Beekeeper Studio processes limited personal data in order to provide software licensing, account management, Workspace synchronization services, and customer support. The application is primarily a desktop-based product and does not store or process customer database contents.
1. Data Retention Policy
Beekeeper Studio retains personal data only for as long as necessary to provide services, comply with legal obligations, resolve disputes, and enforce agreements. Retention periods vary based on the type of data processed.
1.1 Account and Billing Data
Includes customer account details such as name, email address, and billing contact information.
- Retained for the duration of the customer relationship
- Retained for up to seven (7) years following account termination for tax, accounting, and legal compliance purposes
Includes database connection metadata, saved SQL queries, query history, and workspace configuration data.
- Retained while Workspace services remain active
- Deleted within thirty (30) days following Workspace deletion or account termination
- Backup copies are removed through standard backup rotation processes
1.3 Support Communications
Includes customer support requests, diagnostic information voluntarily submitted by users, and troubleshooting communications.
- Retained for up to three (3) years after issue resolution
1.4 License Validation and Operational Logs
Includes authentication events, license validation records, and system reliability logs.
- Retained for up to twelve (12) months for fraud prevention, security monitoring, and service reliability
1.5 Diagnostic and Telemetry Data
Diagnostic and usage tracking from the desktop application is optional, anonymized, and opt-in.
- Retained for up to twelve (12) months
1.6 Data Explicitly Not Retained
Beekeeper Studio does not retain:
- Customer database contents
- Database query results
- Application data stored within customer databases
- Database traffic or database connection activity beyond stored connection metadata
2. Backup Retention
Beekeeper Studio maintains encrypted backups to support disaster recovery and business continuity.
- Backups are retained only for the duration required by backup rotation and operational continuity policies
- Backup data is securely deleted following standard rotation schedules
3. Customer Data Control and Deletion
Customers retain control over their Workspace data and may delete stored data at any time through available account and Workspace management tools.
Upon termination of services, Beekeeper Studio deletes customer Workspace data in accordance with the retention timelines described above.
4. International Data Transfers
Beekeeper Studio is headquartered and operates infrastructure within the United States. As a result, personal data may be transferred outside the European Economic Area (EEA) or the United Kingdom.
To ensure adequate protection of transferred personal data, Beekeeper Studio relies on the following safeguards:
- European Commission Standard Contractual Clauses (SCCs)
- UK International Data Transfer Addendum (where applicable)
These transfer mechanisms ensure that personal data receives protections consistent with GDPR requirements.
5. Subprocessors and Data Hosting
Beekeeper Studio uses trusted cloud infrastructure providers and service vendors to support licensing, Workspace services, and operational functionality.
All subprocessors are contractually required to:
- Implement appropriate technical and organizational security measures
- Process data only under documented instructions
- Maintain confidentiality and data protection obligations equivalent to Beekeeper Studio’s commitments
6. Security Safeguards Supporting Data Transfers
Beekeeper Studio protects transferred and stored personal data through multiple technical and organizational measures including:
Encryption
- TLS encryption for all data in transit
- Encryption at rest for stored server data
- Application-level encryption for stored credentials and sensitive Workspace metadata
Access Controls
- Role-based access controls
- Least-privilege internal access policies
- Multi-factor authentication for administrative access
Infrastructure Security
- Secure cloud infrastructure
- Network segmentation
- Continuous vulnerability monitoring and patching
Operational Security
- Security incident response procedures
- Logging and monitoring of system access and activity
- Regular security reviews and updates
7. Data Minimization Approach
Beekeeper Studio is designed to minimize data transfer and storage by:
- Executing database queries directly between the desktop application and customer-controlled infrastructure
- Avoiding storage or processing of customer database contents
- Limiting cloud storage to metadata required for Workspace functionality
8. Updates to This Statement
Beekeeper Studio may update this document from time to time to reflect operational, regulatory, or security improvements. Updated versions will be published on the Beekeeper Studio website.
