Data Privacy

Stackbooster.io is committed to protecting the privacy and security of your data. This guide explains what data we collect, how we use it, and the measures we take to ensure your information remains private and secure.

Data Collection

What Data We Collect

Stackbooster.io collects the following types of information to provide optimization services:

Infrastructure Metadata

AWS Resources: Instance types, counts, configurations
EKS Cluster: Version, configuration, node groups
Autoscaling Groups: Settings, scaling policies, history

Kubernetes Metrics

Node Information: CPU/memory usage, capacity, allocatable resources
Pod Statistics: Resource requests, limits, actual usage
Workload Data: Deployment patterns, scaling history
Namespace Information: Resource quotas, utilization patterns

Usage Data

User Activity: Logins, configuration changes, optimization actions
Feature Usage: Which platform features are being utilized
Performance Metrics: Response times, operation success rates

What We Don't Collect

We explicitly do not collect:

Application Data: The content of your applications or databases
Secrets or Credentials: Kubernetes secrets, passwords, tokens
Personal User Information: Beyond basic account details
Container Contents: The actual data processed by your containers

Data Use

Your data is used for the following purposes:

Primary Uses

Cost Optimization: Analyzing resource usage patterns to identify savings
Autoscaling Intelligence: Informing decisions about when to scale resources
Workload Placement: Determining optimal node configurations for workloads
Reporting and Insights: Generating cost and efficiency analytics

Secondary Uses

Service Improvement: Enhancing platform features and capabilities
Aggregate Analysis: Understanding broad usage patterns (always anonymized)
Troubleshooting: Resolving technical issues with the platform

Data Storage and Retention

Storage Locations

Primary Storage: US-based data centers with SOC 2 Type II certification
Backup Storage: Geographically distributed for disaster recovery
Analytics Processing: Secure, isolated environments for data processing

Retention Policies

Active Account Data: Retained while your account is active
Historical Metrics: Stored for 13 months for trend analysis
User Activity Logs: Kept for 90 days for security monitoring
Deleted Account Data: Purged within 30 days of account deletion

Data Security Measures

Encryption

Data at Rest: Encrypted using AES-256
Data in Transit: Protected with TLS 1.2+ encryption
Key Management: Rotation and secure storage of encryption keys

Access Controls

Role-Based Access: Limited internal access based on job function
Least Privilege: Minimal access permissions for all roles
Access Auditing: Logging and monitoring of all data access
Employee Training: Regular security awareness training

Infrastructure Security

Network Security: Firewalls, IDS/IPS, and regular penetration testing
Vulnerability Management: Regular scanning and patching
Security Monitoring: 24/7 detection and response capabilities
Disaster Recovery: Regular testing of data recovery procedures

Stackbooster.io only shares data with third parties in the following circumstances:

With your explicit consent for specific integrations
With service providers who process data on our behalf (under strict contracts)
When required by law or valid legal process

International Transfers

If your data is transferred internationally:

We maintain compliance with applicable data transfer regulations
We implement appropriate safeguards for international data transfers
We provide transparency about where your data is stored and processed

Your Data Rights

Access and Control

You have the right to:

Access the data we've collected about your infrastructure
Export your data in machine-readable formats
Correct inaccurate information we may have
Delete your data by terminating your account

Managing Your Data

You can manage your data through:

Account Settings: Control what data is collected
Data Exports: Request full exports of your collected data
Deletion Requests: Permanently remove your data from our systems

Compliance

Stackbooster.io maintains compliance with relevant data privacy regulations:

GDPR: For customers in the European Economic Area
CCPA/CPRA: For California residents
PIPEDA: For Canadian customers
Industry-Specific: Compliance with relevant industry standards

Data Privacy Support

If you have questions or concerns about data privacy:

Email our privacy team at [email protected]
Review our full Privacy Policy
Submit a data subject request through your account dashboard

Updates to Privacy Practices

We regularly review and update our privacy practices:

Major changes are communicated directly to customers
All updates are published in our changelog
Historical privacy policies are archived and available upon request

By using Stackbooster.io, you entrust us with important data about your infrastructure. We take this responsibility seriously and are committed to maintaining the highest standards of data privacy and security.

Data Privacy ​

Data Collection ​

What Data We Collect ​

Infrastructure Metadata ​

Kubernetes Metrics ​

Usage Data ​

What We Don't Collect ​

Data Use ​

Primary Uses ​

Secondary Uses ​

Data Storage and Retention ​

Storage Locations ​

Retention Policies ​

Data Security Measures ​

Encryption ​

Access Controls ​

Infrastructure Security ​

Data Sharing and Transfers ​

Third-Party Sharing ​

International Transfers ​

Your Data Rights ​

Access and Control ​

Managing Your Data ​

Compliance ​

Data Privacy Support ​

Updates to Privacy Practices ​