Contents
What We Collect
TuneVault collects the minimum data required to operate the service.
| Category | Data | Why |
|---|---|---|
| Account | Email address, name (from Google OAuth or magic-link sign-in) | Authentication and communication |
| Connection metadata | Oracle host/port, connection type, proxy URL | Establishing database connections |
| Health check results | Check scores, findings, AI analysis text | Delivering diagnostic reports and trend tracking |
| Payment data | Order ID, payment status, plan tier (via Razorpay) | Subscription management |
| Usage analytics | Page views, feature interactions, hashed IP | Product improvement (no cross-site tracking) |
| Alert configuration | Alert email addresses, severity thresholds, schedules | Autonomous monitoring and notifications |
What We Do NOT Collect
Oracle credentials are never stored in plaintext. Database usernames and passwords exist only in memory during an active connection and are immediately discarded. We never log, cache, or export raw database credentials.
- NEVER Raw Oracle data from your database (tables, rows, business data)
- NEVER Oracle passwords or private keys in plaintext (proxy API keys are AES-256-GCM encrypted at rest)
- NEVER Credit card numbers (Razorpay handles payment data — we see only order/status metadata)
- NEVER SSH private keys in plaintext (encrypted with AES-256-GCM before storage)
- NEVER Cross-site tracking or third-party advertising pixels
How We Use Your Data
- Service delivery: Running health checks, generating reports, sending alert emails, and displaying your diagnostic history.
- AI analysis: Health check results are sent to OpenAI (via Polsia's proxy) to generate natural-language summaries. Results are not used to train AI models.
- Billing: Order and subscription status from Razorpay is stored to manage your plan and quota.
- Product improvement: Aggregated, anonymized usage data helps us understand which features are most valuable.
- Security: Connection attempt logs and audit trails protect your account and detect unauthorized access.
We do not sell, rent, or trade your personal data to any third party for marketing purposes.
Third-Party Services
| Service | Purpose | Data Shared |
|---|---|---|
| Razorpay | Payment processing | Payment amount, order ID (Razorpay handles card data directly) |
| Google OAuth | Sign-in authentication | Google profile email and name (with your consent) |
| Postmark / Polsia email proxy | Transactional email (magic links, alerts, receipts) | Your email address and alert content |
| OpenAI (via Polsia proxy) | AI-generated summaries of health check results | Anonymized check result data — no PII, no raw database content |
| Cloud Database Provider | Database hosting | All stored application data (hosted in their cloud) |
| Cloud Hosting Provider | Application hosting | Application logs and server telemetry |
Each third party processes data under their own privacy policy. We select vendors that meet industry-standard security requirements.
Data Retention
- Active accounts: Data is retained while your account is active.
- Health check history: Check results and AI analysis are retained for up to 12 months, then automatically purged.
- Deleted accounts: All personal data is deleted within 30 days of account deletion. Aggregated, anonymized analytics data may be retained indefinitely.
- Payment records: Payment metadata is retained for 7 years for financial compliance requirements.
- Audit logs: SSH execution and control audit logs are retained for 90 days for security and compliance.
Security
Security is core to TuneVault's purpose — we're trusted with access to production Oracle databases. We take that seriously:
- All data in transit is encrypted via TLS 1.2+
- Oracle proxy API keys and SSH private keys are encrypted at rest with AES-256-GCM
- Database credentials are never persisted — they exist only in-process during active connections
- All queries use parameterized statements (no SQL injection risk)
- Session tokens are cryptographically signed and expire automatically
- All EBS control actions are validated server-side against a whitelist and logged to an append-only audit trail
For a full security overview, see our Security & Trust page.
Your Rights (GDPR / CCPA)
Depending on your jurisdiction, you may have the following rights:
| Right | GDPR (EU/UK) | CCPA (California) |
|---|---|---|
| Access your data | YES | YES |
| Request deletion | YES | YES |
| Export your data | YES | YES |
| Correct inaccurate data | YES | YES |
| Opt out of sale | N/A (we don't sell data) | YES (we don't sell) |
| Lodge a complaint | YES (with your supervisory authority) | N/A |
To exercise any of these rights, email privacy@tunevault.app. We will respond within 30 days. For account deletion, you may also delete your account directly from your account settings — data deletion follows within 30 days.
Contact
Privacy inquiries: privacy@tunevault.app
General contact: hello@tunevault.app
We may update this policy as the product evolves. Material changes will be communicated via email to registered users. The effective date at the top of this page reflects the latest revision.