How We Use Your Information
Last Updated: November 15, 2024
At App Config.json, we treat your data with the same precision and security we apply to your application configurations. This page explains how we collect, use, store, and protect your personal and usage information in compliance with applicable data protection regulations.
What Information We Collect
We only collect information necessary to deliver, secure, and improve our configuration management platform:
- Account Information: Name, email address, company name, and role during registration.
- Usage Data: API requests, configuration sync events, environment tags, and performance metrics tied to your workspace (anonymized where possible).
- Technical Data: IP addresses, browser/OS details, SDK versions, and device identifiers for security and debugging.
- Communication Data: Support tickets, chat logs, and email correspondence.
How We Use Your Information
Your data enables us to provide a reliable, real-time configuration platform:
- Service Delivery: Provision workspaces, sync configs across environments, and maintain session authentication.
- Security & Integrity: Detect anomalous access patterns, prevent unauthorized config changes, and enforce RBAC policies.
- Product Improvement: Analyze aggregate usage trends to optimize SDK performance and UI/UX workflows.
- Support & Communication: Respond to technical inquiries, send service announcements, and deliver security alerts.
- Legal & Compliance: Fulfill contractual obligations, audit trails, and regulatory reporting requirements.
How We Share Your Information
We do not sell your personal data. Information is shared only under the following circumstances:
- Service Providers: Trusted third parties (e.g., cloud hosting, email delivery, analytics) bound by strict data processing agreements.
- Enterprise Teams: Within your organization, data visibility follows your defined admin/developer roles.
- Legal Requirements: When compelled by law, subpoena, or to protect the rights, property, or safety of App Config.json and our users.
- Business Transfers: In the event of a merger or acquisition, with appropriate notice and continued privacy obligations.
Data Security & Storage
We implement industry-standard safeguards to protect your information:
- Encryption: AES-256 at rest, TLS 1.3+ in transit.
- Access Control: Zero-trust architecture, hardware-backed key management, and strict internal least-privilege policies.
- Infrastructure: Hosted on SOC 2 Type II compliant cloud regions with automated backup and disaster recovery.
- Retention: Data is retained only as long as necessary to provide services, comply with legal obligations, or resolve disputes. Account deletion requests are processed within 30 days.
Your Rights & Choices
Depending on your jurisdiction (e.g., GDPR, CCPA), you may have the right to:
- Access, export, or correct your personal data
- Request deletion or restriction of processing
- Object to automated decision-making or marketing communications
- Withdraw consent at any time (without affecting core service functionality)
To exercise these rights, use the privacy controls in your dashboard or contact our Data Protection Officer directly.
Cookies & Tracking Technologies
We use essential cookies to maintain authentication, security, and session state. Optional analytics cookies help us understand platform performance and are always opt-in for third-party tracking. You can manage preferences via your browser settings or our Cookie Consent Banner.
Contact Us
If you have questions about this policy, your data, or our practices:
- Email: privacy@appconfig.json
- Portal: https://app.appconfig.json/settings/privacy
- Mailing: App Config.json Inc., 100 Developer Way, Suite 400, San Francisco, CA 94107
We aim to respond to all privacy inquiries within 5 business days.