Privacy Policy

Overview

API-Cert is operated by OneWeek Labs, based in Somerset, MA. We are committed to protecting the privacy of our users and the individuals whose data passes through our system.

Data We Process

API-Cert processes publicly available license verification data sourced from official state licensing boards, NPPES, OIG LEIE, SAM.gov, and the CMS Preclusion List. All data processed by API-Cert is already part of the public record.

No Protected Health Information (PHI) is transmitted, processed, or stored by API-Cert at any time. Our service verifies professional licensure status only and does not handle patient data or medical records.

Information We Collect

When you register for an API key, we collect:

• Email address — used for account identification, key recovery, and service communications.
• Name and company (optional) — used to understand our user base.
• API usage data — request counts, endpoints called, timestamps, and error rates for billing, rate limiting, and service improvement.

How We Use Your Information

• To provide and maintain the API-Cert service.
• To enforce rate limits and usage quotas.
• To communicate important service updates.
• To improve the reliability and performance of our API.

Data Sharing

We do not sell, rent, or share your personal information with third parties, except as required by law or as necessary to provide the service (e.g., payment processing via Stripe for paid tiers).

Data Retention

Account information is retained for the duration of your account. API usage logs are retained for up to 90 days. You may request deletion of your account and associated data at any time by contacting us.

Contact

For privacy-related inquiries, contact us at [email protected].

API-Cert / OneWeek Labs
Somerset, MA