Privacy Policy

Information you provide directly

When you create an account, join the waitlist, or contact us, we collect information such as your name, email address, company name, and any messages you send us.

Information from connected data sources

When you connect a database or data source to desic, we access the data necessary to answer your questions and generate analytics. We do not store your raw database credentials in plaintext — connections use OAuth where available or encrypted credential vaults. We never read, copy, or retain your underlying business data beyond what is necessary to fulfill your query in the moment.

Usage and technical data

We automatically collect information about how you use desic, including page views, features accessed, query patterns (not query results), browser type, operating system, IP address, and device identifiers. This data helps us improve the product.

Cookies and similar technologies

We use cookies and similar tracking technologies to maintain your session, remember your preferences, and analyze product usage. You can control cookies through your browser settings.

To operate and improve the service

We use your information to provide desic's features, authenticate you, process queries, send alerts and reports, and improve our AI models. We may use anonymized, aggregated query patterns to train and improve our models — never your raw data.

To communicate with you

We send transactional emails (account confirmations, password resets, query results, scheduled reports) and, with your consent, product updates and announcements. You can unsubscribe from marketing emails at any time.

To ensure security and prevent abuse

We monitor usage to detect fraud, unauthorized access, and abuse of our platform. We may use your information to enforce our Terms of Service.

We do not sell your data

desic does not sell, rent, or trade your personal information or your business data to third parties for their own marketing or commercial purposes.

Service providers

We share information with trusted third-party service providers who help us operate desic — including cloud infrastructure (Vercel, AWS), analytics, email delivery, and payment processing (Stripe). These providers are contractually bound to use your data only to provide services to us.

Legal requirements

We may disclose your information if required by law, court order, or governmental authority, or if we believe disclosure is necessary to protect the rights, property, or safety of desic, our users, or the public.

Business transfers

If desic is acquired, merges with another company, or sells substantially all of its assets, your information may be transferred as part of that transaction. We will notify you before your information is transferred and becomes subject to a different privacy policy.

Account data

We retain your account information for as long as your account is active or as needed to provide you services. If you delete your account, we will delete or anonymize your personal information within 30 days, except where we are required to retain it for legal purposes.

Query history

Saved questions, dashboards, and alert configurations are retained for the life of your account. You can delete individual items at any time from within the product.

Logs

Server and security logs are retained for up to 90 days.

How we protect your data

We use industry-standard security measures including TLS encryption in transit, AES-256 encryption at rest for credential stores, SOC 2-aligned infrastructure, and regular security reviews. Access to production systems is limited to authorized personnel.

Your responsibilities

You are responsible for maintaining the confidentiality of your account credentials. Please notify us immediately at security@desic.xyz if you suspect unauthorized access to your account.

Access, correction, and deletion

You have the right to access the personal information we hold about you, correct inaccuracies, and request deletion. You can do most of this directly within your account settings. For requests we cannot fulfill in-product, email us at privacy@desic.xyz.

Data portability

You can export your saved questions, dashboards, and alert configurations from within desic at any time.

GDPR and CCPA

If you are located in the European Economic Area, you have additional rights under GDPR, including the right to object to processing and the right to lodge a complaint with your local data protection authority. California residents have rights under the CCPA, including the right to know what personal information we collect and the right to opt out of sale (which we do not engage in).

desic is not directed at children under the age of 16. We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a child, please contact us at privacy@desic.xyz and we will delete it promptly.

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email or by displaying a prominent notice within the product. The date at the top of this page indicates when this policy was last revised. Your continued use of desic after changes become effective constitutes your acceptance of the revised policy.

If you have questions or concerns about this Privacy Policy or our data practices, please contact us at privacy@desic.xyz or write to us at: desic, Inc., privacy inquiries.