QueryTempest

Privacy Policy

QueryTempest
Last Updated: August 26, 2025

1Data Controller Information

Data Controller: Vladyslav Butenko

Status: Private Entrepreneur registered in Ukraine

Contact: support@querytempest.com

Website: https://querytempest.com

For all privacy-related inquiries, please contact us at the email address above.

2Information We Collect

2.1 Information You Provide Directly

  • Account Information: Name, email address, and chosen password
  • Payment Information: Billing details processed through our secure payment provider
  • Communication Data: Messages sent through support channels or contact forms
  • Database Connection Information: Database credentials and connection parameters (encrypted and stored securely)

2.2 Information Collected Automatically

  • Usage Data: Queries submitted, features used, session duration, and interaction patterns
  • Technical Data: IP address, browser type, device information, operating system
  • Performance Data: Service response times, error rates, and system performance metrics
  • Cookies and Tracking: Session identifiers and preference settings

2.3 Database Query Information

  • Query Content: Natural language questions you submit to the Service
  • Generated SQL: SQL queries created by our AI system
  • Query Results: Data returned from your database connections (temporarily processed, not stored)

2.4 Information from Third Parties

  • Payment Processors: Transaction confirmations and payment status
  • Authentication Providers: If using third-party login services

3How We Use Your Information

3.1 Service Provision

  • • Providing database querying and analytics functionality
  • • Generating AI-powered SQL queries and interpretations
  • • Maintaining secure database connections
  • • Processing payments and managing subscriptions

3.2 Service Improvement

  • • Analyzing usage patterns to enhance Service performance
  • • Improving AI model accuracy and response quality
  • • Identifying and resolving technical issues
  • • Developing new features and capabilities

3.3 Communication

  • • Sending account-related notifications and updates
  • • Providing customer support and technical assistance
  • • Sharing important Service announcements
  • • Responding to inquiries and feedback

3.4 Legal and Security

  • • Complying with applicable laws and regulations
  • • Detecting and preventing fraud or abuse
  • • Enforcing our Terms of Service
  • • Protecting the rights and safety of users and third parties

4Legal Basis for Processing (GDPR)

For users in the European Economic Area, our legal basis for processing includes:

  • Contract Performance: Providing the Service as agreed in our Terms
  • Legitimate Interest: Service improvement, fraud prevention, and customer support
  • Consent: Marketing communications and optional features
  • Legal Obligation: Compliance with applicable laws and regulations

5Information Sharing and Disclosure

5.1 Service Providers

We may share information with trusted third-party providers who assist with:

  • • Payment processing and billing management
  • • Cloud hosting and infrastructure services
  • • Customer support and communication tools
  • • Analytics and performance monitoring

5.2 Legal Requirements

We may disclose information when required by law or to:

  • • Comply with legal processes, court orders, or regulatory requests
  • • Investigate potential violations of our Terms of Service
  • • Protect the rights, property, or safety of our users or others
  • • Prevent fraud, abuse, or illegal activities

5.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, user information may be transferred to the acquiring entity, subject to the same privacy protections.

5.4 What We Don't Share

  • • We never sell personal information to third parties
  • • We don't share database content or query results with unauthorized parties
  • • We don't use your data for advertising purposes

6Data Security

6.1 Security Measures

  • Encryption: All data transmissions use industry-standard encryption (TLS/SSL)
  • Database Security: Connection credentials encrypted at rest and in transit
  • Access Controls: Limited employee access on a need-to-know basis
  • Regular Audits: Periodic security assessments and vulnerability testing

6.2 Database Connection Security

  • Read-Only Access: We maintain only read access to connected databases
  • No Data Storage: Database content is not stored on our servers
  • Secure Connections: All database connections use encrypted protocols
  • Credential Protection: Database credentials encrypted using advanced encryption standards

6.3 Limitation of Security

While we implement robust security measures, no system is completely secure. You acknowledge that data transmission and storage carry inherent risks.

7Data Retention

7.1 Account Data

  • Active Accounts: Retained while your account remains active
  • Inactive Accounts: Deleted after 12 months of inactivity
  • Closed Accounts: Personal data deleted within 30 days of account closure

7.2 Query and Usage Data

  • Query Logs: Retained for 90 days for service improvement and support
  • Database Results: Not permanently stored; processed in real-time only
  • Analytics Data: Aggregated, anonymized data may be retained indefinitely

7.3 Legal Retention

We may retain information longer when required by law, pending legal proceedings, or for fraud prevention.

8Your Privacy Rights

8.1 General Rights

  • Access: Request information about data we process
  • Correction: Update or correct inaccurate personal information
  • Deletion: Request deletion of your personal data
  • Objection: Object to certain processing activities
  • Restriction: Request limitation of data processing

8.2 GDPR Rights (EU Users)

  • Data Portability: Receive your data in a structured, machine-readable format
  • Consent Withdrawal: Withdraw consent for consent-based processing
  • Supervisory Authority: File complaints with relevant data protection authorities
  • Automated Decision-Making: Object to solely automated decision-making

8.3 Exercising Rights

To exercise these rights, contact us at support@querytempest.com with:

  • • Clear identification of your request
  • • Verification of your identity
  • • Specific information about the data concerned

We will respond within 30 days of receiving valid requests.

9International Data Transfers

9.1 Transfer Locations

Your data may be processed in countries outside Ukraine, including:

  • • European Union (hosting and payment processing)
  • • United States (cloud services and analytics)

9.2 Transfer Safeguards

We ensure appropriate protection through:

  • Standard Contractual Clauses: EU-approved data transfer agreements
  • Adequacy Decisions: Transfers to countries with adequate protection levels
  • Vendor Assessments: Verification of third-party security measures

10Cookies and Tracking

10.1 Types of Cookies

  • Essential Cookies: Required for Service functionality
  • Performance Cookies: Help improve Service performance
  • Preference Cookies: Remember your settings and preferences

10.2 Cookie Management

You can control cookies through:

  • • Browser settings and preferences
  • • Opt-out links in cookie notices
  • • Third-party cookie management tools

11Children's Privacy

QueryTempest is not intended for individuals under 18 years of age. We do not knowingly collect personal information from minors. If we discover such information, we will promptly delete it and terminate the associated account.

12Third-Party Services

Our Service may contain links to third-party websites or integrate with external services. This Privacy Policy does not cover third-party practices. We recommend reviewing the privacy policies of any third-party services you use.

13California Privacy Rights (CCPA)

California residents have additional rights under the California Consumer Privacy Act:

  • Right to Know: Categories and sources of personal information collected
  • Right to Delete: Request deletion of personal information
  • Right to Opt-Out: Opt out of the sale of personal information (we don't sell data)
  • Non-Discrimination: Equal service regardless of privacy choices

14Changes to This Privacy Policy

We may update this Privacy Policy to reflect:

  • • Changes in our data practices
  • • New legal requirements
  • • Service enhancements or modifications

Notification of Changes:

  • • Updated "Last Updated" date
  • • Email notification for material changes
  • • In-app notifications when appropriate
  • • Continued use constitutes acceptance of changes

15Contact Information

15.1 General Inquiries

Email: support@querytempest.com

Subject Line: "Privacy Policy Inquiry"

15.2 Data Protection Officer

For GDPR-related inquiries, contact our designated representative at the same email address with subject line "GDPR Request."

15.3 Supervisory Authorities

EU users may contact:

  • • Ukrainian Data Protection Authority (if applicable)
  • • Your local EU Data Protection Authority

16Effective Date and Acceptance

This Privacy Policy is effective as of the "Last Updated" date above. By using QueryTempest, you acknowledge that you have read, understood, and agree to this Privacy Policy.