What is an AI cost control proxy?

An AI cost control proxy sits between your application and LLM providers like OpenAI or Anthropic. It enforces spend caps, rate limits, and security filters on every request, and can actively reduce costs through smart routing and semantic caching.

How do I reduce my OpenAI API costs?

Leashly reduces OpenAI costs through smart routing (automatically using cheaper models for simple tasks), semantic caching (returning cached responses for similar prompts at zero cost), and prompt compression (shrinking system prompts before they reach the model). Average savings are 60%.

How do I add rate limiting to my OpenAI API calls?

With Leashly, add one line of code — change your OpenAI base URL to https://www.leashly.dev/api/proxy and your API key to your Leashly proxy key. Then configure rate limiting rules in the dashboard with no additional code changes.

What is prompt injection and how do I prevent it?

Prompt injection is an attack where malicious users insert instructions into prompts to hijack AI behavior. Leashly scans every request against 50+ known attack patterns and blocks them before they reach the model.

Does Leashly work with Anthropic Claude?

Yes. Leashly supports OpenAI, Anthropic Claude, Google Gemini, and any OpenAI-compatible endpoint.

How much latency does an LLM proxy add?

Leashly adds less than 5ms of overhead in typical operation. Rule evaluation happens in-memory with no additional database round-trips on the hot path.

Privacy Policy

1. Who we are

Leashly ("we", "us", "our") is an AI cost-control proxy service operated by Sumit Sheokand. We are reachable at support@leashly.dev.

2. What we collect

Account data: Email address and password (hashed) when you register.

API keys: Your LLM provider API keys are encrypted at rest using AES-256-CBC. We never log or expose them in any response.

Request metadata: Token counts, costs, model names, latency, and flag status for each proxied request. We do NOT store prompt content or response content.

Billing data: Payment is handled by Stripe. We store only your Stripe customer ID — no card numbers ever touch our servers.

Usage data: Analytics about how you use the dashboard via Google Analytics.

Cookies: Session cookies for authentication and analytics cookies. See Section 6.

3. How we use your data

✓Provide and operate the Leashly proxy service
✓Show you usage analytics and cost breakdowns
✓Send email alerts when you configure spend or rate limit notifications
✓Process payments via Stripe
✓Improve the service and fix bugs
✓Respond to support requests

4. Data sharing

We do not sell your data. We share data only with:

·Supabase — database hosting (US servers)
·Stripe — payment processing
·Resend — transactional email delivery
·Vercel — hosting and deployment
·Google Analytics — anonymous usage analytics

5. Data retention

Free plan: Request logs retained for 7 days.

Pro plan: Request logs retained for 90 days.

Account data: Retained until you delete your account.

Delete your account at any time from Dashboard → Settings → Danger Zone.

6. Cookies

Essential cookies: Required for authentication and session management. Cannot be disabled.

Analytics cookies: Google Analytics. You can opt out via our cookie banner or browser settings.

We do not use advertising or tracking cookies.

7. Your rights

✓Access the personal data we hold about you
✓Request correction of inaccurate data
✓Request deletion of your data
✓Export your data in a portable format
✓Opt out of analytics tracking

To exercise any of these rights, email support@leashly.dev.

8. Security

We use AES-256-CBC encryption for API keys, bcrypt for passwords, HTTPS for all connections, and Row Level Security on our database.

9. Changes to this policy

We may update this policy occasionally. We'll notify you by email or a notice on the dashboard for significant changes.

10. Contact

Questions? Email support@leashly.dev.