datatape

Privacy Policy

Last updated: March 15, 2026

Datatape, Inc. (“Datatape,” “we,” “us,” or “our”) operates the datatape.ai website and the Datatape platform (collectively, the “Service”). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

1. Information We Collect

Information You Provide

  • Account Information: Name, email address, and password when you create an account.
  • Billing Information: Payment details processed through our third-party payment processor (Stripe). We do not store credit card numbers on our servers.
  • Data Source Credentials: Database connection strings, API keys, and authentication credentials you provide to connect your data sources (e.g., PostgreSQL, Snowflake, BigQuery, Google Sheets, REST APIs) to the Service.
  • Tool Definitions: SQL templates, query configurations, and tool metadata you create within the Service.
  • Communications: Information you provide when you contact us for support or otherwise communicate with us.

Information Collected Automatically

  • Usage Data: Tool call logs, including parameters, timestamps, duration, caller identity, and response metadata.
  • Log Data: IP address, browser type, operating system, referring URLs, pages visited, and access times.
  • Cookies and Similar Technologies: We use cookies and similar tracking technologies to maintain sessions and improve the Service. See Section 7 below.

Information We Do Not Collect

  • Query Results: When your AI agents execute tools via MCP endpoints, query results are returned directly to the requesting client. We do not store the content of query results beyond what is necessary for logging metadata (e.g., execution time, success/failure status).

2. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain the Service.
  • Process transactions and send related billing information.
  • Execute tool calls against your connected data sources on behalf of authorized AI clients.
  • Generate audit logs for your review.
  • Send administrative communications, including service updates and security alerts.
  • Respond to support inquiries and provide customer service.
  • Monitor and analyze usage trends to improve the Service.
  • Detect, prevent, and address technical issues and security threats.
  • Enforce read-only access controls via our platform-level SQL validation (SQLGlot).

3. How We Protect Your Data Source Credentials

Your database credentials and API keys are encrypted at rest and in transit. They are used solely to execute tool calls you have defined and are never exposed to AI clients or end users. AI agents interact only with the tools you configure — they see tool names, descriptions, and parameters, not underlying credentials or connection details.

4. Aggregated and Anonymized Data

We may aggregate and anonymize information collected through the Service — such as tool call volumes, query execution times, error rates, and general usage patterns — so that it no longer identifies you or any individual user. We may use this aggregated data for any purpose, including to analyze trends, improve the Service, generate benchmarks, and for marketing purposes (e.g., “Datatape processes X million tool calls per month”). Aggregated data is not subject to the restrictions in this Privacy Policy.

5. How We Share Your Information

We do not sell your personal information. We may share information in the following circumstances:

  • Service Providers: With third-party vendors who perform services on our behalf (e.g., Stripe for payment processing, cloud hosting providers for infrastructure). These providers are contractually obligated to protect your information.
  • MCP Clients: When an authorized AI client (e.g., Claude, ChatGPT, Cursor) calls a tool via your MCP endpoint, we transmit the tool's response to that client. The scope of data returned is determined by the SQL templates and tool definitions you create.
  • Legal Compliance: If required by law, regulation, legal process, or governmental request.
  • Business Transfers: In connection with a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.
  • With Your Consent: We may share information for other purposes with your explicit consent.

6. Data Retention

  • Account Data: Retained for as long as your account is active. Upon account deletion, we remove your data within 30 days, except where retention is required by law.
  • Audit Logs: Retained for the duration specified by your plan (see your account settings).
  • Data Source Credentials: Deleted immediately upon disconnection of a data source or account deletion.

7. Your Rights

Depending on your location, you may have the following rights:

  • Access: Request a copy of the personal information we hold about you.
  • Correction: Request correction of inaccurate or incomplete information.
  • Deletion: Request deletion of your personal information.
  • Portability: Request your data in a structured, machine-readable format.
  • Objection: Object to certain processing of your personal information.

To exercise any of these rights, contact us at privacy@datatape.ai.

California Residents (CCPA)

California residents have additional rights under the California Consumer Privacy Act, including the right to know what personal information is collected, the right to request deletion, and the right to opt out of the sale of personal information. We do not sell personal information.

European Residents (GDPR)

If you are in the European Economic Area, our legal basis for processing your information includes performance of a contract, legitimate interests, and your consent where applicable. You may contact your local data protection authority if you have concerns.

8. Cookies

We use essential cookies to maintain your session and authenticate requests. We may also use analytics cookies to understand how the Service is used. You can configure your browser to refuse cookies, though some features of the Service may not function properly without them.

9. Third-Party Services

The Service may contain links to third-party websites or integrate with third-party services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies.

10. Children's Privacy

The Service is not intended for individuals under the age of 16. We do not knowingly collect personal information from children. If we learn that we have collected information from a child under 16, we will take steps to delete it promptly.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the “Last updated” date. Your continued use of the Service after changes constitutes acceptance of the revised policy.

12. Contact Us

If you have questions about this Privacy Policy, contact us at:

Email: privacy@datatape.ai
Website: https://datatape.ai