Privacy Policy
Last updated: April 15, 2026
Eulera ("we", "us", "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your information when you use our AI-powered analytics platform at eulera.app ("Service").
1. Information We Collect
1.1 Account Information
When you sign up, we collect:
- Google Sign-In: Your name, email address, and profile picture (provided by Google)
- Email OTP Login: Your email address
1.2 Data You Provide
- Database Connections: Host, port, database name, and credentials (encrypted at rest) for databases you connect
- CSV Uploads: Files you upload for analysis
- Queries: Natural language questions you ask about your data
- Chat History: Your conversation history with the analytics assistant
1.3 Automatically Collected Information
- Browser type and version
- Pages visited and time spent
- IP address and approximate location
- Device information
We use Google Analytics to collect this information. See Google's Privacy Policy for details on their data practices.
2. How We Use Your Information
| Data | Purpose | Legal Basis |
|---|---|---|
| Email & Name | Account creation, authentication, communication | Consent / Contract |
| Database Credentials | Connecting to your databases to execute queries | Contract |
| CSV Data | Processing your uploaded data for analytics | Contract |
| Queries & Chat History | Providing analytics responses, improving follow-up accuracy | Contract |
| Usage Data | Improving the Service, debugging issues | Legitimate Interest |
3. How We Process Your Data
When you ask a question about your data:
- Your question and database schema are sent to Google Gemini AI to generate SQL queries
- The generated SQL is executed against your connected database or uploaded CSV
- Results are used to generate visualizations and business insights
- Your query and results are stored in your chat history for follow-up context
Important: We do not use your data to train AI models. Your business data is never shared with other users or third parties.
4. Data Storage & Security
4.1 Where We Store Data
- Account data, chat history, configurations: Stored on PostgreSQL (Neon) cloud database with encryption at rest
- Database credentials: Encrypted using AES encryption before storage
- CSV uploads: Stored temporarily on the application server; may be cleared during maintenance
- Application hosting: Railway (cloud platform)
4.2 Security Measures
- All data transmitted via HTTPS (TLS encryption)
- Database credentials encrypted at rest using AES
- JWT-based authentication with 24-hour token expiry
- Rate limiting to prevent abuse
- Separate databases for platform data and user-queryable data (isolation)
5. Third-Party Services
We use the following third-party services that may process your data:
| Service | Purpose | Data Shared |
|---|---|---|
| Google OAuth | Authentication | Email, name, profile picture |
| Google Gemini AI | SQL generation, analysis narratives | Your queries, database schema, query results (anonymized where possible) |
| Google Analytics | Usage analytics | Page views, session data, device info |
| SendGrid | Email delivery (OTP) | Email address |
| Neon (PostgreSQL) | Data storage | Account data, chat history |
| Railway | Application hosting | Application logs |
6. Data Retention
- Account data: Retained while your account is active
- Chat history: Retained while your account is active; you can delete individual chats
- CSV uploads: Temporary; cleared during system maintenance or redeployment
- Database credentials: Retained while the connector is active; deleted when you disconnect
Upon account deletion, all your data is permanently removed within 30 days.
7. Your Rights
Under applicable privacy laws, including India's Digital Personal Data Protection Act (DPDP Act, 2023), you have the right to:
- Access: Request a copy of the personal data we hold about you
- Correction: Request correction of inaccurate personal data
- Erasure: Request deletion of your personal data and account
- Withdraw Consent: Withdraw your consent for data processing at any time
- Grievance Redressal: Raise a complaint about our data practices
To exercise any of these rights, contact us at connect@eulera.app. We will respond within 30 days.
8. Cookies
We use essential cookies for authentication (JWT tokens stored in HTTP-only cookies). We also use Google Analytics cookies for usage tracking. We do not use advertising cookies or trackers.
9. Children's Privacy
The Service is not intended for children under 18 years of age. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, contact us and we will promptly delete it.
10. International Data Transfers
Your data may be processed in servers located outside India (including the United States) through our cloud service providers. We ensure appropriate safeguards are in place for such transfers in compliance with applicable laws.
11. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes via email or through the Service. The "Last updated" date at the top of this page indicates when the policy was last revised.
12. Data Protection Officer
For any privacy-related concerns or to exercise your rights under the DPDP Act, contact:
Email: connect@eulera.app
Response time: Within 30 days of receiving your request
13. Contact
If you have questions about this Privacy Policy, contact us at:
connect@eulera.app