Privacy Policy and Terms of Service

Privacy Policy

Effective date: April 16, 2026

Who we are

Six Sense Solutions LLC ("Six Sense", "we", "us", "our") operates the API service at api.sixsensesolutions.net and the website at sixsensesolutions.net. We are incorporated in Maryland, USA.

What we collect

When you use our API or website we may collect:

• Account information: name and email address provided at signup
• API usage metadata: timestamp, API key ID prefix, endpoint called, response time, compliance profile requested, credential length requested. We never log generated credentials.
• Payment information: processed by Stripe. We do not store card numbers or payment details on our servers.
• Technical data: IP address, browser type, and referrer URL collected through standard server logs.

What we never collect

We never store, log, cache, or retain any generated credential, password, or secret returned by our API. Generated credentials exist only in memory during the API call and in the HTTP response returned to you. This is by design and is verifiable in our architecture documentation at sixsensesolutions.net/trust/

How we use your information

• To provision and manage your API key and account
• To enforce usage limits and tier restrictions
• To send transactional emails about your account
• To improve the service based on aggregate usage patterns
• To comply with legal obligations

Data sharing

We do not sell your personal information. We share data only with:

• Stripe for payment processing
• AWS for infrastructure hosting
• HaveIBeenPwned for breach checking via k-anonymity (no credential data leaves our environment)

Data retention

API usage metadata is retained for 90 days in CloudWatch logs. Account information is retained for the duration of your account plus 30 days after deletion. Payment records are retained as required by law.

Your rights

You may request access to, correction of, or deletion of your personal data at any time by emailing hello@sixsensesolutions.net. We will respond within 30 days.

Security

All data is encrypted in transit via TLS and at rest via AWS managed keys. Our full security posture is documented at sixsensesolutions.net/trust/

Contact

For privacy questions: hello@sixsensesolutions.net

Terms of Service

Effective date: April 16, 2026

Acceptance

By using the Six Sense Solutions API or website you agree to these terms. If you do not agree, do not use the service.

The service

Six Sense Solutions provides a security primitives API for cryptographically secure credential generation, strength validation, breach exposure checking, and audit logging. The service is provided as-is and we reserve the right to modify or discontinue it at any time with reasonable notice.

Your account

• You are responsible for maintaining the security of your API key
• You may not share your API key with third parties outside your organization
• You are responsible for all usage under your API key
• You must provide accurate information at signup

Acceptable use

You may not use the service to:

• Violate any applicable law or regulation
• Attempt to reverse engineer or circumvent usage limits
• Resell API access without a written partnership agreement
• Generate credentials for malicious purposes
• Probe or test the security of our infrastructure without authorization

Payment and billing

Paid plans are billed monthly. You may cancel at any time. No refunds are issued for partial months. We reserve the right to change pricing with 30 days notice.

Usage limits

Free tier accounts are limited to 300 API calls per month. Pro accounts are limited to 50,000 calls per month. Business accounts are limited to 500,000 calls per month. Exceeding limits may result in rate limiting or account suspension.

Limitation of liability

Six Sense Solutions shall not be liable for any indirect, incidental, special, or consequential damages arising from your use of the service. Our total liability to you shall not exceed the amount you paid us in the three months preceding the claim.

Compliance representation

The API is designed to support compliance with NIST 800-63B, SOC2, HIPAA, and CMMC frameworks. Using our API does not guarantee compliance. You are responsible for your overall compliance posture. We make no warranty that use of our service will result in passing any audit.

Governing law

These terms are governed by the laws of the State of Maryland, USA. Any disputes shall be resolved in the courts of Montgomery County, Maryland.

Contact

For legal inquiries: hello@sixsensesolutions.net