Irrapporta Bug / Feature Talba

Security | Free.ai

How we protect your data. Encryption, privacy, and security practices.

Encryption fi tranżitu

It-traffiku kollu bejn il-browser tiegħek u Free.ai huwa kriptat b'HTTPS (TLS 1.2+). It-talbiet tal-API lis-server tal-inferenza tal-GPU tagħna huma wkoll kriptati minn tarf sa tarf.

Id-Data tiegħek ma tintużax għat-Taħriġ

Aħna ma nużawx l-inputs, l-outputs jew il-fajls imtellgħin tiegħek biex inħarrġu mudelli tal-AI & mdash; qatt & mdash; sakemm ma tagħżilx b'mod espliċitu.

Pagamenti konformi mal-PCI

Kollha proċessar tal-ħlas huwa mmaniġġjat minn Stripe, PCI Livell 1 proċessur tal-ħlas ċertifikati.Aħna qatt ma jaħżnu numru tal-karta tal-kreditu tiegħek, CVV, jew dettalji tal-karta sħiħa fuq is-servers tagħna.

Mudelli ta' Sors Miftuħ u Verifikabbli

Il-mudelli tal-AI awto-ospitati tagħna huma kollha open-source taħt liċenzji permissivi (Apache 2.0 u MIT) Il-piżijiet tal-mudell, l-arkitetturi u l-metodoloġiji tat-taħriġ huma disponibbli pubblikament u jistgħu jiġu awditjati b'mod indipendenti minn kulħadd.

Ebda bejgħ tad-dejta

Aħna ma nbigħux, ma nikriex, jew ma naqsmux id-data personali tiegħek ma’ partijiet terzi għal skopijiet ta’ reklamar jew kummerċjalizzazzjoni.

Sigurtà tal-Infrastruttura

Is-servers tagħna huma ospitati fuq infrastruttura VPS u GPU sħaba iebsa b'aċċess SSH biċ-ċavetta biss, aġġornamenti awtomatiċi tas-sigurtà, u regoli tal-firewall li jirrestrinġu t-traffiku għall-portijiet meħtieġa biss.

Għandek xi tħassib dwar is-sigurtà? Ikkuntattjana.

FAQ

Yes. All traffic between your browser and Free.ai is encrypted with HTTPS using TLS 1.2+. API requests to our GPU inference server are also encrypted end-to-end. We enforce HSTS to prevent downgrade attacks.

No. We never use your inputs, outputs, or uploaded files to train AI models unless you explicitly opt in. This applies to all users -- free, paid, and enterprise.

All payment processing is handled by Stripe, a PCI Level 1 certified processor. We never store your credit card number, CVV, or full card details on our servers. Stripe handles all sensitive payment data.

Yes. All self-hosted models are open-source under permissive licenses (Apache 2.0, MIT). The model weights, architectures, and training methodologies are publicly available on HuggingFace and GitHub for anyone to audit.

No. We do not sell, rent, or share your personal data with third parties for advertising or marketing purposes. This is a firm policy with no exceptions.

Our servers use SSH key-only access (no password authentication), automatic security updates, firewall rules restricting traffic to necessary ports, and encrypted database backups. We follow security best practices for all infrastructure.

Uploaded files (images, audio, documents) are processed for the requested AI task and are not retained permanently. They are not used for training, shared with other users, or sold to third parties.

We follow GDPR principles including data minimization, purpose limitation, and the right to deletion. Enterprise customers can choose EU data residency through private cloud deployment. Contact us for a Data Processing Agreement (DPA).

Yes. You can delete your account at any time from your account settings. This removes your personal data, chat history, and API keys. Account deletion is permanent and processed immediately.

We monitor for vulnerabilities continuously and apply security patches promptly. If you discover a security issue, please report it to us through the contact form. We take all reports seriously and respond quickly.

Two-factor authentication (2FA) is available for all accounts to add an extra layer of security. Enterprise accounts can enforce 2FA for all team members through their SSO provider.

API keys are hashed before storage and transmitted only over HTTPS. You can revoke and regenerate keys at any time from the developer settings. We recommend rotating keys regularly and never sharing them publicly.

Imħabba Free.ai? Għid lill-ħbieb tiegħek!

Irraporta din il-paġna