Privacy Policy

Last updated: June 2026

DataLaxe ("we", "our", or "us") operates Bridge, a no-code data pipeline and scheduling platform. This Privacy Policy explains how we collect, use, and protect information about you when you use Bridge (the "Service").

1. Information We Collect

Account information. When you sign up, we collect your email address and workspace name.

OAuth tokens. When you connect third-party services (Google, HubSpot), we store OAuth access and refresh tokens to maintain your connections. These tokens are encrypted at rest using AES-256-GCM.

Connection credentials. Database host, port, username, and password details you provide are encrypted at rest and used solely to execute your jobs.

Job configuration and logs. We store the query, schedule, and run history for each job you create, including timestamps, status, and any error messages.

Usage data. We collect basic usage logs (API request timestamps, error rates) to operate and improve the Service. We do not use third-party analytics trackers.

2. How We Use Your Information

• To authenticate your account and maintain your session
• To execute your configured data jobs on the schedule you set
• To send job failure alerts and scheduled email reports on your behalf
• To provide customer support when you contact us
• To detect and prevent fraud, abuse, or security incidents
• To improve the reliability and features of the Service

We do not sell your personal information to third parties. We do not use your data or your customers' data to train machine learning models.

3. Data You Process Through Bridge

Bridge acts as a data processor for the records you sync between your systems. We access your source data only to execute the job you have configured. Data in transit is encrypted using TLS 1.2 or higher. We do not store the contents of your synced records beyond what is necessary to deliver the result to your destination and log run status.

4. Third-Party Services

Bridge integrates with third-party services (e.g. Google Workspace, HubSpot) at your direction. Your use of those services is governed by their own privacy policies. We request only the minimum OAuth scopes necessary for each integration.

Infrastructure is hosted on cloud providers (currently AWS). Their data processing is governed by their respective data processing agreements.

5. Data Retention

We retain your account data and job configuration for as long as your account is active. Run logs are retained for 90 days by default. After account deletion, we delete your data within 30 days, except where retention is required by law.

6. Security

We implement industry-standard safeguards including AES-256-GCM encryption for credentials and OAuth tokens, TLS encryption in transit, and access controls limiting who can access production systems. See our Security page for full details.

7. Your Rights

Depending on your location, you may have rights to access, correct, or delete your personal data. To exercise these rights, contact us at hello@datalaxe.com. We will respond within 30 days.

8. Cookies

We use a single session cookie to keep you logged in. We do not use advertising or tracking cookies.

9. Children

Bridge is not directed at children under 16. We do not knowingly collect personal information from children.

10. Changes to This Policy

We may update this policy from time to time. Material changes will be communicated by email or an in-app notice. Continued use of the Service after changes take effect constitutes acceptance.

11. Contact

For privacy-related questions or requests, contact us at hello@datalaxe.com.