Privacy Policy

This Privacy Policy explains how DB Platform ("we", "us", or "our") collects, uses, stores, and protects personal data when you use Dataryn.com and its database management services (the "Service").

1. Data Controller

• Legal name: DB Platform
• Country: United Kingdom
• City: Wolverhampton
• Website: https://dataryn.com
• Contact email: contact@dataryn.com

DB Platform is the data controller for personal data processed in connection with user accounts and platform operations.

2. Personal Data We Collect

We may collect and process the following categories of data:

a) Account Information

• Email address
• Account credentials (passwords are stored in hashed form only)
• API tokens and webhook URLs (if you configure them for your databases)

b) Technical & Security Data

• IP address
• Session identifiers
• Authentication logs
• Security and audit logs

c) User Content

• Files uploaded by users (including SQL, CSV, Excel, or SQLite files for import or conversion)
• Data stored inside databases created and managed by users

We do not inspect or analyse the content of user databases beyond what is technically necessary to provide the Service (e.g. backups, API access).

d) Payment & Subscription Data

• Subscription status and plan information
• Payment transaction identifiers

Payments are processed by Stripe. We do not store or process full payment card details.

3. How We Use Your Data

• To create and manage user accounts
• To provide and operate the database platform (databases, tables, REST API, webhooks, backups)
• To run the free data format converter (JSON, CSV, Excel, MySQL, SQLite, MongoDB)
• To authenticate users and secure the Service
• To process subscriptions and payments
• To send service-related emails (e.g. password resets, email verification, security alerts)
• To send marketing emails such as newsletters and promotions (only if you opt in)
• To maintain system logs, prevent abuse, and ensure platform integrity
• To comply with legal and regulatory obligations

4. Lawful Bases for Processing (UK GDPR / GDPR)

• Contractual necessity – to provide the Service you request
• Legitimate interests – for security, fraud prevention, and service reliability
• Legal obligation – for accounting, tax, and regulatory compliance
• Consent – for marketing communications and non-essential cookies

You may withdraw consent at any time where consent is the lawful basis.

5. Cookies & Analytics

We use cookies and similar technologies for:

• User authentication and session management
• Security and abuse prevention
• Website analytics (where permitted by law)

6. Marketing Communications

We may send marketing emails (such as newsletters or promotions) only if you have opted in. You can opt out at any time via the unsubscribe link in the email or by contacting us at contact@dataryn.com.

7. Data Retention

We retain personal data only for as long as necessary:

• Account data: for the duration of the active account
• Security and audit logs: for a limited period appropriate for security and compliance
• Billing records: as required by law

8. User Databases, Deletion & Data Loss

Users have full control over the databases they create.

• When a user deletes a database, the data is permanently removed from our systems.
• Deleted databases cannot be recovered unless a backup was previously created by the user.
• We are not responsible for data loss resulting from user-initiated deletion.
• Users are solely responsible for creating and maintaining their own backups.

9. Controller vs Processor

Users may store personal data relating to third parties in their databases. In such cases the user is the data controller for that data and DB Platform acts as a data processor. Users are responsible for ensuring that any personal data they store complies with applicable data protection laws.

10. Data Sharing

We do not sell personal data. We may share data with infrastructure and hosting providers, payment processors (Stripe), email and analytics providers, and legal or regulatory authorities where required by law. Third parties are required to process data securely and lawfully.

11. International Data Transfers

Personal data may be processed outside the United Kingdom where necessary to provide the Service. Where applicable, appropriate safeguards are applied in accordance with UK GDPR.

12. Data Security

We implement appropriate technical and organisational measures, including encrypted connections (HTTPS), secure authentication, and access controls. No system is completely secure; users acknowledge this inherent risk.

13. Your Rights

Under UK GDPR you may have the right to access, correct, delete, or restrict processing of your data, to withdraw consent, and to lodge a complaint with the UK ICO. Contact us at contact@dataryn.com.

14. Children

The Service is not intended for children. We do not knowingly collect personal data from minors.

15. Changes to This Policy

We may update this Privacy Policy from time to time. The latest version will be published on this page.

16. Contact

For questions about this Privacy Policy or data protection: contact@dataryn.com. Location: Wolverhampton, United Kingdom.