Privacy Policy

Last updated: May 17, 2025

Your privacy is fundamental to our service. We designed InstanceDB to never access your database contents while providing enterprise-grade security.

1 Your Data Is Yours

  • We do not access, view, or modify the contents of any databases you create.
  • Database credentials are generated and stored only in your browser or client; we never log, store, or transmit them.
  • All read/write operations occur directly between your application and your database container.

2 Minimal Metadata Collected

  • We store only your account email, hashed password, and container metadata (ID, host, port, timestamps).
  • No query logs, table names, or content from your databases ever pass through our systems.

3 Security Measures

  • All API calls use HTTPS and JWT authentication.
  • We enforce strong passwords and rotate signing keys regularly.
  • Containers run in isolated Docker networks with randomized ports.
  • Regular security audits and penetration testing.

4 Data Retention & Deletion

  • Deleting a database immediately destroys its container and data irreversibly.
  • Deleting your account removes all associated metadata; no volumes remain.
  • Backups are purged within 24 hours of database deletion.

5 No Sharing or Selling

We will never share or sell your personal information or database metadata to third parties.

The only exceptions are legal requirements where we would notify you unless prohibited by law.

6 Contact Us

For privacy-related questions, contact our Data Protection Officer at privacy@instancedb.com.