1. Information We Collect
InfraDesk collects the following information:
- Account information: Name, email address (via Google OAuth)
- AWS credentials: Access Key ID and Secret Access Key (AES-256 encrypted)
- AWS cost data: Service-wise spending data fetched from AWS Cost Explorer API
- Usage data: How you interact with our Service
- Payment information: Processed by Cashfree — we do not store card details
2. How We Use Your Information
We use your information to:
- Provide and improve the InfraDesk Service
- Fetch and analyze your AWS cost data
- Generate AI-powered cost optimization recommendations
- Send cost spike alerts and digest emails (if enabled)
- Process payments and manage subscriptions
- Provide customer support
3. AWS Credentials Security
Your AWS credentials are:
- Encrypted with AES-256 before being stored in our database
- Never transmitted in plain text
- Used only to read AWS cost and usage data
- Never shared with any third party
- Deleted immediately upon account deletion
4. Data Sharing
We do not sell your personal data. We share data only with:
- Supabase: Database and authentication infrastructure
- Vercel: Hosting and deployment
- Anthropic: AI analysis (cost data only, no PII)
- Cashfree: Payment processing
- Resend: Email delivery
5. Data Retention
We retain your data for as long as your account is active. Upon account deletion:
- AWS credentials are deleted immediately
- Cost data and decision logs are deleted within 30 days
- Payment records are retained for 7 years as required by Indian law
6. Your Rights
You have the right to:
- Access your personal data
- Correct inaccurate data
- Delete your account and all associated data
- Export your data
- Opt out of marketing emails
7. Cookies
InfraDesk uses essential cookies for authentication and session management. We do not use tracking or advertising cookies.
8. Contact
For privacy concerns, contact our Data Protection Officer at privacy@getinfradesk.com
Strinosoft, Pune, Maharashtra, India — 411041