Skip to content
Back home

Privacy Policy

Last updated: May 30, 2026

1. Information We Collect

When you create a Puchify account, we collect your email address and account name. When you use the platform to create infrastructure resources, we store the resource configurations, metadata, and operational data necessary to provision and manage those resources on your behalf.

We collect the following categories of information:

  • Account information — email address, name, and authentication credentials.
  • Resource data — server configurations, database credentials, network settings, storage configurations, and other infrastructure resource metadata you create through Puchify.
  • Usage data — resource uptime, API request counts, and resource-level metrics necessary for billing and platform operations.
  • Log data — resource logs, agent telemetry, and terminal session metadata generated by your infrastructure resources.
  • Payment information — billing details processed through our payment provider. We do not store full credit card numbers.

2. How We Use Information

We use the information we collect to:

  • Provision, operate, and maintain your infrastructure resources.
  • Provide customer support and respond to your inquiries.
  • Process payments and send billing communications.
  • Monitor platform health, detect incidents, and improve reliability.
  • Send administrative messages, such as resource status updates, maintenance notices, and security alerts.

We do not sell your data. We do not use your resource data or telemetry to train machine learning models.

3. Data Storage and Retention

Your data is stored on infrastructure operated by our platform. We retain account information for the duration of your account. Resource data is retained for the lifetime of each resource plus a 30-day grace period after deletion, during which you can request data export or permanent deletion.

Log data and metrics are retained for 90 days by default. You can configure longer retention periods or request deletion through your account settings.

4. Data Sharing and Third Parties

We share information with third parties only as follows:

  • Cloud infrastructure providers — to provision and manage resources you create through Puchify. These providers receive only the data necessary to operate your resources.
  • Payment processors — to process your payments.
  • Authentication providers — to authenticate your account.
  • Legal obligations — when required by law, regulation, or valid legal process.

All third-party subprocessors are listed in our subprocessor documentation, available on request.

5. Your Rights

You have the right to:

  • Access your account information and resource data.
  • Export your data in a machine-readable format.
  • Correct inaccurate information.
  • Delete your account and all associated data.
  • Opt out of non-administrative communications.

To exercise these rights, contact us at privacy@puchify.com or use the data export and deletion tools in your account settings.

6. Security

We implement industry-standard security measures to protect your data, including encryption in transit and at rest, access controls, audit logging, and regular security assessments. API keys are hashed with bcrypt. Webhook payloads are signed with HMAC-SHA256.

If you discover a security vulnerability, please report it to security@puchify.com. We participate in coordinated vulnerability disclosure.

7. Changes to This Policy

We will notify you of material changes to this policy via email or through the platform. Your continued use of Puchify after changes take effect constitutes acceptance of the updated policy.

8. Contact

For questions about this privacy policy or our data practices, contact us at privacy@puchify.com.