Privacy Policy – DevHub API

Data Controller:
Giuseppe Cocchiara – Owner and founder of the "DevHub API" project

Contact: privacy@devhub-api.com

Website:
https://devhub-api.com

1. Introduction

This privacy policy describes how personal data is collected, used, and protected when users access or use the DevHub API platform, including the public website, developer documentation, and the restricted area used to access APIs.

2. Categories of Data Collected

Account registration and management

When creating an account on the platform, the following data may be collected:

  • First name
  • Last name
  • Email address
  • Optional information voluntarily provided by the user: phone number, country

Contact form

When users contact us through the website contact form, the following data may be collected:

  • Name
  • Email address
  • Message content

Messages submitted through the contact form are forwarded to a dedicated email mailbox and are not permanently stored on the website unless necessary to handle the request.

Technical logs and API usage

To ensure proper service operation, security, and monitoring, the platform may collect technical information related to API usage, including:

  • IP address
  • Date and time of the request
  • API endpoint used
  • Response status and error information
  • Events related to rate limiting and security

This information is used exclusively for service operation, monitoring, abuse prevention, security purposes, and system optimization.

Cookies and analytics tools

The website may use cookies and similar technologies.

  • Technical cookies: necessary for the proper functioning of the website and platform, such as session management, authentication, and security.

3. Purpose of processing and legal basis

Personal data may be processed for the following purposes:

  • Providing the DevHub API service and managing user accounts
    Legal basis: performance of a contract or pre-contractual measures.
  • Handling contact requests or support inquiries submitted through the website
    Legal basis: legitimate interest or pre-contractual communication.
  • Ensuring platform security, preventing abuse, monitoring API usage, and resolving technical issues
    Legal basis: legitimate interest of the data controller.

4. Data retention

Personal data is retained only for the time necessary to fulfill the purposes for which it was collected.

  • Account data: retained for the duration of the account and deleted if the account is removed, unless legal obligations require longer retention.
  • Contact requests: may be retained for up to 12 months in order to properly manage user communications.
  • Technical logs and API monitoring data: generally retained for a period between 30 and 90 days, unless longer retention is necessary for security investigations or abuse prevention.
  • Analytics data: retained according to the configuration of the analytics service provider.

5. Data sharing with third parties

Personal data may be processed by third-party service providers acting on behalf of the data controller as data processors, including:

  • Hosting and cloud infrastructure providers
  • Email service providers
  • Traffic analysis tools
  • Payment service providers (if enabled in the future)

If online payments are enabled, payment-related data may also be processed by external providers (such as Stripe or PayPal), which act as independent data controllers according to their own privacy policies.

6. International data transfers

Some third-party providers may process personal data outside the European Economic Area (EEA). In such cases, transfers are carried out in compliance with applicable data protection laws and based on appropriate safeguards, such as the Standard Contractual Clauses approved by the European Commission.

7. Data subject rights

Under Articles 15–22 of the GDPR, users have the right to:

  • access their personal data
  • request correction of inaccurate data
  • request deletion of personal data
  • request restriction of processing
  • receive their data in a portable format
  • object to processing where applicable

To exercise these rights, users may contact the data controller at: privacy@devhub-api.com .

8. Right to lodge a complaint

Users also have the right to lodge a complaint with the competent data protection authority, such as the Italian Data Protection Authority, if they believe their personal data has been processed unlawfully.

9. Security measures

The platform implements appropriate technical and organizational measures to protect personal data from unauthorized access, loss, misuse, or unauthorized disclosure.

10. Changes to this privacy policy

This privacy policy may be updated over time. The most recent version will always be available on this page.


Last updated: March 15, 2026
loader