Privacy Policy — Maree-DB

Effective 27 May 2026 · Version 1.0

The short version

The Maree-DB software product collects zero telemetry, zero usage data, and zero analytics. It never phones home. This privacy policy applies to our website (mareedb.com) and our business communications — not to the database software itself, which is entirely sovereign.

1. Who We Are

This policy is issued by SupportCALL ICT Solutions ("we", "us", "our"), a business operated by David H. Maree, located in Launceston, Tasmania, Australia. We operate the websites mareedb.com and supportcall.com.au.

Contact: privacy@supportcall.com.au

2. What the Maree-DB Software Does NOT Collect

The Maree-DB database binary is a sovereign product. When you run Maree-DB on your own infrastructure:

It does not transmit any usage data, query logs, or schema information to us or anyone else.
It does not contain any telemetry, analytics, or monitoring code that contacts external servers.
It does not report installation details, deployment size, or performance metrics to us.
Once activated, the licence is verified entirely locally — no internet connection is required, ever.
Data you store in Maree-DB is entirely under your control. We have no access to it, no visibility of it, and no ability to access it.

Your data is yours. That is not a marketing claim — it is a technical fact verifiable by reading the source code.

3. What We Collect on This Website

3.1 Contact form submissions

When you submit a contact form, we collect your name, email address, and message content. This information is used solely to respond to your enquiry. We do not add you to any marketing list without your explicit consent.

3.2 Assessment submissions

When you complete the careers assessment and submit your application, we collect your name, email address, role of interest, resume URL (if provided), and assessment responses. This information is used solely for evaluating your application for employment.

3.3 Licence activation

When you activate a Professional or Enterprise licence online, we record your hardware fingerprint (a one-way hash of hardware identifiers — not personally identifiable), the licence tier, and the activation timestamp. This is used solely to validate your licence. We do not link this to any personal information unless you have an active support contract.

3.4 Download logs

Our download servers log standard HTTP request metadata (IP address, timestamp, user agent, file requested). These logs are retained for 30 days for security purposes and are not linked to any personal identity.

3.5 What we do NOT use

No third-party analytics platforms (Google Analytics, Mixpanel, etc.)
No advertising pixels or tracking cookies
No CDN-injected analytics
No session recording tools

This website uses no external scripts, no external fonts, and no third-party resources of any kind. There is nothing on this site that reports your visit to any third party.

4. How We Use Your Information

We use the information we collect for the following purposes only:

Responding to enquiries you submit through our contact form
Processing licence activations and providing activation keys
Providing technical support to licence holders
Processing employment applications
Security incident detection and response (download logs)

We do not use your information for marketing, profiling, or any purpose other than the specific purpose for which it was provided.

5. Third-Party Sharing

We do not sell your personal information. We do not share your personal information with third parties except:

Legal requirement: if required by applicable law, court order, or lawful authority.
Business transition: if SupportCALL ICT Solutions is acquired or merges with another entity, in which case you will be notified and given the opportunity to request deletion.

We do not share data with data brokers, advertising networks, or analytics companies.

6. Data Retention

Contact form submissions: retained for 2 years or until you request deletion, whichever is sooner.
Assessment responses: retained for 12 months if you are not hired, indefinitely if you are.
Licence activation records: retained for the duration of your licence plus 7 years (for accounting purposes).
Download logs: 30 days, then automatically purged.

7. Your Rights

Under GDPR (EU/UK residents)

Right of access — request a copy of all personal data we hold about you.
Right to rectification — request correction of inaccurate data.
Right to erasure — request deletion of your personal data ("right to be forgotten").
Right to restrict processing — request that we pause processing your data.
Right to data portability — receive your data in a structured, machine-readable format.
Right to object — object to processing based on legitimate interests.

Under the Australian Privacy Act 1988

Right to access personal information we hold about you (APP 12).
Right to correct inaccurate, out-of-date, or incomplete personal information (APP 13).
Right to make a complaint to the Office of the Australian Information Commissioner (OAIC) if you believe we have breached the Australian Privacy Principles.

To exercise any of these rights, contact privacy@supportcall.com.au. We respond within 30 days.

8. Security

Personal data submitted through this website is transmitted over HTTPS. We store contact and application data in systems with appropriate access controls and encryption at rest. We do not store payment card details — all payment processing is handled by our payment processor and is subject to their privacy policy.

9. Cookies

This website does not use cookies for analytics or advertising. We may set a session cookie if you use the contact form, solely to enable form submission. This cookie is not used for tracking and expires when you close your browser.

10. Children

Our website and products are not directed at children under 16. We do not knowingly collect personal information from children. If you believe a child has submitted personal information to us, please contact privacy@supportcall.com.au and we will delete it promptly.

11. Changes to This Policy

We may update this privacy policy from time to time. Material changes will be noted at the top of this page with an updated effective date. We will not retroactively apply significant changes to data collected before the change without consent.

12. Contact Us

Privacy enquiries, data subject requests, and complaints:

privacy@supportcall.com.au
SupportCALL ICT Solutions
Launceston, Tasmania, Australia

EU residents may also lodge a complaint with the supervisory authority in their EU member state. Australian residents may contact the OAIC at oaic.gov.au.

13. Optional Performance Data Sharing

Maree-DB includes an opt-in feature that allows administrators to voluntarily share anonymised benchmark results with SupportCALL ICT Solutions. This feature is:

Off by default. No data is ever sent without explicit configuration.
Admin-triggered only. Data is uploaded only when an administrator runs maree-db-cli verify --share-results, or during a licence renewal when verification.auto_share_on_renewal = true is set.
Never automatic. The database never initiates an upload on its own schedule or in the background.
Air-gap safe. Systems with no outbound connectivity are completely unaffected — there is no polling, no retry queue, and no error logged when the network is absent.

13.1 What is collected (when opted in)

The anonymised payload contains only hardware class descriptors and benchmark scores — never personally identifiable information:

CPU model string, core count, and RAM size (gigabytes, rounded)
Disk type (SSD/NVMe/HDD — detected, not labelled)
Operating system name and CPU architecture
Benchmark scores: sequential INSERT/s, random read p95 µs, sequential scan rows/s, vector search top-10 µs, TLS handshake ms
Test pass/fail counts (numbers only — not test names or failure messages)
Deployment class (bare-metal, VM, container, cloud-VM, hosting, unknown)
Maree-DB version string and server uptime in whole days
Licence tier (community/professional/enterprise — not the licence key)
Date of submission (UTC date, not time-of-day)

13.2 What is expressly NOT collected

The following fields are architecturally excluded — they do not exist in the data structure and cannot be inadvertently added:

IP address, hostname, MAC address, or any network identifier
Company name, customer name, or any organisational identifier
Licence key or hardware fingerprint
Any stored data, query content, table names, schema names, or database names
User accounts, passwords, or credentials of any kind

13.3 Legal basis

Because no personal information is collected (as defined under the Privacy Act 1988 (Cth) and GDPR Recital 26), no legal basis for processing personal data is required. The data is purely technical performance metadata.

13.4 How to opt in or out

To enable: set verification.share_results = true in maree-db.toml or run maree-db config set verification.share_results true. To disable at any time: set it back to false. There is no account, no subscription, and no removal request needed — disabling the flag is instant and complete.

13.5 How we use the data

Aggregated (never individual) benchmark data is used solely to improve the accuracy of our published performance claims and to understand the hardware environments our customers use. It is not shared with third parties, not sold, and not used for marketing or advertising purposes.