Privacy Policy

Last updated: March 29, 2026

1. Who We Are

Diguz is a platform that lets you run open-source software tools in the cloud without any setup. This Privacy Policy explains what information we collect when you use Diguz, how we use it, and what choices you have.

We take your privacy seriously. We collect only what we need, we do not sell your data, and we do not use your data for advertising.

2. Information We Collect

2a. Account Information

When you sign up, we collect your email address and store a hashed version of your password. We store this to identify your account and associate your sessions, saved tools, and billing with you. We never store your password in plain text.

2b. Usage Data

We collect data about how you use the Service, including:

  • Which tools you run and when
  • Session start and end times
  • Session duration (used to calculate minute usage against your plan)
  • Tools you save to your favourites
  • Issue reports you submit

2c. Technical Data

Like most web services, we automatically collect certain technical information when you visit, including your IP address, browser type, operating system, and referring URL. This is used for security monitoring and debugging, not for tracking or advertising.

2d. Payment Information

If you subscribe to a paid plan, payment is processed by a third-party payment provider. We do not store your credit card number or payment details on our servers. We only receive a confirmation of payment and your subscription status.

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the Service
  • Track your session minutes against your plan limits
  • Send you account-related emails (e.g. billing receipts, plan changes)
  • Respond to support requests and bug reports
  • Detect and prevent abuse, fraud, and security incidents
  • Comply with legal obligations

We do not use your data to show you advertisements. We do not sell, rent, or trade your personal information to third parties.

4. Data Inside Your Sessions

When you run a tool, it operates inside an isolated container. Any data you enter into the tool (e.g. notes in a productivity app, data in a database UI) exists only within that container.

When a session ends — whether you click Stop or your budget runs out — the container and all data inside it are permanently deleted. We do not access, read, or retain any data you create within a tool session.

5. Third-Party Services

We use the following third-party services to operate Diguz:

  • Supabase — our database and authentication provider. Your account information and session records are stored here. Supabase is SOC 2 compliant and stores data on AWS infrastructure.
  • Railway — our container infrastructure provider. When you start a session, Railway spins up the container. Railway does not have access to your Diguz account data.
  • Stripe — our payment processor. If you subscribe to a paid plan, your payment details are handled directly by Stripe. We never see or store your card number. Stripe is PCI DSS compliant.
  • Vercel — our hosting provider for the Diguz web application. Vercel may log request metadata for security and performance purposes.
  • Resend — our email delivery provider. We use Resend to send transactional emails such as account confirmation, billing receipts, and plan change notifications. Resend only receives your email address for the purpose of delivery.

Each of these providers has their own privacy policy. We encourage you to review them if you have concerns.

6. Data Retention

We retain your account data for as long as your account is active. Session history (start time, end time, duration, tool used) is retained for up to 12 months to support billing and account history.

If you delete your account, we delete your personal data within 30 days, except where we are required to retain it by law (e.g. billing records).

7. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  • Access — You can request a copy of the data we hold about you.
  • Correction — You can ask us to correct inaccurate data.
  • Deletion — You can request deletion of your account and associated data.
  • Portability — You can request your data in a machine-readable format.
  • Objection — You can object to certain types of processing.

To exercise any of these rights, please contact us through the Report feature on any tool page or via the email address on your account.

8. Cookies

We use only essential cookies required for the Service to function — specifically, a session cookie to keep you logged in. We do not use tracking cookies, advertising cookies, or third-party analytics cookies.

9. Children's Privacy

The Service is not directed at children under the age of 16. We do not knowingly collect personal data from children under 16. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. When we make significant changes, we will update the "Last updated" date at the top of this page. Continued use of the Service after changes are posted constitutes your acceptance of the updated policy.

11. Contact

If you have questions or concerns about this Privacy Policy or how we handle your data, email us at support@diguz.com.