Privacy Policy
Last updated July 9, 2026
Mock Matrix, operated by Data Dudes Consulting, is a synthetic data generation service. This policy describes the personal information we collect to run it, what we deliberately never collect, and how long things are kept. The short version: your account details are the only personal data we hold — the product itself never touches your production data.
What we collect
- Account information. When you sign in with Google we receive and store your email address, display name, and profile picture URL, and we create an organization record for your account. We use these to operate your account and to contact you about the service.
- Service metadata. We store the scenarios you save and metadata about your generation jobs — specs, seeds, job status, row counts, timestamps, and usage against plan quotas — because that is the product. Logs carry identifiers and hashes rather than spec contents.
- Billing. Paid subscriptions are processed by Stripe. Stripe collects and stores your payment details under its own privacy policy; we never see or store card numbers — we keep only a Stripe customer reference and your subscription status.
What we never collect
Mock Matrix has no dataset-upload features and never ingests customer production data. The service generates synthetic datasets from the parameters you type in; there are no real records to process, de-identify, or leak. Generated artifacts are treated as your confidential material (a spec can reveal your test plans), but they contain no real personal data by construction.
Retention and deletion
- Generated artifacts are automatically deleted after your plan's retention window (7 days on Free, 30 on Pro, 90 on Enterprise — see Pricing). Job metadata (status, row counts, checksums) is kept so your history and provenance records remain useful.
- Account data is kept while your account is active. Signed-in users can delete an account under Settings; deletion removes the organization's records, API keys, and stored artifacts. You may also email the address below for help.
Cookies and browser storage
The web app stores the API URL and an optional manually configured API key in localStorage. Google sign-in sessions are kept in sessionStorage and clear when the tab closes. Prefer Google sign-in for interactive use and reserve API keys for controlled developer or CI environments. We do not use advertising or cross-site tracking cookies. If aggregate analytics is enabled, it receives page paths only—not scenarios, generated rows, credentials, or account identifiers. Third parties you interact with through the service — Google (sign-in) and Stripe (checkout and billing portal) — set their own cookies under their own policies.
Sharing
We do not sell personal information. Data is shared only with the infrastructure and payment providers that run the service (described on the security page) and when required by law.
Changes and contact
We will post updates to this policy here with a new "last updated" date. Questions or deletion requests: synthetic-data-lab+privacy@gmail.com.