Privacy Policy

Last updated:

Introduction

Loguro ("we", "us", "our") operates logu.ro (the "Service"). This Privacy Policy explains how we collect, use, and protect your information when you use our log management platform.

We are committed to protecting your privacy and being transparent about our data practices.

What Information We Collect

1. Account Information

You can register either with email + password or with GitHub OAuth. Depending on the method, we collect:

  • Email address and a hashed password (email / password registration)
  • GitHub username, email, avatar URL and user ID (GitHub OAuth)
  • Display name (if you set one)

2. Log Data You Send

When you use our Service to ingest logs, we store whatever data you send to us. This may include:

  • Log messages and metadata
  • Timestamps
  • Log levels (info, error, warning, etc.)
  • Any contextual data you include in your logs

Important: We cannot control what data you send in your logs. It is your responsibility to ensure you do not send sensitive personal information (passwords, credit card numbers, social security numbers, etc.) to our Service.

3. Usage Information

We automatically collect:

  • IP addresses (for rate limiting and security)
  • Browser type and version
  • Pages visited and features used
  • API usage metrics (requests per second, data ingested)

4. Payment Information

We use Polar.sh to process payments. We do not store your credit card information. Polar.sh handles all payment data according to their privacy policy.

How We Use Your Information

We use your information to:

  • Provide and maintain the Service
  • Authenticate your account and manage your subscription
  • Process and store your log data
  • Send you alerts and notifications based on your configuration
  • Improve our Service and develop new features
  • Prevent fraud and abuse
  • Comply with legal obligations

Data Storage & Security

Your data is stored securely using industry-standard encryption:

  • Database: PostgreSQL (managed) with encryption at rest for account, project, subscription and quota metadata
  • Log Storage: Compressed Parquet files stored on disk-backed object storage, organised per-project in isolated directories
  • Cache & Pub/Sub: Redis (in-memory only) for sessions, rate-limit counters and real-time WebSocket fan-out
  • Transmission: All data is transmitted via HTTPS/TLS
  • API & CLI Keys: Hashed before storage; secrets never logged
  • Sessions: HTTP-only cookies with secure flags

We implement rate limiting, authentication, and authorization controls to protect your data from unauthorized access.

Data Retention

Log Data: We retain your logs based on your subscription plan (between 7 and 120 days). After retention expires, logs are deleted from compacted Parquet storage. If you need to delete something earlier, drop an email to support@logu.ro.

Pattern Memory (Tasks): When you turn a log into a task / investigation, a small snapshot of that log (message, level, context, timestamp) is stored separately as a "pattern memory" record. These records are permanent and are not deleted by plan retention — they power the long-term occurrence stats shown on a log's pattern badge. They are removed only when you delete the underlying task or the entire project, or on account deletion.

Account Data: We retain your account information while your account is active. If you delete your account, we will delete your personal information, logs and pattern memory within 30 days.

Your Rights

If you are in the European Economic Area (EEA), you have certain data protection rights:

  • Access: You can access your data through your dashboard
  • Rectification: You can update your account information at any time
  • Data Portability: Contact us to export your data
  • Withdraw Consent: You can close your account at any time

Cookies

We use essential cookies to maintain your session and remember your preferences. We also use Datafast, a privacy-friendly analytics provider, to count aggregate page views. We do not use advertising or cross-site tracking cookies.

For more details, see our Cookie Policy.

Third-Party Services

We use the following third-party sub-processors to operate the Service:

  • GitHub: Optional sign-in via OAuth
  • Polar.sh: Subscription billing and payment processing
  • Datafast: Privacy-friendly product analytics on marketing pages (page-view aggregates only)
  • Anthropic & Google (Gemini): AI model providers used by the --investigate and --explain plugins. When you trigger one of these commands we send the relevant log snippets and your prompt to the chosen provider for inference. Output is streamed back and stored against your investigation record. Providers act as processors on our behalf and do not train on your data
  • Notification providers (Slack, Discord, Telegram, email/SMTP, webhooks): Only when you configure a notification channel — we forward the alert payload (which may include a log snippet) to the destination you supplied
  • Email delivery: Transactional email (sign-in, billing receipts, alerts) is sent via an SMTP relay

Each service has its own privacy policy governing how they use your information.

Children's Privacy

Our Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

Contact Us

If you have any questions about this Privacy Policy, please contact us at:

Email: privacy@logu.ro