Legal
Privacy Policy
Effective July 9, 2026
This Privacy Policy explains how VectraSEO LLC, doing business as Steada (“Steada,” “we,” “us,” or “our”), collects, uses, shares, and protects personal information when you visit our website, create an account, or use our managed Valkey service (the “Service”). By using the Service you agree to this Policy. If you do not agree, please do not use the Service.
1. Information we collect
Information you provide
- Account and identity. Your email address and, optionally, your name, so we can create your account and communicate with you.
- Authentication. We use passwordless sign-in (email magic links and passkeys/WebAuthn). We store passkey public-key credentials and short-lived sign-in tokens. We never receive or store your passkey private keys.
- Support and communications. Messages, support requests, and their contents when you contact us.
Payment information
Payments are processed by Stripe. We do not receive or store full card numbers or bank details. We store only your Stripe customer and subscription identifiers and your subscription status. Stripe’s handling of your payment data is governed by Stripe’s privacy policy.
Your database contents
The Service hosts databases that you provision and control. The data you store in them is yours. We process it only as needed to operate, secure, back up (where you enable it), and support the Service, and we do not access the contents of your databases except as necessary for those purposes, to comply with law, or with your instruction. You are responsible for the lawfulness of the data you store and for not storing regulated or highly sensitive data except as expressly agreed.
Information collected automatically
- Operational telemetry. Metrics about your databases such as memory use, connection counts, command rates, and latency, used to run the Service, bill by size tier, show your usage, and trigger alerts you configure.
- Log and security data. IP address, request metadata, timestamps, and browser/device information, used to operate, secure, and troubleshoot the Service and to prevent abuse.
- Local storage. The dashboard stores a session token and your preferences in your browser. These are essential to signing you in and are not used for advertising or cross-site tracking.
2. How we use information
- To provide, operate, maintain, secure, and improve the Service.
- To authenticate you and protect your account.
- To process subscriptions, billing, and taxes through our payment processor.
- To send service, security, and account communications, and to respond to support requests.
- To monitor usage, enforce our Terms and acceptable-use rules, and prevent fraud or abuse.
- To comply with legal obligations and enforce our agreements.
3. Legal bases (EEA/UK users)
Where the EU or UK GDPR applies, we process personal information to perform our contract with you (providing the Service), for our legitimate interests (securing and improving the Service, preventing abuse), to comply with legal obligations, and, where required, with your consent.
4. How we share information
We do not sell your personal information, and we do not share it for cross-context behavioral advertising. We share information only as follows:
- Service providers (subprocessors). Infrastructure and tools that help us run the Service, including cloud hosting and our control plane, transactional email, payment processing (Stripe), DNS, and uptime monitoring. These providers may process data in the United States and are permitted to use it only to provide services to us.
- Legal and safety. When we believe disclosure is required by law or legal process, or is necessary to protect the rights, safety, or property of Steada, our users, or the public.
- Business transfers. In connection with a merger, acquisition, financing, or sale of assets, subject to this Policy.
5. Data retention
We keep personal information for as long as your account is active and as needed to provide the Service, then for the period required to meet legal, tax, accounting, and dispute-resolution obligations. When you decommission a database or close your account, we delete or de-identify the associated data within a commercially reasonable period, except where retention is required by law.
6. Security
We use technical and organizational measures designed to protect personal information, including encryption in transit (TLS), per-tenant isolation for hosted databases, access controls, and passwordless authentication. No method of transmission or storage is completely secure, and we do not currently claim any formal compliance certification or audited security program. You are responsible for safeguarding your credentials and access tokens.
7. International data transfers
We operate the Service using infrastructure located in the United States. If you access the Service from outside the United States, your information will be transferred to and processed in the United States, where data-protection laws may differ from those in your jurisdiction. Where required, we rely on appropriate safeguards for such transfers.
8. Your privacy rights
Depending on where you live, you may have rights to access, correct, delete, or receive a copy of your personal information, to opt out of certain processing, and to appeal a decision. To exercise any right, contact us at support@steada.dev. We will respond as required by applicable law and will not discriminate against you for exercising a right.
California residents
We do not sell or share personal information as those terms are defined under the CCPA/CPRA, and we do not knowingly process the sensitive personal information of California residents for purposes that require an opt-out. You may exercise your access, deletion, and correction rights as described above, and you may use an authorized agent to do so.
EEA/UK residents
You may also have the right to object to or restrict certain processing and to lodge a complaint with your local data-protection authority.
9. Children’s privacy
The Service is intended for businesses and developers and is not directed to children. We do not knowingly collect personal information from anyone under 18. If you believe a child has provided us personal information, contact us and we will delete it.
10. Cookies and tracking
We use browser local storage that is strictly necessary to sign you in and remember your preferences. We do not use advertising or cross-site tracking cookies. If we add analytics in the future, we will update this Policy and provide any choices required by law.
11. Changes to this Policy
We may update this Policy from time to time. When we do, we will revise the effective date above and, for material changes, provide additional notice. Your continued use of the Service after an update means you accept the revised Policy.
12. Contact us
Questions about this Policy or your personal information? Contact us at support@steada.dev.
Last reviewed