Privacy Policy

Your data security and privacy are our top priorities

Last updated: December 8, 2025

Table of Contents

Overview

DBOpt AI ("we", "us", or "our") is committed to protecting your privacy and ensuring the security of your data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered database intelligence platform.

By using DBOpt AI, you agree to the collection and use of information in accordance with this policy. We are committed to compliance with GDPR, CCPA, SOC 2, and other data protection regulations.

Information We Collect

1. Personal Information

When you create an account, we collect:

  • Full name and email address
  • Organization name and business information
  • Payment information (processed securely via Stripe)
  • Account credentials (encrypted and hashed)

2. Database Connection Data

To provide our services, we collect:

  • Database credentials (encrypted with AES-256-CTR and HMAC-SHA256)
  • Database metadata and schema information
  • Query patterns and performance metrics
  • Analysis results and recommendations

3. Usage Information

We automatically collect:

  • IP addresses and device information
  • Browser type and operating system
  • Page views and feature usage
  • Error logs and performance data

How We Use Your Data

We use your information for the following purposes:

  • Service Delivery: To provide database analysis, optimization recommendations, and AI-powered insights
  • Account Management: To create and manage your account, process payments, and provide customer support
  • Security: To detect and prevent fraud, unauthorized access, and security threats
  • Improvement: To analyze usage patterns and improve our platform features and performance
  • Communication: To send service updates, security alerts, and marketing communications (with your consent)
  • Compliance: To comply with legal obligations and enforce our Terms of Service

Data Security

We implement industry-leading security measures to protect your data:

Encryption

AES-256-CTR encryption for database credentials, TLS 1.3 for data in transit

Authentication

HMAC-SHA256 authentication, HTTP-only cookies, CSRF protection

Access Control

Role-based access control (RBAC), multi-factor authentication (MFA) support

Compliance

SOC 2 Type II certified, GDPR and CCPA compliant

Data Sharing and Third Parties

We do not sell your personal information. We may share data with:

  • Service Providers: Stripe (payment processing), OpenAI (AI analysis), cloud infrastructure providers
  • Legal Compliance: When required by law, court order, or government regulation
  • Business Transfers: In the event of a merger, acquisition, or sale of assets
  • Your Consent: When you explicitly authorize us to share information

All third-party service providers are contractually obligated to protect your data and use it only for specified purposes.

Your Privacy Rights

Depending on your location, you have the following rights:

1
Access:

Request a copy of your personal data

2
Correction:

Update or correct inaccurate information

3
Deletion:

Request deletion of your personal data (subject to legal obligations)

4
Portability:

Export your data in a machine-readable format

5
Opt-Out:

Unsubscribe from marketing communications

To exercise these rights, contact us at privacy@dbopt.ai

Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

Email: privacy@dbopt.ai

Address: DBOpt AI Data Privacy Office, 123 Tech Boulevard, San Francisco, CA 94105

Data Protection Officer: dpo@dbopt.ai