Regional policy
Set and read the project's data-residency policy. Requests that would route to a forbidden region are denied before any provider call.
A regional policy constrains where a project's requests may execute. When a resolved region is not on the allow-list, inference is denied with region_not_allowed (403) before any provider call. A policy with no concrete allow-list (e.g. global) imposes no restriction. Policy ids are prefixed rgn_. See the regional policy guide and GDPR and CCPA.
All requests require a bearer API key. See authentication.
Set the policy
POST /v2/regional-policy
Installs (or replaces) the project's regional policy.
region_policystringrequiredThe policy shorthand, e.g. us_only, eu_only, or global. Combined with allowed_regions to form the effective allow-list.
allowed_regionsarrayExplicit regions to allow, e.g. ["us", "eu"]. Defaults to an empty list.
data_boundarystringdefault: projectThe data-boundary scope the policy enforces.
curl https://api.zumik.ai/v2/regional-policy \
-H "Authorization: Bearer $ZUMIK_API_KEY" \
-H "Content-Type: application/json" \
-d '{
"region_policy": "eu_only",
"allowed_regions": ["eu"],
"data_boundary": "project"
}'{
"id": "rgn_01jy7npq89s1t2u3v4w5x6y7z0",
"object": "regional_policy",
"project_id": "prj_01jy7n0a4c8m2t6v9q3wrxk7bd",
"region_policy": "eu_only",
"allowed_regions": ["eu"],
"data_boundary": "project",
"updated_at": "2026-06-15T16:36:02Z"
}idstringOpaque policy id, prefixed rgn_.
objectstringAlways regional_policy.
project_idstringThe owning project.
region_policystringThe policy shorthand.
allowed_regionsarrayThe explicit allow-list.
data_boundarystringThe enforced data boundary.
updated_atstringRFC 3339 update timestamp.
Read the policy
GET /v2/regional-policy
curl https://api.zumik.ai/v2/regional-policy \
-H "Authorization: Bearer $ZUMIK_API_KEY"Returns the policy object, or 404 when no policy is configured.
Errors
| Status | Code | When |
|---|---|---|
| 401 | invalid_api_key | Missing or invalid API key. |
| 404 | invalid_request_error | No regional policy is configured for this project. |
A denied generation returns 403 region_not_allowed. See the full table on errors.
Subscription credentials
Attach a Claude Code or ChatGPT Codex subscription so eligible traffic runs against your bundled allowance at the provider's cache-discounted rate.
Retention profile
Set and read how much of a request Zumik retains. The default is metadata-only; opt into tokenized or encrypted full-fidelity traces when you need them.