LAST_UPDATED: APRIL_2025
When you create an account, we collect your name, email address, and authentication provider details (GitHub or Google). When you use Archway, we collect diagram data, usage analytics, and technical information about your browser and device.
We do not sell your personal data to third parties. Your diagrams remain your intellectual property.
We use your information to provide and improve Archway, process payments through Dodo Payments, send transactional emails about your account, and analyze aggregate usage patterns to improve the platform.
AI-generated diagrams use your prompts to generate DSL. Prompts are sent to our AI provider (Anthropic Claude) for processing and are not stored beyond the generation session.
Your data is stored on MongoDB Atlas with encryption at rest and in transit. Authentication tokens are managed via NextAuth.js with industry-standard JWT encryption. File uploads are stored in AWS S3 with server-side encryption.
We implement rate limiting, input sanitization, and regular security audits to protect your data.
We use essential cookies for authentication sessions. We use privacy-respecting analytics to understand aggregate usage patterns. We do not use third-party advertising trackers.
Your account data is retained for as long as your account is active. Deleted diagrams are permanently removed within 30 days. If you delete your account, all associated data is purged within 30 days.
You can export all your diagrams at any time via our export feature. You can request a full data export or account deletion by emailing privacy@archdiagram.dev. We respond to data requests within 30 days.
For privacy-related inquiries, contact us at privacy@archdiagram.dev.