Salesforce Metadata Manager

Privacy Policy

Last updated: March 2026

This Privacy Policy explains how SF Daily Tools ("we", "us", or "our") collects, uses, and protects information when you use the Salesforce Metadata Manager tool available at sfdailytools.com.

1. What Data We Collect

We collect only the minimum data required to operate the tool:

  • Salesforce OAuth tokens — a temporary access token is stored in your browser session to authenticate API calls during your active session. It is never written to a database or persisted beyond your session.
  • Salesforce instance URL and org type — stored temporarily in your session to route API calls to the correct org.
  • Contact form submissions — if you submit a bug report or feature request, we collect your name, email address, and message. This is used solely to respond to your enquiry.
  • Donation information — if you choose to donate, payment is processed by Razorpay. We do not receive or store your payment card details.
2. What We Do NOT Collect
  • We do not store your Salesforce credentials (username or password).
  • We do not retain, copy, or log any metadata retrieved from your Salesforce org.
  • We do not track your behaviour across other websites.
  • We do not sell or share your data with third parties for marketing purposes.
3. How We Use Your Data

Data is used exclusively to:

  • Authenticate and communicate with your Salesforce org on your behalf during your session.
  • Respond to support or feedback messages you send us.
  • Process voluntary donations via Razorpay.
4. Session Cookies

We use a single server-side session cookie to maintain your authenticated state while you use the tool. This cookie expires when you close your browser or log out. No persistent tracking cookies are set.

5. Third-Party Services
  • Salesforce — authentication is handled via Salesforce's standard OAuth 2.0 flow. Your interaction with Salesforce is governed by Salesforce's Privacy Policy.
  • Razorpay — donation payments are processed by Razorpay and governed by Razorpay's Privacy Policy.
  • GitHub / Bitbucket — if you connect a Git provider for version control, authentication is handled via their respective OAuth flows and governed by their privacy policies.
6. Data Retention

Session data is discarded when your session ends. Contact form messages may be retained for up to 12 months to track and resolve reported issues, after which they are deleted.

7. Security

OAuth tokens are stored only in server-side sessions and transmitted over HTTPS. We do not log or expose tokens in any client-accessible location.

8. Your Rights

You may request deletion of any contact form data we hold about you by reaching out via the Feedback & Support form in the app footer. We will respond within 30 days.

9. Changes to This Policy

We may update this policy from time to time. The "Last updated" date at the top of this page will reflect any changes. Continued use of the tool after changes constitutes acceptance of the updated policy.

10. Contact

For any privacy-related questions, please use the Feedback & Support form in the app, or visit sfdailytools.com.

Back to Home