Privacy Policy

Last updated: April 20, 2026

1. Scope & Applicability

This Privacy Policy describes how LunoDB ("we", "us", "our") processes information when you use the LunoDB desktop application, the LunoDB mobile application for iOS and Android, and the LunoDB Cloud connection service (collectively, the "Software") and related purchase, licensing, and support flows. Our marketing website may provide additional notices (e.g., cookies) where applicable.

2. Information We Collect

2.1 Information You Provide

  • Account & Purchase: email address and license details when you purchase or register the Pro license (desktop only).
  • Mobile Waitlist: email address and platform preference (iOS, Android, or both) if you join the mobile app waitlist.
  • Affiliate Program: if you apply to the LunoDB Affiliate Program, Affonso (acting as our processor) collects your name, email, website or social profiles, audience details, payout method (e.g., PayPal email or bank details), and — where required by law — tax identification information. Affonso collects and manages IRS Forms W-9 and W-8BEN/W-8BEN-E and issues any required 1099 forms on our behalf.
  • Support: information you include in emails or tickets (logs or screenshots you choose to share).
  • Crash reports (optional): if you choose to send a crash report, it may include stack traces and basic device info.

2.2 Automatically Collected (Desktop App)

  • License/Update events: minimal metadata (e.g., license key hash, app version, OS version) to validate license and deliver updates.
  • Anonymous Usage Telemetry: The desktop Software may collect anonymous usage telemetry and analytics to improve product quality, including:
    • Feature usage statistics (which features you use, how often)
    • Performance metrics (query execution times, app responsiveness)
    • Error reports (application errors and crashes)
    • General usage patterns (session duration, frequency of use)
    • System information (OS version, app version, hardware specs)

    Telemetry does NOT include: personal data, database credentials, query contents, database data, table names, or any sensitive information. You can disable telemetry at any time in Settings → Privacy.

  • Crash reports (optional): When enabled, may include stack traces, system information, and error details, but never include database contents or credentials.
  • Local logs: operational logs stored on your device to help you troubleshoot.

2.3 Automatically Collected (Mobile App)

  • No telemetry or analytics: The mobile app does not collect usage telemetry, analytics, or crash reports. We do not use any third-party analytics SDKs.
  • Local data only: Connection settings, query history, preferences, and AI API keys are stored locally on your device.
  • App Store review prompts: The app may prompt you to rate the app via native iOS/Android review dialogs; we track locally (on your device only) whether you have been prompted.

2.4 LunoDB Cloud (Mobile Connections)

  • Connection proxy: Due to mobile platform restrictions, LunoDB Mobile routes remote database connections through LunoDB Cloud, our secure connection proxy service.
  • What transits our servers: Connection requests, SQL queries, and query results are transmitted through LunoDB Cloud using TLS encryption.
  • What we do NOT store: We do not log, store, or retain your database credentials, SQL queries, query results, or database contents. Connection sessions are ephemeral and not persisted.
  • Credentials remain on-device: Your database credentials are stored only on your mobile device and are transmitted securely to your database server via our proxy; they are not stored on LunoDB servers.
  • Local SQLite exception: When using local SQLite databases on your mobile device, no data transits LunoDB servers.

No Database Content Storage. The desktop Software provides direct database connectivity on your machine. The mobile Software routes connections through LunoDB Cloud but does not store your data. We do not store your database contents or credentials on LunoDB servers.

3. How We Use Information

  • Provide, secure, and maintain the Software and Pro licensing.
  • Process purchases, verify licenses, and deliver updates.
  • Respond to support requests and improve stability.
  • Develop new features and improve user experience.
  • Comply with legal obligations and enforce terms.

4. Legal Bases (EEA/UK users)

Where GDPR/UK GDPR applies, we process personal data on these bases: (a) contract (to provide the Software and licensing), (b) legitimate interests (to secure, improve, and support the Software), (c) consent (for optional telemetry or crash reports), and (d) legal obligations.

5. Local Storage & Security

5.1 Desktop Application

  • Local credentials: connection settings and secrets are stored locally. When available, the OS keychain (e.g., Keychain/DPAPI/Keyring) is used to protect secrets at rest.
  • If OS keychain is unavailable/disabled: secrets may be stored unencrypted; you assume associated risks and must secure your device and OS account.
  • Transmission: license and update checks occur over HTTPS. Database connections are direct from your machine to your database server.

5.2 Mobile Application

  • Local storage: connection settings, credentials, query history, and AI API keys are stored locally on your device using the app's local storage.
  • No OS keychain integration: Unlike the desktop app, the mobile app does not currently use iOS Keychain or Android Keystore for credential storage. Credentials are stored in the app's local storage.
  • Biometric protection: You can enable Face ID, Touch ID, or fingerprint authentication to lock the app. This prevents unauthorized access to the app but does not encrypt stored credentials.
  • Backup encryption: When exporting connections for backup, the export file is encrypted using AES-256 with a password you provide.
  • Device security: You are responsible for securing your mobile device with a passcode, biometric lock, and keeping your OS updated.

6. AI Features & Third-Party AI Services

6.1 Overview

The Software includes optional AI-powered features (natural language SQL generation, smart filtering, and chat assistant) that integrate with third-party AI service providers. These features are entirely optional and require you to provide your own API credentials.

6.2 Supported AI Providers

Desktop Application:

  • OpenAI (GPT-5.5, GPT-5.3 Codex, and future models)
  • Anthropic Claude (Claude Opus 4.7, Claude Sonnet 4.6, Claude Sonnet 4.5, and future models)
  • Google Gemini (Gemini 3.1 Pro, Gemini 3 Flash, Gemini 2.5 Pro, and future models)
  • xAI Grok (Grok 4.3, Grok 4.20 Multi-Agent, and future models)
  • DeepSeek (DeepSeek Chat, Coder, and Reasoner models)
  • OpenRouter (access to hundreds of AI models via OpenRouter API)
  • Ollama (local AI models running on your device)
  • Custom (any OpenAI-compatible API endpoint)

Mobile Application:

  • OpenAI (GPT-5.4, GPT-5.3 Codex, and other models)
  • Anthropic Claude (Claude Opus 4.6, Claude Sonnet 4.6, and other models)
  • Google Gemini (Gemini 3.1 Pro, Gemini 3 Flash, Gemini 2.5, and other models)
  • xAI Grok (Grok 4.1, and other models)

Note: The mobile app supports a subset of AI providers compared to the desktop app. DeepSeek, OpenRouter, Ollama (local AI), and custom endpoints are not available on mobile.

6.3 How AI API Keys Are Handled

  • API keys you provide are stored locally on your device using OS-level encrypted secure storage (Keychain/DPAPI/Keyring).
  • API keys are never transmitted to LunoDB servers.
  • API keys are only sent directly from your device to your chosen AI provider when you use AI features.
  • You are solely responsible for obtaining, securing, and managing your AI provider API credentials.

6.4 Data Sent to AI Providers

When you use AI features, the Software sends the following information directly from your device to your configured AI provider:

  • Database schema information: table names, column names, data types, indexes, and relationships
  • Your natural language queries: the questions or requests you type into AI features
  • Context information: current database name, selected table (when applicable)

Your actual database data is NEVER sent to AI providers. Only schema (structure) information is transmitted to enable the AI to generate appropriate queries.

6.5 Third-Party AI Provider Privacy Policies

Data sent to AI providers is subject to their respective privacy policies and terms of service:

You are responsible for reviewing and complying with your AI provider's terms and privacy policies. LunoDB is not responsible for how third-party AI providers handle your data.

6.6 Local AI (Ollama)

When using Ollama or other local AI models, all AI processing occurs entirely on your device. No data is sent to external servers. You are responsible for the installation, configuration, and security of local AI models.

6.7 Opting Out of AI Features

AI features are entirely optional. If you choose not to configure or use AI features, no data is sent to AI providers. You can use all other Software functionality without enabling AI features.

6A. Affiliate Program & Referral Tracking (Website)

6A.1 Affonso Attribution Pixel

Our marketing website (lunodb.app) loads a tracking pixel from Affonso (https://affonso.io), the third-party platform that operates the LunoDB Affiliate Program. When a visitor arrives via an affiliate referral link, the pixel sets a first-party cookie containing an attribution identifier for up to 30 days. This cookie is used solely to credit qualifying LunoDB Pro purchases to the referring affiliate.

6A.2 Information Collected by the Pixel

  • Standard web-request data (IP address, user agent, referrer URL, page URL, timestamp);
  • The affiliate identifier embedded in the referral link;
  • Upon purchase, the order identifier, purchase amount, and currency (to calculate commissions). We do not share your name, email, or payment details with Affonso for this purpose.

6A.3 Affiliate Applications & Payouts

If you apply to the Affiliate Program, Affonso processes your application data, payout details, and tax information as our processor. Affonso uses this data to evaluate applications, track referrals, calculate and pay commissions, detect fraud, and meet tax-reporting obligations. Affiliate records and related tax documents are retained for as long as required by applicable tax and financial-reporting laws (typically up to 7 years).

6A.4 Legal Basis (GDPR/UK GDPR)

We process affiliate and attribution data on the basis of (a) contract (to operate the Program with approved affiliates), (b) legitimate interests (referral attribution, fraud prevention, and Program analytics), and (c) legal obligation (tax reporting and recordkeeping). Where your local law requires consent for non-essential cookies, we honor your choices via our cookie preferences tool.

6A.5 Your Choices

You can block or delete the Affonso cookie via your browser settings. Doing so will not prevent you from purchasing LunoDB Pro, but it may prevent a referring affiliate from receiving credit. Affiliates may also request access to, correction of, or deletion of their data by emailing [email protected], subject to legal retention requirements.

6A.6 Affonso's Own Privacy Practices

Affonso processes data both as our processor (for Program data) and as an independent controller for its own service operations. See Affonso's privacy policy at https://affonso.io/privacy for details.

7. Do We Sell or Share Personal Information?

No. We do not sell or share personal information for cross‑context behavioral advertising as those terms are defined by the California Consumer Privacy Act (CCPA/CPRA). If this ever changes, we will provide required notices and opt‑out mechanisms (including honoring browser‑based opt‑out signals on our website where applicable).

8. Disclosures to Third Parties

We may disclose limited personal information to service providers acting on our behalf, such as:

  • Payment and licensing providers (to process purchases and manage licenses).
  • Affiliate program platform — Affonso (to track referrals, calculate commissions, administer payouts, and support tax compliance for the LunoDB Affiliate Program).
  • Error/crash reporting providers (only if you enable crash reports).
  • Email and customer support tools (to respond to your inquiries).
  • Cloud hosting and security providers (to operate our website and licensing services).

These processors are contractually bound to use the data only per our instructions and to protect it appropriately.

9. Data Retention

  • License & purchase records: retained as long as needed to administer your license and for tax/compliance (typically up to 6 years, depending on jurisdiction).
  • Support tickets: 2 years from last activity (or sooner upon your request, unless needed to resolve an issue or comply with law).
  • Crash reports/telemetry (if enabled): raw reports up to 90 days; aggregated statistics up to 24 months.
  • Local app data (on your device): persists until you delete it or uninstall the Software.

10. International Data Transfers

If you are located outside the United States and we transfer your information internationally (e.g., to service providers), we will rely on appropriate safeguards, such as Standard Contractual Clauses where applicable.

11. Your Privacy Rights

Subject to applicable law, you may have rights to access, correct, delete, or receive a copy of your personal information, and to object to or restrict certain processing. If we rely on consent, you may withdraw it at any time.

CCPA/CPRA (California) & similar US state laws. California (and some other US states) provide rights to know/access, correct, delete, portability, and to opt out of sale/share and targeted advertising. We do not sell or share personal information. You will not receive discriminatory treatment for exercising your rights.

GDPR/UK GDPR. EEA/UK users have rights to access, rectification, erasure, portability, restriction/objection, and to lodge a complaint with a supervisory authority.

How to exercise your rights: Email [email protected]. We will verify your request and respond within the timelines required by law (e.g., 45 days for CCPA, extendable as permitted). If we decline your request, you may appeal by replying to our decision; if unresolved, you may contact your local regulator/attorney general.

12. Children's Privacy

The Software is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you believe a child has provided us data, contact us and we will take appropriate action.

13. Changes to This Policy

We may update this policy from time to time. We will post updates in‑app or on our website and update the “Last updated” date above. Material changes will be communicated via in‑app notice or email.

14. Contact Us

Questions or requests: [email protected]. For legal notices, you may also write to [email protected].

We do not maintain a postal mailing address. Please contact us via email at [email protected]. For legal notices or service of process, email [email protected] to coordinate delivery.

← Back to Home