Laketap

Privacy Policy

Effective Date: January 2, 2026 (UTC)

Contact: privacy@laketap.io

EAP Notice — No Control Plane / No Data Backhaul

During Early Access, the product runs fully within your VPC with no online license verification or mandatory telemetry. Runtime data and caches stay inside your environment; only demo form submissions and optional diagnostics are processed by Laketap.

1. Introduction

Laketap ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and disclose your information when you use our website and our software services ("Services").

2. Service Model: Runs in Your VPC

Laketap operates on a "Bring Your Own Cloud" (BYOC) or "Runs in Your VPC" model. This means that:

  • Data Sovereignty: Your data remains within your own Virtual Private Cloud (VPC) and storage accounts (e.g., AWS S3, Google Cloud Storage, Azure Blob Storage).
  • ACache Data & Caching: Our software (specifically ACache Data) may temporarily cache row groups or data blocks to accelerate query performance. This cache resides entirely within your VPC/infrastructure.
  • No Exfiltration: Laketap does not transmit or persist your query data, table data, or cached data outside your VPC.
  • Service Provider Role: To the extent we process any personal data on your behalf (e.g., user account credentials for the management console), we act as a Service Provider, and you act as the Business or Controller of that data.

3. Information We Collect

We collect the following types of information:

3.1 Information You Provide

  • Demo Requests: When you request a demo, we collect your Name, Company Name, Work Email, Use Case description, preferred Tech Stack, and how you heard about us (Referrer).
  • Account Information: Name, email address, and authentication credentials used to access the Laketap portal or support systems.

3.2 Automated Data Collection

  • Technical Data: We collect IP addresses, User-Agent strings, and Cloudflare Turnstile tokens for security and fraud prevention on our forms.
  • Device and Connection Information: Browser type, operating system, and connection information when you access our website or management console.

3.3 Telemetry & Diagnostics (EAP)

During Early Access (EAP), there is no mandatory control-plane telemetry or license heartbeat. All monitoring is local unless you opt in to diagnostics:

  • Local Monitoring (Default): Metrics regarding performance, health, and resource utilization are generated and stored locally within your VPC (e.g., Prometheus/Grafana) for your own monitoring. This data is not sent to Laketap unless you explicitly export it.
  • Diagnostics (Optional): You may opt-in to send diagnostic data (error logs, crash reports, anonymized usage statistics) to Laketap to assist with support and product improvement.
    • Default Status: Disabled.
    • Activation: Must be explicitly enabled in configuration.
    • Impact of Disabling: Disabling diagnostics does not affect software functionality but may limit our ability to proactively troubleshoot issues.
    • Data Boundaries: May include stack traces, node IDs, non-secret config flags; does not include table data, query results, or access keys.

3.4 Control Plane

EAP deployments do not use a control plane or online license verification. No license or usage data is transmitted to Laketap.

4. How We Use Your Information

We use the collected information to:

  • Provide, operate, and maintain the Services.
  • Verify identity and prevent fraud (via Turnstile).
  • Monitor system health and troubleshoot technical issues (if diagnostics are enabled).
  • Improve user experience and develop new features.
  • Send administrative information, such as updates, security alerts, and support messages.
  • Comply with legal obligations and enforce our terms.

5. Data Sharing and Subprocessors

We do not sell your personal information. We use the following third-party subprocessors to provide our services:

Subprocessor Purpose Data Type Location
Cloudflare Security & CDN (Turnstile) IP, User Agent, Tokens Global
Neon Demo submission database Demo form data (contact, stack choices, source), IP/User Agent US-East (N. Virginia)

We may also share information for legal compliance (subpoenas) or business transfers (mergers/acquisitions).

6. Data Retention & Deletion

  • Demo/Form Data: Retained for 2 years or until you request deletion.
  • IP/User-Agent/Turnstile Tokens: Retained for up to 30 days for abuse prevention.
  • Diagnostic Data (if enabled): Retained for 90 days for troubleshooting, then anonymized or deleted.

7. Security & Breaches

We implement industry-standard security measures, including encryption in transit (TLS 1.2+). EAP deployments do not use a control plane; any data you store (e.g., demo submissions) at Laketap is encrypted at rest in our managed database.

Security Model: You acknowledge that our software runs within your own infrastructure (VPC), and you share responsibility for securing your environment, including network access controls (security groups) and IAM policies.

Security Alerts: If a critical vulnerability is discovered, we will notify you via email or a prominent notice. Critical security fixes should be applied within 7 days (aligned with Terms Section 7).

8. Your Rights (DSAR)

Depending on your location (e.g., GDPR, CCPA), you may have rights to access, correct, or delete your personal information.

  • How to Submit: Email privacy@laketap.io with the subject "Data Subject Access Request".
  • Verification: We will verify your identity via your account email.
  • Response Time: We aim to respond to valid requests within 30 days.
  • Telemetry Controls: You can stop sending optional diagnostic data at any time. EAP deployments have no required telemetry or online license checks.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by updating the "Effective Date" at the top of this page. For material changes, we may notify you via email or a prominent notice on our website.