billing notices, security reminders, system maintenance announcements, and necessary operational messages
- Improve platform stability, performance, billing accuracy, model compatibility, and user experience
- Fulfill laws and regulations, regulatory requirements, and lawful requests from judicial or administrative authorities
We do not sell your personal information.
4. Third-party Processing and Sharing
To complete services, we may provide or share relevant information with the following third parties within the necessary scope:
- Model service providers or upstream API providers: to complete model requests initiated by you, return results, perform billing, and handle errors
- Payment service providers: to complete top-ups, refunds, reconciliation, and transaction risk control
- Cloud service, CDN, storage, SMS, email, security verification, logging, and monitoring providers: to support infrastructure, security, and notification capabilities
- Professional advisors, audit institutions, dispute resolution institutions, judicial or administrative authorities: for compliance, audit, dispute resolution, or lawful cooperation
We require partners to process related information according to the principles of legality, legitimacy, necessity, and good faith, and to take reasonable security measures.
5. Cross-border Transfer Notice
Some upstream model providers, API providers, cloud infrastructure, or security services connected to this platform may be located outside your jurisdiction. To complete model calls that you actively initiate, return results, perform billing, troubleshoot, or provide security protection, we may need to transmit request content and necessary call metadata to corresponding service providers for processing.
Such transfer is only used to complete the service request you actively initiate. It does not mean we will persistently store the API call body, nor does it mean we will use your Prompt, context, code, images, files, or model output body for model training, advertising, marketing, or other unrelated purposes.
You understand and confirm that using related models or APIs means you are aware that the service may involve cross-border data transfer. You should independently evaluate whether related data is suitable to be processed through this platform and upstream model services. You should not submit state secrets, trade secrets, unauthorized personal information, personal sensitive information, data subject to confidentiality obligations, or other data that should not be transferred across borders. You are responsible for leaks, disputes, complaints, penalties, or losses caused by actively submitting the above data, failing to obtain necessary authorization, or failing to fulfill your own notification, consent, confidentiality, and compliance review obligations, unless laws and regulations provide otherwise.
6. Cookies and Similar Technologies
We use Cookies, local storage, and similar technologies to maintain login status, remember preferences, protect account security, identify abnormal access, and measure basic visits. You can manage or delete Cookies through browser settings, but disabling necessary Cookies may prevent login, console, payment, or API management functions from working properly.
For detailed rules, please see the Cookie Policy.
7. Information Retention Period
We retain your personal information only for the period necessary to achieve the purposes described in this Policy, unless laws and regulations require or allow a longer retention period.
In general:
- Account information is retained until account cancellation or for a reasonably necessary period after service termination
- Order, top-up, invoice, refund, and accounting information is retained according to financial, tax, and regulatory requirements
- API call, billing, risk-control, and security logs are retained according to business troubleshooting, security audit, dispute handling, and compliance requirements. Such logs in principle contain only necessary call metadata and do not contain the Prompt, context, or model output body from customer API calls
- Customer support and ticket records are retained for a reasonably necessary period after the issue is resolved
After the retention period expires, we will delete, anonymize, or otherwise reasonably process the information.
8. Your Rights
To the extent permitted by applicable law, you may submit the following requests to us:
- Query, copy, correct, or supplement your personal information
- Delete your personal information
- Withdraw consent
- Cancel your account
- Obtain a copy of personal information
- Restrict or refuse certain processing activities
- Request an explanation or appeal regarding automated decision-making results (if applicable)
To protect account security, we may need to verify your identity. You may submit requests through the contact information at the end of this Policy.
9. Protection of Minors
This platform is mainly intended for developers, enterprises, or professional users with full civil capacity. Minors under the age of 18 should use this platform with the consent and guidance of their guardians. If we discover that we have collected personal information from a minor without guardian consent, we will delete it or take necessary measures in accordance with law in a timely manner.
10. Information Security
We take reasonable technical and management measures to protect personal information security, including access control, permission management, encrypted transmission, log auditing, anomaly detection, backups, minimum authorization, and security incident response.
However, the internet environment cannot guarantee absolute security. You should properly safeguard your account, password, API Key, tokens, and devices, and do not disclose them to others. If you discover abnormal account or key activity, please immediately disable the related key and contact us.
11. Policy Updates
We may update this Policy due to changes in business, laws and regulations, or platform functions. Material changes will be communicated through website announcements, in-site notices, pop-ups, email, or other reasonable means. The updated Policy takes effect from the effective date stated on the page announcement or notice.
12. Contact Us
If you have any questions, complaints, or requests regarding this Policy or personal information processing, please contact us through:
- Brand: Youyun API
- Website: https://yycode.net
- Contact: [email protected]
We will process your request within the period required by laws and regulations after receiving the request and completing identity verification.