Sonvo sonvo

Privacy Policy

Last updated: July 2, 2026

Sonvo (sonvo.co) is a suite of free diagramming tools operated by Benmore Technologies ("we", "us"). This policy describes what we collect when you use Sonvo, why we collect it, and the choices you have. The short version: we collect what's needed to run your account and host your diagrams, we use first-party analytics only, and we don't sell your data or run third-party ad trackers.

What we collect

  • Account information. When you create an account: your email address, first name, and a hash of your password (we never store the password itself). If you sign in with Google, we receive your name, email address, and Google account identifier from Google instead - we never see your Google password.
  • Your content. The diagrams you create - names, descriptions, and everything you place on the canvas (which may include information about your business, such as system names, costs, people, and processes). Your diagrams are private to your account; nobody else can see them unless you share them.
  • Usage data. If you accept the cookie banner, an anonymous first-party cookie (_bm_vid) is set to count page views and session timing. It contains no personal information, is stored in our own database, is never shared, and involves no third-party trackers or cross-site tracking.
  • Technical logs. Standard server logs (IP address, browser user-agent, request paths, errors) kept for security and debugging.

How we use it

  • To operate your account and store, render, and analyze your diagrams (the analyzers - spend rollups, handoff flags, and similar - run over your diagram data solely to show you their findings).
  • To send transactional email: a welcome message when you sign up, and account emails such as password resets. Transactional email is delivered via our platform's email service (built on Amazon SES). We do not send marketing email without your consent, and we never share your address with advertisers.
  • To understand aggregate usage of the product (via the first-party analytics described above).
  • We may compute aggregated, anonymized statistics across many accounts (for example, "companies of a given size run N systems on average") for benchmarks and research. These statistics never identify you, your company, or the contents of any individual diagram.

Cookies

We use three kinds of cookies, all first-party: a session cookie to keep you signed in, a CSRF token to protect forms, and the optional anonymous analytics cookie described above (set only if you accept the cookie banner). No advertising or third-party cookies, ever.

Who can see your data

Your diagrams are private by default. We do not sell personal data, and we do not share it with third parties except the infrastructure providers needed to run the service (hosting on the Benmore platform; email delivery via Amazon SES) - each bound to processing data only on our behalf. We may disclose information if required by law.

Retention & your rights

  • We keep your account data and diagrams while your account is active.
  • You can export your data at any time: signed in, request /api/_my-data for a machine-readable copy, or export any diagram as JSON/PNG from the editor.
  • You can delete your account from your profile, which removes your account record and diagrams from the live database.
  • For access, correction, or deletion requests - or any privacy question - email [email protected]. We respond within 30 days.

Security

All traffic is encrypted in transit (TLS). Passwords are stored as salted hashes. Access to production data is limited to the operators of the service.

Children

Sonvo is a business tool and is not directed at children under 16. We do not knowingly collect data from them.

Changes

If this policy changes materially, we'll update this page and the date above. Continued use after a change means you accept the updated policy.