Cloudo

Privacy Policy

Last updated: December 2024

1. Introduction

At Cloudo, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

2. Information We Collect

Account Information

When you create an account, we collect your email address for authentication purposes. We use magic link authentication, so we do not store passwords.

Organization Information

We collect the organization name you provide during onboarding to personalize your experience.

API Keys and Credentials

You provide API keys for third-party services (OpenRouter, AWS, etc.). These credentials are:

  • Stored encrypted in Supabase Vault
  • Never logged or exposed in plaintext
  • Used only to connect to your designated services
  • Deletable at any time through your settings

Cloud Cost Data

When you connect cloud providers, we access cost and usage data to provide insights. This data is used solely for analysis and is not shared with third parties.

3. How We Use Your Information

We use your information to:

  • Provide and maintain the Service
  • Authenticate your identity
  • Connect to your cloud providers and AI services
  • Generate cost analysis and optimization recommendations
  • Send you important updates about the Service
  • Respond to your inquiries and support requests

4. Data Security

We implement industry-standard security measures to protect your data:

  • All data is encrypted in transit (TLS) and at rest
  • API keys are stored in Supabase Vault with encryption
  • We use secure authentication (magic links, no passwords)
  • Regular security audits and updates

5. Data Sharing

We do not sell your personal information. We may share data only in these circumstances:

  • With your consent
  • To comply with legal obligations
  • To protect our rights and safety
  • With service providers who assist in operating our Service (under strict confidentiality agreements)

6. Third-Party Services

Our Service integrates with third-party services (OpenRouter, AWS, etc.). Your use of these services is governed by their respective privacy policies. We recommend reviewing their policies.

7. Data Retention

We retain your data for as long as your account is active. You can request deletion of your account and associated data at any time by contacting us.

8. Your Rights

You have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Delete your data
  • Export your data
  • Withdraw consent

9. Cookies

We use essential cookies for authentication and session management. We do not use tracking cookies or third-party advertising cookies.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date.

11. Contact Us

If you have questions about this Privacy Policy, please contact us at privacy@cloudo.finance