Is my data safe when I connect my database to Indiequery?

Our Approach to Security

Indiequery is built with security as a core principle. We follow proven security best practices to keep your data safe.

Our philosophy: Do the security fundamentals right, be transparent about our practices, and keep things simple and secure.

Data Security

How We Protect Your Database Connections

Encrypted storage: All database credentials are encrypted using industry-standard encryption before being stored in our database. We use encrypted model fields to ensure your connection strings are never stored in plain text.

Forced SSL/TLS: Every connection between Indiequery and your database uses encrypted transport. We require SSL/TLS connections to prevent data interception.

Read-only access: Indiequery can only read from your databases, never write or modify data. This limits potential impact even if something goes wrong.

Query Data Handling

Automatic deletion: Query results are automatically deleted from our servers after 7 days. We don't keep your query results longer than necessary.

No persistent caching: We don't permanently cache your database schema or query results. Fresh data every time.

Query logging: We maintain logs of your query activity for troubleshooting and usage tracking, which you can view in your account.

Infrastructure Security

Hosting & Location

Hosting provider: Indiequery runs on Hetzner, a reputable European hosting provider known for security and privacy.

Data location: All servers are located in Nuremberg, Germany, ensuring your data stays within the EU.

Network security: Our servers are protected by firewalls and only expose necessary ports for the application to function.

Access Control

Limited access: Only essential team members have access to production systems and user data.

Administrative access: All administrative actions are logged for audit purposes.

Controlled access: We maintain strict access controls and don't provide third-party access to user data.

Application Security

Authentication & Passwords

Secure passwords: We enforce standard password requirements with secure password hashing.

Rate limiting: We limit query execution to prevent abuse and protect your databases.

Data Isolation

User separation: Each user's connections and data are completely isolated from others.

Query timeouts: All queries are limited to prevent resource abuse.

Result limits: Query results are capped to maintain system stability.

Privacy & Data Retention

What We Store

Account data: Your email, password hash, and account settings Connection metadata: Encrypted database connection details
Query history: SQL queries you've run (but not the results after 7 days) Activity logs: Basic usage and access logs

What We Don't Store

Query results: Deleted automatically after 7 days Database contents: We never store or cache your actual database data Sensitive logs: We don't log passwords or connection details in plain text

Data Deletion

When you delete your account, we permanently remove all your data including connections, query history, and account information. This typically happens within 24 hours of account deletion.

Third-Party Services

We use minimal third-party services to reduce security exposure:

Stripe: Handles all payment processing. Your payment details never touch our servers. Sentry: Monitors application errors to help us fix bugs quickly. No user data is sent to Sentry.

We don't use analytics services, advertising networks, or other third-party trackers.

Incident Response

Reporting security issues: Email security concerns directly to [your email]. We treat security reports seriously and respond quickly.

Transparency: If a security incident affects user data, we'll notify affected users directly with details about what happened and what we're doing about it.

Best Practices for Users

Use read-only database users: Create dedicated read-only users for Indiequery connections. Enable SSL: Always use SSL connections for production databases. Monitor access: Check your database logs periodically for unexpected access patterns. Strong passwords: Use strong, unique passwords for your Indiequery account. Enable 2FA: Turn on two-factor authentication in your account settings.

Questions?

Security is important, and we're happy to discuss our practices. If you have specific security questions or concerns, reach out directly at [your email].