Privacy Policy

Effective Date: May 22, 2026 • Last Updated: May 22, 2026

1. Introduction

Decyra (“we”, “our”, or “us”) operates the website and services located at decyra.systems (collectively, the “Service”).

We respect your privacy and are committed to protecting it. This Privacy Policy describes the types of information we may collect from you or that you may provide when you connect your databases and use Decyra, and our practices for collecting, using, maintaining, protecting, and disclosing that information.

2. Information We Collect

We collect several types of information from and about users of our Service:

  • Account Information: When you sign up, we collect your email address.
  • Database Metadata: To enable natural language querying, Decyra reads your database schema (table names, column names, data types, and key relationships).
  • Temporary Query Data: When you ask questions, our system executes queries against your connected database and returns the results to you. Query results are processed dynamically to formulate answers.
  • Usage & Diagnostics: We collect info on how you use our app, including query history, performance metrics, and device identifiers via Vercel Analytics.

3. How We Use Information

We use the information we collect to:

  • Provide, maintain, and improve the Service.
  • Generate SQL queries based on your natural language inputs.
  • Retrieve read-only data from your database to formulate explanations.
  • Send you technical notices, updates, and support messages.
  • Monitor and analyze usage trends to improve user experience.

4. Security & Database Safeguards

Our Read-Only Mandate

Decyra connects to customer databases using strictly read-only credentials. We do not require and will never ask for write permissions (INSERT, UPDATE, DELETE). This prevents any potential data modification or deletion risks.

We employ industry-standard administrative, technical, and physical security measures to protect your data:

  • Database credentials are encrypted at rest using AES-256 encryption.
  • All network traffic between Decyra and your database is encrypted using TLS.
  • We support secure connection options, including IP whitelisting and SSH tunneling, to limit database access to authorized Decyra servers.

5. Data Retention & Privacy

We do not copy, replicate, or store your database's records in our own databases. When a query is run, the records are held in volatile memory to construct the answer and then discarded. We only store database connection configuration and schema metadata.

6. Third-Party Processors

We use reputable third-party processors to host our platform, provide authentication, and process AI operations:

  • Supabase: For user authentication and database storage of account credentials.
  • Vercel: For application hosting and Vercel Analytics.
  • OpenAI / Anthropic: For natural language processing and SQL generation. We sign agreements ensuring your schema information and queries are not used to train models.

7. Your Rights & Choices

Depending on your location, you may have specific rights regarding your personal data:

  • The right to access, update, or delete your account information.
  • The right to disconnect your database at any time, which immediately deletes all cached schema metadata.
  • The right to opt-out of marketing communications.

8. Changes to This Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the “Effective Date” at the top of this policy.

9. Contact Us

If you have any questions or concerns about this Privacy Policy or our practices, please contact us at:

Email: support@decyra.systems