Privacy Policy

Effective Date: 2025-06-01

1. Introduction

ER Diagram ("we", "us", "our") respects your privacy. This Privacy Policy explains how we collect, use, and protect your information when you use our Service.

2. Information We Collect

Information you provide:

  • Email address (for account registration)
  • Password (stored securely using hashing)
  • Diagram data you create and save

Information collected automatically:

  • Browser type and version
  • IP address
  • Usage patterns (pages visited, features used)
  • Cookies for session management and locale preferences

3. How We Use Your Information

  • To provide and maintain the Service
  • To authenticate your identity and manage your account
  • To process payments through third-party providers
  • To send transactional emails (verification codes)
  • To improve the Service and fix issues

4. Data Sharing

We do not sell your personal data. We may share data with:

  • Payment processors (Stripe, Creem) — to process subscriptions
  • Email service (Resend) — to deliver verification emails
  • Hosting providers — to store and serve the application

These providers only receive the minimum data necessary to perform their services.

5. Data Storage and Security

Your data is stored on secure servers. We use encryption in transit (HTTPS) and at rest where applicable. Passwords are hashed and never stored in plain text.

6. Cookies

We use cookies for:

  • Session authentication
  • Locale/language preferences

We do not use third-party tracking cookies for advertising purposes.

7. Your Rights

You have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Delete your account and associated data
  • Export your diagram data (JSON, SQL, DBML)

To exercise these rights, contact us at [email protected].

8. Data Retention

We retain your data for as long as your account is active. After account deletion, data is removed within 30 days. Guest data may be retained for up to 90 days of inactivity.

9. Children's Privacy

The Service is not intended for children under 13. We do not knowingly collect data from children under 13.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify registered users of significant changes via email.

11. Contact

For privacy-related inquiries, contact us at [email protected].