Kitroot Analyzer

Privacy Policy

Your privacy is fundamental to our mission

This policy explains how we collect, use, and protect your data while providing transparent insights into our telemetry practices.

Data Collection Your Rights
Transparent Protected Controlled

What we collect

Data Collection & Use

Product Telemetry Data

  • SQL Server telemetry data and performance metrics
  • Query execution information and database activity
  • System metadata and derived analytics
  • SQL text and stored procedure calls for analysis

Website Contact Data

  • Name and email address (via contact forms)
  • Company information and SQL environment details
  • Messages and inquiries submitted through our website
  • Form submission timestamps and IP addresses

Data We Do NOT Collect

  • Row-level data from your databases
  • Query result sets or actual data
  • Database backups
  • User credentials or passwords
Customer Control: You have full control over what data the system collects from your databases, including which metadata and telemetry information is gathered. You also control the retention period for each type of data in our system, ensuring you maintain sovereignty over your data lifecycle.

Data sovereignty

Choose Your Data Location

Multi-tenant SaaS

Data processed in Kitroot's cloud regions with logical tenant isolation.

  • Shared infrastructure with logical separation
  • Standard security and compliance measures
  • Automated data processing

Single-tenant SaaS

Customer chooses specific cloud region with physical isolation in dedicated VPC.

  • Dedicated infrastructure and resources
  • Enhanced security controls
  • Custom compliance requirements support

On-premises

Complete data sovereignty - runs within your own data center.

  • Complete data sovereignty and control
  • Air-gapped deployment capability
  • Integration with existing security infrastructure

Your rights

Data Subject Rights (DSR) Mechanisms

Right to Access/Portability

You can request access to and export of your data at any time.

  • Data export available upon request
  • Multiple export formats supported
  • All telemetry data associated with your account

Right to Rectification/Erasure

You can request modification or deletion of your data.

  • Data correction and deletion available upon request
  • Bulk operations for multiple records
  • Audit trail for all modifications
Response Time: We commit to responding to DSR requests within 5 business days, with complex requests taking up to 30 days.

Transparency

Sub-processor Transparency

Live Internal Registry

We maintain an internal list of all sub-processors that is always up-to-date and accessible to customers upon request.

30-Day Notice

We provide customers with a 30-day notice before any new sub-processor is added, giving them a window to object or make alternative arrangements.

Security Requirements: All sub-processors must meet our stringent security standards and sign data processing agreements that align with our privacy commitments.

Privacy questions?

Contact Our Privacy Team

Our privacy team is here to help with any questions about this policy, data subject rights, or privacy concerns.

Contact Privacy Team

Company Information

Kitroot Ltd.
61 Agiou Pavlou
Agios Andreas, 1107
Nicosia, Cyprus

Quick links

Built to align with industry best practices and support common governance frameworks.

Privacy concerns?

Submit a privacy complaint or issue

If you have concerns about how we handle your data or need to report a privacy issue, please use the form below. We take all privacy matters seriously and will respond within 5 business days.

0/2000 characters
Response Commitment: We will acknowledge receipt of your complaint within 24 hours and provide a full response within 5 business days. For urgent matters, please mark as "Urgent" priority.