Skeema Logo
Skeema
Sign inGet started →
Legal

Privacy Policy

Last updated: June 20, 2026

This Policy explains what data Skeema collects, why, and what control you have over it. We keep data collection minimal and never sell your data or use your diagrams to train AI models.

1. Data we collect

  • Account data — your email and authentication identifiers (e.g. Google OAuth) when you sign up.
  • Content — the boards, diagrams, prompts, and schemas you create or upload.
  • Usage data — basic product analytics (pages viewed, features used) to improve the Service.
  • Technical data — IP address and device/browser info, used for security and rate limiting.
  • Billing data — handled by our payment processor; we never store full card numbers.

2. How we use data

  • To provide, secure, and operate the Service;
  • To generate diagrams and code from your prompts (processed by our AI provider on your behalf);
  • To send transactional email (e.g. waitlist confirmation, account and billing notices);
  • To understand product usage in aggregate and improve features;
  • To prevent abuse, fraud, and to enforce our Terms.

3. AI processing & training

Prompts and relevant board context are sent to our AI provider solely to generate output for you. We do not use Your Content to train our own or third-party foundation models. Generated output belongs to you.

4. Cookies

We use essential cookies for authentication and session management, and privacy-friendly product analytics. We do not use advertising or cross-site tracking cookies. You can control cookies through your browser settings; disabling essential cookies may break sign-in.

5. Storage & security

Your data is stored in managed, encrypted Postgres (Neon) and object storage. We use access controls, encryption in transit (TLS), and reputable infrastructure providers. No system is perfectly secure, but we work to protect your data and to notify you of material breaches as required by law.

6. Sharing

We share data only with sub-processors that help us run the Service — hosting (Vercel), database (Neon), AI generation (OpenAI), payments (Stripe/Razorpay), email (Resend), error monitoring, and analytics — each under contractual data-protection obligations. We do not sell personal data.

7. Your rights

Depending on your location, you may have rights to access, correct, export, or delete your personal data, and to object to or restrict certain processing. You can export your boards at any time and request deletion by emailing us.

8. Data retention

We keep your data while your account is active. On account deletion, we remove your content within a reasonable period, except where retention is required for legal, security, or accounting purposes.

9. Children

Skeema is not directed to children under 16, and we do not knowingly collect their data. If you believe a child has provided us data, contact us and we will delete it.

10. Changes & contact

We may update this Policy; material changes will be communicated via the Service or email. For privacy requests or questions, email support@skeema.cloud.

Questions about this document? Email support@skeema.cloud. This page is provided for transparency and is not legal advice.