OpenAI compatible API. Attested gateway. Public status.
Subprocessors
Platform vendors and downstream model providers used by TrustedRouter.
1 URLbase_url migration
100smodels and routes
0prompt logs by default
Platform vendors8 listed.
Model providers24 listed.
Prompt accessOnly selected downstream model routes receive prompt content.
Downstream model providers are subprocessors only when customer traffic is routed to them. For legal work, use trustedrouter/zdr, trustedrouter/e2e, or a customer-approved provider allowlist.
Platform subprocessors
Vendors used to operate TrustedRouter.
| Name | Purpose | Data access | Policy |
|---|---|---|---|
| Google Cloud Platform | Cloud hosting, Confidential Space, Cloud Run, Spanner, Bigtable, KMS, Secret Manager, and operational infrastructure. | Prompt traffic on the production API terminates inside the attested gateway. GCP services store metadata, billing records, secrets, and operational logs as configured; prompt/output content is not stored by default. | Policy |
| Cloudflare | DNS, public-site caching, status/trust hosting support, and edge protection for non-prompt surfaces. | Public website traffic and DNS metadata. Production prompt TLS is designed to terminate inside the attested gateway, not inside the control-plane site. | Policy |
| Stripe | Card payments, stablecoin checkout, customer records, saved payment methods, invoices, and billing webhooks. | Billing identity and payment metadata. No prompt/output content. | Policy |
| PayPal | Optional PayPal payment processing for prepaid credits. | Billing identity and payment metadata. No prompt/output content. | Policy |
| Amazon Web Services SES/SNS | Transactional email delivery, bounce handling, complaint handling, and email-domain verification. | Email address and transactional email metadata. No prompt/output content. | Policy |
| Sentry | Control-plane exception monitoring. | Scrubbed control-plane errors and metadata. Sentry is not configured in the attested prompt gateway and must not receive prompts, outputs, API keys, or BYOK secrets. | Policy |
| Axiom | Operational log search and alerting. | Structured operational metadata. Prompt/output content must not be logged. | Policy |
| GitHub | Source control, CI, release workflows, and public open-source repositories. | Source code, CI metadata, and release artifacts. No production prompt/output content. | Policy |
Model provider subprocessors
Downstream model compute providers.
Unknown means no tracked public or contracted claim is currently published in the TrustedRouter catalog.
| Provider | ZDR | Confidential compute | Provider E2EE | Purpose | Policy source |
|---|---|---|---|---|---|
Tinfoiltinfoil |
yes | yes | yes | Prompt/output content in transit only for requests routed to this provider; request metadata needed for billing, routing, abuse controls, and support. Tracked as a confidential inference provider with attested provider compute and no prompt/output logging claims. |
Policy source |
Venicevenice |
yes | yes | yes | Prompt/output content in transit only for requests routed to this provider; request metadata needed for billing, routing, abuse controls, and support. Tracked as confidential — Venice documents no logging or storage of prompts/responses plus TEE-isolated, end-to-end-encrypted inference. (Caveat: requests Venice proxies to external frontier models inherit those providers' policies; TR routes Venice-native open models here.) |
Policy source |
Anthropicanthropic |
yes | unknown | unknown | Prompt/output content in transit only for requests routed to this provider; request metadata needed for billing, routing, abuse controls, and support. Marked ZDR via TrustedRouter's arrangement — zero retention is NOT Anthropic's public default; it applies to contracted / approved API usage, which TrustedRouter's deployed account is configured for. Anthropic does not train on API content. (Flagged content may be retained longer for Usage-Policy enforcement; non-Messages features may differ.) |
Policy source |
OpenAIopenai |
yes | unknown | unknown | Prompt/output content in transit only for requests routed to this provider; request metadata needed for billing, routing, abuse controls, and support. Marked ZDR for TrustedRouter's configured OpenAI / ChatGPT API account. This is not the public OpenAI API default for every account or endpoint; ZDR depends on eligible endpoint usage and account configuration. |
Policy source |
Geminigemini |
yes | unknown | unknown | Prompt/output content in transit only for requests routed to this provider; request metadata needed for billing, routing, abuse controls, and support. Marked ZDR for TrustedRouter's Google Gemini / Vertex generative-AI routes under Google's data-governance commitments for customer prompts and outputs. |
Policy source |
Cerebrascerebras |
yes | unknown | unknown | Prompt/output content in transit only for requests routed to this provider; request metadata needed for billing, routing, abuse controls, and support. Tracked as provider-ZDR. Cerebras documents ZDR-compliant ephemeral prompt caching and no persisted prompt cache data. |
Policy source |
DeepSeekdeepseek |
no | unknown | unknown | Prompt/output content in transit only for requests routed to this provider; request metadata needed for billing, routing, abuse controls, and support. Not ZDR. DeepSeek's published privacy policy says prompts/inputs may be collected and personal data may be used to train or improve machine learning models and algorithms. |
Policy source |
Mistralmistral |
unknown | unknown | unknown | Prompt/output content in transit only for requests routed to this provider; request metadata needed for billing, routing, abuse controls, and support. No provider-ZDR claim is tracked here. This is separate from any no-training or enterprise retention commitments Mistral may offer. |
Policy source |
Kimikimi |
unknown | unknown | unknown | Prompt/output content in transit only for requests routed to this provider; request metadata needed for billing, routing, abuse controls, and support. No provider-ZDR claim is tracked here. Kimi/Moonshot policy source is linked for users who need to review API retention and processing terms. |
Policy source |
Z.AIzai |
unknown | unknown | unknown | Prompt/output content in transit only for requests routed to this provider; request metadata needed for billing, routing, abuse controls, and support. No provider-ZDR claim is tracked here. Z.AI/BigModel policy source is linked for users who need to review API retention and processing terms. |
Policy source |
Togethertogether |
yes | unknown | unknown | Prompt/output content in transit only for requests routed to this provider; request metadata needed for billing, routing, abuse controls, and support. Marked ZDR via TrustedRouter's arrangement — Together's ZDR is an opt-in account/privacy setting, NOT the public default, and the deployed Together account has it enabled. Together does not train on content without opt-in. |
Policy source |
xAI Grokgrok |
unknown | unknown | unknown | Prompt/output content in transit only for requests routed to this provider; request metadata needed for billing, routing, abuse controls, and support. xAI documents no training on API requests and 30-day default audit retention, with ZDR as an enterprise feature. |
Policy source |
Novita AInovita |
unknown | unknown | unknown | Prompt/output content in transit only for requests routed to this provider; request metadata needed for billing, routing, abuse controls, and support. No provider-ZDR claim is tracked here. Novita's privacy policy says personal information is not used for model training; customer-content processing is governed by customer agreements. |
Policy source |
Phalaphala |
yes | yes | yes | Prompt/output content in transit only for requests routed to this provider; request metadata needed for billing, routing, abuse controls, and support. Tracked as a confidential AI provider with provider-side attestation and encrypted prompt transport. |
Policy source |
SiliconFlowsiliconflow |
unknown | unknown | unknown | Prompt/output content in transit only for requests routed to this provider; request metadata needed for billing, routing, abuse controls, and support. No provider-ZDR claim is tracked here. SiliconFlow's privacy policy source is linked for retention and interaction-data terms. |
Policy source |
Parasailparasail |
unknown | unknown | unknown | Prompt/output content in transit only for requests routed to this provider; request metadata needed for billing, routing, abuse controls, and support. Parasail documents no input logging/storage for serverless and dedicated service paths, with different handling for batch service. |
Policy source |
Lightning AIlightning |
unknown | unknown | unknown | Prompt/output content in transit only for requests routed to this provider; request metadata needed for billing, routing, abuse controls, and support. No provider-ZDR claim is tracked here. Lightning's general privacy and security documentation is linked for retention review. |
Policy source |
GMI Cloudgmi |
unknown | unknown | unknown | Prompt/output content in transit only for requests routed to this provider; request metadata needed for billing, routing, abuse controls, and support. GMI runs isolated/VPC GPU inference, but that is network isolation, NOT an attested TEE — so no confidential-compute, zero-retention, or E2EE claim is marked. Retention/training terms are unverified (the published policy page is JavaScript-only and would not render). |
Policy source |
DeepInfradeepinfra |
yes | unknown | unknown | Prompt/output content in transit only for requests routed to this provider; request metadata needed for billing, routing, abuse controls, and support. Tracked as provider ZDR — DeepInfra documents memory-only handling with no storage of API content and no training on submitted API data. (Exception: requests to Google/Anthropic-backed models inherit those vendors' policies.) |
Policy source |
Nebius Token Factorynebius |
yes | unknown | unknown | Prompt/output content in transit only for requests routed to this provider; request metadata needed for billing, routing, abuse controls, and support. Marked ZDR via TrustedRouter's arrangement — Nebius RETAINS inputs/outputs by default (for speculative decoding); zero retention is an opt-in control, which the deployed Nebius account has enabled. Nebius does not train on customer data. |
Policy source |
MiniMaxminimax |
unknown | unknown | unknown | Prompt/output content in transit only for requests routed to this provider; request metadata needed for billing, routing, abuse controls, and support. No provider-ZDR claim is tracked here. MiniMax's product privacy overview is linked for users who need to review API/open-platform terms. |
Policy source |
Xiaomi MiMoxiaomi |
unknown | unknown | unknown | Prompt/output content in transit only for requests routed to this provider; request metadata needed for billing, routing, abuse controls, and support. No provider-ZDR claim is tracked here. Xiaomi MiMo's open-platform terms are linked for users who need to review API data handling. |
Policy source |
Coherecohere |
yes | unknown | unknown | Prompt/output content in transit only for requests routed to this provider; request metadata needed for billing, routing, abuse controls, and support. Marked ZDR — Cohere does not retain prompt/response content for TrustedRouter's configured account and does not train on customer API data. (Not a confidential-compute/TEE provider.) |
Policy source |
Voyage AIvoyage |
yes | unknown | unknown | Prompt/output content in transit only for requests routed to this provider; request metadata needed for billing, routing, abuse controls, and support. Marked ZDR — Voyage AI does not retain prompt content for TrustedRouter's configured account and does not train on customer API data. (Not a confidential-compute/TEE provider.) |
Policy source |