Back to DAIRX

Privacy Policy

Last updated: March 2026

DAIRX collects the minimum data needed to operate the platform. We don't sell your information, we don't run ads, and we delete your data when you close your account. This policy explains exactly what we collect, why, and who else is involved.

1. What We Collect

Information you provide

  • Account details — Username, email address, and authentication credentials (managed by Clerk)
  • Payment information — Processed and stored entirely by Stripe. We receive only a token reference — never your card number, CVV, or full billing address
  • Deployment configuration — GPU preferences, region settings, startup scripts, and SSH public keys you choose to upload
  • Support messages — Conversations through our live chat (Crisp) or email

Information collected automatically

  • Usage data — Pages visited, features used, deployment history, and session duration
  • Device data — IP address, browser type, operating system, and screen resolution
  • Error data — Application errors and performance metrics (sent to Sentry for debugging)

2. What We Don't Collect

  • We do not access, read, or store the content of your compute instances (your models, datasets, notebooks, or code)
  • We do not store credit card numbers or banking details — Stripe handles all payment data
  • We do not sell, rent, or trade your personal information to anyone
  • We do not run advertising or use your data for ad targeting

3. How We Use Your Data

  • Operate the platform — authenticate you, deploy resources, process payments
  • Improve the service — understand usage patterns, fix bugs, prioritize features
  • Communicate with you — service updates, billing notifications, support responses
  • Secure the platform — detect fraud, prevent abuse, maintain system integrity
  • Comply with law — meet legal and regulatory obligations where required

4. Third-Party Services

DAIRX relies on trusted third-party services to operate. Each handles a specific function and has their own privacy practices:

ServicePurposeData shared
ClerkAuthenticationEmail, username, login credentials
StripePaymentsPayment method, billing details
VercelHostingRequest data, IP address
CloudflareDNS & securityRequest data, IP address
NeonDatabaseAccount data, deployment records
SentryError trackingError logs, device info
ResendTransactional emailEmail address
CrispLive chatMessages, email (if provided)

GPU providers receive the minimum information needed to provision your instance (region, GPU type, configuration). They do not receive your personal contact details.

5. Data Storage & Security

  • Application data is stored in Neon PostgreSQL with encryption at rest
  • SSH keys you upload are encrypted with AES-256-GCM before storage
  • All connections use TLS encryption in transit
  • Authentication tokens and sessions are managed by Clerk with their SOC 2 compliant infrastructure
  • Payment data never touches our servers — it goes directly to Stripe

No security system is perfect. If you discover a vulnerability, please report it to hello@dairx.com.

6. Data Retention

We keep your data only as long as needed. When you close your account, we delete your personal information within 30 days.

  • Account data — Deleted within 30 days of account closure
  • Deployment history — Anonymized after account closure
  • Payment records — Retained by Stripe in accordance with financial regulations. We store only anonymized transaction references (amount, date, resource type)
  • Support conversations — Retained by Crisp per their data policy

7. Your Rights

Regardless of where you're located, you can:

  • Access a copy of the personal data we hold about you
  • Correct inaccurate or incomplete data
  • Delete your account and associated personal data
  • Export your data in a portable format
  • Object to or restrict certain processing activities

For EU/EEA residents (GDPR)

Our legal basis for processing is contract performance (providing the service you signed up for) and legitimate interest (improving the platform and preventing fraud). Where we rely on consent, you can withdraw it at any time. You have the right to lodge a complaint with your local data protection authority.

For California residents (CCPA)

We do not sell your personal information. You have the right to know what data we collect, request deletion, and exercise these rights without discrimination.

8. Cookies

We use essential cookies only — for authentication sessions and basic site functionality. We do not use advertising cookies or third-party tracking pixels.

Crisp (live chat) and Clerk (authentication) set their own cookies to maintain sessions. You can manage cookie preferences through your browser settings.

9. International Data Transfers

DAIRX operates globally and our third-party services may process data in different jurisdictions. Where data is transferred outside the UK or EEA, we ensure appropriate safeguards are in place through the service providers' own compliance frameworks (e.g., Stripe's and Clerk's standard contractual clauses and certifications).

10. Children

DAIRX is not intended for users under 18. We do not knowingly collect personal information from minors. If we learn that we have, we will delete it promptly.

11. Changes to This Policy

We may update this policy as the platform evolves. Material changes will be communicated via email or through the platform. The “Last updated” date at the top reflects the most recent revision.

12. Contact

Questions about your data or this policy? Reach out.

DAIRX

hello@dairx.com

DAIRX LTD — London, United Kingdom

By using DAIRX, you acknowledge that you have read and understand this Privacy Policy.