Privacy Policy

This Privacy Policy describes how E3M d.o.o. ("Entrim", "we", "us") collects, uses, and protects personal data when you use the Entrim website, developer dashboard, and LLM inference API services.

1. Data Controller

The controller responsible for processing personal data is:

E3M d.o.o.
Bela Cerkev 10
8220 Šmarješke Toplice
Slovenia
VAT ID: SI35576685

2. Scope of this Policy

This Privacy Policy applies to:

  • the Entrim website
  • the Entrim dashboard
  • the Entrim LLM inference API
  • account creation and billing

It explains what personal data we collect, how we use it, and your rights under applicable data protection laws, including the General Data Protection Regulation (GDPR).

3. Data We Collect

3.1 Account Information

When you create an account we may collect:

  • name
  • email address
  • company name
  • encrypted password hash

This information is used to create and manage your account.

3.2 Billing Information

When you use paid services we collect billing-related information such as:

  • name
  • email
  • company
  • billing identifiers

Payments are processed through Stripe, which acts as an independent payment processor. Stripe processes payment data in accordance with its own privacy policies.

3.3 API Usage Metadata

When the API is used we collect operational metadata required to operate the service, including:

  • token usage counts
  • timestamps
  • request identifiers
  • user agent information
  • cost and usage data
  • IP addresses associated with requests

This information is used for:

  • billing
  • service monitoring
  • abuse detection
  • infrastructure reliability

3.4 Logs

We collect certain logs generated by infrastructure and security systems used to operate the Service.

Examples may include:

  • request access logs
  • error logs
  • security logs

These logs are used to maintain service reliability, investigate technical issues, and detect abuse or security incidents.

3.5 Website Analytics

We use Google Analytics to understand how visitors interact with our website.

Google Analytics may collect information such as:

  • browser type
  • pages visited
  • device information
  • approximate geographic region

Google may process this information in accordance with its own privacy policies.

4. Prompts and Model Outputs

The Entrim API processes prompts and generated outputs solely to provide the requested inference response.

Prompts and outputs are not retained by Entrim as stored customer data after request completion.

During inference, prompts and related data may be processed temporarily in memory and may be subject to short-lived caching mechanisms designed to improve inference performance.

These temporary processing mechanisms may include:

  • in-memory caching
  • limited persistent performance caches used by the inference system

These caches are used only to optimize inference performance and are not used as storage for customer data.

Entrim does not use customer prompts or outputs to train machine learning models.

Customers are responsible for ensuring they have the legal right to process any personal data included in prompts submitted to the API.

5. Cookies

Our website uses cookies for the following purposes.

Essential Cookies

These cookies are required for core functionality such as:

  • authentication
  • dashboard login sessions
  • security

Analytics Cookies

Analytics cookies are used to measure website usage through Google Analytics.

You may control cookies through your browser settings.

6. Legal Basis for Processing

Under the GDPR, we process personal data based on the following legal grounds.

Performance of a Contract
To provide and operate the Entrim services.
Legitimate Interests
To maintain service security, prevent abuse, and improve platform reliability.
Legal Obligations
To comply with tax, accounting, and regulatory requirements.

7. Data Retention

We retain personal data only as long as necessary for the purposes described in this policy.

Typical retention periods include:

  • API access logs: up to approximately 90 days
  • security logs: up to approximately 30 days
  • billing and accounting records: retained as required by applicable tax law

Some data may be retained longer if required by legal obligations or to resolve disputes.

8. Data Sharing

We do not sell personal data.

Personal data may be shared when necessary to operate the platform or comply with legal obligations.

This may include sharing with service providers or when required by applicable law, regulatory authority, or legal process.

9. Service Providers

Entrim may use trusted third-party service providers to operate and support the platform. These providers may include infrastructure hosting providers, payment processors, analytics providers, and other technical service providers necessary for operating the website, billing systems, or platform infrastructure.

These providers process personal data only as necessary to perform services on behalf of Entrim and are contractually required to protect such data.

Third-party service providers do not receive or store prompts or model outputs submitted to the Entrim API. Prompts and outputs are processed exclusively within Entrim-controlled inference infrastructure.

10. International Data Transfers

Entrim infrastructure used to process model inference requests is located within the European Union.

However, certain service providers supporting the operation of the platform — such as payment processors or analytics providers — may process limited personal data outside the European Union.

Where such transfers occur, Entrim ensures appropriate safeguards are in place in accordance with applicable data protection laws, including the use of standard contractual clauses or equivalent legal protections.

Such transfers relate only to operational data such as account information, billing information, or website analytics, and do not include prompts or model outputs submitted to the Entrim API.

11. Security

We implement technical and organizational measures designed to protect personal data.

Security measures include:

  • encrypted communication using HTTPS
  • infrastructure access controls
  • monitoring of systems and infrastructure
  • security protections against abuse and unauthorized access

However, no system can be guaranteed to be completely secure.

12. Your Rights

Under the GDPR you have the following rights:

  • the right to access your personal data
  • the right to request correction of inaccurate data
  • the right to request deletion of personal data
  • the right to restrict processing
  • the right to data portability
  • the right to object to processing

To exercise these rights you may contact: info@entrim.ai

You also have the right to file a complaint with the relevant supervisory authority.

In Slovenia this authority is:

Information Commissioner of the Republic of Slovenia

13. Children's Privacy

The Entrim services are not intended for children.

We do not knowingly collect personal data from individuals under the age of 18.

14. Changes to This Policy

We may update this Privacy Policy from time to time.

When material changes occur we will publish the updated version on our website.

Continued use of the service after updates constitutes acceptance of the revised policy.

15. Contact

If you have questions about this Privacy Policy or how your data is handled, contact: info@entrim.ai

Last updated: 6. March 2026

All services are online

© 2026. Entrim d.o.o. All Rights Reserved.

Privacy policyTerms of service