Effective April 17, 2026
LOCIQ is a property intelligence API operated from Kalispell, Montana. This policy describes how we handle information when you use our Service.
Account information: When you create an account, we collect your email address. This is used for API key delivery, billing communications, and service notifications.
Payment information: Billing is processed by Stripe. We do not store credit card numbers, bank account details, or other payment credentials. Stripe's privacy policy governs payment data handling.
Usage data: We log API request counts per key for billing and rate limiting. We do not log request payloads, query parameters, or response bodies.
Error tracking: We use Sentry for error monitoring. Sentry may capture technical metadata (IP address, request headers) when an error occurs. No property query data is sent to Sentry.
We do not collect: personal phone numbers, physical addresses (of API users), browsing history, cookies (we have no frontend that sets cookies), or any personally identifiable information beyond email addresses.
Your email is used to: deliver your API key, send billing receipts (via Stripe), notify you of service changes or outages, and communicate terms updates. We do not send marketing emails.
We share data only with: Stripe (payment processing), Sentry (error monitoring), and Cloudflare (edge network and DDoS protection). We do not sell, rent, or share your information with any other third parties.
The property data served by the API is derived from publicly available records (county GIS, state assessors, OpenStreetMap, Overture Maps). This data is factual public information, not personal data. Owner names and mailing addresses appearing in property records are public records published by government agencies.
Account information is retained for the duration of your account. If you cancel and request deletion, we will delete your account information within 30 days. API usage logs are retained for 90 days for billing reconciliation, then deleted.
API keys are hashed (SHA-256) before storage. Database access is restricted to a private VPN (Tailscale). All public traffic is encrypted via HTTPS through Cloudflare. Backups are encrypted at rest in Cloudflare R2.
You may request: a copy of the information we hold about you, deletion of your account and associated data, or correction of inaccurate information. Contact us at the email below.
We may update this policy with 30 days notice via email. The effective date at the top of this page indicates the latest revision.
Privacy questions: [email protected]