Privacy Policy

Last updated: 2026-02-04

Our Commitment to Privacy

Catedral is designed with privacy in mind. As self-hosted software, your data stays on your servers. We collect minimal information necessary to provide licensing services and improve the Software.

1. Information We Collect

1.1 License Verification Data

When you activate or verify a license, we collect:

  • License key
  • Machine identifier (hardware fingerprint)
  • Number of deployed applications
  • Software version
  • Timestamp of verification

1.2 Purchase Information

When you purchase a license, our payment processor (LemonSqueezy) collects:

  • Name and email address
  • Billing address
  • Payment information (processed securely by LemonSqueezy)

1.3 Website Analytics

We use privacy-respecting analytics to understand how our website is used. We do not use cookies for tracking, and we do not share data with advertising networks.

1.4 What We Do NOT Collect

We do not collect:

  • Content of your deployed applications
  • Your application data or databases
  • Network traffic or logs from your servers
  • Personal information of your users or customers
  • Source code or configurations of your deployments

2. How We Use Your Information

We use collected information to:

  • Validate and manage your license
  • Prevent license abuse and unauthorized use
  • Process payments and manage subscriptions
  • Send important product updates and security notices
  • Improve the Software based on usage patterns
  • Provide customer support

3. Data Storage and Security

License verification data is stored on secure servers with encryption at rest and in transit. We retain this data only as long as necessary to provide our services.

Your local license file is encrypted using a machine-specific key and stored on your server at /etc/sovastian/license.enc.

4. Data Sharing

We do not sell your personal information. We share data only with:

  • Payment Processor: LemonSqueezy processes payments on our behalf
  • Legal Requirements: When required by law or to protect our rights

5. Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data (subject to legal retention requirements)
  • Withdraw consent for marketing communications
  • Export your data in a portable format

To exercise these rights, contact us at privacy@catedral.dev.

6. Offline Operation

Catedral is designed to work offline. License verification occurs periodically (every 7 days) with a 14-day grace period for offline operation. During offline periods, no data is transmitted to our servers.

7. Children's Privacy

Catedral is not intended for use by children under 13. We do not knowingly collect personal information from children under 13.

8. International Data Transfers

License verification data may be processed in countries outside your own. We ensure appropriate safeguards are in place for such transfers.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or through the Software. The "Last updated" date at the top indicates when changes were last made.

10. Contact Us

For privacy-related questions or concerns, contact us at:

Email: privacy@catedral.dev

← Back to Home