Privacy at Potarix Enricher

Potarix Enricher is a business-to-business data enrichment API operated by Potarix Labs (Potarix, we, us). It turns inputs like a company name, a person plus a domain, or a LinkedIn URL into a website, a verified business email, a job title, or a company email roster.

This policy explains what we collect when you create an account and use the API at enricher.potarix.com and api.potarix.com, how we use it, who we share it with, and the choices you have. It applies to account holders and to the people whose business contact details are processed through the service.

Account data: the email address and password you provide at signup, plus the API keys we issue to you. We use API keys to authenticate every request and attribute usage and credits to your account.

Lookup inputs: the data you send to our endpoints so we can run a lookup. This includes company names, domains, person names, LinkedIn URLs, and decision-maker role categories. These inputs may contain business contact information about third parties.

Lookup results: the enrichment output we return and cache against your account, such as resolved websites, business email addresses, job titles, and LinkedIn URLs.

Usage and billing data: credits consumed, lookup counts, timestamps, and the records needed to process payments. Card details are handled by our payment processor; we do not store full card numbers.

Technical data: standard request metadata such as IP address and request logs, used for security, abuse prevention, and debugging.

To run the service: we use your lookup inputs to perform website resolution and email, decision-maker, LinkedIn-to-email, and company-email enrichment, and to return JSON results to you.

Through third-party providers: to fulfil a lookup we may pass inputs such as a domain, a name, or a LinkedIn URL to specialized enrichment data providers, then verify and return the result. We pass only what a given lookup needs.

To run your account: to authenticate API keys, meter credits, process top-ups, prevent abuse, and provide support.

To improve and secure the service: we use aggregate usage and technical data to monitor reliability, debug issues, and protect against fraud and misuse.

We do not use the personal data in lookup inputs or results to build advertising profiles, and we do not sell it.

We rely on a small set of vendors to operate the service, each acting as a processor on our behalf and under contract:

Enrichment data providers: specialized providers that resolve websites and find and verify business emails. Lookup inputs are shared with them only to complete the request you made.

Stripe: payment processing for credit purchases and top-ups. Stripe handles card data directly.

Clerk: authentication and account management for the dashboard sign-in flow.

We also use standard cloud hosting and database infrastructure to run the API and store account, credit, and cached-result records. We share data with these providers only to the extent needed to deliver the service, and never sell personal data to them or anyone else.

We keep account data for as long as your account is active. We retain lookup inputs and cached results so repeat lookups on the same input are free for your account and so we can support and audit usage.

We retain billing and usage records as required to meet legal, tax, and accounting obligations. When you close your account or ask us to delete your data, we delete or anonymize it within a reasonable period, except where we must keep records to comply with law or resolve disputes.

We do not sell your personal data, your account data, or the contact data processed through your lookups, and we do not share it for cross-context behavioral advertising. Data is processed only to deliver the enrichment service you request and to run your account.

We protect data in transit with encryption (HTTPS) and restrict access to production systems. API keys are the credential for your account, so treat them like passwords: keep them secret, rotate them from Settings if one is exposed, and never embed them in client-side code.

No system is perfectly secure, but we work to safeguard data against unauthorized access, loss, and misuse, and we review our practices over time.

Depending on where you live, you may have the right to access, correct, export, or delete personal data we hold about you, and to object to or restrict certain processing.

Account holders can update their email, rotate API keys, and view usage from the dashboard. To exercise any other right, or if you are an individual whose business contact details were processed through a lookup and you want them corrected or removed, contact us using the details below and we will respond within a reasonable time.

Potarix Labs handles privacy questions and data requests. Email omar@potarix.com and we will get back to you.

We may update this policy as the service evolves. When we make material changes we will revise the effective date below and, where appropriate, notify account holders.