Privacy Policy

Last updated: February 15, 2026

This Privacy Policy describes how DEMBER LLC ("Company", "we", "us", or "our"), a Wyoming limited liability company, collects, uses, and protects your information when you use the Dember AI platform ("Service").

1. Information We Collect

Account Information

When you create an account, we collect your name, email address, and profile picture (if provided via Google OAuth). Authentication is managed by Clerk, Inc. — see their privacy policy.

Usage Data

We collect information about how you use the Service, including queries you submit, dashboards you create, and features you interact with. This data is used to provide the Service and improve our product.

Data Source Connections

When you connect a data source (e.g., PostgreSQL database, Stripe, or Google Analytics), we store the connection credentials (encrypted at rest) and access your data to execute queries and generate visualizations. Database connections are read-only.

Payment Information

Payments are processed by Stripe, Inc. We do not store your credit card number or bank details. We retain your Stripe customer ID, subscription status, and billing history. See Stripe's privacy policy.

2. How We Use Your Information

  • To provide, maintain, and improve the Service.
  • To process your queries and generate AI-powered insights.
  • To manage your subscription and process payments.
  • To send transactional emails (account confirmation, billing receipts, scheduled reports).
  • To detect and prevent fraud or abuse.
  • To comply with legal obligations.

3. AI & Data Processing

  • Your natural-language queries are sent to third-party AI providers (OpenAI, Anthropic, or Google) to generate queries and explanations.
  • We send your database schema (table names, column names, and types) to AI providers as context. We do not send your actual row-level data to AI providers.
  • Query results remain on our servers and are not shared with AI providers.

4. Data Sharing

We do not sell your personal information. We share data only with:

  • Service providers that help us operate the Service (hosting, authentication, payment processing, AI providers, error monitoring).
  • Your team members within the same organization, as configured by the organization owner.
  • Law enforcement when required by law or to protect our legal rights.

5. Data Storage & Security

  • Data is stored on servers in the United State.
  • Database credentials are encrypted at rest using Fernet (AES-128).
  • All connections use TLS/HTTPS in transit.
  • Access to production systems is restricted to authorized personnel.

6. Data Retention

  • Account data is retained for as long as your account is active.
  • Upon account deletion, we remove your personal data within 30 days. Anonymized usage statistics may be retained.

7. Your Rights

You have the right to:

  • Access — Request a copy of the personal data we hold about you.
  • Correction — Update or correct your account information.
  • Deletion — Delete your account and associated data.

To exercise these rights, contact us at support@dember.ai.

8. Cookies

We use essential cookies for authentication and session management. We do not use advertising or tracking cookies. Analytics are collected server-side without third-party tracking scripts.

9. Children's Privacy

The Service is not intended for children under 18. We do not knowingly collect personal information from children.

10. International Users

If you are located outside the United States, your data will be transferred to and processed in the United States. By using the Service, you consent to this transfer.

11. Changes to This Policy

We may update this Privacy Policy from time to time. The "Last updated" date at the top reflects the most recent revision.

12. Contact

For privacy-related questions or requests, contact us at support@dember.ai.