Last updated: July 2026
This notice is for people whose information may appear in the data our service provides. It is not for our customers. If you have an account with us, our Privacy Policy applies to you instead.
If you want us to stop including you in results, you do not need to read this page first. Go straight to our opt-out form.
API Direct ("we", "us", or "our") operates apidirect.io from the United Kingdom and is the data controller for the processing described in this notice. You can reach us at support@apidirect.io, which is the fastest way to get a response. If you need our full registered details or a postal address, ask us by email and we will provide them.
We operate a technical service that lets our business customers retrieve publicly available content through an API. When a customer makes a request, we return the content that matches it.
We are not a database of people. We do not keep a copy of the content we return, and we do not build, enrich, or sell profiles of individuals.
The information we handle comes from public social platforms and the public web. It is content that has been published publicly, such as public posts, public profile information, and public business listings.
Our service is not intended to provide private or restricted content, such as private messages, private accounts, or material shared only with an approved audience. We require the sources we rely on to provide only publicly published content, and our Terms of Service prohibit customers from using our service to obtain anything else.
Where public content relates to an identifiable person, the information passing through our service can include:
Our service is not intended for identifying or targeting individuals on the basis of special categories of personal data (such as health, political opinions, religious beliefs, sexual orientation, or biometric data). Our Terms of Service prohibit customers from using our service to harass, abuse, or harm anyone, or to break the law.
Very little. We do not keep a copy of the public content we return to customers. When a customer makes a request, the content is returned to them and we do not retain it.
There are three limited exceptions:
To find out whether we hold any record about you, use our data request form.
We rely on legitimate interests (Article 6(1)(f) UK GDPR). Our legitimate interest, and that of our customers, is providing and using a technical service that makes publicly available information accessible in a structured form for business research purposes.
We have carried out a balancing exercise, weighing that interest against your rights and freedoms. In doing so we take into account that the information is already public, that we do not build profiles, that we store almost nothing, and that you can object at any time and we will act on it.
If you disagree with that assessment, you have the right to object, and we will honour your objection. See section 7.
Under UK GDPR you have the right to:
We will respond within one month. There is no charge. We may ask you for information to confirm that the request genuinely relates to you, so that we do not act on a request made about you by somebody else.
What we will do:
What we cannot do:
To keep your suppression working, we keep the minimum information needed to recognise you and continue filtering you out. We use it for nothing else.
Results are returned to the customer who requested them. We also use a small number of infrastructure providers to run the service, listed on our sub-processors page.
Some of those providers are located outside the United Kingdom. Where personal data is transferred internationally, we rely on appropriate safeguards such as the UK International Data Transfer Agreement or Addendum, or transfers to countries with UK adequacy status.
Please contact us first at support@apidirect.io so we can put things right. You also have the right to complain to the UK Information Commissioner's Office (ICO) at ico.org.uk, or to the data protection authority in your country of residence.
Email: support@apidirect.io