Privacy Policy

Spendline, Inc. · Last updated: April 30, 2026

Spendline, Inc. ("Spendline," "we," "our," or "us") operates the AI spend attribution and FinOps platform available at spendline.ai. This Privacy Policy explains what information we collect, how we use it, and your rights with respect to it.

1. Information We Collect

We collect information you provide directly, information generated by your use of the service, and information about your organization's AI API usage routed through the Spendline proxy.

• Account data: email address, name, company name, and authentication credentials.
• Usage metadata: API call counts, token counts, model identifiers, latency, cost estimates, customer tags, workflow tags, and other metadata you attach to requests.
• Billing information: AI spend ranges and plan tier. Payment processing is handled by a third-party processor; we do not store full payment card data.
• Waitlist data: name, email, company, and estimated monthly AI spend submitted via the request access form.

2. How We Use Your Information

• To operate, maintain, and improve the Spendline platform.
• To generate cost attribution analytics, budget enforcement decisions, and financial records as directed by you.
• To send service communications, security alerts, and product updates.
• To respond to support requests and inquiries.
• To comply with legal obligations.

3. Proxy Traffic and API Request Data

Spendline operates as an in-path proxy for LLM API calls. We process request and response metadata (token counts, model names, latency, HTTP status codes) to generate cost records. By default, we do not store the content of prompts or completions. If prompt logging is explicitly enabled by an account administrator, that data is retained as configured and subject to the data retention settings you control.

4. Data Sharing

We do not sell your personal information. We share data only:

• With service providers acting on our behalf (hosting, analytics, payment processing) under data processing agreements.
• As required by law, court order, or to protect the rights, property, or safety of Spendline, our users, or others.
• With your consent or at your direction.

5. Data Retention

We retain account data for as long as your account is active. Usage metadata and financial records are retained for the period required to support your FinOps workflows, as configured in your account settings. You may request deletion of your data at any time by contacting us.

6. Security

We use industry-standard security controls including TLS encryption in transit, encrypted storage at rest, access controls, and regular security reviews. See our Security page for more detail.

7. Your Rights

Depending on your jurisdiction, you may have rights to access, correct, delete, or restrict processing of your personal data, and to data portability. To exercise any of these rights, contact us at aary@spendline.ai.

8. Cookies and Tracking

We use essential session cookies for authentication. We do not use advertising or behavioral tracking cookies. We may use privacy-respecting analytics to understand aggregate product usage.

9. International Transfers

Spendline is operated in the United States. If you access the service from outside the US, your data may be transferred to and processed in the United States.

10. Changes to This Policy

We may update this policy from time to time. We will notify you of material changes by email or by posting a notice on the platform. Continued use after changes constitutes acceptance of the updated policy.

11. Contact

Questions about this policy? Contact us at aary@spendline.ai.