Privacy Policy

Last updated: December 20, 2025

Overview

Sidequery Corporation ("we", "us", or "our") operates the Sidequery service. This Privacy Policy explains how we collect, use, and protect your information when you use our SQL notebook and data platform.

The short version: We don't store your underlying data. Query results are cached temporarily for performance. Your notebooks are yours. We don't use your queries to train AI models.

Information We Collect

Account Information

When you create an account, we collect your email address and basic profile information. This is used to provide the Service and communicate with you. If you join an organization, your profile information and activity within the organization may be visible to organization administrators.

Data Source Credentials

To query your data sources (Postgres, MySQL, Snowflake, BigQuery, ClickHouse, Google Drive, etc.), we store encrypted connection credentials. These are used solely to execute queries on your behalf and are encrypted using AES-256 at rest.

Notebooks and Queries

We store the notebooks you create, including SQL queries, markdown content, and visualization configurations. This is necessary to provide the Service and enable features like version history.

Query Results

Query results (the data returned from your databases) are cached to improve performance and enable result sharing. Cached results are stored securely and are only accessible by you unless you explicitly share them.

File Uploads

If you upload files (CSV, Parquet, Excel, etc.) to query locally, these files are stored securely in your account storage and are only accessible by you.

Usage Data

We collect anonymized usage metrics to improve the Service, including feature usage, error rates, and performance data. This does not include the content of your queries or results.

How We Use Your Information

  • To provide and operate the Service
  • To execute queries against your connected data sources
  • To store and sync your notebooks across devices
  • To generate charts and visualizations from query results
  • To communicate with you about the Service
  • To detect and prevent fraud or abuse
  • To comply with legal obligations

What We Don't Do

  • We don't store your underlying data. Your database contents stay in your databases.
  • We don't train AI models on your queries. Your queries are not used to train our or third-party AI models.
  • We don't sell your data. We never sell personal information or usage data to third parties.
  • We don't access your notebooks without consent. We only access your content to provide the Service or when required by law.

Data Security

We implement industry-standard security measures to protect your information:

  • All data is encrypted using AES-256 at rest
  • All data in transit is encrypted using TLS 1.2+
  • Queries run in isolated execution environments
  • Data source credentials are stored in encrypted secrets management
  • Access to production systems is restricted and audited

Third-Party Services

We use third-party services to operate the Service:

  • AI providers: To power AI features like query suggestions (queries sent for processing but not for training)
  • Cloud infrastructure: To host and run the Service
  • Analytics: To collect anonymized usage metrics
  • Authentication providers: For secure sign-in options

AI Features

If you use AI-powered features (like natural language to SQL), your queries may be sent to third-party AI providers for processing. These providers are contractually bound not to use your data for training. You can disable AI features in your account settings.

Organizations

If you are part of an organization on Sidequery:

  • Organization administrators may have access to usage data and activity within the organization
  • Shared notebooks and data sources within the organization are accessible to other members as configured
  • Your organization may have its own data retention and privacy policies that supplement these terms
  • If your account is managed by an organization, the organization administrator may be able to access or delete your account data

Data Retention

We retain account information, notebooks, and cached query results for as long as your account is active. If you delete your account, we delete all first-party user data immediately. System logs may be retained for up to 30 days for security and debugging purposes.

Your Rights

Depending on your location, you may have rights including:

  • Access to your personal data
  • Correction of inaccurate data
  • Deletion of your data
  • Export of your notebooks and data
  • Objection to processing

To exercise these rights, contact us at [email protected].

Children's Privacy

The Service is not intended for users under 18 years of age. We do not knowingly collect information from children.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or through the Service. The "Last updated" date at the top indicates when the policy was last revised.

Contact Us

For questions about this Privacy Policy or our data practices, contact us at [email protected].