Monghoul

Privacy Policy

Last updated: March 29, 2026

This Privacy Policy describes how Bohdan Kontsedal ("we", "us", "our") collects, uses, and protects information when you use Monghoul ("the App"), a desktop MongoDB GUI client.

1. Information We Collect

1.1 Data Stored Locally on Your Device

Monghoul stores all user data in a local SQLite database on your computer. This data never leaves your device except as described in Sections 1.2, 1.3, and 1.4.

Locally stored data includes:

  • Connection configurations — server addresses, ports, authentication credentials, SSH tunnel settings, SSL/TLS certificates, database filters, and write protection rules
  • Workspace state — tab content, query code, query results, panel layouts, window positions, sidebar preferences
  • Saved queries and favorites — query code, names, descriptions, and usage timestamps
  • Operation history — query logs, export/import records, execution durations, and error messages
  • Themes — custom theme configurations
  • MCP server settings — enabled state, authentication token, port

We do not have access to your locally stored data. Connection credentials, queries, database contents, and file paths remain entirely on your device.

1.2 Anonymous Telemetry (Opt-Out)

When telemetry is enabled (the default), we collect anonymous usage analytics to improve the App. Telemetry data is sent to Mixpanel, a third-party analytics service.

What we collect:

  • Device identifier — an anonymous one-way hash of your device's system identifier (see Section 1.4), used as a stable anonymous device identity
  • Session identifier — a random UUID generated each time the App starts
  • App metadata — app version, operating system (Windows, macOS, Linux), license tier (free/pro)
  • Feature usage events — which features are used (e.g., "query executed", "export completed", "schema analyzed"), with bucketed durations and document counts (e.g., "1s-5s", "1k-10k") to prevent exact values from being recorded
  • Error categories — when queries fail, the error type is classified (auth, timeout, network, syntax, permission, other) without including the actual error message content
  • License events — plan type on activation (monthly, annual, lifetime, trial), checkout opened, trial started/expired/restored
  • MCP server events — when the MCP server is toggled on/off, when an AI client connects (session start), and which MCP tools are called (tool name only, no query content or results)

What we never collect:

  • Connection strings, database names, or collection names
  • Query code, query results, or document content
  • Usernames, passwords, API keys, or file paths
  • IP addresses (Mixpanel derives approximate geolocation from IP but does not store the IP itself)
  • Email addresses or any personally identifiable information

How to opt out:

You can disable telemetry at any time from within the App via the footer menu or the initial welcome screen. When disabled, no data is sent to any external service.

1.3 Payment Information

When you purchase a Pro license, payment is processed by PayPro Global (PayPro Global, Inc.), our Merchant of Record. PayPro Global collects and processes your payment information (name, email, billing address, payment method) under their own privacy policy.

What we store locally after purchase:

  • License key
  • Subscription ID
  • Customer email (for subscription portal access)
  • Plan type and activation/expiration dates

We do not store your payment card details or billing address. These are handled entirely by PayPro Global.

1.4 Device Fingerprint

When you activate a Pro license or start a free trial, the App generates an anonymous device fingerprint — a one-way hash derived from your device's system identifier. This fingerprint cannot be reversed to identify you or your device.

We also send a human-readable device name (hostname + OS) for your reference when managing devices.

The fingerprint is used to:

  1. Enforce the device limit per license key (up to 3 devices)
  2. Prevent trial abuse (one trial per device)
  3. Serve as the anonymous device identifier for telemetry analytics

1.5 Auto-Update Checks

The App periodically checks for updates by requesting a version manifest from GitHub (github.com). This request includes only standard HTTP headers (IP address, user agent). No personal data or telemetry is sent during update checks.

2. How We Use Information

  • Telemetry data — to understand feature usage, identify common errors, prioritize development, and improve the App
  • License data — to verify your license status and manage subscription validity
  • Update checks — to notify you of new versions

3. Third-Party Services

Service Purpose Data Shared Privacy Policy
PayPro Global Payment processing, subscription management, tax compliance, license key generation Payment information (handled by PayPro directly) payproglobal.com/legal
Monghoul License Server License verification, device management, trial tracking License key, device fingerprint, device name, customer email Self-hosted, see Section 1.4
Mixpanel Anonymous usage analytics Anonymous events with device fingerprint, bucketed metrics (see Section 1.2) mixpanel.com/legal/privacy-policy
GitHub Auto-update version checks Standard HTTP request headers docs.github.com/en/site-policy/privacy-policies

User-configured services: The App connects to MongoDB servers, SSH servers, and authentication services (LDAP, Kerberos, AWS) that you configure. These connections are initiated by you and governed by the respective service providers' policies.

4. Data Storage and Security

  • All user data is stored locally in an SQLite database on your device
  • Connection passwords and credentials are stored in the local database; we recommend using your operating system's disk encryption
  • No user content (queries, documents, credentials) is stored on our servers. Only anonymous device fingerprints and license metadata are stored on the license server (see Section 1.4)
  • Telemetry data stored by Mixpanel is anonymous and cannot be linked to any individual

5. Data Retention

  • Local data — retained on your device until you delete it or uninstall the App
  • Telemetry data — retained by Mixpanel according to their data retention policies
  • Payment records — retained by PayPro Global according to their data retention policies and applicable tax regulations
  • Device fingerprints — retained on our license server while the license key is active; removed upon license deactivation or after 30 days of device inactivity

6. Your Rights

  • Opt out of telemetry — disable at any time from within the App
  • Delete local data — uninstall the App or delete its data directory from your system's application data folder
  • Manage subscription — access the PayPro Global customer portal to update payment methods, cancel subscriptions, or request invoice copies
  • Data portability — your local database is a standard SQLite file that you can back up or inspect at any time

For users in the European Economic Area (EEA), you may have additional rights under GDPR including the right to access, rectification, erasure, and data portability of personal data processed by our third-party providers (PayPro Global, Mixpanel). Contact us to exercise these rights.

7. Children's Privacy

Monghoul is not directed at children under 16. We do not knowingly collect information from children.

8. Changes to This Policy

We may update this Privacy Policy from time to time. The "Last updated" date at the top reflects the most recent revision. Continued use of the App after changes constitutes acceptance of the updated policy.

9. Contact

If you have questions about this Privacy Policy, contact us at:

Email: contact@monghoul.com