slug: openrouter-api
name: OpenRouter API
provider: OpenRouter, Inc.
category: llm_routing
website_url: https://openrouter.ai
pricing_model: usage_based
gdpr_maturity: initial
gdpr_notes: >
  OpenRouter is a US-based routing proxy for multiple LLM providers.
  Privacy policy exists but as of early 2026 no formal DPA or SCCs are
  publicly available. Requests are forwarded to underlying providers
  (OpenAI, Anthropic, Google, Mistral, etc.) each with their own data
  handling. GDPR compliance is therefore dependent on both OpenRouter
  and the selected downstream model provider. Not recommended for
  processing personal data in corporate/regulated environments without
  a signed DPA. Suitable for development, prototyping, model comparison.
  Reference: https://openrouter.ai/privacy
dpa_available: false
tos_url: https://openrouter.ai/terms
privacy_policy_url: https://openrouter.ai/privacy
data_processing_regions:
  - us
data_retention_notes: >
  Requests forwarded to upstream providers. OpenRouter may log requests
  for billing and abuse prevention. Retention policy not formally published.
  Downstream provider retention policies apply per selected model.
status: active