Legal

Privacy Policy

Last updated: December 2024

1. Introduction

QueryMind ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our desktop application and services.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

  • Email address
  • Name (optional)
  • Profile picture (if using OAuth)
  • Authentication provider information

2.2 Usage Data

We automatically collect certain information about your use of our services:

  • AI query usage statistics (count only, not query content)
  • Feature usage patterns
  • Error logs for troubleshooting
  • Device and application version information

2.3 Database Connections

Database connection credentials are stored locally on your device using your operating system's secure keychain (macOS Keychain, Windows Credential Manager, or Linux Secret Service). We do not have access to your database credentials or the data in your databases.

3. How We Use Your Information

  • Provide, maintain, and improve our services
  • Process your subscription and payments
  • Send important notifications about your account
  • Respond to your inquiries and support requests
  • Analyze usage patterns to improve our product
  • Detect and prevent fraud or abuse

4. AI Query Processing

When you use AI features to generate SQL queries:

  • Your database schema metadata may be sent to AI providers (OpenAI or Anthropic) to generate accurate queries
  • Your natural language prompts are processed by AI providers
  • We do not store the content of your queries or AI responses on our servers
  • If you use your own API keys, queries go directly to the AI provider

5. Data Security

We implement industry-standard security measures including:

  • End-to-end encryption for sensitive data transmission
  • Secure storage using OS-level keychains for credentials
  • Regular security audits and updates
  • JWT-based authentication with short-lived tokens

6. Third-Party Services

We use the following third-party services:

  • LemonSqueezy: Payment processing
  • OpenAI/Anthropic: AI query generation
  • Google/GitHub: OAuth authentication
  • Cloudflare: Content delivery and security

7. Your Rights

You have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Delete your account and associated data
  • Export your data
  • Opt-out of marketing communications

8. Data Retention

We retain your account information for as long as your account is active. If you delete your account, we will delete your personal information within 30 days, except where required by law to retain certain data.

9. Children's Privacy

Our services are not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

11. Contact Us

If you have any questions about this Privacy Policy, please contact us at:

[email protected]