Catena does not share, sell, rent, or train AI on your data. The whole point of the suite is that you own it.
Billing information (via Stripe -- card numbers never touch our servers). Portal account information (email, name, company). Credentials you enter to deploy your suite are passed in-flight to our deployment runner and are not persisted in our database. Server-side logs of our actions for support and audit.
We do not sell, rent, or share your data. We do not train AI models on it. We do not analyze it for advertising. We do not use third-party trackers on the marketing site or the portal.
Your suite data lives on the server you own, the S3 bucket you own, and the third-party accounts you yourself selected (Cloudflare, Tailscale, your VPS provider, your SMTP provider, etc.). The portal itself runs on Canadian-jurisdiction infrastructure and is hosted on the Catena Suite -- the same product we sell.
Stripe (payment processing). Cloudflare (Tunnel + edge for catena.run + the portal). Keycloak (identity, on our infrastructure). The providers you yourself selected for your suite (named in your engagement letter).
Law 25 and PIPEDA grant you the right to access, correct, and delete personal information we hold. Contact privacy@catena.run (or hello@catena.run interim) and we will respond within 30 days.
Minimal session cookies on the portal for authentication. No third-party trackers, no advertising cookies, no cookies on the marketing site. Aggregate visit analytics on the marketing site via a self-hosted Plausible instance -- no cookies, no fingerprinting, no personal data; Law 25 / GDPR compliant with no consent banner required.
Email hello@catena.run. We answer privacy questions within one business day.