Back to Home
LegalPrivacy Policy

Privacy Policy

We are committed to protecting your privacy and ensuring you have control over your data.

Last updated: December 14, 2025

1. Introduction

DataLense ("we," "our," or "us") respects your privacy and is committed to protecting the personal information you share with us. This Privacy Policy explains how we collect, use, process, and disclose your information when you access or use our semantic querying portal and related services (collectively, the "Service").

Note: We are a Data Controller for your account information (like your email and name). However, for the data you connect to our platform (your "Connected Data Sources"), we act as a Data Processor. You retain full ownership and control over your connected data.

2. Information We Collect

2.1 Information You Provide

  • Account Data: Name, email address, password (hashed), and company/organization details provided during signup.
  • Payment Data: Billing address and payment method details. Note that sensitive card details are handled directly by our payment processors (e.g., Stripe, Razorpay) and are not stored on our servers.
  • Support Communications: Content of messages you send to us for support or feedback.

2.2 Data from Connected Sources

When you connect a data source (e.g., PostgreSQL, Snowflake, BigQuery), we process:

  • Schema Metadata: Table names, column names, and data types to understand your data structure.
  • Query Samples: We may analyze a small sample of rows to better understand column values for accurate semantic mapping.
  • Connection Credentials: Encrypted connection strings and authentication tokens required to connect to your database.

2.3 Automatically Collected Data

  • Usage Logs: Search queries, features used, and time spent on the platform.
  • Device Data: IP address, browser type, operating system, and device identifiers.

3. How We Use Your Data

We use your information for the following purposes:

  • To provide and maintain the Service.
  • To process and complete transactions and send related information, including invoices.
  • To improve our natural language processing (NLP) models (using anonymized, aggregate query data only—never your raw business data).
  • To detect and prevent fraudulent use and security incidents.
  • To comply with legal obligations.

5. Data Sharing and Disclosure

We strictly do not sell your personal data. We only share data in the following circumstances:

  • Service Providers: We use trusted third-party providers for hosting (e.g., AWS, Vercel), analytics, and payments. They process data on our behalf under strict confidentiality agreements.
  • Legal Compliance: If required by law, subpoena, or other legal process.
  • Business Transfers: In connection with a merger, acquisition, or sale of assets, provided the acquirer agrees to privacy terms materially similar to this policy.

6. Data Retention

We retain your account information for as long as your account is active. Upon account deletion:

  • Connection credentials are permanently deleted immediately.
  • Schema metadata is deleted within 30 days.
  • Billing records are retained for 7 years as required by tax and accounting laws.

7. Security Measures

We employ industry-standard security measures to protect your data, including:

  • Encryption at Rest: All sensitive data, including database credentials, is encrypted using AES-256.
  • Encryption in Transit: All data transmitted between your browser, our servers, and your data sources is encrypted via TLS 1.2+.
  • Access Controls: Strict role-based access control (RBAC) and multi-factor authentication (MFA) for our internal staff.

8. Your Rights (GDPR & CCPA)

Depending on your location, you may have the following rights:

Access & Portability

Request a copy of your personal data in a structured, machine-readable format.

Rectification

Update or correct inaccuracies in your personal data.

Deletion (Right to be Forgotten)

Request complete deletion of your account and personal data.

Opt-Out

Opt-out of marketing communications or sale of data (though we do not sell data).

To exercise these rights, please contact us at privacy@datalense.app. We will respond within 30 days.

9. Cookie Policy

We use essential cookies to maintain your session and ensure the site works correctly. We may also use analytical cookies (e.g., Google Analytics) to understand how our site is used, but only with your consent where required by law.

10. Children's Privacy

Our Service is intended for business use and is not directed at children under 18. We do not knowingly collect personal information from children.

11. International Transfers

Your information may be transferred to and maintained on computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ. We ensure appropriate safeguards (such as Standard Contractual Clauses) are in place for such transfers.

12. Contact Us

If you have questions about this Privacy Policy, please contact our Data Protection Officer at:

Email: privacy@datalense.app

Address: 123 Tech Park, Innovation Street, Digital City, 10001

Questions?

If you have any questions about this privacy policy, please don't hesitate to reach out to our legal team.