Privacy Policy

The data controller is AI-SQL-Chat. For matters related to data protection, please contact: podkowa71@gmail.com.

• Operational data: IP address, timestamp, browser headers (stored in server logs).
• Voluntary data: content entered in the interface (e.g., natural-language prompts), uploaded JSON schema files.
• No user accounts — the service works without registration.
• We do not build user profiles and do not store generated SQL results beyond what is necessary for processing a request.

• Service delivery (generating SQL based on prompts and uploaded schema) — GDPR Art. 6(1)(b).
• Security & maintenance (logs, rate limiting, abuse protection) — GDPR Art. 6(1)(f).
• Essential cookies — GDPR Art. 6(1)(f).
• Optional cookies (if introduced) — GDPR Art. 6(1)(a). By default we do not use third-party analytics cookies.

The service uses only essential cookies required for the interface to function, including remembering your cookie-banner choice (cookie-consent). We do not use external trackers or advertising cookies. If additional categories (e.g., analytics) are introduced, we will request consent.

• cookie-consent — stores your choice from the cookie banner (duration: up to 12 months).
• technical cookies — may be used for session handling/anti-abuse mechanisms; not used for profiling.

Cookie management: you may delete/modify your settings at any time in your browser. If the banner is hidden, delete the cookie-consent cookie to show it again.

The “Upload JSON schema” function stores the uploaded file in the uploads/ directory so it can be used to generate SQL queries. The latest uploaded file is used by the AI-SQL-Chat module. Files can be deleted from the schema list in the app. Upload only schemas that do not contain personal or confidential business data.

• Prompt → SQL: Based on a natural-language prompt and a provided schema, we generate a single SELECT query with enforced LIMIT and anti-SQLi filtering.
• Results: Query results are displayed in the browser and are not permanently stored on the server.
• Security: We block DDL/DML instructions, INFILE/OUTFILE, artificial delays, and multi-statement sequences.

The server (Oracle Cloud) may automatically store standard access logs: IP address, date/time, requested resource, browser information. These are used for diagnostics, security, and service statistics. We employ protective mechanisms (rate limit, slowdown, content filters).

We do not sell data nor share it with third parties for marketing purposes. Data may be processed by hosting/maintenance providers only as necessary and based on a data-processing agreement.

• Server logs — according to hosting provider retention policies and security needs.
• Files in uploads/ — until deleted by the user or administratively (e.g., cleanup/disk limits).
• Cookie consent — up to 12 months.
• Query results — only in memory for the duration of request handling (no persistent storage).

You have the following rights: access, rectification, erasure, restriction, objection, data portability, and filing a complaint to your supervisory authority. Send your request to: podkowa71@gmail.com.

This policy may be updated as the service evolves. A new version will be published on this page and the date above will be updated. Continued use of the service constitutes acceptance of the changes.