Privacy Policy

How DB Diagram Flow collects, uses, and protects your data.

Last updated: July 1, 2026

1. Overview

This Privacy Policy explains what data DB Diagram Flow (the "Service") collects and how we use it. It applies to your use of the Service and does not constitute legal advice.

2. Information we collect

We collect account information (name, email, and authentication identifiers) through our identity provider, the schemas and diagrams you create, and basic usage and technical data needed to operate and secure the Service.

3. Database credentials

If you connect a live database, the connection string is encrypted at rest and only decrypted inside the introspection runtime to read your schema. We verify a read-only role before accepting a connection and never write back to your database.

4. How we use your data

We use your data to provide and improve the Service, operate the MCP server and API keys, enforce plan limits and rate limits, process billing, and keep the Service secure. We do not sell your personal data.

5. Cookies

We use essential cookies for authentication (your session) and preferences (such as your language). We do not use them to track you across other sites.

6. Service providers

We rely on a small set of processors to run the Service, including our database and authentication provider (Neon), our payment provider (Polar), and our hosting provider. They process data on our behalf under their own terms.

7. Sharing and disclosure

We do not share your personal data except with the processors above, when required by law, or to protect the Service and its users. Public share links you create are read-only and use non-enumerable identifiers.

8. Data retention and deletion

You can delete your account at any time, which triggers a real teardown of your data and identity. We may retain limited records where required by law or for legitimate business purposes such as billing history.

9. Security

We use industry-standard measures to protect your data, including encryption of database connection strings at rest, scoped API keys, and read-only verification for live connections. No system is perfectly secure, but we work to protect your information.

10. Your rights

Depending on your location, you may have rights to access, correct, export, or delete your personal data. To exercise them, contact us at support@dbdiagramflow.com.

11. Changes and contact

We may update this policy from time to time; material changes are reflected by the "Last updated" date. For any privacy question, contact us at support@dbdiagramflow.com.

Give your agent a schema it can work with

Free includes MCP access — connect an agent in minutes.

Start free
DB Diagram Flow

Built on DBML by Holistics (Apache-2.0).