AirDiff

Privacy Policy

Last Updated: August 12, 2025

Introduction

AirDiff ("we," "our," or "us"), a product of ModernStack, is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our schema change tracking service for Airtable at airdiff.modernstack.io (the "Service").

Information We Collect

Information You Provide

Account Information

  • • Email address
  • • Password (encrypted)
  • • Name (optional)

Payment Information

  • • Processed securely through Stripe
  • • We do not store credit card numbers
  • • Billing address and email for invoicing

Airtable Integration Data

  • • Base IDs and names
  • • Table and field schemas
  • • Schema change history
  • • API webhook URLs
  • • Generated API keys (SHA-256 hashed)

Information Automatically Collected

Usage Data

  • • Number of bases tracked
  • • Frequency of schema scans
  • • Export activity
  • • Feature usage patterns

Technical Data

  • • IP address
  • • Browser type and version
  • • Device information
  • • Timezone settings
  • • Access times and dates

How We Use Your Information

We use your information to:

1. Provide and Maintain the Service

  • • Track Airtable schema changes
  • • Generate change reports
  • • Send real-time notifications
  • • Process webhook events

2. Manage Your Account

  • • Authenticate your access
  • • Manage subscription tiers
  • • Process payments
  • • Provide customer support

3. Improve Our Service

  • • Analyze usage patterns
  • • Identify and fix bugs
  • • Develop new features
  • • Optimize performance

4. Communicate With You

  • • Service updates and announcements
  • • Billing and account notifications
  • • Technical alerts
  • • Customer support responses

Data Storage and Security

Where We Store Data

  • Database: Supabase (PostgreSQL) with Row Level Security (RLS)
  • Frontend Hosting: Vercel
  • Workflow Processing: Self-hosted n8n instance
  • Payment Processing: Stripe

Security Measures

  • • SHA-256 encryption for API keys
  • • SSL/TLS for all data transmission
  • • Row Level Security for data isolation
  • • Regular security updates
  • • Environment variable protection
  • • No cross-user data access

Data Retention

  • Account data: Retained while account is active
  • Schema history: Retained per your subscription tier limits
  • Deleted account data: Removed within 30 days
  • Payment records: Retained per legal requirements (typically 7 years)

Data Sharing and Disclosure

We do not sell, trade, or rent your personal information. We may share your information only in these circumstances:

1. Service Providers

  • • Stripe for payment processing
  • • Supabase for database hosting
  • • Vercel for application hosting

2. Legal Requirements

  • • To comply with legal obligations
  • • To protect our rights and safety
  • • To prevent fraud or illegal activities

3. Business Transfers

  • • In connection with merger, acquisition, or sale of assets
  • • Users will be notified of any ownership change

Your Airtable Data

  • • We only access schema metadata, not your actual Airtable records
  • • Schema data is isolated per user with RLS
  • • You can export your data at any time
  • • You can delete your bases and history through the dashboard

Your Rights and Choices

Access and Control

  • • View and update account information
  • • Export your schema history
  • • Delete bases and change logs
  • • Manage API keys
  • • Control notification preferences

Account Deletion

  • • Request account deletion at any time
  • • All associated data removed within 30 days
  • • Excludes data we must retain for legal purposes

Data Portability

  • • Export your data in JSON, Markdown, or text formats
  • • Download complete schema snapshots
  • • Access your full change history

Cookies and Tracking

We use essential cookies for:

  • • Authentication and sessions
  • • Security purposes
  • • User preferences (timezone, display settings)

We do not use:

  • • Third-party tracking cookies
  • • Advertising cookies
  • • Cross-site tracking

Third-Party Services

Airtable Integration

  • • We interact with Airtable's API on your behalf
  • • Webhook endpoints receive schema update notifications
  • • We do not store your Airtable credentials

Payment Processing (Stripe)

  • • Subject to Stripe's Privacy Policy
  • • PCI-compliant payment handling
  • • We receive only transaction confirmations

Privacy Rights

California Privacy Rights (CCPA)

California residents have additional rights including:

  • • Right to know what personal information is collected
  • • Right to know if information is sold or disclosed
  • • Right to opt-out of sale (we do not sell data)
  • • Right to delete personal information
  • • Right to non-discrimination

European Privacy Rights (GDPR)

If you are in the European Economic Area, you have rights including:

  • • Access to your personal data
  • • Rectification of inaccurate data
  • • Erasure of your data
  • • Restriction of processing
  • • Data portability
  • • Objection to processing
  • • Withdrawal of consent

Legal Basis for Processing:

  • • Consent for account creation
  • • Contract performance for service delivery
  • • Legitimate interests for service improvement

Contact Information

For privacy concerns or questions:

Email:hello@modernstack.io
Support:support@modernstack.io
Company:ModernStack
Product:AirDiff
Website:airdiff.modernstack.io

For data protection inquiries or to exercise your rights, please contact us with your account email and specific request.

This Privacy Policy is effective as of August 12, 2025 and applies to all users of AirDiff.