Last updated: 1 March 2026
We collect: account information you provide (name, email, company), API usage metadata (request logs, response times, error rates — never card data), and billing information processed by our payment provider Stripe.
We use data to provide and improve the API, send service notifications, populate your usage dashboard, and fulfil legal obligations. We do not sell your data to third parties under any circumstances.
CardPing never stores gift card numbers, PINs, or CVVs. Card data is processed entirely in memory and immediately discarded after each network response. It does not appear in logs, databases, or backups.
Account data is retained for the duration of your account plus 30 days after deletion. API request logs (metadata only) are retained for 90 days. Billing records are retained for 7 years as required by UK law.
Key processors: Stripe (payments), AWS (infrastructure), Cloudflare (CDN/edge), Postmark (email). All operate under appropriate DPAs.
EU/EEA users may access, correct, export, or delete their personal data. Email privacy@cardping.io. We respond within 30 days.
Privacy enquiries: privacy@cardping.io. CardPing Ltd, 1 Canada Square, London E14 5AB, UK.