Privacy Policy

Last Updated: March 2026

1. Introduction

Welcome to CloudCash ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your AWS infrastructure data. This Privacy Policy explains how we collect, use, and safeguard your information when you use our SaaS platform.

🔒 Core Promise: Minimal Data Access

We do not store your AWS Access Keys or Secret Keys. We operate strictly via IAM Roles with limited ReadOnlyAccess permissions. We cannot read your application data, databases, or code.

2. Information We Collect

  • Account Information: Email address (via Cognito/Google Login) and name.
  • Infrastructure Metadata: Resource IDs (e.g., vol-0a1b2c...), usage metrics (CPU, I/O), and tags. We do NOT access the content within these resources.
  • Billing Data: Payment processing is handled entirely by Stripe (or AWS Marketplace, if applicable). We do not store credit card numbers on our servers.

3. How We Use Your Data

We use the metadata collected solely to:

  • Identify idle or wasted resources (e.g., unattached volumes).
  • Calculate potential cost savings.
  • Execute termination requests only when explicitly triggered by you (Pro Plan feature).

4. Data Retention

We retain infrastructure metadata only for the duration of your active session to generate reports. Once you log out or delete your account, this cache is cleared. Your AWS IAM Role ARN is stored securely to facilitate future scans until you disconnect it.

5. Third-Party Services

We rely on trusted third-party providers:

  • Amazon Web Services (AWS): Hosting and infrastructure.
  • Stripe: Payment processing for direct subscriptions.
  • Google Analytics: Anonymized site usage statistics.

6. Contact Us

If you have any questions about this policy or our security practices, please contact us at:

Email: support@cloudcash.cloud