Legal

Privacy Policy

Effective Date: December 15th, 2025

This Data Privacy Policy describes how DataParrots Inc. ("DataParrots", "we", "our", or "us") handles data in connection with the DataParrots product (the "Product"). This policy is published on the official DataParrots website for transparency and informational purposes. DataParrots is an on-premise software product that enables users to query databases using natural language.

This policy is intended for customers, administrators, and end users who deploy and use DataParrots within their own infrastructure.

1. Scope and Purpose

This policy informs website visitors, prospective customers, customers, administrators, and end users about DataParrots data privacy practices.

This policy explains:

  • What data DataParrots processes
  • How data flows within the product
  • How third-party Large Language Models (LLMs), such as OpenAI, may be used
  • What data DataParrots Inc. does not collect, access, or store

This policy applies solely to the DataParrots product and does not cover third-party systems, databases, or services that you choose to integrate with DataParrots.

2. On-Premise Deployment Model

DataParrots is designed to be deployed on-premise or within customer-controlled infrastructure (such as private cloud, virtual machines, or internal servers).

As a result:

  • All databases queried by DataParrots remain within the customer's environment
  • All query results remain within the customer's environment
  • DataParrots Inc. does not host, store, or manage customer data

Customers retain full control over their infrastructure, network configuration, data storage, and access controls.

3. Data Processed by DataParrots

Depending on how the product is configured and used, DataParrots may process the following data types within the customer's environment:

  • Database schemas (table names, column names, relationships)
  • Natural language queries entered by users
  • Generated SQL or equivalent database queries
  • Query execution results returned from customer databases
  • Application logs generated locally by the deployment

All such data is processed locally within customer-controlled systems.

4. Use of Large Language Models (LLMs)

4.1 LLM Integration

DataParrots may integrate with third-party Large Language Models (LLMs), such as OpenAI models, to perform natural language understanding, query translation, or response generation.

4.2 Data Sent to LLM Providers

If an LLM integration is enabled by the customer:

  • Only data necessary to fulfill the user request (such as query text or limited schema context) is sent directly from the customer's environment to the selected LLM provider
  • Data is transmitted according to customer configuration and network policies

4.3 No Data Sent to DataParrots Inc.

Importantly:

  • No customer data is sent to DataParrots Inc.
  • DataParrots Inc. does not receive, store, view, or process user queries, database contents, or query results
  • All data flows directly between the customer's environment and the configured LLM provider, if any

DataParrots Inc. does not act as an intermediary or data processor for customer data.

5. Data Ownership

Customers retain full ownership of:

  • Their databases and database contents
  • All natural language queries submitted by users
  • All generated queries and results
  • Any logs or analytics generated within their deployment

DataParrots Inc. claims no ownership rights over customer data.

6. Data Storage and Retention

DataParrots Inc. does not store or retain customer data.

Data storage and retention policies are entirely determined by:

  • Customer infrastructure
  • Customer database configurations
  • Customer logging and monitoring settings

Customers are responsible for configuring retention, deletion, and backup policies in accordance with their legal and regulatory requirements.

7. Security Responsibilities

7.1 Customer Responsibilities

Because DataParrots is deployed on-premise, customers are responsible for:

  • Securing servers, networks, and databases
  • Managing user authentication and authorization
  • Controlling access to data and query results
  • Applying operating system and infrastructure security updates

7.2 DataParrots Product Security

DataParrots is designed following secure-by-design principles, including:

  • No built-in data exfiltration mechanisms to DataParrots Inc.
  • Configuration options to limit data shared with LLM providers
  • Compatibility with enterprise security and network controls

8. Compliance and Regulatory Considerations

Because DataParrots does not collect or store customer data, regulatory compliance (such as GDPR, CCPA, HIPAA, or other data protection laws) is primarily the responsibility of the customer, based on:

  • The nature of their data
  • Their deployment architecture
  • Their choice of third-party LLM providers

Customers should review the privacy and data usage policies of any LLM provider they integrate with DataParrots.

9. No Analytics or Telemetry by Default

DataParrots does not collect usage analytics, telemetry, or diagnostic data that is transmitted to DataParrots Inc. by default.

Any optional diagnostics or logging features are configured and stored entirely within the customer's environment.

10. Changes to This Policy

DataParrots Inc. may update this Data Privacy Policy from time to time to reflect changes in the product or legal requirements. Updated versions will be made available through official DataParrots documentation or distribution channels.

Email: support@dataparrots.com