Privacy Policy

Information We Collect

Information you provide

When you create an account, we collect your name, email address, and organization name. When you subscribe to a paid plan, we collect billing information including payment details (processed by our payment provider; we do not store full credit card numbers).

Information collected automatically

When you visit the Site or use the Service dashboard, we automatically collect device and usage information including your IP address, browser type, operating system, referring URLs, pages viewed, and interactions with the Site. We collect this information using cookies, log files, and similar technologies.

Information collected through the Service

The data dbtrail collects through the Service depends on your deployment mode:

Cloud mode: The bintrail capture agent transmits MySQL binlog data to dbtrail-managed infrastructure. This may include table names, column names, row values (before and after images), timestamps, database user names, client hostnames, and schema definitions. This data is processed solely to provide the Service.

VPC mode (“dbtrail in your VPC”): Your binlog data, row values, and database credentials remain entirely within your infrastructure. dbtrail receives only structural metadata: schema definitions, table names, event counts, timestamps, and operational telemetry. We never receive your MySQL credentials, SSH keys, row-level data, or binlog payloads in VPC mode.

In both modes, the capture agent is open source and auditable. You can verify exactly what data is transmitted.

How We Use Your Information

We use your information to:

• Provide, maintain, and improve the Service
• Process transactions and send billing-related communications
• Send technical notices, updates, and security alerts
• Respond to your requests, comments, and questions
• Monitor and analyze usage patterns to improve the Site and Service
• Detect, investigate, and prevent fraudulent or unauthorized activity

We do not use your database content (binlog data, row values, schemas) for any purpose other than providing the Service. We do not train machine learning models on your data. We do not sell your data.

How We Share Your Information

We share your information only in the following circumstances:

Service providers: We use third-party vendors for hosting, payment processing, email delivery, and analytics. These providers access your information only to perform services on our behalf and are contractually obligated to protect it.

Legal requirements: We may disclose your information if required by law, regulation, legal process, or governmental request, or to protect the rights, property, or safety of dbtrail, our users, or others.

Business transfers: In connection with a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you before your information becomes subject to a different privacy policy.

We do not share, sell, or rent your personal information to third parties for their marketing purposes.

Data Retention

Account data: We retain your account information for as long as your account is active. Upon cancellation, all account data and indexed content is permanently deleted within 30 days.

Service data (Cloud mode): Binlog data and indexed content are retained according to the retention period configured in your plan. Upon account cancellation, all data is deleted within 30 days.

Service data (VPC mode): Your binlog data and indexed content reside in your infrastructure. Only structural metadata stored by dbtrail is deleted within 30 days of cancellation.

Usage logs: Server logs and analytics data may be retained for up to 12 months for security and operational purposes.

Data Security

We implement appropriate technical and organizational measures to protect your information, including encryption in transit (TLS) and at rest, access controls, and regular security reviews. In VPC mode, your sensitive data never leaves your infrastructure, providing an additional layer of protection.

However, no method of transmission or storage is completely secure. We cannot guarantee absolute security of your information.

Cookies

We use cookies and similar technologies for essential site functionality, authentication, and analytics. You can configure your browser to refuse cookies, but some features of the Site may not function properly without them.

Your Rights

Depending on your location, you may have the following rights regarding your personal information:

• Access: Request a copy of the personal information we hold about you
• Correction: Request that we correct inaccurate or incomplete information
• Deletion: Request that we delete your personal information
• Portability: Request a machine-readable copy of your information
• Objection: Object to our processing of your personal information
• Restriction: Request that we restrict processing of your information

To exercise any of these rights, contact us at privacy@dbtrail.com. We will respond within 30 days.

For European Union residents

If you are located in the EU/EEA, we process your personal information on the following legal bases: performance of a contract (providing the Service), legitimate interests (improving the Service, security, fraud prevention), and consent (where applicable). Your information may be transferred to the United States. By using the Service, you acknowledge this transfer.

For California residents

Under the California Consumer Privacy Act (CCPA), California residents have the right to know what personal information we collect, request deletion, and opt out of the sale of personal information. We do not sell personal information. To exercise your rights, contact us at privacy@dbtrail.com.

Do Not Track

Some browsers include a “Do Not Track” feature. At this time, we do not respond to Do Not Track signals.

Children

The Site and Service are not intended for individuals under the age of 16. We do not knowingly collect personal information from children.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on the Site or by email. Your continued use of the Service after changes are posted constitutes acceptance.

Contact

For questions about this Privacy Policy or to exercise your privacy rights, contact us at:

Email: privacy@dbtrail.com