← Back to Home

Information We Collect

We are committed to transparency regarding how we collect, use, and protect your information when you use App Config.json. This document outlines the categories of data we gather and the purposes for which it is processed.

Last Updated: December 2024

📋 Introduction

App Config.json is a SaaS configuration management platform. To deliver our services, maintain security, and improve user experience, we collect certain information. We only collect data that is strictly necessary for our operational, security, and service-improvement purposes.

Note: We do not sell your personal data to third parties. Your configuration data belongs to you and is processed solely under your instruction.

👤 Account & Profile Information

When you register for an account or update your profile, we collect:

  • Full name and business email address
  • Secure authentication credentials (hashed passwords)
  • Organization/company name and role
  • Two-factor authentication (2FA) setup data
  • Profile picture (if voluntarily uploaded)

This information is used to create and secure your account, manage team access controls, and provide personalized support.

⚙️ Usage & Configuration Data

As a configuration management platform, we process the following operational data:

  • Configuration keys, values, and environment mappings
  • Feature flag states and rollout rules
  • API call volumes, latency metrics, and error rates
  • SDK version and integration type
  • Change history and audit trail logs

We use this data to sync configurations across your infrastructure, provide performance analytics, and ensure service reliability. You retain full ownership of all configuration content.

💻 Technical & Device Information

When you access our dashboard or SDKs communicate with our servers, we automatically collect:

  • IP address and approximate geographic location
  • Browser type, operating system, and device identifiers
  • Session duration, pages viewed, and interaction patterns
  • Network logs and SSL/TLS handshake data

This data helps us optimize performance, detect fraudulent activity, and maintain secure access controls.

💬 Communications & Support Data

If you contact our support team, subscribe to newsletters, or submit feedback, we may collect:

  • Support ticket content and attached files
  • Email communication history
  • Survey responses and product feedback
  • Marketing preference selections

We use this information to resolve issues, improve documentation, and send relevant product updates. You may opt out of marketing communications at any time.

🍪 Cookies & Tracking Technologies

We use essential and functional cookies to maintain session state, remember preferences, and ensure platform security. We do not use third-party advertising cookies.

Cookies We Use:

  • Session Tokens: Secure authentication and dashboard access
  • Preference Cookies: Theme selection, language, and dashboard layout
  • Analytics Cookies: Anonymous usage metrics to improve UX

You can manage cookie preferences through your browser settings. Disabling essential cookies may impact platform functionality.

🎯 How We Use Your Information

All collected data serves specific, legitimate purposes:

  • Delivering and maintaining the configuration management service
  • Processing billing and subscription management
  • Providing technical support and customer success resources
  • Ensuring platform security, fraud prevention, and compliance
  • Improving product features based on aggregate usage patterns
  • Communicating important service announcements and updates

🔗 Data Sharing & Third Parties

We do not sell or rent your personal information. Data may only be shared with trusted service providers under strict contractual obligations:

  • Cloud Infrastructure: AWS, Cloudflare (hosting & CDN)
  • Analytics: Privacy-focused tools for service optimization
  • Support & Billing: Helpdesk and payment processing partners

We may also disclose information if required by law, to protect against fraud, or to enforce our terms of service.

🔒 Security & Data Retention

We implement industry-leading security measures including AES-256 encryption at rest, TLS 1.3 in transit, regular penetration testing, and strict access controls. Your configuration data is logically isolated and never commingled with other tenants.

Retention Policy: We retain your data for as long as your account remains active. Upon account deletion, all personal and configuration data is permanently removed within 30 days, except where legal obligations require longer retention (e.g., billing records: 7 years).

⚖️ Your Rights & Choices

Depending on your jurisdiction, you may have the right to:

  • Access, correct, or delete your personal data
  • Export your configuration data in JSON/CSV format
  • Object to or restrict certain processing activities
  • Withdraw consent for marketing communications
  • Lodge a complaint with a supervisory authority

To exercise these rights, please contact our Data Protection Officer via the details below. We will respond within 30 days.

✉️ Contact Us

If you have questions about this policy, our data practices, or wish to exercise your rights, please reach out:

  • Privacy Email: privacy@appconfig.json
  • Support Portal: support.appconfig.json
  • Mailing Address: App Config.json, 123 Data Lane, Suite 400, San Francisco, CA 94105

Thank you for trusting App Config.json with your configuration management needs. We are dedicated to protecting your data and maintaining your confidence.