Privacy Policy
Last updated: January 18, 2026
Our Privacy Commitment
Datamapify is designed with privacy as a core principle. Your data files (CSV, Excel) are processed entirely in your browser—they never touch our servers. This document explains what information we do collect and how we use it.
Data We Collect
Account Information
When you create an account, we collect your email address and basic profile information through our authentication provider, Clerk. This is necessary to provide you with an account and sync your saved templates across devices.
Saved Mapping Templates
If you save column mapping templates, we store the template configuration (column names, mappings, transformations) in our database. This does not include your actual data—only the mapping rules you create.
Payment Information
Payments are processed by Stripe. We store your Stripe customer ID and subscription status to manage your account tier. We do not have access to your payment card details—Stripe handles all payment processing securely.
Error Logs
We use Sentry to collect error reports when something goes wrong. These logs include technical information like error messages and stack traces to help us fix bugs. They do not include your data file contents.
Template Access Logs
When you open a saved mapping template, we log the access for security purposes. These logs contain only your user ID, template ID, and timestamp—not the template contents or your data. Logs are automatically deleted after 90 days.
Local Browser Storage
We use your browser's localStorage to temporarily save your wizard progress, allowing you to resume if you refresh the page. This data stays on your device and is automatically cleared after 24 hours. You can clear it anytime by clearing your browser data.
Data We Do NOT Collect
- Your data files: CSV and Excel files are processed entirely in your browser. File contents never leave your device during processing.
- Google Drive file contents: When you import from or export to Google Drive, files transfer directly between your browser and Google. We never see or store the file contents.
- Analytics or tracking: We do not use Google Analytics, Facebook Pixel, or any other behavioral tracking tools.
- Browsing history: We do not track which pages you visit or how you use the application.
Legal Basis for Processing (GDPR)
For users in the European Economic Area (EEA), we process personal data under the following legal bases:
| Data | Legal Basis | Purpose |
|---|---|---|
| Account email | Contract | Provide the service, account management |
| Mapping templates | Contract | Store and sync your saved work |
| Payment data | Contract | Process subscription payments |
| Error logs | Legitimate interest | Maintain and improve service reliability |
Google Drive Integration
When you connect Google Drive, you authenticate directly with Google using OAuth. We request limited permissions:
- drive.file scope: Access only to files you explicitly select or that the app creates. We cannot see your other Drive files.
- Direct transfer: Files download from Google to your browser, and upload from your browser to Google. The file data never passes through our servers.
You can revoke access at any time from your Google Account permissions.
Third-Party Services
International Data Transfers
Our service providers (Clerk, Stripe, Sentry) may process data in the United States. These transfers are protected by:
- Standard Contractual Clauses (SCCs): EU-approved contractual safeguards
- EU-US Data Privacy Framework: For providers who are certified
- Adequacy decisions: Where applicable
Your data files are never transferred to our servers—they remain in your browser or transfer directly to/from Google's infrastructure.
Data Retention
| Data Type | Retention Period |
|---|---|
| Account data | Until you delete your account |
| Mapping templates | Until you delete them or your account |
| Browser localStorage | 24 hours (automatic expiry) |
| Error logs (Sentry) | 90 days |
| Template access logs | 90 days |
| Payment records (Stripe) | As required by law (typically 7 years for tax purposes) |
Your Rights
Regardless of where you live, you have the right to:
- Access: Request a copy of your personal data
- Correction: Update inaccurate information
- Deletion: Delete your account and all associated data
- Export: Download your saved mapping templates
- Revoke: Disconnect third-party services (Google Drive)
To exercise these rights, contact us at privacy@datamapify.ai. We will respond within 30 days.
For European Users (GDPR)
If you are in the European Economic Area (EEA), United Kingdom, or Switzerland, you have additional rights under the General Data Protection Regulation:
- Data portability: Receive your data in a structured, machine-readable format
- Restriction: Request we limit how we use your data
- Object: Object to processing based on legitimate interests
- Withdraw consent: Where processing is based on consent, withdraw it at any time
- Lodge a complaint: File a complaint with your local data protection authority
Data Controller: Fabrial LLC (operating as Datamapify)
Contact: privacy@datamapify.ai
For California Residents (CCPA/CPRA)
If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):
Categories of Personal Information Collected
- Identifiers: Email address, user ID
- Commercial information: Subscription tier, purchase history
- Internet activity: Error logs (technical data only, no browsing history)
Your California Privacy Rights
- Right to Know: Request what personal information we collect, use, and disclose
- Right to Delete: Request deletion of your personal information
- Right to Correct: Request correction of inaccurate information
- Right to Opt-Out: Opt out of sale or sharing of personal information
- Right to Non-Discrimination: We will not discriminate against you for exercising your rights
Do Not Sell or Share My Personal Information
We do not sell your personal information. We do not share your personal information for cross-context behavioral advertising. We do not use or disclose sensitive personal information for purposes other than those permitted by the CCPA.
To exercise your California privacy rights, contact us at privacy@datamapify.ai or call us at the number provided on our website. You may also designate an authorized agent to make a request on your behalf.
Children's Privacy
Datamapify is not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at privacy@datamapify.ai and we will delete such information.
Security
We implement appropriate technical and organizational measures to protect your personal data. For details, see our Security page.
Changes to This Policy
We may update this policy from time to time. We'll notify you of significant changes by posting a notice on our website. Your continued use of the service after changes constitutes acceptance of the updated policy.
Contact
Questions about this privacy policy? Contact us:
- Email: privacy@datamapify.ai
- Security issues: security@datamapify.ai