Privacy Policy

Gelida collects only what is necessary to provide the service: • Your email address and name when you sign up • Your Snowflake account identifier, username, warehouse name, and role — stored encrypted • Aggregated cost and usage metrics derived from your Snowflake ACCOUNT_USAGE views • Basic usage logs (which features you use, when you log in) We do NOT collect, store, or transmit your raw Snowflake data, query results, or table contents.

Your Snowflake password is encrypted using AES-256-GCM before being written to our database. The encryption key is stored separately as an environment variable and never logged. Credentials are decrypted only on our servers, in memory, at the moment a query needs to run. They are never sent to the browser, never logged, and never shared with third parties. Gelida connects to your Snowflake account in read-only mode. We request the minimum permissions needed — access to SNOWFLAKE.ACCOUNT_USAGE and INFORMATION_SCHEMA views only.

We use your data solely to provide the Gelida service: • Running cost analytics queries against your Snowflake account • Generating AI-powered insights using Claude (Anthropic) • Sending transactional emails (password resets, invites) via Resend • Displaying your cost data in the Gelida dashboard We do not sell your data. We do not use your data to train AI models. We do not share your data with advertisers.

Every piece of data in Gelida is scoped to your organisation. Users from one organisation cannot access data from another. This is enforced at the database level using row-level security, not just application logic. Each organisation's cached analytics data is stored separately and can only be read by authenticated members of that organisation.

• Your account data is retained as long as your account is active • Cached analytics data expires automatically (between 1 and 12 hours depending on the feature) • If you cancel your account, your data is deleted within 30 days upon request • You can request deletion of your data at any time by emailing support@gelida.dev

• All data is transmitted over HTTPS/TLS • Snowflake credentials encrypted at rest with AES-256-GCM • API routes protected by server-side session validation • Rate limiting applied to AI-powered endpoints • No raw query data or business data is ever stored by Gelida

You have the right to: • Access the data we hold about you • Request correction of inaccurate data • Request deletion of your account and associated data • Export your data in a machine-readable format • Withdraw consent at any time To exercise any of these rights, contact us at support@gelida.dev

For any privacy-related questions or requests: Email: team@gelida.dev Website: gelida.dev